{"swagger":"2.0","info":{"title":"Kubernetes","version":"1.31"},"paths":{"/.well-known/openid-configuration/":{"get":{"description":"get service account issuer OpenID configuration, also known as the 'OIDC discovery doc'","produces":["application/json"],"schemes":["https"],"tags":["WellKnown"],"operationId":"getServiceAccountIssuerOpenIDConfiguration","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}}}},"/api/":{"get":{"description":"get available API versions","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core"],"operationId":"getCoreAPIVersions","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIVersions"}},"401":{"description":"Unauthorized"}}}},"/api/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"getCoreV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/api/v1/componentstatuses":{"get":{"description":"list objects of kind ComponentStatus","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1ComponentStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ComponentStatusList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ComponentStatus","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/componentstatuses/{name}":{"get":{"description":"read the specified ComponentStatus","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1ComponentStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ComponentStatus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"ComponentStatus","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ComponentStatus","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/configmaps":{"get":{"description":"list or watch objects of kind ConfigMap","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1ConfigMapForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/endpoints":{"get":{"description":"list or watch objects of kind Endpoints","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1EndpointsForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.EndpointsList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/events":{"get":{"description":"list or watch objects of kind Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1EventForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.EventList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/limitranges":{"get":{"description":"list or watch objects of kind LimitRange","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1LimitRangeForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRangeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/namespaces":{"get":{"description":"list or watch objects of kind Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1Namespace","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.NamespaceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"post":{"description":"create a Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1Namespace","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/bindings":{"post":{"description":"create a Binding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Binding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/configmaps":{"get":{"description":"list or watch objects of kind ConfigMap","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedConfigMap","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"post":{"description":"create a ConfigMap","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedConfigMap","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"delete":{"description":"delete collection of ConfigMap","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedConfigMap","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/configmaps/{name}":{"get":{"description":"read the specified ConfigMap","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedConfigMap","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"put":{"description":"replace the specified ConfigMap","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedConfigMap","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"delete":{"description":"delete a ConfigMap","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedConfigMap","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"patch":{"description":"partially update the specified ConfigMap","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedConfigMap","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConfigMap","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/endpoints":{"get":{"description":"list or watch objects of kind Endpoints","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedEndpoints","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.EndpointsList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"post":{"description":"create Endpoints","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedEndpoints","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"delete":{"description":"delete collection of Endpoints","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedEndpoints","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/endpoints/{name}":{"get":{"description":"read the specified Endpoints","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedEndpoints","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"put":{"description":"replace the specified Endpoints","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedEndpoints","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"delete":{"description":"delete Endpoints","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedEndpoints","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"patch":{"description":"partially update the specified Endpoints","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedEndpoints","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Endpoints","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/events":{"get":{"description":"list or watch objects of kind Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedEvent","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.EventList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"post":{"description":"create an Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedEvent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"delete":{"description":"delete collection of Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedEvent","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/events/{name}":{"get":{"description":"read the specified Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedEvent","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"put":{"description":"replace the specified Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedEvent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"delete":{"description":"delete an Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedEvent","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"patch":{"description":"partially update the specified Event","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedEvent","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Event","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/limitranges":{"get":{"description":"list or watch objects of kind LimitRange","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedLimitRange","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRangeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"post":{"description":"create a LimitRange","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedLimitRange","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"delete":{"description":"delete collection of LimitRange","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedLimitRange","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/limitranges/{name}":{"get":{"description":"read the specified LimitRange","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedLimitRange","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"put":{"description":"replace the specified LimitRange","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedLimitRange","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"delete":{"description":"delete a LimitRange","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedLimitRange","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"patch":{"description":"partially update the specified LimitRange","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedLimitRange","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the LimitRange","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/persistentvolumeclaims":{"get":{"description":"list or watch objects of kind PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedPersistentVolumeClaim","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"post":{"description":"create a PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedPersistentVolumeClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"delete":{"description":"delete collection of PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedPersistentVolumeClaim","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}":{"get":{"description":"read the specified PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedPersistentVolumeClaim","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"put":{"description":"replace the specified PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedPersistentVolumeClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"delete":{"description":"delete a PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedPersistentVolumeClaim","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"patch":{"description":"partially update the specified PersistentVolumeClaim","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedPersistentVolumeClaim","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PersistentVolumeClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/persistentvolumeclaims/{name}/status":{"get":{"description":"read status of the specified PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedPersistentVolumeClaimStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"put":{"description":"replace status of the specified PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedPersistentVolumeClaimStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"patch":{"description":"partially update status of the specified PersistentVolumeClaim","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedPersistentVolumeClaimStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PersistentVolumeClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/pods":{"get":{"description":"list or watch objects of kind Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedPod","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"post":{"description":"create a Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedPod","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"delete":{"description":"delete collection of Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedPod","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/pods/{name}":{"get":{"description":"read the specified Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedPod","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"put":{"description":"replace the specified Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedPod","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"delete":{"description":"delete a Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedPod","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"patch":{"description":"partially update the specified Pod","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedPod","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Pod","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/pods/{name}/attach":{"get":{"description":"connect GET requests to attach of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNamespacedPodAttach","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodAttachOptions","version":"v1"}},"post":{"description":"connect POST requests to attach of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNamespacedPodAttach","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodAttachOptions","version":"v1"}},"parameters":[{"$ref":"#/parameters/container-_Q-EJ3nR"},{"uniqueItems":true,"type":"string","description":"name of the PodAttachOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/stderr-26jJhFUR"},{"$ref":"#/parameters/stdin-sEFnN3IS"},{"$ref":"#/parameters/stdout-005YMKE6"},{"$ref":"#/parameters/tty-g7MlET_l"}]},"/api/v1/namespaces/{namespace}/pods/{name}/binding":{"post":{"description":"create binding of a Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedPodBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Binding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Binding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the Binding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/pods/{name}/ephemeralcontainers":{"get":{"description":"read ephemeralcontainers of the specified Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedPodEphemeralcontainers","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"put":{"description":"replace ephemeralcontainers of the specified Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedPodEphemeralcontainers","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"patch":{"description":"partially update ephemeralcontainers of the specified Pod","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedPodEphemeralcontainers","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Pod","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/pods/{name}/eviction":{"post":{"description":"create eviction of a Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedPodEviction","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.Eviction"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.Eviction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.Eviction"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.Eviction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policy","kind":"Eviction","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the Eviction","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/pods/{name}/exec":{"get":{"description":"connect GET requests to exec of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNamespacedPodExec","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodExecOptions","version":"v1"}},"post":{"description":"connect POST requests to exec of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNamespacedPodExec","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodExecOptions","version":"v1"}},"parameters":[{"$ref":"#/parameters/command-Py3eQybp"},{"$ref":"#/parameters/container-i5dOmRiM"},{"uniqueItems":true,"type":"string","description":"name of the PodExecOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/stderr-W_1TNlWc"},{"$ref":"#/parameters/stdin-PSzNhyUC"},{"$ref":"#/parameters/stdout--EZLRwV1"},{"$ref":"#/parameters/tty-s0flW37O"}]},"/api/v1/namespaces/{namespace}/pods/{name}/log":{"get":{"description":"read log of the specified Pod","consumes":["*/*"],"produces":["text/plain","application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedPodLog","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"$ref":"#/parameters/container-1GeXxFDC"},{"$ref":"#/parameters/follow-9OIXh_2R"},{"$ref":"#/parameters/insecureSkipTLSVerifyBackend-gM00jVbe"},{"$ref":"#/parameters/limitBytes-zwd1RXuc"},{"uniqueItems":true,"type":"string","description":"name of the Pod","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/previous-1jxDPu3y"},{"$ref":"#/parameters/sinceSeconds-vE2NLdnP"},{"$ref":"#/parameters/tailLines-2fRTNzbP"},{"$ref":"#/parameters/timestamps-c17fW1w_"}]},"/api/v1/namespaces/{namespace}/pods/{name}/portforward":{"get":{"description":"connect GET requests to portforward of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNamespacedPodPortforward","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodPortForwardOptions","version":"v1"}},"post":{"description":"connect POST requests to portforward of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNamespacedPodPortforward","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodPortForwardOptions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodPortForwardOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/ports-91KROJmm"}]},"/api/v1/namespaces/{namespace}/pods/{name}/proxy":{"get":{"description":"connect GET requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNamespacedPodProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"put":{"description":"connect PUT requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PutNamespacedPodProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"post":{"description":"connect POST requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNamespacedPodProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"delete":{"description":"connect DELETE requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1DeleteNamespacedPodProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"options":{"description":"connect OPTIONS requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1OptionsNamespacedPodProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"head":{"description":"connect HEAD requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1HeadNamespacedPodProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"patch":{"description":"connect PATCH requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PatchNamespacedPodProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodProxyOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/path-oPbzgLUj"}]},"/api/v1/namespaces/{namespace}/pods/{name}/proxy/{path}":{"get":{"description":"connect GET requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNamespacedPodProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"put":{"description":"connect PUT requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PutNamespacedPodProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"post":{"description":"connect POST requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNamespacedPodProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"delete":{"description":"connect DELETE requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1DeleteNamespacedPodProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"options":{"description":"connect OPTIONS requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1OptionsNamespacedPodProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"head":{"description":"connect HEAD requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1HeadNamespacedPodProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"patch":{"description":"connect PATCH requests to proxy of Pod","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PatchNamespacedPodProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"PodProxyOptions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodProxyOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/path-z6Ciiujn"},{"$ref":"#/parameters/path-oPbzgLUj"}]},"/api/v1/namespaces/{namespace}/pods/{name}/status":{"get":{"description":"read status of the specified Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedPodStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"put":{"description":"replace status of the specified Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedPodStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"patch":{"description":"partially update status of the specified Pod","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedPodStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Pod","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/podtemplates":{"get":{"description":"list or watch objects of kind PodTemplate","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedPodTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"post":{"description":"create a PodTemplate","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedPodTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"delete":{"description":"delete collection of PodTemplate","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedPodTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/podtemplates/{name}":{"get":{"description":"read the specified PodTemplate","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedPodTemplate","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"put":{"description":"replace the specified PodTemplate","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedPodTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"delete":{"description":"delete a PodTemplate","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedPodTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"patch":{"description":"partially update the specified PodTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedPodTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/replicationcontrollers":{"get":{"description":"list or watch objects of kind ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedReplicationController","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationControllerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"post":{"description":"create a ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedReplicationController","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"delete":{"description":"delete collection of ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedReplicationController","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/replicationcontrollers/{name}":{"get":{"description":"read the specified ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedReplicationController","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"put":{"description":"replace the specified ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedReplicationController","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"delete":{"description":"delete a ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedReplicationController","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"patch":{"description":"partially update the specified ReplicationController","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedReplicationController","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReplicationController","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/replicationcontrollers/{name}/scale":{"get":{"description":"read scale of the specified ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedReplicationControllerScale","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"put":{"description":"replace scale of the specified ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedReplicationControllerScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"patch":{"description":"partially update scale of the specified ReplicationController","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedReplicationControllerScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Scale","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/replicationcontrollers/{name}/status":{"get":{"description":"read status of the specified ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedReplicationControllerStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"put":{"description":"replace status of the specified ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedReplicationControllerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"patch":{"description":"partially update status of the specified ReplicationController","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedReplicationControllerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReplicationController","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/resourcequotas":{"get":{"description":"list or watch objects of kind ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedResourceQuota","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuotaList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"post":{"description":"create a ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedResourceQuota","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"delete":{"description":"delete collection of ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedResourceQuota","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/resourcequotas/{name}":{"get":{"description":"read the specified ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedResourceQuota","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"put":{"description":"replace the specified ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedResourceQuota","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"delete":{"description":"delete a ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedResourceQuota","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"patch":{"description":"partially update the specified ResourceQuota","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedResourceQuota","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResourceQuota","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/resourcequotas/{name}/status":{"get":{"description":"read status of the specified ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedResourceQuotaStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"put":{"description":"replace status of the specified ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedResourceQuotaStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"patch":{"description":"partially update status of the specified ResourceQuota","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedResourceQuotaStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResourceQuota","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/secrets":{"get":{"description":"list or watch objects of kind Secret","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedSecret","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.SecretList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"post":{"description":"create a Secret","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedSecret","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"delete":{"description":"delete collection of Secret","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedSecret","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/secrets/{name}":{"get":{"description":"read the specified Secret","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedSecret","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"put":{"description":"replace the specified Secret","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedSecret","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"delete":{"description":"delete a Secret","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedSecret","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"patch":{"description":"partially update the specified Secret","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedSecret","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Secret","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/serviceaccounts":{"get":{"description":"list or watch objects of kind ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedServiceAccount","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccountList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"post":{"description":"create a ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedServiceAccount","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"delete":{"description":"delete collection of ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedServiceAccount","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/serviceaccounts/{name}":{"get":{"description":"read the specified ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedServiceAccount","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"put":{"description":"replace the specified ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedServiceAccount","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"delete":{"description":"delete a ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedServiceAccount","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"patch":{"description":"partially update the specified ServiceAccount","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedServiceAccount","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ServiceAccount","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/serviceaccounts/{name}/token":{"post":{"description":"create token of a ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedServiceAccountToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenRequest"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authentication.k8s.io","kind":"TokenRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the TokenRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/services":{"get":{"description":"list or watch objects of kind Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1NamespacedService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"post":{"description":"create a Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1NamespacedService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"delete":{"description":"delete collection of Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNamespacedService","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/services/{name}":{"get":{"description":"read the specified Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedService","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"put":{"description":"replace the specified Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"delete":{"description":"delete a Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1NamespacedService","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"patch":{"description":"partially update the specified Service","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedService","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Service","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{namespace}/services/{name}/proxy":{"get":{"description":"connect GET requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNamespacedServiceProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"put":{"description":"connect PUT requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PutNamespacedServiceProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"post":{"description":"connect POST requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNamespacedServiceProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"delete":{"description":"connect DELETE requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1DeleteNamespacedServiceProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"options":{"description":"connect OPTIONS requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1OptionsNamespacedServiceProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"head":{"description":"connect HEAD requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1HeadNamespacedServiceProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"patch":{"description":"connect PATCH requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PatchNamespacedServiceProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ServiceProxyOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/path-QCf0eosM"}]},"/api/v1/namespaces/{namespace}/services/{name}/proxy/{path}":{"get":{"description":"connect GET requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNamespacedServiceProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"put":{"description":"connect PUT requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PutNamespacedServiceProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"post":{"description":"connect POST requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNamespacedServiceProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"delete":{"description":"connect DELETE requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1DeleteNamespacedServiceProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"options":{"description":"connect OPTIONS requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1OptionsNamespacedServiceProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"head":{"description":"connect HEAD requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1HeadNamespacedServiceProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"patch":{"description":"connect PATCH requests to proxy of Service","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PatchNamespacedServiceProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceProxyOptions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ServiceProxyOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/path-z6Ciiujn"},{"$ref":"#/parameters/path-QCf0eosM"}]},"/api/v1/namespaces/{namespace}/services/{name}/status":{"get":{"description":"read status of the specified Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespacedServiceStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"put":{"description":"replace status of the specified Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespacedServiceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"patch":{"description":"partially update status of the specified Service","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespacedServiceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Service","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{name}":{"get":{"description":"read the specified Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1Namespace","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"put":{"description":"replace the specified Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1Namespace","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"delete":{"description":"delete a Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1Namespace","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"patch":{"description":"partially update the specified Namespace","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1Namespace","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Namespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{name}/finalize":{"put":{"description":"replace finalize of the specified Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespaceFinalize","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the Namespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/namespaces/{name}/status":{"get":{"description":"read status of the specified Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NamespaceStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"put":{"description":"replace status of the specified Namespace","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NamespaceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"patch":{"description":"partially update status of the specified Namespace","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NamespaceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Namespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/nodes":{"get":{"description":"list or watch objects of kind Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1Node","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"post":{"description":"create a Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1Node","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"delete":{"description":"delete collection of Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionNode","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/nodes/{name}":{"get":{"description":"read the specified Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1Node","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"put":{"description":"replace the specified Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1Node","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"delete":{"description":"delete a Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1Node","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"patch":{"description":"partially update the specified Node","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1Node","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Node","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/nodes/{name}/proxy":{"get":{"description":"connect GET requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNodeProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"put":{"description":"connect PUT requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PutNodeProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"post":{"description":"connect POST requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNodeProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"delete":{"description":"connect DELETE requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1DeleteNodeProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"options":{"description":"connect OPTIONS requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1OptionsNodeProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"head":{"description":"connect HEAD requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1HeadNodeProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"patch":{"description":"connect PATCH requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PatchNodeProxy","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NodeProxyOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/path-rFDtV0x9"}]},"/api/v1/nodes/{name}/proxy/{path}":{"get":{"description":"connect GET requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1GetNodeProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"put":{"description":"connect PUT requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PutNodeProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"post":{"description":"connect POST requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PostNodeProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"delete":{"description":"connect DELETE requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1DeleteNodeProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"options":{"description":"connect OPTIONS requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1OptionsNodeProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"head":{"description":"connect HEAD requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1HeadNodeProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"patch":{"description":"connect PATCH requests to proxy of Node","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["core_v1"],"operationId":"connectCoreV1PatchNodeProxyWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"","kind":"NodeProxyOptions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NodeProxyOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/path-z6Ciiujn"},{"$ref":"#/parameters/path-rFDtV0x9"}]},"/api/v1/nodes/{name}/status":{"get":{"description":"read status of the specified Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1NodeStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"put":{"description":"replace status of the specified Node","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1NodeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"patch":{"description":"partially update status of the specified Node","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1NodeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Node","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/persistentvolumeclaims":{"get":{"description":"list or watch objects of kind PersistentVolumeClaim","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1PersistentVolumeClaimForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/persistentvolumes":{"get":{"description":"list or watch objects of kind PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1PersistentVolume","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"post":{"description":"create a PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"createCoreV1PersistentVolume","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"delete":{"description":"delete collection of PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1CollectionPersistentVolume","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/persistentvolumes/{name}":{"get":{"description":"read the specified PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1PersistentVolume","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"put":{"description":"replace the specified PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1PersistentVolume","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"delete":{"description":"delete a PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"deleteCoreV1PersistentVolume","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"patch":{"description":"partially update the specified PersistentVolume","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1PersistentVolume","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PersistentVolume","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/persistentvolumes/{name}/status":{"get":{"description":"read status of the specified PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"readCoreV1PersistentVolumeStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"put":{"description":"replace status of the specified PersistentVolume","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"replaceCoreV1PersistentVolumeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"patch":{"description":"partially update status of the specified PersistentVolume","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["core_v1"],"operationId":"patchCoreV1PersistentVolumeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PersistentVolume","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/api/v1/pods":{"get":{"description":"list or watch objects of kind Pod","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1PodForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/podtemplates":{"get":{"description":"list or watch objects of kind PodTemplate","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1PodTemplateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/replicationcontrollers":{"get":{"description":"list or watch objects of kind ReplicationController","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1ReplicationControllerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationControllerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/resourcequotas":{"get":{"description":"list or watch objects of kind ResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1ResourceQuotaForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuotaList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/secrets":{"get":{"description":"list or watch objects of kind Secret","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1SecretForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.SecretList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/serviceaccounts":{"get":{"description":"list or watch objects of kind ServiceAccount","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1ServiceAccountForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccountList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/services":{"get":{"description":"list or watch objects of kind Service","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"listCoreV1ServiceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/configmaps":{"get":{"description":"watch individual changes to a list of ConfigMap. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1ConfigMapListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/endpoints":{"get":{"description":"watch individual changes to a list of Endpoints. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1EndpointsListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/events":{"get":{"description":"watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1EventListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/limitranges":{"get":{"description":"watch individual changes to a list of LimitRange. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1LimitRangeListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces":{"get":{"description":"watch individual changes to a list of Namespace. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespaceList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/configmaps":{"get":{"description":"watch individual changes to a list of ConfigMap. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedConfigMapList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/configmaps/{name}":{"get":{"description":"watch changes to an object of kind ConfigMap. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedConfigMap","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"ConfigMap","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ConfigMap","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/endpoints":{"get":{"description":"watch individual changes to a list of Endpoints. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedEndpointsList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/endpoints/{name}":{"get":{"description":"watch changes to an object of kind Endpoints. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedEndpoints","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"Endpoints","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Endpoints","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/events":{"get":{"description":"watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedEventList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/events/{name}":{"get":{"description":"watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedEvent","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Event","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/limitranges":{"get":{"description":"watch individual changes to a list of LimitRange. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedLimitRangeList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/limitranges/{name}":{"get":{"description":"watch changes to an object of kind LimitRange. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedLimitRange","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"LimitRange","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the LimitRange","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/persistentvolumeclaims":{"get":{"description":"watch individual changes to a list of PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedPersistentVolumeClaimList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/persistentvolumeclaims/{name}":{"get":{"description":"watch changes to an object of kind PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedPersistentVolumeClaim","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the PersistentVolumeClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/pods":{"get":{"description":"watch individual changes to a list of Pod. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedPodList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/pods/{name}":{"get":{"description":"watch changes to an object of kind Pod. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedPod","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Pod","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/podtemplates":{"get":{"description":"watch individual changes to a list of PodTemplate. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedPodTemplateList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/podtemplates/{name}":{"get":{"description":"watch changes to an object of kind PodTemplate. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedPodTemplate","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the PodTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/replicationcontrollers":{"get":{"description":"watch individual changes to a list of ReplicationController. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedReplicationControllerList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/replicationcontrollers/{name}":{"get":{"description":"watch changes to an object of kind ReplicationController. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedReplicationController","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ReplicationController","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/resourcequotas":{"get":{"description":"watch individual changes to a list of ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedResourceQuotaList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/resourcequotas/{name}":{"get":{"description":"watch changes to an object of kind ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedResourceQuota","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ResourceQuota","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/secrets":{"get":{"description":"watch individual changes to a list of Secret. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedSecretList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/secrets/{name}":{"get":{"description":"watch changes to an object of kind Secret. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedSecret","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Secret","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/serviceaccounts":{"get":{"description":"watch individual changes to a list of ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedServiceAccountList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/serviceaccounts/{name}":{"get":{"description":"watch changes to an object of kind ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedServiceAccount","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ServiceAccount","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/services":{"get":{"description":"watch individual changes to a list of Service. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedServiceList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{namespace}/services/{name}":{"get":{"description":"watch changes to an object of kind Service. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NamespacedService","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Service","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/namespaces/{name}":{"get":{"description":"watch changes to an object of kind Namespace. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1Namespace","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"Namespace","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Namespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/nodes":{"get":{"description":"watch individual changes to a list of Node. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1NodeList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/nodes/{name}":{"get":{"description":"watch changes to an object of kind Node. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1Node","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"Node","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Node","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/persistentvolumeclaims":{"get":{"description":"watch individual changes to a list of PersistentVolumeClaim. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1PersistentVolumeClaimListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolumeClaim","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/persistentvolumes":{"get":{"description":"watch individual changes to a list of PersistentVolume. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1PersistentVolumeList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/persistentvolumes/{name}":{"get":{"description":"watch changes to an object of kind PersistentVolume. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1PersistentVolume","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"","kind":"PersistentVolume","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the PersistentVolume","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/pods":{"get":{"description":"watch individual changes to a list of Pod. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1PodListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Pod","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/podtemplates":{"get":{"description":"watch individual changes to a list of PodTemplate. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1PodTemplateListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"PodTemplate","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/replicationcontrollers":{"get":{"description":"watch individual changes to a list of ReplicationController. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1ReplicationControllerListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ReplicationController","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/resourcequotas":{"get":{"description":"watch individual changes to a list of ResourceQuota. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1ResourceQuotaListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/secrets":{"get":{"description":"watch individual changes to a list of Secret. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1SecretListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Secret","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/serviceaccounts":{"get":{"description":"watch individual changes to a list of ServiceAccount. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1ServiceAccountListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"ServiceAccount","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/api/v1/watch/services":{"get":{"description":"watch individual changes to a list of Service. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["core_v1"],"operationId":"watchCoreV1ServiceListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"","kind":"Service","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/":{"get":{"description":"get available API versions","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apis"],"operationId":"getAPIVersions","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroupList"}},"401":{"description":"Unauthorized"}}}},"/apis/acme.cert-manager.io/v1/challenges":{"get":{"description":"list objects of kind Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"listAcmeCertManagerIoV1ChallengeForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.ChallengeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/acme.cert-manager.io/v1/namespaces/{namespace}/challenges":{"get":{"description":"list objects of kind Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"listAcmeCertManagerIoV1NamespacedChallenge","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.ChallengeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"post":{"description":"create a Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"createAcmeCertManagerIoV1NamespacedChallenge","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"delete":{"description":"delete collection of Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"deleteAcmeCertManagerIoV1CollectionNamespacedChallenge","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/acme.cert-manager.io/v1/namespaces/{namespace}/challenges/{name}":{"get":{"description":"read the specified Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"readAcmeCertManagerIoV1NamespacedChallenge","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"put":{"description":"replace the specified Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"replaceAcmeCertManagerIoV1NamespacedChallenge","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"delete":{"description":"delete a Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"deleteAcmeCertManagerIoV1NamespacedChallenge","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"patch":{"description":"partially update the specified Challenge","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"patchAcmeCertManagerIoV1NamespacedChallenge","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Challenge","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/acme.cert-manager.io/v1/namespaces/{namespace}/challenges/{name}/status":{"get":{"description":"read status of the specified Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"readAcmeCertManagerIoV1NamespacedChallengeStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"put":{"description":"replace status of the specified Challenge","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"replaceAcmeCertManagerIoV1NamespacedChallengeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"patch":{"description":"partially update status of the specified Challenge","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"patchAcmeCertManagerIoV1NamespacedChallengeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Challenge","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/acme.cert-manager.io/v1/namespaces/{namespace}/orders":{"get":{"description":"list objects of kind Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"listAcmeCertManagerIoV1NamespacedOrder","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.OrderList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"post":{"description":"create an Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"createAcmeCertManagerIoV1NamespacedOrder","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"delete":{"description":"delete collection of Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"deleteAcmeCertManagerIoV1CollectionNamespacedOrder","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/acme.cert-manager.io/v1/namespaces/{namespace}/orders/{name}":{"get":{"description":"read the specified Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"readAcmeCertManagerIoV1NamespacedOrder","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"put":{"description":"replace the specified Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"replaceAcmeCertManagerIoV1NamespacedOrder","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"delete":{"description":"delete an Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"deleteAcmeCertManagerIoV1NamespacedOrder","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"patch":{"description":"partially update the specified Order","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"patchAcmeCertManagerIoV1NamespacedOrder","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Order","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/acme.cert-manager.io/v1/namespaces/{namespace}/orders/{name}/status":{"get":{"description":"read status of the specified Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"readAcmeCertManagerIoV1NamespacedOrderStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"put":{"description":"replace status of the specified Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"replaceAcmeCertManagerIoV1NamespacedOrderStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"patch":{"description":"partially update status of the specified Order","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"patchAcmeCertManagerIoV1NamespacedOrderStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Order","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/acme.cert-manager.io/v1/orders":{"get":{"description":"list objects of kind Order","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["acmeCertManagerIo_v1"],"operationId":"listAcmeCertManagerIoV1OrderForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.acme.v1.OrderList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration"],"operationId":"getAdmissionregistrationAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/admissionregistration.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"getAdmissionregistrationV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations":{"get":{"description":"list or watch objects of kind MutatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"listAdmissionregistrationV1MutatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"post":{"description":"create a MutatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"createAdmissionregistrationV1MutatingWebhookConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"delete":{"description":"delete collection of MutatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1CollectionMutatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/mutatingwebhookconfigurations/{name}":{"get":{"description":"read the specified MutatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"readAdmissionregistrationV1MutatingWebhookConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"put":{"description":"replace the specified MutatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"replaceAdmissionregistrationV1MutatingWebhookConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"delete":{"description":"delete a MutatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1MutatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"patch":{"description":"partially update the specified MutatingWebhookConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"patchAdmissionregistrationV1MutatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MutatingWebhookConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/validatingadmissionpolicies":{"get":{"description":"list or watch objects of kind ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"listAdmissionregistrationV1ValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"post":{"description":"create a ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"createAdmissionregistrationV1ValidatingAdmissionPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"delete":{"description":"delete collection of ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1CollectionValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/validatingadmissionpolicies/{name}":{"get":{"description":"read the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"readAdmissionregistrationV1ValidatingAdmissionPolicy","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"put":{"description":"replace the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"replaceAdmissionregistrationV1ValidatingAdmissionPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"delete":{"description":"delete a ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1ValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"patch":{"description":"partially update the specified ValidatingAdmissionPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"patchAdmissionregistrationV1ValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/validatingadmissionpolicies/{name}/status":{"get":{"description":"read status of the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"readAdmissionregistrationV1ValidatingAdmissionPolicyStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"put":{"description":"replace status of the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"replaceAdmissionregistrationV1ValidatingAdmissionPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"patch":{"description":"partially update status of the specified ValidatingAdmissionPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"patchAdmissionregistrationV1ValidatingAdmissionPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/validatingadmissionpolicybindings":{"get":{"description":"list or watch objects of kind ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"listAdmissionregistrationV1ValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"post":{"description":"create a ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"createAdmissionregistrationV1ValidatingAdmissionPolicyBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"delete":{"description":"delete collection of ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1CollectionValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/validatingadmissionpolicybindings/{name}":{"get":{"description":"read the specified ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"readAdmissionregistrationV1ValidatingAdmissionPolicyBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"put":{"description":"replace the specified ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"replaceAdmissionregistrationV1ValidatingAdmissionPolicyBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"delete":{"description":"delete a ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1ValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"patch":{"description":"partially update the specified ValidatingAdmissionPolicyBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"patchAdmissionregistrationV1ValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicyBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations":{"get":{"description":"list or watch objects of kind ValidatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"listAdmissionregistrationV1ValidatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"post":{"description":"create a ValidatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"createAdmissionregistrationV1ValidatingWebhookConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"delete":{"description":"delete collection of ValidatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1CollectionValidatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/validatingwebhookconfigurations/{name}":{"get":{"description":"read the specified ValidatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"readAdmissionregistrationV1ValidatingWebhookConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"put":{"description":"replace the specified ValidatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"replaceAdmissionregistrationV1ValidatingWebhookConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"delete":{"description":"delete a ValidatingWebhookConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"deleteAdmissionregistrationV1ValidatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"patch":{"description":"partially update the specified ValidatingWebhookConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"patchAdmissionregistrationV1ValidatingWebhookConfiguration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingWebhookConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1/watch/mutatingwebhookconfigurations":{"get":{"description":"watch individual changes to a list of MutatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1MutatingWebhookConfigurationList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1/watch/mutatingwebhookconfigurations/{name}":{"get":{"description":"watch changes to an object of kind MutatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1MutatingWebhookConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the MutatingWebhookConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1/watch/validatingadmissionpolicies":{"get":{"description":"watch individual changes to a list of ValidatingAdmissionPolicy. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1ValidatingAdmissionPolicyList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1/watch/validatingadmissionpolicies/{name}":{"get":{"description":"watch changes to an object of kind ValidatingAdmissionPolicy. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1ValidatingAdmissionPolicy","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1/watch/validatingadmissionpolicybindings":{"get":{"description":"watch individual changes to a list of ValidatingAdmissionPolicyBinding. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1ValidatingAdmissionPolicyBindingList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1/watch/validatingadmissionpolicybindings/{name}":{"get":{"description":"watch changes to an object of kind ValidatingAdmissionPolicyBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1ValidatingAdmissionPolicyBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicyBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1/watch/validatingwebhookconfigurations":{"get":{"description":"watch individual changes to a list of ValidatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1ValidatingWebhookConfigurationList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1/watch/validatingwebhookconfigurations/{name}":{"get":{"description":"watch changes to an object of kind ValidatingWebhookConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1"],"operationId":"watchAdmissionregistrationV1ValidatingWebhookConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ValidatingWebhookConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1beta1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"getAdmissionregistrationV1beta1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/admissionregistration.k8s.io/v1beta1/validatingadmissionpolicies":{"get":{"description":"list or watch objects of kind ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"listAdmissionregistrationV1beta1ValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"post":{"description":"create a ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"createAdmissionregistrationV1beta1ValidatingAdmissionPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"delete":{"description":"delete collection of ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"deleteAdmissionregistrationV1beta1CollectionValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1beta1/validatingadmissionpolicies/{name}":{"get":{"description":"read the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"readAdmissionregistrationV1beta1ValidatingAdmissionPolicy","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"put":{"description":"replace the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"replaceAdmissionregistrationV1beta1ValidatingAdmissionPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"delete":{"description":"delete a ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"deleteAdmissionregistrationV1beta1ValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"patch":{"description":"partially update the specified ValidatingAdmissionPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"patchAdmissionregistrationV1beta1ValidatingAdmissionPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1beta1/validatingadmissionpolicies/{name}/status":{"get":{"description":"read status of the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"readAdmissionregistrationV1beta1ValidatingAdmissionPolicyStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"put":{"description":"replace status of the specified ValidatingAdmissionPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"replaceAdmissionregistrationV1beta1ValidatingAdmissionPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ValidatingAdmissionPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"patchAdmissionregistrationV1beta1ValidatingAdmissionPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1beta1/validatingadmissionpolicybindings":{"get":{"description":"list or watch objects of kind ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"listAdmissionregistrationV1beta1ValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"post":{"description":"create a ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"createAdmissionregistrationV1beta1ValidatingAdmissionPolicyBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"delete":{"description":"delete collection of ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"deleteAdmissionregistrationV1beta1CollectionValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1beta1/validatingadmissionpolicybindings/{name}":{"get":{"description":"read the specified ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"readAdmissionregistrationV1beta1ValidatingAdmissionPolicyBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"put":{"description":"replace the specified ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"replaceAdmissionregistrationV1beta1ValidatingAdmissionPolicyBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"delete":{"description":"delete a ValidatingAdmissionPolicyBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"deleteAdmissionregistrationV1beta1ValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"patch":{"description":"partially update the specified ValidatingAdmissionPolicyBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"patchAdmissionregistrationV1beta1ValidatingAdmissionPolicyBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicyBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/admissionregistration.k8s.io/v1beta1/watch/validatingadmissionpolicies":{"get":{"description":"watch individual changes to a list of ValidatingAdmissionPolicy. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"watchAdmissionregistrationV1beta1ValidatingAdmissionPolicyList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1beta1/watch/validatingadmissionpolicies/{name}":{"get":{"description":"watch changes to an object of kind ValidatingAdmissionPolicy. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"watchAdmissionregistrationV1beta1ValidatingAdmissionPolicy","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1beta1/watch/validatingadmissionpolicybindings":{"get":{"description":"watch individual changes to a list of ValidatingAdmissionPolicyBinding. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"watchAdmissionregistrationV1beta1ValidatingAdmissionPolicyBindingList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/admissionregistration.k8s.io/v1beta1/watch/validatingadmissionpolicybindings/{name}":{"get":{"description":"watch changes to an object of kind ValidatingAdmissionPolicyBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["admissionregistration_v1beta1"],"operationId":"watchAdmissionregistrationV1beta1ValidatingAdmissionPolicyBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ValidatingAdmissionPolicyBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apiextensions.crossplane.io/v1/compositeresourcedefinitions":{"get":{"description":"list objects of kind CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"listApiextensionsCrossplaneIoV1CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinitionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"post":{"description":"create a CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"createApiextensionsCrossplaneIoV1CompositeResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"delete":{"description":"delete collection of CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"deleteApiextensionsCrossplaneIoV1CollectionCompositeResourceDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1/compositeresourcedefinitions/{name}":{"get":{"description":"read the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"readApiextensionsCrossplaneIoV1CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"put":{"description":"replace the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"replaceApiextensionsCrossplaneIoV1CompositeResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"delete":{"description":"delete a CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"deleteApiextensionsCrossplaneIoV1CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"patch":{"description":"partially update the specified CompositeResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"patchApiextensionsCrossplaneIoV1CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CompositeResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1/compositeresourcedefinitions/{name}/status":{"get":{"description":"read status of the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"readApiextensionsCrossplaneIoV1CompositeResourceDefinitionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"put":{"description":"replace status of the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"replaceApiextensionsCrossplaneIoV1CompositeResourceDefinitionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"patch":{"description":"partially update status of the specified CompositeResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"patchApiextensionsCrossplaneIoV1CompositeResourceDefinitionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CompositeResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1/compositionrevisions":{"get":{"description":"list objects of kind CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"listApiextensionsCrossplaneIoV1CompositionRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevisionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"post":{"description":"create a CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"createApiextensionsCrossplaneIoV1CompositionRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"delete":{"description":"delete collection of CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"deleteApiextensionsCrossplaneIoV1CollectionCompositionRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1/compositionrevisions/{name}":{"get":{"description":"read the specified CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"readApiextensionsCrossplaneIoV1CompositionRevision","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"put":{"description":"replace the specified CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"replaceApiextensionsCrossplaneIoV1CompositionRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"delete":{"description":"delete a CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"deleteApiextensionsCrossplaneIoV1CompositionRevision","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"patch":{"description":"partially update the specified CompositionRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"patchApiextensionsCrossplaneIoV1CompositionRevision","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CompositionRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1/compositionrevisions/{name}/status":{"get":{"description":"read status of the specified CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"readApiextensionsCrossplaneIoV1CompositionRevisionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"put":{"description":"replace status of the specified CompositionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"replaceApiextensionsCrossplaneIoV1CompositionRevisionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"patch":{"description":"partially update status of the specified CompositionRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"patchApiextensionsCrossplaneIoV1CompositionRevisionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CompositionRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1/compositions":{"get":{"description":"list objects of kind Composition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"listApiextensionsCrossplaneIoV1Composition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}},"post":{"description":"create a Composition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"createApiextensionsCrossplaneIoV1Composition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}},"delete":{"description":"delete collection of Composition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"deleteApiextensionsCrossplaneIoV1CollectionComposition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1/compositions/{name}":{"get":{"description":"read the specified Composition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"readApiextensionsCrossplaneIoV1Composition","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}},"put":{"description":"replace the specified Composition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"replaceApiextensionsCrossplaneIoV1Composition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}},"delete":{"description":"delete a Composition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"deleteApiextensionsCrossplaneIoV1Composition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}},"patch":{"description":"partially update the specified Composition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1"],"operationId":"patchApiextensionsCrossplaneIoV1Composition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Composition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/managedresourceactivationpolicies":{"get":{"description":"list objects of kind ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"listApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"post":{"description":"create a ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"createApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"deleteApiextensionsCrossplaneIoV1alpha1CollectionManagedResourceActivationPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/managedresourceactivationpolicies/{name}":{"get":{"description":"read the specified ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"readApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"replaceApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"delete":{"description":"delete a ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"deleteApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified ManagedResourceActivationPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"patchApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ManagedResourceActivationPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/managedresourceactivationpolicies/{name}/status":{"get":{"description":"read status of the specified ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"readApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified ManagedResourceActivationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"replaceApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ManagedResourceActivationPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"patchApiextensionsCrossplaneIoV1alpha1ManagedResourceActivationPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ManagedResourceActivationPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/managedresourcedefinitions":{"get":{"description":"list objects of kind ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"listApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinitionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"post":{"description":"create a ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"createApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"delete":{"description":"delete collection of ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"deleteApiextensionsCrossplaneIoV1alpha1CollectionManagedResourceDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/managedresourcedefinitions/{name}":{"get":{"description":"read the specified ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"readApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinition","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"put":{"description":"replace the specified ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"replaceApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"delete":{"description":"delete a ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"deleteApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"patch":{"description":"partially update the specified ManagedResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"patchApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ManagedResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/managedresourcedefinitions/{name}/status":{"get":{"description":"read status of the specified ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"readApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinitionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"put":{"description":"replace status of the specified ManagedResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"replaceApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinitionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ManagedResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"patchApiextensionsCrossplaneIoV1alpha1ManagedResourceDefinitionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ManagedResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/usages":{"get":{"description":"list objects of kind Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"listApiextensionsCrossplaneIoV1alpha1Usage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.UsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"post":{"description":"create an Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"createApiextensionsCrossplaneIoV1alpha1Usage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"delete":{"description":"delete collection of Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"deleteApiextensionsCrossplaneIoV1alpha1CollectionUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/usages/{name}":{"get":{"description":"read the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"readApiextensionsCrossplaneIoV1alpha1Usage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"put":{"description":"replace the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"replaceApiextensionsCrossplaneIoV1alpha1Usage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"delete":{"description":"delete an Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"deleteApiextensionsCrossplaneIoV1alpha1Usage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"patch":{"description":"partially update the specified Usage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"patchApiextensionsCrossplaneIoV1alpha1Usage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Usage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1alpha1/usages/{name}/status":{"get":{"description":"read status of the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"readApiextensionsCrossplaneIoV1alpha1UsageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"put":{"description":"replace status of the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"replaceApiextensionsCrossplaneIoV1alpha1UsageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Usage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1alpha1"],"operationId":"patchApiextensionsCrossplaneIoV1alpha1UsageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Usage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1beta1/environmentconfigs":{"get":{"description":"list objects of kind EnvironmentConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"listApiextensionsCrossplaneIoV1beta1EnvironmentConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}},"post":{"description":"create an EnvironmentConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"createApiextensionsCrossplaneIoV1beta1EnvironmentConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}},"delete":{"description":"delete collection of EnvironmentConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"deleteApiextensionsCrossplaneIoV1beta1CollectionEnvironmentConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1beta1/environmentconfigs/{name}":{"get":{"description":"read the specified EnvironmentConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"readApiextensionsCrossplaneIoV1beta1EnvironmentConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}},"put":{"description":"replace the specified EnvironmentConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"replaceApiextensionsCrossplaneIoV1beta1EnvironmentConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}},"delete":{"description":"delete an EnvironmentConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"deleteApiextensionsCrossplaneIoV1beta1EnvironmentConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}},"patch":{"description":"partially update the specified EnvironmentConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"patchApiextensionsCrossplaneIoV1beta1EnvironmentConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EnvironmentConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1beta1/usages":{"get":{"description":"list objects of kind Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"listApiextensionsCrossplaneIoV1beta1Usage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.UsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"post":{"description":"create an Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"createApiextensionsCrossplaneIoV1beta1Usage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"delete":{"description":"delete collection of Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"deleteApiextensionsCrossplaneIoV1beta1CollectionUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1beta1/usages/{name}":{"get":{"description":"read the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"readApiextensionsCrossplaneIoV1beta1Usage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"put":{"description":"replace the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"replaceApiextensionsCrossplaneIoV1beta1Usage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"delete":{"description":"delete an Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"deleteApiextensionsCrossplaneIoV1beta1Usage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"patch":{"description":"partially update the specified Usage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"patchApiextensionsCrossplaneIoV1beta1Usage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Usage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v1beta1/usages/{name}/status":{"get":{"description":"read status of the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"readApiextensionsCrossplaneIoV1beta1UsageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"put":{"description":"replace status of the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"replaceApiextensionsCrossplaneIoV1beta1UsageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Usage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v1beta1"],"operationId":"patchApiextensionsCrossplaneIoV1beta1UsageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Usage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v2/compositeresourcedefinitions":{"get":{"description":"list objects of kind CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"listApiextensionsCrossplaneIoV2CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinitionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"post":{"description":"create a CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"createApiextensionsCrossplaneIoV2CompositeResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"delete":{"description":"delete collection of CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"deleteApiextensionsCrossplaneIoV2CollectionCompositeResourceDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v2/compositeresourcedefinitions/{name}":{"get":{"description":"read the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"readApiextensionsCrossplaneIoV2CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"put":{"description":"replace the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"replaceApiextensionsCrossplaneIoV2CompositeResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"delete":{"description":"delete a CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"deleteApiextensionsCrossplaneIoV2CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"patch":{"description":"partially update the specified CompositeResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"patchApiextensionsCrossplaneIoV2CompositeResourceDefinition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CompositeResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.crossplane.io/v2/compositeresourcedefinitions/{name}/status":{"get":{"description":"read status of the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"readApiextensionsCrossplaneIoV2CompositeResourceDefinitionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"put":{"description":"replace status of the specified CompositeResourceDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"replaceApiextensionsCrossplaneIoV2CompositeResourceDefinitionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"patch":{"description":"partially update status of the specified CompositeResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiextensionsCrossplaneIo_v2"],"operationId":"patchApiextensionsCrossplaneIoV2CompositeResourceDefinitionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CompositeResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions"],"operationId":"getApiextensionsAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/apiextensions.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"getApiextensionsV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/apiextensions.k8s.io/v1/customresourcedefinitions":{"get":{"description":"list or watch objects of kind CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"listApiextensionsV1CustomResourceDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"post":{"description":"create a CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"createApiextensionsV1CustomResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"delete":{"description":"delete collection of CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"deleteApiextensionsV1CollectionCustomResourceDefinition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}":{"get":{"description":"read the specified CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"readApiextensionsV1CustomResourceDefinition","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"put":{"description":"replace the specified CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"replaceApiextensionsV1CustomResourceDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"delete":{"description":"delete a CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"deleteApiextensionsV1CustomResourceDefinition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"patch":{"description":"partially update the specified CustomResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"patchApiextensionsV1CustomResourceDefinition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CustomResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.k8s.io/v1/customresourcedefinitions/{name}/status":{"get":{"description":"read status of the specified CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"readApiextensionsV1CustomResourceDefinitionStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"put":{"description":"replace status of the specified CustomResourceDefinition","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"replaceApiextensionsV1CustomResourceDefinitionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"patch":{"description":"partially update status of the specified CustomResourceDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"patchApiextensionsV1CustomResourceDefinitionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CustomResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiextensions.k8s.io/v1/watch/customresourcedefinitions":{"get":{"description":"watch individual changes to a list of CustomResourceDefinition. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"watchApiextensionsV1CustomResourceDefinitionList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apiextensions.k8s.io/v1/watch/customresourcedefinitions/{name}":{"get":{"description":"watch changes to an object of kind CustomResourceDefinition. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apiextensions_v1"],"operationId":"watchApiextensionsV1CustomResourceDefinition","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the CustomResourceDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apiregistration.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration"],"operationId":"getApiregistrationAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/apiregistration.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"getApiregistrationV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/apiregistration.k8s.io/v1/apiservices":{"get":{"description":"list or watch objects of kind APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"listApiregistrationV1APIService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"post":{"description":"create an APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"createApiregistrationV1APIService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"delete":{"description":"delete collection of APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"deleteApiregistrationV1CollectionAPIService","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiregistration.k8s.io/v1/apiservices/{name}":{"get":{"description":"read the specified APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"readApiregistrationV1APIService","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"put":{"description":"replace the specified APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"replaceApiregistrationV1APIService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"delete":{"description":"delete an APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"deleteApiregistrationV1APIService","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"patch":{"description":"partially update the specified APIService","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"patchApiregistrationV1APIService","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the APIService","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiregistration.k8s.io/v1/apiservices/{name}/status":{"get":{"description":"read status of the specified APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"readApiregistrationV1APIServiceStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"put":{"description":"replace status of the specified APIService","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"replaceApiregistrationV1APIServiceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"patch":{"description":"partially update status of the specified APIService","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"patchApiregistrationV1APIServiceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the APIService","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiregistration.k8s.io/v1/watch/apiservices":{"get":{"description":"watch individual changes to a list of APIService. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"watchApiregistrationV1APIServiceList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apiregistration.k8s.io/v1/watch/apiservices/{name}":{"get":{"description":"watch changes to an object of kind APIService. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apiregistration_v1"],"operationId":"watchApiregistrationV1APIService","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apiregistration.k8s.io","version":"v1","kind":"APIService"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the APIService","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apiserver.openshift.io/v1/apirequestcounts":{"get":{"description":"list objects of kind APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"listApiserverOpenshiftIoV1APIRequestCount","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCountList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"post":{"description":"create an APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"createApiserverOpenshiftIoV1APIRequestCount","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"delete":{"description":"delete collection of APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"deleteApiserverOpenshiftIoV1CollectionAPIRequestCount","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiserver.openshift.io/v1/apirequestcounts/{name}":{"get":{"description":"read the specified APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"readApiserverOpenshiftIoV1APIRequestCount","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"put":{"description":"replace the specified APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"replaceApiserverOpenshiftIoV1APIRequestCount","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"delete":{"description":"delete an APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"deleteApiserverOpenshiftIoV1APIRequestCount","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"patch":{"description":"partially update the specified APIRequestCount","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"patchApiserverOpenshiftIoV1APIRequestCount","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the APIRequestCount","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apiserver.openshift.io/v1/apirequestcounts/{name}/status":{"get":{"description":"read status of the specified APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"readApiserverOpenshiftIoV1APIRequestCountStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"put":{"description":"replace status of the specified APIRequestCount","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"replaceApiserverOpenshiftIoV1APIRequestCountStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"patch":{"description":"partially update status of the specified APIRequestCount","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["apiserverOpenshiftIo_v1"],"operationId":"patchApiserverOpenshiftIoV1APIRequestCountStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the APIRequestCount","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"getAppsOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v2"}},"401":{"description":"Unauthorized"}}}},"/apis/apps.openshift.io/v1/deploymentconfigs":{"get":{"description":"list or watch objects of kind DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"listAppsOpenshiftIoV1DeploymentConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps.openshift.io/v1/namespaces/{namespace}/deploymentconfigs":{"get":{"description":"list or watch objects of kind DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"listAppsOpenshiftIoV1NamespacedDeploymentConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"post":{"description":"create a DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"createAppsOpenshiftIoV1NamespacedDeploymentConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"delete":{"description":"delete collection of DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"deleteAppsOpenshiftIoV1CollectionNamespacedDeploymentConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v2"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps.openshift.io/v1/namespaces/{namespace}/deploymentconfigs/{name}":{"get":{"description":"read the specified DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"readAppsOpenshiftIoV1NamespacedDeploymentConfig","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"put":{"description":"replace the specified DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"replaceAppsOpenshiftIoV1NamespacedDeploymentConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"delete":{"description":"delete a DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"deleteAppsOpenshiftIoV1NamespacedDeploymentConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v2"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v2"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"patch":{"description":"partially update the specified DeploymentConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"patchAppsOpenshiftIoV1NamespacedDeploymentConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps.openshift.io/v1/namespaces/{namespace}/deploymentconfigs/{name}/instantiate":{"post":{"description":"create instantiate of a DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"createAppsOpenshiftIoV1NamespacedDeploymentConfigInstantiate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentRequest"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the DeploymentRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps.openshift.io/v1/namespaces/{namespace}/deploymentconfigs/{name}/log":{"get":{"description":"read log of the specified DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"readAppsOpenshiftIoV1NamespacedDeploymentConfigLog","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentLog"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentLog","version":"v1"}},"parameters":[{"$ref":"#/parameters/container-1GeXxFDC"},{"$ref":"#/parameters/follow-uBbRJU1P"},{"$ref":"#/parameters/limitBytes-zwd1RXuc"},{"uniqueItems":true,"type":"string","description":"name of the DeploymentLog","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/nowait-fRDq2lTB"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/previous-VzhNnb31"},{"$ref":"#/parameters/sinceSeconds-vE2NLdnP"},{"$ref":"#/parameters/tailLines-2fRTNzbP"},{"$ref":"#/parameters/timestamps-c17fW1w_"},{"$ref":"#/parameters/version-Co11t97x"}]},"/apis/apps.openshift.io/v1/namespaces/{namespace}/deploymentconfigs/{name}/rollback":{"post":{"description":"create rollback of a DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"createAppsOpenshiftIoV1NamespacedDeploymentConfigRollback","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigRollback"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigRollback"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigRollback"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigRollback"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfigRollback","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the DeploymentConfigRollback","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps.openshift.io/v1/namespaces/{namespace}/deploymentconfigs/{name}/scale":{"get":{"description":"read scale of the specified DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"readAppsOpenshiftIoV1NamespacedDeploymentConfigScale","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.extensions.v1beta1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"extensions","kind":"Scale","version":"v1beta1"}},"put":{"description":"replace scale of the specified DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"replaceAppsOpenshiftIoV1NamespacedDeploymentConfigScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.extensions.v1beta1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.extensions.v1beta1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.extensions.v1beta1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"extensions","kind":"Scale","version":"v1beta1"}},"patch":{"description":"partially update scale of the specified DeploymentConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"patchAppsOpenshiftIoV1NamespacedDeploymentConfigScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.extensions.v1beta1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.extensions.v1beta1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"extensions","kind":"Scale","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Scale","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps.openshift.io/v1/namespaces/{namespace}/deploymentconfigs/{name}/status":{"get":{"description":"read status of the specified DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"readAppsOpenshiftIoV1NamespacedDeploymentConfigStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"put":{"description":"replace status of the specified DeploymentConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"replaceAppsOpenshiftIoV1NamespacedDeploymentConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"patch":{"description":"partially update status of the specified DeploymentConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"patchAppsOpenshiftIoV1NamespacedDeploymentConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps.openshift.io/v1/watch/deploymentconfigs":{"get":{"description":"watch individual changes to a list of DeploymentConfig. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"watchAppsOpenshiftIoV1DeploymentConfigListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps.openshift.io/v1/watch/namespaces/{namespace}/deploymentconfigs":{"get":{"description":"watch individual changes to a list of DeploymentConfig. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"watchAppsOpenshiftIoV1NamespacedDeploymentConfigList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps.openshift.io/v1/watch/namespaces/{namespace}/deploymentconfigs/{name}":{"get":{"description":"watch changes to an object of kind DeploymentConfig. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["appsOpenshiftIo_v1"],"operationId":"watchAppsOpenshiftIoV1NamespacedDeploymentConfig","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the DeploymentConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps"],"operationId":"getAppsAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/apps/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"getAppsV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/apps/v1/controllerrevisions":{"get":{"description":"list or watch objects of kind ControllerRevision","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1ControllerRevisionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevisionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/daemonsets":{"get":{"description":"list or watch objects of kind DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1DaemonSetForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/deployments":{"get":{"description":"list or watch objects of kind Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1DeploymentForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DeploymentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/namespaces/{namespace}/controllerrevisions":{"get":{"description":"list or watch objects of kind ControllerRevision","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1NamespacedControllerRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevisionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"post":{"description":"create a ControllerRevision","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"createAppsV1NamespacedControllerRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"delete":{"description":"delete collection of ControllerRevision","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1CollectionNamespacedControllerRevision","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/controllerrevisions/{name}":{"get":{"description":"read the specified ControllerRevision","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedControllerRevision","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"put":{"description":"replace the specified ControllerRevision","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedControllerRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"delete":{"description":"delete a ControllerRevision","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1NamespacedControllerRevision","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"patch":{"description":"partially update the specified ControllerRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedControllerRevision","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ControllerRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/daemonsets":{"get":{"description":"list or watch objects of kind DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1NamespacedDaemonSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"post":{"description":"create a DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"createAppsV1NamespacedDaemonSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"delete":{"description":"delete collection of DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1CollectionNamespacedDaemonSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/daemonsets/{name}":{"get":{"description":"read the specified DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedDaemonSet","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"put":{"description":"replace the specified DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedDaemonSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"delete":{"description":"delete a DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1NamespacedDaemonSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"patch":{"description":"partially update the specified DaemonSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedDaemonSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DaemonSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/daemonsets/{name}/status":{"get":{"description":"read status of the specified DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedDaemonSetStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"put":{"description":"replace status of the specified DaemonSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedDaemonSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"patch":{"description":"partially update status of the specified DaemonSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedDaemonSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DaemonSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/deployments":{"get":{"description":"list or watch objects of kind Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1NamespacedDeployment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.DeploymentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"post":{"description":"create a Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"createAppsV1NamespacedDeployment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"delete":{"description":"delete collection of Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1CollectionNamespacedDeployment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/deployments/{name}":{"get":{"description":"read the specified Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedDeployment","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"put":{"description":"replace the specified Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedDeployment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"delete":{"description":"delete a Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1NamespacedDeployment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"patch":{"description":"partially update the specified Deployment","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedDeployment","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Deployment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/deployments/{name}/scale":{"get":{"description":"read scale of the specified Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedDeploymentScale","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"put":{"description":"replace scale of the specified Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedDeploymentScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"patch":{"description":"partially update scale of the specified Deployment","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedDeploymentScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Scale","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/deployments/{name}/status":{"get":{"description":"read status of the specified Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedDeploymentStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"put":{"description":"replace status of the specified Deployment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedDeploymentStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"patch":{"description":"partially update status of the specified Deployment","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedDeploymentStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Deployment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/replicasets":{"get":{"description":"list or watch objects of kind ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1NamespacedReplicaSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"post":{"description":"create a ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"createAppsV1NamespacedReplicaSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"delete":{"description":"delete collection of ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1CollectionNamespacedReplicaSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/replicasets/{name}":{"get":{"description":"read the specified ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedReplicaSet","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"put":{"description":"replace the specified ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedReplicaSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"delete":{"description":"delete a ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1NamespacedReplicaSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"patch":{"description":"partially update the specified ReplicaSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedReplicaSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReplicaSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/replicasets/{name}/scale":{"get":{"description":"read scale of the specified ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedReplicaSetScale","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"put":{"description":"replace scale of the specified ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedReplicaSetScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"patch":{"description":"partially update scale of the specified ReplicaSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedReplicaSetScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Scale","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/replicasets/{name}/status":{"get":{"description":"read status of the specified ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedReplicaSetStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"put":{"description":"replace status of the specified ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedReplicaSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"patch":{"description":"partially update status of the specified ReplicaSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedReplicaSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReplicaSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/statefulsets":{"get":{"description":"list or watch objects of kind StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1NamespacedStatefulSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"post":{"description":"create a StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"createAppsV1NamespacedStatefulSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"delete":{"description":"delete collection of StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1CollectionNamespacedStatefulSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/statefulsets/{name}":{"get":{"description":"read the specified StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedStatefulSet","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"put":{"description":"replace the specified StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedStatefulSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"delete":{"description":"delete a StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"deleteAppsV1NamespacedStatefulSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"patch":{"description":"partially update the specified StatefulSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedStatefulSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StatefulSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/scale":{"get":{"description":"read scale of the specified StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedStatefulSetScale","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"put":{"description":"replace scale of the specified StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedStatefulSetScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"patch":{"description":"partially update scale of the specified StatefulSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedStatefulSetScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"Scale","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Scale","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/namespaces/{namespace}/statefulsets/{name}/status":{"get":{"description":"read status of the specified StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"readAppsV1NamespacedStatefulSetStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"put":{"description":"replace status of the specified StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"replaceAppsV1NamespacedStatefulSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"patch":{"description":"partially update status of the specified StatefulSet","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["apps_v1"],"operationId":"patchAppsV1NamespacedStatefulSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StatefulSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/apps/v1/replicasets":{"get":{"description":"list or watch objects of kind ReplicaSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1ReplicaSetForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/statefulsets":{"get":{"description":"list or watch objects of kind StatefulSet","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"listAppsV1StatefulSetForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/controllerrevisions":{"get":{"description":"watch individual changes to a list of ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1ControllerRevisionListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/daemonsets":{"get":{"description":"watch individual changes to a list of DaemonSet. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1DaemonSetListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/deployments":{"get":{"description":"watch individual changes to a list of Deployment. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1DeploymentListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/controllerrevisions":{"get":{"description":"watch individual changes to a list of ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedControllerRevisionList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/controllerrevisions/{name}":{"get":{"description":"watch changes to an object of kind ControllerRevision. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedControllerRevision","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apps","kind":"ControllerRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ControllerRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/daemonsets":{"get":{"description":"watch individual changes to a list of DaemonSet. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedDaemonSetList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/daemonsets/{name}":{"get":{"description":"watch changes to an object of kind DaemonSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedDaemonSet","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apps","kind":"DaemonSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the DaemonSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/deployments":{"get":{"description":"watch individual changes to a list of Deployment. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedDeploymentList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/deployments/{name}":{"get":{"description":"watch changes to an object of kind Deployment. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedDeployment","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apps","kind":"Deployment","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Deployment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/replicasets":{"get":{"description":"watch individual changes to a list of ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedReplicaSetList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/replicasets/{name}":{"get":{"description":"watch changes to an object of kind ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedReplicaSet","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ReplicaSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/statefulsets":{"get":{"description":"watch individual changes to a list of StatefulSet. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedStatefulSetList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/namespaces/{namespace}/statefulsets/{name}":{"get":{"description":"watch changes to an object of kind StatefulSet. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1NamespacedStatefulSet","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the StatefulSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/replicasets":{"get":{"description":"watch individual changes to a list of ReplicaSet. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1ReplicaSetListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"ReplicaSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/apps/v1/watch/statefulsets":{"get":{"description":"watch individual changes to a list of StatefulSet. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["apps_v1"],"operationId":"watchAppsV1StatefulSetListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"apps","kind":"StatefulSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/applications":{"get":{"description":"list objects of kind Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ApplicationForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ApplicationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/componentdetectionqueries":{"get":{"description":"list objects of kind ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ComponentDetectionQueryForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQueryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/components":{"get":{"description":"list objects of kind Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ComponentForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/dependencyupdatechecks":{"get":{"description":"list objects of kind DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1DependencyUpdateCheckForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheckList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/deploymenttargetclaims":{"get":{"description":"list objects of kind DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1DeploymentTargetClaimForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaimList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/deploymenttargetclasses":{"get":{"description":"list objects of kind DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1DeploymentTargetClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"post":{"description":"create a DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1DeploymentTargetClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"delete":{"description":"delete collection of DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionDeploymentTargetClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/deploymenttargetclasses/{name}":{"get":{"description":"read the specified DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1DeploymentTargetClass","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"put":{"description":"replace the specified DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1DeploymentTargetClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"delete":{"description":"delete a DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1DeploymentTargetClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"patch":{"description":"partially update the specified DeploymentTargetClass","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1DeploymentTargetClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentTargetClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/deploymenttargetclasses/{name}/status":{"get":{"description":"read status of the specified DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1DeploymentTargetClassStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"put":{"description":"replace status of the specified DeploymentTargetClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1DeploymentTargetClassStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified DeploymentTargetClass","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1DeploymentTargetClassStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentTargetClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/deploymenttargets":{"get":{"description":"list objects of kind DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1DeploymentTargetForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/enterprisecontractpolicies":{"get":{"description":"list objects of kind EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1EnterpriseContractPolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/environments":{"get":{"description":"list objects of kind Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1EnvironmentForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnvironmentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/imagerepositories":{"get":{"description":"list objects of kind ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ImageRepositoryForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/integrationtestscenarios":{"get":{"description":"list objects of kind IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1IntegrationTestScenarioForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenarioList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/internalrequests":{"get":{"description":"list objects of kind InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1InternalRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/internalservicesconfigs":{"get":{"description":"list objects of kind InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1InternalServicesConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/applications":{"get":{"description":"list objects of kind Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ApplicationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"post":{"description":"create an Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedApplication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"delete":{"description":"delete collection of Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedApplication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/applications/{name}":{"get":{"description":"read the specified Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"put":{"description":"replace the specified Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedApplication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"delete":{"description":"delete an Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"patch":{"description":"partially update the specified Application","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Application","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/applications/{name}/status":{"get":{"description":"read status of the specified Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedApplicationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"put":{"description":"replace status of the specified Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedApplicationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Application","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedApplicationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Application","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/componentdetectionqueries":{"get":{"description":"list objects of kind ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedComponentDetectionQuery","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQueryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"post":{"description":"create a ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedComponentDetectionQuery","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"delete":{"description":"delete collection of ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedComponentDetectionQuery","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/componentdetectionqueries/{name}":{"get":{"description":"read the specified ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedComponentDetectionQuery","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"put":{"description":"replace the specified ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedComponentDetectionQuery","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"delete":{"description":"delete a ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedComponentDetectionQuery","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"patch":{"description":"partially update the specified ComponentDetectionQuery","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedComponentDetectionQuery","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ComponentDetectionQuery","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/componentdetectionqueries/{name}/status":{"get":{"description":"read status of the specified ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedComponentDetectionQueryStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"put":{"description":"replace status of the specified ComponentDetectionQuery","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedComponentDetectionQueryStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ComponentDetectionQuery","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedComponentDetectionQueryStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ComponentDetectionQuery","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/components":{"get":{"description":"list objects of kind Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedComponent","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"post":{"description":"create a Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedComponent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"delete":{"description":"delete collection of Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedComponent","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/components/{name}":{"get":{"description":"read the specified Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedComponent","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"put":{"description":"replace the specified Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedComponent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"delete":{"description":"delete a Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedComponent","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"patch":{"description":"partially update the specified Component","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedComponent","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Component","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/components/{name}/status":{"get":{"description":"read status of the specified Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedComponentStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"put":{"description":"replace status of the specified Component","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedComponentStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Component","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedComponentStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Component","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/dependencyupdatechecks":{"get":{"description":"list objects of kind DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheckList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"post":{"description":"create a DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"delete":{"description":"delete collection of DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedDependencyUpdateCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/dependencyupdatechecks/{name}":{"get":{"description":"read the specified DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheck","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"put":{"description":"replace the specified DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"delete":{"description":"delete a DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheck","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"patch":{"description":"partially update the specified DependencyUpdateCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheck","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DependencyUpdateCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/dependencyupdatechecks/{name}/status":{"get":{"description":"read status of the specified DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheckStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"put":{"description":"replace status of the specified DependencyUpdateCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheckStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified DependencyUpdateCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedDependencyUpdateCheckStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DependencyUpdateCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/deploymenttargetclaims":{"get":{"description":"list objects of kind DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaim","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaimList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"post":{"description":"create a DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"delete":{"description":"delete collection of DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedDeploymentTargetClaim","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/deploymenttargetclaims/{name}":{"get":{"description":"read the specified DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaim","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"put":{"description":"replace the specified DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"delete":{"description":"delete a DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaim","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"patch":{"description":"partially update the specified DeploymentTargetClaim","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaim","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentTargetClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/deploymenttargetclaims/{name}/status":{"get":{"description":"read status of the specified DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaimStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"put":{"description":"replace status of the specified DeploymentTargetClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaimStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified DeploymentTargetClaim","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedDeploymentTargetClaimStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentTargetClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/deploymenttargets":{"get":{"description":"list objects of kind DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedDeploymentTarget","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"post":{"description":"create a DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedDeploymentTarget","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"delete":{"description":"delete collection of DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedDeploymentTarget","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/deploymenttargets/{name}":{"get":{"description":"read the specified DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedDeploymentTarget","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"put":{"description":"replace the specified DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedDeploymentTarget","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"delete":{"description":"delete a DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedDeploymentTarget","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"patch":{"description":"partially update the specified DeploymentTarget","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedDeploymentTarget","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentTarget","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/deploymenttargets/{name}/status":{"get":{"description":"read status of the specified DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedDeploymentTargetStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"put":{"description":"replace status of the specified DeploymentTarget","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedDeploymentTargetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified DeploymentTarget","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedDeploymentTargetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentTarget","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/enterprisecontractpolicies":{"get":{"description":"list objects of kind EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"post":{"description":"create an EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedEnterpriseContractPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/enterprisecontractpolicies/{name}":{"get":{"description":"read the specified EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"delete":{"description":"delete an EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified EnterpriseContractPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EnterpriseContractPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/enterprisecontractpolicies/{name}/status":{"get":{"description":"read status of the specified EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified EnterpriseContractPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified EnterpriseContractPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedEnterpriseContractPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EnterpriseContractPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/environments":{"get":{"description":"list objects of kind Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedEnvironment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnvironmentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"post":{"description":"create an Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedEnvironment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"delete":{"description":"delete collection of Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedEnvironment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/environments/{name}":{"get":{"description":"read the specified Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedEnvironment","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"put":{"description":"replace the specified Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedEnvironment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"delete":{"description":"delete an Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedEnvironment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"patch":{"description":"partially update the specified Environment","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedEnvironment","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Environment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/environments/{name}/status":{"get":{"description":"read status of the specified Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedEnvironmentStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"put":{"description":"replace status of the specified Environment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedEnvironmentStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Environment","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedEnvironmentStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Environment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/imagerepositories":{"get":{"description":"list objects of kind ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedImageRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"post":{"description":"create an ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedImageRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"delete":{"description":"delete collection of ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedImageRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/imagerepositories/{name}":{"get":{"description":"read the specified ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedImageRepository","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"put":{"description":"replace the specified ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedImageRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"delete":{"description":"delete an ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedImageRepository","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"patch":{"description":"partially update the specified ImageRepository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedImageRepository","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageRepository","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/imagerepositories/{name}/status":{"get":{"description":"read status of the specified ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedImageRepositoryStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"put":{"description":"replace status of the specified ImageRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedImageRepositoryStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ImageRepository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedImageRepositoryStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageRepository","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/integrationtestscenarios":{"get":{"description":"list objects of kind IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenarioList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"post":{"description":"create an IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenario","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"delete":{"description":"delete collection of IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/integrationtestscenarios/{name}":{"get":{"description":"read the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"put":{"description":"replace the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenario","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"delete":{"description":"delete an IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"patch":{"description":"partially update the specified IntegrationTestScenario","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IntegrationTestScenario","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/integrationtestscenarios/{name}/status":{"get":{"description":"read status of the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenarioStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"put":{"description":"replace status of the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenarioStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified IntegrationTestScenario","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedIntegrationTestScenarioStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IntegrationTestScenario","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/internalrequests":{"get":{"description":"list objects of kind InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedInternalRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"post":{"description":"create an InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedInternalRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"delete":{"description":"delete collection of InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedInternalRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/internalrequests/{name}":{"get":{"description":"read the specified InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedInternalRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"put":{"description":"replace the specified InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedInternalRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"delete":{"description":"delete an InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedInternalRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"patch":{"description":"partially update the specified InternalRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedInternalRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InternalRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/internalrequests/{name}/status":{"get":{"description":"read status of the specified InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedInternalRequestStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"put":{"description":"replace status of the specified InternalRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedInternalRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified InternalRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedInternalRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InternalRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/internalservicesconfigs":{"get":{"description":"list objects of kind InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedInternalServicesConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"post":{"description":"create an InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedInternalServicesConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"delete":{"description":"delete collection of InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedInternalServicesConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/internalservicesconfigs/{name}":{"get":{"description":"read the specified InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedInternalServicesConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"put":{"description":"replace the specified InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedInternalServicesConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"delete":{"description":"delete an InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedInternalServicesConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"patch":{"description":"partially update the specified InternalServicesConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedInternalServicesConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InternalServicesConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/internalservicesconfigs/{name}/status":{"get":{"description":"read status of the specified InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedInternalServicesConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"put":{"description":"replace status of the specified InternalServicesConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedInternalServicesConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified InternalServicesConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedInternalServicesConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InternalServicesConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/promotionruns":{"get":{"description":"list objects of kind PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedPromotionRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"post":{"description":"create a PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedPromotionRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"delete":{"description":"delete collection of PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedPromotionRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/promotionruns/{name}":{"get":{"description":"read the specified PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedPromotionRun","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"put":{"description":"replace the specified PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedPromotionRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"delete":{"description":"delete a PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedPromotionRun","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"patch":{"description":"partially update the specified PromotionRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedPromotionRun","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PromotionRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/promotionruns/{name}/status":{"get":{"description":"read status of the specified PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedPromotionRunStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"put":{"description":"replace status of the specified PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedPromotionRunStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified PromotionRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedPromotionRunStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PromotionRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseplanadmissions":{"get":{"description":"list objects of kind ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmission","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmissionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"post":{"description":"create a ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmission","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"delete":{"description":"delete collection of ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedReleasePlanAdmission","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseplanadmissions/{name}":{"get":{"description":"read the specified ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmission","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"put":{"description":"replace the specified ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmission","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"delete":{"description":"delete a ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmission","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"patch":{"description":"partially update the specified ReleasePlanAdmission","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmission","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReleasePlanAdmission","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseplanadmissions/{name}/status":{"get":{"description":"read status of the specified ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmissionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"put":{"description":"replace status of the specified ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmissionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ReleasePlanAdmission","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedReleasePlanAdmissionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReleasePlanAdmission","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseplans":{"get":{"description":"list objects of kind ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedReleasePlan","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"post":{"description":"create a ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedReleasePlan","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"delete":{"description":"delete collection of ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedReleasePlan","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseplans/{name}":{"get":{"description":"read the specified ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedReleasePlan","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"put":{"description":"replace the specified ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedReleasePlan","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"delete":{"description":"delete a ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedReleasePlan","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"patch":{"description":"partially update the specified ReleasePlan","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedReleasePlan","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReleasePlan","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseplans/{name}/status":{"get":{"description":"read status of the specified ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedReleasePlanStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"put":{"description":"replace status of the specified ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedReleasePlanStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ReleasePlan","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedReleasePlanStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReleasePlan","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releases":{"get":{"description":"list objects of kind Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedRelease","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"post":{"description":"create a Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedRelease","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"delete":{"description":"delete collection of Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedRelease","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releases/{name}":{"get":{"description":"read the specified Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedRelease","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"put":{"description":"replace the specified Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedRelease","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"delete":{"description":"delete a Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedRelease","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"patch":{"description":"partially update the specified Release","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedRelease","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Release","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releases/{name}/status":{"get":{"description":"read status of the specified Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedReleaseStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"put":{"description":"replace status of the specified Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedReleaseStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Release","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedReleaseStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Release","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseserviceconfigs":{"get":{"description":"list objects of kind ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"post":{"description":"create a ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"delete":{"description":"delete collection of ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedReleaseServiceConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseserviceconfigs/{name}":{"get":{"description":"read the specified ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"put":{"description":"replace the specified ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"delete":{"description":"delete a ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"patch":{"description":"partially update the specified ReleaseServiceConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReleaseServiceConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/releaseserviceconfigs/{name}/status":{"get":{"description":"read status of the specified ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"put":{"description":"replace status of the specified ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ReleaseServiceConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedReleaseServiceConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ReleaseServiceConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/snapshotenvironmentbindings":{"get":{"description":"list objects of kind SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"post":{"description":"create a SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"delete":{"description":"delete collection of SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedSnapshotEnvironmentBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/snapshotenvironmentbindings/{name}":{"get":{"description":"read the specified SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBinding","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"put":{"description":"replace the specified SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"delete":{"description":"delete a SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"patch":{"description":"partially update the specified SnapshotEnvironmentBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SnapshotEnvironmentBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/snapshotenvironmentbindings/{name}/status":{"get":{"description":"read status of the specified SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBindingStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"put":{"description":"replace status of the specified SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBindingStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified SnapshotEnvironmentBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedSnapshotEnvironmentBindingStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SnapshotEnvironmentBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/snapshots":{"get":{"description":"list objects of kind Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1NamespacedSnapshot","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"post":{"description":"create a Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"createAppstudioRedhatComV1alpha1NamespacedSnapshot","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"delete":{"description":"delete collection of Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1CollectionNamespacedSnapshot","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/snapshots/{name}":{"get":{"description":"read the specified Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedSnapshot","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"put":{"description":"replace the specified Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedSnapshot","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"delete":{"description":"delete a Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"deleteAppstudioRedhatComV1alpha1NamespacedSnapshot","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"patch":{"description":"partially update the specified Snapshot","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedSnapshot","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Snapshot","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/namespaces/{namespace}/snapshots/{name}/status":{"get":{"description":"read status of the specified Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"readAppstudioRedhatComV1alpha1NamespacedSnapshotStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"put":{"description":"replace status of the specified Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"replaceAppstudioRedhatComV1alpha1NamespacedSnapshotStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Snapshot","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"patchAppstudioRedhatComV1alpha1NamespacedSnapshotStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Snapshot","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1alpha1/promotionruns":{"get":{"description":"list objects of kind PromotionRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1PromotionRunForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/releaseplanadmissions":{"get":{"description":"list objects of kind ReleasePlanAdmission","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ReleasePlanAdmissionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmissionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/releaseplans":{"get":{"description":"list objects of kind ReleasePlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ReleasePlanForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/releases":{"get":{"description":"list objects of kind Release","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ReleaseForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/releaseserviceconfigs":{"get":{"description":"list objects of kind ReleaseServiceConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1ReleaseServiceConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/snapshotenvironmentbindings":{"get":{"description":"list objects of kind SnapshotEnvironmentBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1SnapshotEnvironmentBindingForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1alpha1/snapshots":{"get":{"description":"list objects of kind Snapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1alpha1"],"operationId":"listAppstudioRedhatComV1alpha1SnapshotForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1beta1/integrationtestscenarios":{"get":{"description":"list objects of kind IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"listAppstudioRedhatComV1beta1IntegrationTestScenarioForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenarioList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1beta1/namespaces/{namespace}/integrationtestscenarios":{"get":{"description":"list objects of kind IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"listAppstudioRedhatComV1beta1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenarioList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"post":{"description":"create an IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"createAppstudioRedhatComV1beta1NamespacedIntegrationTestScenario","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"delete":{"description":"delete collection of IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"deleteAppstudioRedhatComV1beta1CollectionNamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta1/namespaces/{namespace}/integrationtestscenarios/{name}":{"get":{"description":"read the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"readAppstudioRedhatComV1beta1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"put":{"description":"replace the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"replaceAppstudioRedhatComV1beta1NamespacedIntegrationTestScenario","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"delete":{"description":"delete an IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"deleteAppstudioRedhatComV1beta1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"patch":{"description":"partially update the specified IntegrationTestScenario","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"patchAppstudioRedhatComV1beta1NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IntegrationTestScenario","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta1/namespaces/{namespace}/integrationtestscenarios/{name}/status":{"get":{"description":"read status of the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"readAppstudioRedhatComV1beta1NamespacedIntegrationTestScenarioStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"put":{"description":"replace status of the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"replaceAppstudioRedhatComV1beta1NamespacedIntegrationTestScenarioStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"patch":{"description":"partially update status of the specified IntegrationTestScenario","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta1"],"operationId":"patchAppstudioRedhatComV1beta1NamespacedIntegrationTestScenarioStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IntegrationTestScenario","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta2/componentgroups":{"get":{"description":"list objects of kind ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"listAppstudioRedhatComV1beta2ComponentGroupForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1beta2/integrationtestscenarios":{"get":{"description":"list objects of kind IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"listAppstudioRedhatComV1beta2IntegrationTestScenarioForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenarioList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/appstudio.redhat.com/v1beta2/namespaces/{namespace}/componentgroups":{"get":{"description":"list objects of kind ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"listAppstudioRedhatComV1beta2NamespacedComponentGroup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"post":{"description":"create a ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"createAppstudioRedhatComV1beta2NamespacedComponentGroup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"delete":{"description":"delete collection of ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"deleteAppstudioRedhatComV1beta2CollectionNamespacedComponentGroup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta2/namespaces/{namespace}/componentgroups/{name}":{"get":{"description":"read the specified ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"readAppstudioRedhatComV1beta2NamespacedComponentGroup","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"put":{"description":"replace the specified ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"replaceAppstudioRedhatComV1beta2NamespacedComponentGroup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"delete":{"description":"delete a ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"deleteAppstudioRedhatComV1beta2NamespacedComponentGroup","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"patch":{"description":"partially update the specified ComponentGroup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"patchAppstudioRedhatComV1beta2NamespacedComponentGroup","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ComponentGroup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta2/namespaces/{namespace}/componentgroups/{name}/status":{"get":{"description":"read status of the specified ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"readAppstudioRedhatComV1beta2NamespacedComponentGroupStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"put":{"description":"replace status of the specified ComponentGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"replaceAppstudioRedhatComV1beta2NamespacedComponentGroupStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"patch":{"description":"partially update status of the specified ComponentGroup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"patchAppstudioRedhatComV1beta2NamespacedComponentGroupStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ComponentGroup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta2/namespaces/{namespace}/integrationtestscenarios":{"get":{"description":"list objects of kind IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"listAppstudioRedhatComV1beta2NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenarioList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"post":{"description":"create an IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"createAppstudioRedhatComV1beta2NamespacedIntegrationTestScenario","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"delete":{"description":"delete collection of IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"deleteAppstudioRedhatComV1beta2CollectionNamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta2/namespaces/{namespace}/integrationtestscenarios/{name}":{"get":{"description":"read the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"readAppstudioRedhatComV1beta2NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"put":{"description":"replace the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"replaceAppstudioRedhatComV1beta2NamespacedIntegrationTestScenario","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"delete":{"description":"delete an IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"deleteAppstudioRedhatComV1beta2NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"patch":{"description":"partially update the specified IntegrationTestScenario","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"patchAppstudioRedhatComV1beta2NamespacedIntegrationTestScenario","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IntegrationTestScenario","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/appstudio.redhat.com/v1beta2/namespaces/{namespace}/integrationtestscenarios/{name}/status":{"get":{"description":"read status of the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"readAppstudioRedhatComV1beta2NamespacedIntegrationTestScenarioStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"put":{"description":"replace status of the specified IntegrationTestScenario","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"replaceAppstudioRedhatComV1beta2NamespacedIntegrationTestScenarioStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"patch":{"description":"partially update status of the specified IntegrationTestScenario","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["appstudioRedhatCom_v1beta2"],"operationId":"patchAppstudioRedhatComV1beta2NamespacedIntegrationTestScenarioStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IntegrationTestScenario","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/analysisruns":{"get":{"description":"list objects of kind AnalysisRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1AnalysisRunForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/analysistemplates":{"get":{"description":"list objects of kind AnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1AnalysisTemplateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/applications":{"get":{"description":"list objects of kind Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1ApplicationForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/applicationsets":{"get":{"description":"list objects of kind ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1ApplicationSetForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/appprojects":{"get":{"description":"list objects of kind AppProject","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1AppProjectForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/argocds":{"get":{"description":"list objects of kind ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1ArgoCDForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCDList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/clusteranalysistemplates":{"get":{"description":"list objects of kind ClusterAnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1ClusterAnalysisTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}},"post":{"description":"create a ClusterAnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1ClusterAnalysisTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterAnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionClusterAnalysisTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/clusteranalysistemplates/{name}":{"get":{"description":"read the specified ClusterAnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1ClusterAnalysisTemplate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterAnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1ClusterAnalysisTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}},"delete":{"description":"delete a ClusterAnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1ClusterAnalysisTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterAnalysisTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1ClusterAnalysisTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterAnalysisTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/experiments":{"get":{"description":"list objects of kind Experiment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1ExperimentForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ExperimentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/analysisruns":{"get":{"description":"list objects of kind AnalysisRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedAnalysisRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"post":{"description":"create an AnalysisRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedAnalysisRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"delete":{"description":"delete collection of AnalysisRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedAnalysisRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/analysisruns/{name}":{"get":{"description":"read the specified AnalysisRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedAnalysisRun","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"put":{"description":"replace the specified AnalysisRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedAnalysisRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"delete":{"description":"delete an AnalysisRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedAnalysisRun","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"patch":{"description":"partially update the specified AnalysisRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedAnalysisRun","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AnalysisRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/analysistemplates":{"get":{"description":"list objects of kind AnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedAnalysisTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"post":{"description":"create an AnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedAnalysisTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"delete":{"description":"delete collection of AnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedAnalysisTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/analysistemplates/{name}":{"get":{"description":"read the specified AnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedAnalysisTemplate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"put":{"description":"replace the specified AnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedAnalysisTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"delete":{"description":"delete an AnalysisTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedAnalysisTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"patch":{"description":"partially update the specified AnalysisTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedAnalysisTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AnalysisTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/applications":{"get":{"description":"list objects of kind Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"post":{"description":"create an Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedApplication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"delete":{"description":"delete collection of Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedApplication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/applications/{name}":{"get":{"description":"read the specified Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"put":{"description":"replace the specified Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedApplication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"delete":{"description":"delete an Application","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"patch":{"description":"partially update the specified Application","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedApplication","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Application","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/applicationsets":{"get":{"description":"list objects of kind ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedApplicationSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"post":{"description":"create an ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedApplicationSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"delete":{"description":"delete collection of ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedApplicationSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/applicationsets/{name}":{"get":{"description":"read the specified ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedApplicationSet","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"put":{"description":"replace the specified ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedApplicationSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"delete":{"description":"delete an ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedApplicationSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"patch":{"description":"partially update the specified ApplicationSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedApplicationSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ApplicationSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/applicationsets/{name}/status":{"get":{"description":"read status of the specified ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedApplicationSetStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"put":{"description":"replace status of the specified ApplicationSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedApplicationSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ApplicationSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedApplicationSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ApplicationSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/appprojects":{"get":{"description":"list objects of kind AppProject","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedAppProject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"post":{"description":"create an AppProject","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedAppProject","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"delete":{"description":"delete collection of AppProject","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedAppProject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/appprojects/{name}":{"get":{"description":"read the specified AppProject","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedAppProject","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"put":{"description":"replace the specified AppProject","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedAppProject","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"delete":{"description":"delete an AppProject","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedAppProject","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"patch":{"description":"partially update the specified AppProject","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedAppProject","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AppProject","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/argocds":{"get":{"description":"list objects of kind ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCDList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"post":{"description":"create an ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedArgoCD","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"delete":{"description":"delete collection of ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedArgoCD","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/argocds/{name}":{"get":{"description":"read the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"put":{"description":"replace the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedArgoCD","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"delete":{"description":"delete an ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"patch":{"description":"partially update the specified ArgoCD","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ArgoCD","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/argocds/{name}/status":{"get":{"description":"read status of the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedArgoCDStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"put":{"description":"replace status of the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedArgoCDStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ArgoCD","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedArgoCDStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ArgoCD","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/experiments":{"get":{"description":"list objects of kind Experiment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedExperiment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.ExperimentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"post":{"description":"create an Experiment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedExperiment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"delete":{"description":"delete collection of Experiment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedExperiment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/experiments/{name}":{"get":{"description":"read the specified Experiment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedExperiment","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"put":{"description":"replace the specified Experiment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedExperiment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"delete":{"description":"delete an Experiment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedExperiment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"patch":{"description":"partially update the specified Experiment","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedExperiment","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Experiment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/notificationsconfigurations":{"get":{"description":"list objects of kind NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedNotificationsConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"post":{"description":"create a NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedNotificationsConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"delete":{"description":"delete collection of NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedNotificationsConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/notificationsconfigurations/{name}":{"get":{"description":"read the specified NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedNotificationsConfiguration","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"put":{"description":"replace the specified NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedNotificationsConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"delete":{"description":"delete a NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedNotificationsConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"patch":{"description":"partially update the specified NotificationsConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedNotificationsConfiguration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NotificationsConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/notificationsconfigurations/{name}/status":{"get":{"description":"read status of the specified NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedNotificationsConfigurationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"put":{"description":"replace status of the specified NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedNotificationsConfigurationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified NotificationsConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedNotificationsConfigurationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NotificationsConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/rolloutmanagers":{"get":{"description":"list objects of kind RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedRolloutManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"post":{"description":"create a RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedRolloutManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"delete":{"description":"delete collection of RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedRolloutManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/rolloutmanagers/{name}":{"get":{"description":"read the specified RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedRolloutManager","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"put":{"description":"replace the specified RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedRolloutManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"delete":{"description":"delete a RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedRolloutManager","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"patch":{"description":"partially update the specified RolloutManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedRolloutManager","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RolloutManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/rolloutmanagers/{name}/status":{"get":{"description":"read status of the specified RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedRolloutManagerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"put":{"description":"replace status of the specified RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedRolloutManagerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified RolloutManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedRolloutManagerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RolloutManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/rollouts":{"get":{"description":"list objects of kind Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NamespacedRollout","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"post":{"description":"create a Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"createArgoprojIoV1alpha1NamespacedRollout","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"delete":{"description":"delete collection of Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1CollectionNamespacedRollout","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/rollouts/{name}":{"get":{"description":"read the specified Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedRollout","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"put":{"description":"replace the specified Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedRollout","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"delete":{"description":"delete a Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"deleteArgoprojIoV1alpha1NamespacedRollout","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"patch":{"description":"partially update the specified Rollout","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedRollout","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Rollout","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/rollouts/{name}/scale":{"get":{"description":"read scale of the specified Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedRolloutScale","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"put":{"description":"replace scale of the specified Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedRolloutScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"patch":{"description":"partially update scale of the specified Rollout","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedRolloutScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Rollout","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/namespaces/{namespace}/rollouts/{name}/status":{"get":{"description":"read status of the specified Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"readArgoprojIoV1alpha1NamespacedRolloutStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"put":{"description":"replace status of the specified Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"replaceArgoprojIoV1alpha1NamespacedRolloutStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Rollout","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"patchArgoprojIoV1alpha1NamespacedRolloutStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Rollout","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1alpha1/notificationsconfigurations":{"get":{"description":"list objects of kind NotificationsConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1NotificationsConfigurationForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/rolloutmanagers":{"get":{"description":"list objects of kind RolloutManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1RolloutManagerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1alpha1/rollouts":{"get":{"description":"list objects of kind Rollout","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1alpha1"],"operationId":"listArgoprojIoV1alpha1RolloutForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1beta1/argocds":{"get":{"description":"list objects of kind ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"listArgoprojIoV1beta1ArgoCDForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCDList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/argoproj.io/v1beta1/namespaces/{namespace}/argocds":{"get":{"description":"list objects of kind ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"listArgoprojIoV1beta1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCDList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"post":{"description":"create an ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"createArgoprojIoV1beta1NamespacedArgoCD","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"delete":{"description":"delete collection of ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"deleteArgoprojIoV1beta1CollectionNamespacedArgoCD","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1beta1/namespaces/{namespace}/argocds/{name}":{"get":{"description":"read the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"readArgoprojIoV1beta1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"put":{"description":"replace the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"replaceArgoprojIoV1beta1NamespacedArgoCD","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"delete":{"description":"delete an ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"deleteArgoprojIoV1beta1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"patch":{"description":"partially update the specified ArgoCD","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"patchArgoprojIoV1beta1NamespacedArgoCD","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ArgoCD","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/argoproj.io/v1beta1/namespaces/{namespace}/argocds/{name}/status":{"get":{"description":"read status of the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"readArgoprojIoV1beta1NamespacedArgoCDStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"put":{"description":"replace status of the specified ArgoCD","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"replaceArgoprojIoV1beta1NamespacedArgoCDStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ArgoCD","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["argoprojIo_v1beta1"],"operationId":"patchArgoprojIoV1beta1NamespacedArgoCDStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ArgoCD","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authentication.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authentication"],"operationId":"getAuthenticationAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/authentication.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authentication_v1"],"operationId":"getAuthenticationV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/authentication.k8s.io/v1/selfsubjectreviews":{"post":{"description":"create a SelfSubjectReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authentication_v1"],"operationId":"createAuthenticationV1SelfSubjectReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.SelfSubjectReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.SelfSubjectReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.SelfSubjectReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.SelfSubjectReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authentication.k8s.io","kind":"SelfSubjectReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authentication.k8s.io/v1/tokenreviews":{"post":{"description":"create a TokenReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authentication_v1"],"operationId":"createAuthenticationV1TokenReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authentication.k8s.io","kind":"TokenReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorization"],"operationId":"getAuthorizationAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/authorization.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorization_v1"],"operationId":"getAuthorizationV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/authorization.k8s.io/v1/namespaces/{namespace}/localsubjectaccessreviews":{"post":{"description":"create a LocalSubjectAccessReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorization_v1"],"operationId":"createAuthorizationV1NamespacedLocalSubjectAccessReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.LocalSubjectAccessReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.LocalSubjectAccessReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.LocalSubjectAccessReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.LocalSubjectAccessReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.k8s.io","kind":"LocalSubjectAccessReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.k8s.io/v1/selfsubjectaccessreviews":{"post":{"description":"create a SelfSubjectAccessReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorization_v1"],"operationId":"createAuthorizationV1SelfSubjectAccessReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectAccessReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectAccessReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectAccessReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectAccessReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.k8s.io","kind":"SelfSubjectAccessReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.k8s.io/v1/selfsubjectrulesreviews":{"post":{"description":"create a SelfSubjectRulesReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorization_v1"],"operationId":"createAuthorizationV1SelfSubjectRulesReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectRulesReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectRulesReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectRulesReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectRulesReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.k8s.io","kind":"SelfSubjectRulesReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.k8s.io/v1/subjectaccessreviews":{"post":{"description":"create a SubjectAccessReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorization_v1"],"operationId":"createAuthorizationV1SubjectAccessReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.k8s.io","kind":"SubjectAccessReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"getAuthorizationOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v3"}},"401":{"description":"Unauthorized"}}}},"/apis/authorization.openshift.io/v1/clusterrolebindings":{"get":{"description":"list objects of kind ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1ClusterRoleBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRoleBinding","version":"v1"}},"post":{"description":"create a ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1ClusterRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/clusterrolebindings/{name}":{"get":{"description":"read the specified ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"readAuthorizationOpenshiftIoV1ClusterRoleBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRoleBinding","version":"v1"}},"put":{"description":"replace the specified ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"replaceAuthorizationOpenshiftIoV1ClusterRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRoleBinding","version":"v1"}},"delete":{"description":"delete a ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"deleteAuthorizationOpenshiftIoV1ClusterRoleBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRoleBinding","version":"v1"}},"patch":{"description":"partially update the specified ClusterRoleBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"patchAuthorizationOpenshiftIoV1ClusterRoleBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRoleBinding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterRoleBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/clusterroles":{"get":{"description":"list objects of kind ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1ClusterRole","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRole","version":"v1"}},"post":{"description":"create a ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1ClusterRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRole","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/clusterroles/{name}":{"get":{"description":"read the specified ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"readAuthorizationOpenshiftIoV1ClusterRole","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRole","version":"v1"}},"put":{"description":"replace the specified ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"replaceAuthorizationOpenshiftIoV1ClusterRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRole","version":"v1"}},"delete":{"description":"delete a ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"deleteAuthorizationOpenshiftIoV1ClusterRole","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRole","version":"v1"}},"patch":{"description":"partially update the specified ClusterRole","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"patchAuthorizationOpenshiftIoV1ClusterRole","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ClusterRole","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterRole","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/localresourceaccessreviews":{"post":{"description":"create a LocalResourceAccessReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1NamespacedLocalResourceAccessReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalResourceAccessReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalResourceAccessReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalResourceAccessReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalResourceAccessReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"LocalResourceAccessReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/localsubjectaccessreviews":{"post":{"description":"create a LocalSubjectAccessReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1NamespacedLocalSubjectAccessReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalSubjectAccessReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalSubjectAccessReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalSubjectAccessReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.LocalSubjectAccessReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"LocalSubjectAccessReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/rolebindingrestrictions":{"get":{"description":"list objects of kind RoleBindingRestriction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1NamespacedRoleBindingRestriction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestrictionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"post":{"description":"create a RoleBindingRestriction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1NamespacedRoleBindingRestriction","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"delete":{"description":"delete collection of RoleBindingRestriction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"deleteAuthorizationOpenshiftIoV1CollectionNamespacedRoleBindingRestriction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/rolebindingrestrictions/{name}":{"get":{"description":"read the specified RoleBindingRestriction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"readAuthorizationOpenshiftIoV1NamespacedRoleBindingRestriction","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"put":{"description":"replace the specified RoleBindingRestriction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"replaceAuthorizationOpenshiftIoV1NamespacedRoleBindingRestriction","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"delete":{"description":"delete a RoleBindingRestriction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"deleteAuthorizationOpenshiftIoV1NamespacedRoleBindingRestriction","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"patch":{"description":"partially update the specified RoleBindingRestriction","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"patchAuthorizationOpenshiftIoV1NamespacedRoleBindingRestriction","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RoleBindingRestriction","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/rolebindings":{"get":{"description":"list objects of kind RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1NamespacedRoleBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}},"post":{"description":"create a RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1NamespacedRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/rolebindings/{name}":{"get":{"description":"read the specified RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"readAuthorizationOpenshiftIoV1NamespacedRoleBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}},"put":{"description":"replace the specified RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"replaceAuthorizationOpenshiftIoV1NamespacedRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}},"delete":{"description":"delete a RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"deleteAuthorizationOpenshiftIoV1NamespacedRoleBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}},"patch":{"description":"partially update the specified RoleBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"patchAuthorizationOpenshiftIoV1NamespacedRoleBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RoleBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/roles":{"get":{"description":"list objects of kind Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1NamespacedRole","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"Role","version":"v1"}},"post":{"description":"create a Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1NamespacedRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"Role","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/roles/{name}":{"get":{"description":"read the specified Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"readAuthorizationOpenshiftIoV1NamespacedRole","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"Role","version":"v1"}},"put":{"description":"replace the specified Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"replaceAuthorizationOpenshiftIoV1NamespacedRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"Role","version":"v1"}},"delete":{"description":"delete a Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"deleteAuthorizationOpenshiftIoV1NamespacedRole","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"Role","version":"v1"}},"patch":{"description":"partially update the specified Role","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"patchAuthorizationOpenshiftIoV1NamespacedRole","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"Role","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Role","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/selfsubjectrulesreviews":{"post":{"description":"create a SelfSubjectRulesReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1NamespacedSelfSubjectRulesReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SelfSubjectRulesReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SelfSubjectRulesReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SelfSubjectRulesReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SelfSubjectRulesReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"SelfSubjectRulesReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/namespaces/{namespace}/subjectrulesreviews":{"post":{"description":"create a SubjectRulesReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1NamespacedSubjectRulesReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectRulesReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectRulesReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectRulesReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectRulesReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"SubjectRulesReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/resourceaccessreviews":{"post":{"description":"create a ResourceAccessReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1ResourceAccessReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ResourceAccessReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ResourceAccessReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ResourceAccessReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ResourceAccessReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"ResourceAccessReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/authorization.openshift.io/v1/rolebindingrestrictions":{"get":{"description":"list objects of kind RoleBindingRestriction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1RoleBindingRestrictionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestrictionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/authorization.openshift.io/v1/rolebindings":{"get":{"description":"list objects of kind RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1RoleBindingForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/authorization.openshift.io/v1/roles":{"get":{"description":"list objects of kind Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"listAuthorizationOpenshiftIoV1RoleForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"Role","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/authorization.openshift.io/v1/subjectaccessreviews":{"post":{"description":"create a SubjectAccessReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["authorizationOpenshiftIo_v1"],"operationId":"createAuthorizationOpenshiftIoV1SubjectAccessReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectAccessReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectAccessReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectAccessReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectAccessReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authorization.openshift.io","kind":"SubjectAccessReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/autoscaling/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling"],"operationId":"getAutoscalingAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/autoscaling/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"getAutoscalingV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/autoscaling/v1/horizontalpodautoscalers":{"get":{"description":"list or watch objects of kind HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"listAutoscalingV1HorizontalPodAutoscalerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscalerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers":{"get":{"description":"list or watch objects of kind HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"listAutoscalingV1NamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscalerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"post":{"description":"create a HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"createAutoscalingV1NamespacedHorizontalPodAutoscaler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"delete":{"description":"delete collection of HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"deleteAutoscalingV1CollectionNamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}":{"get":{"description":"read the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"readAutoscalingV1NamespacedHorizontalPodAutoscaler","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"put":{"description":"replace the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"replaceAutoscalingV1NamespacedHorizontalPodAutoscaler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"delete":{"description":"delete a HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"deleteAutoscalingV1NamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"patch":{"description":"partially update the specified HorizontalPodAutoscaler","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"patchAutoscalingV1NamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HorizontalPodAutoscaler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/autoscaling/v1/namespaces/{namespace}/horizontalpodautoscalers/{name}/status":{"get":{"description":"read status of the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"readAutoscalingV1NamespacedHorizontalPodAutoscalerStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"put":{"description":"replace status of the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"replaceAutoscalingV1NamespacedHorizontalPodAutoscalerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"patch":{"description":"partially update status of the specified HorizontalPodAutoscaler","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"patchAutoscalingV1NamespacedHorizontalPodAutoscalerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HorizontalPodAutoscaler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/autoscaling/v1/watch/horizontalpodautoscalers":{"get":{"description":"watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"watchAutoscalingV1HorizontalPodAutoscalerListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers":{"get":{"description":"watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"watchAutoscalingV1NamespacedHorizontalPodAutoscalerList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/autoscaling/v1/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}":{"get":{"description":"watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v1"],"operationId":"watchAutoscalingV1NamespacedHorizontalPodAutoscaler","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the HorizontalPodAutoscaler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/autoscaling/v2/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"getAutoscalingV2APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/autoscaling/v2/horizontalpodautoscalers":{"get":{"description":"list or watch objects of kind HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"listAutoscalingV2HorizontalPodAutoscalerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers":{"get":{"description":"list or watch objects of kind HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"listAutoscalingV2NamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"post":{"description":"create a HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"createAutoscalingV2NamespacedHorizontalPodAutoscaler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"delete":{"description":"delete collection of HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"deleteAutoscalingV2CollectionNamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}":{"get":{"description":"read the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"readAutoscalingV2NamespacedHorizontalPodAutoscaler","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"put":{"description":"replace the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"replaceAutoscalingV2NamespacedHorizontalPodAutoscaler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"delete":{"description":"delete a HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"deleteAutoscalingV2NamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"patch":{"description":"partially update the specified HorizontalPodAutoscaler","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"patchAutoscalingV2NamespacedHorizontalPodAutoscaler","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HorizontalPodAutoscaler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/autoscaling/v2/namespaces/{namespace}/horizontalpodautoscalers/{name}/status":{"get":{"description":"read status of the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"readAutoscalingV2NamespacedHorizontalPodAutoscalerStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"put":{"description":"replace status of the specified HorizontalPodAutoscaler","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"replaceAutoscalingV2NamespacedHorizontalPodAutoscalerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"patch":{"description":"partially update status of the specified HorizontalPodAutoscaler","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"patchAutoscalingV2NamespacedHorizontalPodAutoscalerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HorizontalPodAutoscaler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/autoscaling/v2/watch/horizontalpodautoscalers":{"get":{"description":"watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"watchAutoscalingV2HorizontalPodAutoscalerListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/autoscaling/v2/watch/namespaces/{namespace}/horizontalpodautoscalers":{"get":{"description":"watch individual changes to a list of HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"watchAutoscalingV2NamespacedHorizontalPodAutoscalerList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/autoscaling/v2/watch/namespaces/{namespace}/horizontalpodautoscalers/{name}":{"get":{"description":"watch changes to an object of kind HorizontalPodAutoscaler. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["autoscaling_v2"],"operationId":"watchAutoscalingV2NamespacedHorizontalPodAutoscaler","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the HorizontalPodAutoscaler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch"],"operationId":"getBatchAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/batch/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"getBatchV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/batch/v1/cronjobs":{"get":{"description":"list or watch objects of kind CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"listBatchV1CronJobForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJobList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/v1/jobs":{"get":{"description":"list or watch objects of kind Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"listBatchV1JobForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.JobList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/v1/namespaces/{namespace}/cronjobs":{"get":{"description":"list or watch objects of kind CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"listBatchV1NamespacedCronJob","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJobList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"post":{"description":"create a CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"createBatchV1NamespacedCronJob","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"delete":{"description":"delete collection of CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"deleteBatchV1CollectionNamespacedCronJob","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/batch/v1/namespaces/{namespace}/cronjobs/{name}":{"get":{"description":"read the specified CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"readBatchV1NamespacedCronJob","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"put":{"description":"replace the specified CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"replaceBatchV1NamespacedCronJob","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"delete":{"description":"delete a CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"deleteBatchV1NamespacedCronJob","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"patch":{"description":"partially update the specified CronJob","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"patchBatchV1NamespacedCronJob","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CronJob","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/batch/v1/namespaces/{namespace}/cronjobs/{name}/status":{"get":{"description":"read status of the specified CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"readBatchV1NamespacedCronJobStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"put":{"description":"replace status of the specified CronJob","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"replaceBatchV1NamespacedCronJobStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"patch":{"description":"partially update status of the specified CronJob","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"patchBatchV1NamespacedCronJobStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CronJob","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/batch/v1/namespaces/{namespace}/jobs":{"get":{"description":"list or watch objects of kind Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"listBatchV1NamespacedJob","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.JobList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"post":{"description":"create a Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"createBatchV1NamespacedJob","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"delete":{"description":"delete collection of Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"deleteBatchV1CollectionNamespacedJob","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/batch/v1/namespaces/{namespace}/jobs/{name}":{"get":{"description":"read the specified Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"readBatchV1NamespacedJob","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"put":{"description":"replace the specified Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"replaceBatchV1NamespacedJob","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"delete":{"description":"delete a Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"deleteBatchV1NamespacedJob","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"patch":{"description":"partially update the specified Job","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"patchBatchV1NamespacedJob","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Job","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/batch/v1/namespaces/{namespace}/jobs/{name}/status":{"get":{"description":"read status of the specified Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"readBatchV1NamespacedJobStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"put":{"description":"replace status of the specified Job","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"replaceBatchV1NamespacedJobStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"patch":{"description":"partially update status of the specified Job","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["batch_v1"],"operationId":"patchBatchV1NamespacedJobStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Job","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/batch/v1/watch/cronjobs":{"get":{"description":"watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"watchBatchV1CronJobListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/v1/watch/jobs":{"get":{"description":"watch individual changes to a list of Job. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"watchBatchV1JobListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/v1/watch/namespaces/{namespace}/cronjobs":{"get":{"description":"watch individual changes to a list of CronJob. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"watchBatchV1NamespacedCronJobList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/v1/watch/namespaces/{namespace}/cronjobs/{name}":{"get":{"description":"watch changes to an object of kind CronJob. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"watchBatchV1NamespacedCronJob","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"batch","kind":"CronJob","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the CronJob","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/v1/watch/namespaces/{namespace}/jobs":{"get":{"description":"watch individual changes to a list of Job. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"watchBatchV1NamespacedJobList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/batch/v1/watch/namespaces/{namespace}/jobs/{name}":{"get":{"description":"watch changes to an object of kind Job. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["batch_v1"],"operationId":"watchBatchV1NamespacedJob","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"batch","kind":"Job","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Job","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"getBuildOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v4"}},"401":{"description":"Unauthorized"}}}},"/apis/build.openshift.io/v1/buildconfigs":{"get":{"description":"list or watch objects of kind BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"listBuildOpenshiftIoV1BuildConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/builds":{"get":{"description":"list or watch objects of kind Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"listBuildOpenshiftIoV1BuildForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/buildconfigs":{"get":{"description":"list or watch objects of kind BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"listBuildOpenshiftIoV1NamespacedBuildConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"post":{"description":"create a BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"createBuildOpenshiftIoV1NamespacedBuildConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"delete":{"description":"delete collection of BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"deleteBuildOpenshiftIoV1CollectionNamespacedBuildConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v4"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/buildconfigs/{name}":{"get":{"description":"read the specified BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"readBuildOpenshiftIoV1NamespacedBuildConfig","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"put":{"description":"replace the specified BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"replaceBuildOpenshiftIoV1NamespacedBuildConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"delete":{"description":"delete a BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"deleteBuildOpenshiftIoV1NamespacedBuildConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v4"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v4"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"patch":{"description":"partially update the specified BuildConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"patchBuildOpenshiftIoV1NamespacedBuildConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the BuildConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/buildconfigs/{name}/instantiate":{"post":{"description":"create instantiate of a BuildConfig","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"createBuildOpenshiftIoV1NamespacedBuildConfigInstantiate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildRequest"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the BuildRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/buildconfigs/{name}/instantiatebinary":{"post":{"description":"connect POST requests to instantiatebinary of BuildConfig","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"connectBuildOpenshiftIoV1PostNamespacedBuildConfigInstantiatebinary","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BinaryBuildRequestOptions","version":"v1"}},"parameters":[{"$ref":"#/parameters/asFile-OcRrrLDo"},{"uniqueItems":true,"type":"string","description":"name of the BinaryBuildRequestOptions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/revision.authorEmail-AGO6Wd6i"},{"$ref":"#/parameters/revision.authorName-2Gfs6bIw"},{"$ref":"#/parameters/revision.commit-fuCVC6aw"},{"$ref":"#/parameters/revision.committerEmail-5mz1H_nc"},{"$ref":"#/parameters/revision.committerName-Pr6tr88U"},{"$ref":"#/parameters/revision.message-cz6CLAnc"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/buildconfigs/{name}/webhooks":{"post":{"description":"connect POST requests to webhooks of BuildConfig","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"connectBuildOpenshiftIoV1PostNamespacedBuildConfigWebhooks","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Build","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/path-oPbzgLUj"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/buildconfigs/{name}/webhooks/{path}":{"post":{"description":"connect POST requests to webhooks of BuildConfig","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"connectBuildOpenshiftIoV1PostNamespacedBuildConfigWebhooksWithPath","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Build","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/path-z6Ciiujn"},{"$ref":"#/parameters/path-oPbzgLUj"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/builds":{"get":{"description":"list or watch objects of kind Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"listBuildOpenshiftIoV1NamespacedBuild","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"post":{"description":"create a Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"createBuildOpenshiftIoV1NamespacedBuild","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"delete":{"description":"delete collection of Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"deleteBuildOpenshiftIoV1CollectionNamespacedBuild","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v4"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/builds/{name}":{"get":{"description":"read the specified Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"readBuildOpenshiftIoV1NamespacedBuild","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"put":{"description":"replace the specified Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"replaceBuildOpenshiftIoV1NamespacedBuild","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"delete":{"description":"delete a Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"deleteBuildOpenshiftIoV1NamespacedBuild","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v4"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v4"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"patch":{"description":"partially update the specified Build","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"patchBuildOpenshiftIoV1NamespacedBuild","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Build","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/builds/{name}/clone":{"post":{"description":"create clone of a Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"createBuildOpenshiftIoV1NamespacedBuildClone","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildRequest"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the BuildRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/builds/{name}/details":{"put":{"description":"replace details of the specified Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"replaceBuildOpenshiftIoV1NamespacedBuildDetails","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"uniqueItems":true,"type":"string","description":"name of the Build","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/build.openshift.io/v1/namespaces/{namespace}/builds/{name}/log":{"get":{"description":"read log of the specified Build","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"readBuildOpenshiftIoV1NamespacedBuildLog","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildLog"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildLog","version":"v1"}},"parameters":[{"$ref":"#/parameters/container-Rl7l_oz7"},{"$ref":"#/parameters/follow-ryc9nKX-"},{"$ref":"#/parameters/insecureSkipTLSVerifyBackend-gM00jVbe"},{"$ref":"#/parameters/limitBytes-_hnOr0V4"},{"uniqueItems":true,"type":"string","description":"name of the BuildLog","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/nowait-4e5T_PV3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/previous-pXJ3IzH4"},{"$ref":"#/parameters/sinceSeconds-Sf7lFlCh"},{"$ref":"#/parameters/tailLines-c-mA2NFh"},{"$ref":"#/parameters/timestamps-rluwd6z0"},{"$ref":"#/parameters/version-enodSG5q"}]},"/apis/build.openshift.io/v1/watch/buildconfigs":{"get":{"description":"watch individual changes to a list of BuildConfig. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"watchBuildOpenshiftIoV1BuildConfigListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/watch/builds":{"get":{"description":"watch individual changes to a list of Build. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"watchBuildOpenshiftIoV1BuildListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/watch/namespaces/{namespace}/buildconfigs":{"get":{"description":"watch individual changes to a list of BuildConfig. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"watchBuildOpenshiftIoV1NamespacedBuildConfigList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/watch/namespaces/{namespace}/buildconfigs/{name}":{"get":{"description":"watch changes to an object of kind BuildConfig. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"watchBuildOpenshiftIoV1NamespacedBuildConfig","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the BuildConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/watch/namespaces/{namespace}/builds":{"get":{"description":"watch individual changes to a list of Build. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"watchBuildOpenshiftIoV1NamespacedBuildList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/build.openshift.io/v1/watch/namespaces/{namespace}/builds/{name}":{"get":{"description":"watch changes to an object of kind Build. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["buildOpenshiftIo_v1"],"operationId":"watchBuildOpenshiftIoV1NamespacedBuild","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"build.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Build","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/cert-manager.io/v1/certificaterequests":{"get":{"description":"list objects of kind CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"listCertManagerIoV1CertificateRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/cert-manager.io/v1/certificates":{"get":{"description":"list objects of kind Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"listCertManagerIoV1CertificateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/cert-manager.io/v1/clusterissuers":{"get":{"description":"list objects of kind ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"listCertManagerIoV1ClusterIssuer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"post":{"description":"create a ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"createCertManagerIoV1ClusterIssuer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"delete":{"description":"delete collection of ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1CollectionClusterIssuer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/clusterissuers/{name}":{"get":{"description":"read the specified ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1ClusterIssuer","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"put":{"description":"replace the specified ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1ClusterIssuer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"delete":{"description":"delete a ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1ClusterIssuer","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"patch":{"description":"partially update the specified ClusterIssuer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1ClusterIssuer","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterIssuer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/clusterissuers/{name}/status":{"get":{"description":"read status of the specified ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1ClusterIssuerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"put":{"description":"replace status of the specified ClusterIssuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1ClusterIssuerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterIssuer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1ClusterIssuerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterIssuer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/issuers":{"get":{"description":"list objects of kind Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"listCertManagerIoV1IssuerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.IssuerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/certificaterequests":{"get":{"description":"list objects of kind CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"listCertManagerIoV1NamespacedCertificateRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"post":{"description":"create a CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"createCertManagerIoV1NamespacedCertificateRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"delete":{"description":"delete collection of CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1CollectionNamespacedCertificateRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/certificaterequests/{name}":{"get":{"description":"read the specified CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1NamespacedCertificateRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"put":{"description":"replace the specified CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1NamespacedCertificateRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"delete":{"description":"delete a CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1NamespacedCertificateRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"patch":{"description":"partially update the specified CertificateRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1NamespacedCertificateRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CertificateRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/certificaterequests/{name}/status":{"get":{"description":"read status of the specified CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1NamespacedCertificateRequestStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"put":{"description":"replace status of the specified CertificateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1NamespacedCertificateRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"patch":{"description":"partially update status of the specified CertificateRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1NamespacedCertificateRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CertificateRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/certificates":{"get":{"description":"list objects of kind Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"listCertManagerIoV1NamespacedCertificate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.CertificateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"post":{"description":"create a Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"createCertManagerIoV1NamespacedCertificate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"delete":{"description":"delete collection of Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1CollectionNamespacedCertificate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/certificates/{name}":{"get":{"description":"read the specified Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1NamespacedCertificate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"put":{"description":"replace the specified Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1NamespacedCertificate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"delete":{"description":"delete a Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1NamespacedCertificate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"patch":{"description":"partially update the specified Certificate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1NamespacedCertificate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Certificate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/certificates/{name}/status":{"get":{"description":"read status of the specified Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1NamespacedCertificateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"put":{"description":"replace status of the specified Certificate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1NamespacedCertificateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"patch":{"description":"partially update status of the specified Certificate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1NamespacedCertificateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Certificate","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Certificate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/issuers":{"get":{"description":"list objects of kind Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"listCertManagerIoV1NamespacedIssuer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.IssuerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"post":{"description":"create an Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"createCertManagerIoV1NamespacedIssuer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"delete":{"description":"delete collection of Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1CollectionNamespacedIssuer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/issuers/{name}":{"get":{"description":"read the specified Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1NamespacedIssuer","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"put":{"description":"replace the specified Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1NamespacedIssuer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"delete":{"description":"delete an Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"deleteCertManagerIoV1NamespacedIssuer","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"patch":{"description":"partially update the specified Issuer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1NamespacedIssuer","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Issuer","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cert-manager.io/v1/namespaces/{namespace}/issuers/{name}/status":{"get":{"description":"read status of the specified Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"readCertManagerIoV1NamespacedIssuerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"put":{"description":"replace status of the specified Issuer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"replaceCertManagerIoV1NamespacedIssuerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"patch":{"description":"partially update status of the specified Issuer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["certManagerIo_v1"],"operationId":"patchCertManagerIoV1NamespacedIssuerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cert-manager.io","kind":"Issuer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Issuer","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/certificates.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates"],"operationId":"getCertificatesAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/certificates.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"getCertificatesV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/certificates.k8s.io/v1/certificatesigningrequests":{"get":{"description":"list or watch objects of kind CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"listCertificatesV1CertificateSigningRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"post":{"description":"create a CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"createCertificatesV1CertificateSigningRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"delete":{"description":"delete collection of CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"deleteCertificatesV1CollectionCertificateSigningRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/certificates.k8s.io/v1/certificatesigningrequests/{name}":{"get":{"description":"read the specified CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"readCertificatesV1CertificateSigningRequest","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"put":{"description":"replace the specified CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"replaceCertificatesV1CertificateSigningRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"delete":{"description":"delete a CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"deleteCertificatesV1CertificateSigningRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"patch":{"description":"partially update the specified CertificateSigningRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"patchCertificatesV1CertificateSigningRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CertificateSigningRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/approval":{"get":{"description":"read approval of the specified CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"readCertificatesV1CertificateSigningRequestApproval","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"put":{"description":"replace approval of the specified CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"replaceCertificatesV1CertificateSigningRequestApproval","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"patch":{"description":"partially update approval of the specified CertificateSigningRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"patchCertificatesV1CertificateSigningRequestApproval","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CertificateSigningRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/certificates.k8s.io/v1/certificatesigningrequests/{name}/status":{"get":{"description":"read status of the specified CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"readCertificatesV1CertificateSigningRequestStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"put":{"description":"replace status of the specified CertificateSigningRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"replaceCertificatesV1CertificateSigningRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"patch":{"description":"partially update status of the specified CertificateSigningRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"patchCertificatesV1CertificateSigningRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CertificateSigningRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/certificates.k8s.io/v1/watch/certificatesigningrequests":{"get":{"description":"watch individual changes to a list of CertificateSigningRequest. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"watchCertificatesV1CertificateSigningRequestList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/certificates.k8s.io/v1/watch/certificatesigningrequests/{name}":{"get":{"description":"watch changes to an object of kind CertificateSigningRequest. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["certificates_v1"],"operationId":"watchCertificatesV1CertificateSigningRequest","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the CertificateSigningRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/ci.openshift.org/v1alpha1/namespaces/{namespace}/testplatformclusters":{"get":{"description":"list objects of kind TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"listCiOpenshiftOrgV1alpha1NamespacedTestPlatformCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformClusterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"post":{"description":"create a TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"createCiOpenshiftOrgV1alpha1NamespacedTestPlatformCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"delete":{"description":"delete collection of TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"deleteCiOpenshiftOrgV1alpha1CollectionNamespacedTestPlatformCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ci.openshift.org/v1alpha1/namespaces/{namespace}/testplatformclusters/{name}":{"get":{"description":"read the specified TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"readCiOpenshiftOrgV1alpha1NamespacedTestPlatformCluster","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"put":{"description":"replace the specified TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"replaceCiOpenshiftOrgV1alpha1NamespacedTestPlatformCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"delete":{"description":"delete a TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"deleteCiOpenshiftOrgV1alpha1NamespacedTestPlatformCluster","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"patch":{"description":"partially update the specified TestPlatformCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"patchCiOpenshiftOrgV1alpha1NamespacedTestPlatformCluster","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TestPlatformCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ci.openshift.org/v1alpha1/namespaces/{namespace}/testplatformclusters/{name}/status":{"get":{"description":"read status of the specified TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"readCiOpenshiftOrgV1alpha1NamespacedTestPlatformClusterStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"put":{"description":"replace status of the specified TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"replaceCiOpenshiftOrgV1alpha1NamespacedTestPlatformClusterStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TestPlatformCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"patchCiOpenshiftOrgV1alpha1NamespacedTestPlatformClusterStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TestPlatformCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ci.openshift.org/v1alpha1/testplatformclusters":{"get":{"description":"list objects of kind TestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"listCiOpenshiftOrgV1alpha1TestPlatformClusterForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformClusterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/ci.openshift.org/v1alpha1/xtestplatformclusters":{"get":{"description":"list objects of kind XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"listCiOpenshiftOrgV1alpha1XTestPlatformCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformClusterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"post":{"description":"create a XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"createCiOpenshiftOrgV1alpha1XTestPlatformCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"delete":{"description":"delete collection of XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"deleteCiOpenshiftOrgV1alpha1CollectionXTestPlatformCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ci.openshift.org/v1alpha1/xtestplatformclusters/{name}":{"get":{"description":"read the specified XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"readCiOpenshiftOrgV1alpha1XTestPlatformCluster","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"put":{"description":"replace the specified XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"replaceCiOpenshiftOrgV1alpha1XTestPlatformCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"delete":{"description":"delete a XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"deleteCiOpenshiftOrgV1alpha1XTestPlatformCluster","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"patch":{"description":"partially update the specified XTestPlatformCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"patchCiOpenshiftOrgV1alpha1XTestPlatformCluster","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the XTestPlatformCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ci.openshift.org/v1alpha1/xtestplatformclusters/{name}/status":{"get":{"description":"read status of the specified XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"readCiOpenshiftOrgV1alpha1XTestPlatformClusterStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"put":{"description":"replace status of the specified XTestPlatformCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"replaceCiOpenshiftOrgV1alpha1XTestPlatformClusterStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified XTestPlatformCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ciOpenshiftOrg_v1alpha1"],"operationId":"patchCiOpenshiftOrgV1alpha1XTestPlatformClusterStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the XTestPlatformCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cloud.network.openshift.io/v1/cloudprivateipconfigs":{"get":{"description":"list objects of kind CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"listCloudNetworkOpenshiftIoV1CloudPrivateIPConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"post":{"description":"create a CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"createCloudNetworkOpenshiftIoV1CloudPrivateIPConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"delete":{"description":"delete collection of CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"deleteCloudNetworkOpenshiftIoV1CollectionCloudPrivateIPConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cloud.network.openshift.io/v1/cloudprivateipconfigs/{name}":{"get":{"description":"read the specified CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"readCloudNetworkOpenshiftIoV1CloudPrivateIPConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"put":{"description":"replace the specified CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"replaceCloudNetworkOpenshiftIoV1CloudPrivateIPConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"delete":{"description":"delete a CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"deleteCloudNetworkOpenshiftIoV1CloudPrivateIPConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"patch":{"description":"partially update the specified CloudPrivateIPConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"patchCloudNetworkOpenshiftIoV1CloudPrivateIPConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CloudPrivateIPConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cloud.network.openshift.io/v1/cloudprivateipconfigs/{name}/status":{"get":{"description":"read status of the specified CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"readCloudNetworkOpenshiftIoV1CloudPrivateIPConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"put":{"description":"replace status of the specified CloudPrivateIPConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"replaceCloudNetworkOpenshiftIoV1CloudPrivateIPConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"patch":{"description":"partially update status of the specified CloudPrivateIPConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudNetworkOpenshiftIo_v1"],"operationId":"patchCloudNetworkOpenshiftIoV1CloudPrivateIPConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CloudPrivateIPConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cloudcredential.openshift.io/v1/credentialsrequests":{"get":{"description":"list objects of kind CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"listCloudcredentialOpenshiftIoV1CredentialsRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/cloudcredential.openshift.io/v1/namespaces/{namespace}/credentialsrequests":{"get":{"description":"list objects of kind CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"listCloudcredentialOpenshiftIoV1NamespacedCredentialsRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"post":{"description":"create a CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"createCloudcredentialOpenshiftIoV1NamespacedCredentialsRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"delete":{"description":"delete collection of CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"deleteCloudcredentialOpenshiftIoV1CollectionNamespacedCredentialsRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cloudcredential.openshift.io/v1/namespaces/{namespace}/credentialsrequests/{name}":{"get":{"description":"read the specified CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"readCloudcredentialOpenshiftIoV1NamespacedCredentialsRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"put":{"description":"replace the specified CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"replaceCloudcredentialOpenshiftIoV1NamespacedCredentialsRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"delete":{"description":"delete a CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"deleteCloudcredentialOpenshiftIoV1NamespacedCredentialsRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"patch":{"description":"partially update the specified CredentialsRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"patchCloudcredentialOpenshiftIoV1NamespacedCredentialsRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CredentialsRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cloudcredential.openshift.io/v1/namespaces/{namespace}/credentialsrequests/{name}/status":{"get":{"description":"read status of the specified CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"readCloudcredentialOpenshiftIoV1NamespacedCredentialsRequestStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"put":{"description":"replace status of the specified CredentialsRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"replaceCloudcredentialOpenshiftIoV1NamespacedCredentialsRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"patch":{"description":"partially update status of the specified CredentialsRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["cloudcredentialOpenshiftIo_v1"],"operationId":"patchCloudcredentialOpenshiftIoV1NamespacedCredentialsRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CredentialsRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cluster.open-cluster-management.io/v1alpha1/clusterclaims":{"get":{"description":"list objects of kind ClusterClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["clusterOpenClusterManagementIo_v1alpha1"],"operationId":"listClusterOpenClusterManagementIoV1alpha1ClusterClaim","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaimList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}},"post":{"description":"create a ClusterClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["clusterOpenClusterManagementIo_v1alpha1"],"operationId":"createClusterOpenClusterManagementIoV1alpha1ClusterClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["clusterOpenClusterManagementIo_v1alpha1"],"operationId":"deleteClusterOpenClusterManagementIoV1alpha1CollectionClusterClaim","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/cluster.open-cluster-management.io/v1alpha1/clusterclaims/{name}":{"get":{"description":"read the specified ClusterClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["clusterOpenClusterManagementIo_v1alpha1"],"operationId":"readClusterOpenClusterManagementIoV1alpha1ClusterClaim","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["clusterOpenClusterManagementIo_v1alpha1"],"operationId":"replaceClusterOpenClusterManagementIoV1alpha1ClusterClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}},"delete":{"description":"delete a ClusterClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["clusterOpenClusterManagementIo_v1alpha1"],"operationId":"deleteClusterOpenClusterManagementIoV1alpha1ClusterClaim","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterClaim","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["clusterOpenClusterManagementIo_v1alpha1"],"operationId":"patchClusterOpenClusterManagementIoV1alpha1ClusterClaim","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/apiservers":{"get":{"description":"list objects of kind APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1APIServer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"post":{"description":"create an APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1APIServer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"delete":{"description":"delete collection of APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionAPIServer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/apiservers/{name}":{"get":{"description":"read the specified APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1APIServer","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"put":{"description":"replace the specified APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1APIServer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"delete":{"description":"delete an APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1APIServer","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"patch":{"description":"partially update the specified APIServer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1APIServer","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the APIServer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/apiservers/{name}/status":{"get":{"description":"read status of the specified APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1APIServerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"put":{"description":"replace status of the specified APIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1APIServerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"patch":{"description":"partially update status of the specified APIServer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1APIServerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"APIServer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the APIServer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/authentications":{"get":{"description":"list objects of kind Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Authentication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.AuthenticationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"post":{"description":"create an Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Authentication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"delete":{"description":"delete collection of Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionAuthentication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/authentications/{name}":{"get":{"description":"read the specified Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Authentication","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"put":{"description":"replace the specified Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Authentication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"delete":{"description":"delete an Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Authentication","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"patch":{"description":"partially update the specified Authentication","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Authentication","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Authentication","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/authentications/{name}/status":{"get":{"description":"read status of the specified Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1AuthenticationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"put":{"description":"replace status of the specified Authentication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1AuthenticationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"patch":{"description":"partially update status of the specified Authentication","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1AuthenticationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Authentication","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Authentication","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/builds":{"get":{"description":"list objects of kind Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Build","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.BuildList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"post":{"description":"create a Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Build","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"delete":{"description":"delete collection of Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionBuild","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/builds/{name}":{"get":{"description":"read the specified Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Build","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"put":{"description":"replace the specified Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Build","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"delete":{"description":"delete a Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Build","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"patch":{"description":"partially update the specified Build","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Build","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Build","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/builds/{name}/status":{"get":{"description":"read status of the specified Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1BuildStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"put":{"description":"replace status of the specified Build","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1BuildStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"patch":{"description":"partially update status of the specified Build","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1BuildStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Build","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Build","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/clusteroperators":{"get":{"description":"list objects of kind ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1ClusterOperator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperatorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"post":{"description":"create a ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1ClusterOperator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"delete":{"description":"delete collection of ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionClusterOperator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/clusteroperators/{name}":{"get":{"description":"read the specified ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ClusterOperator","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"put":{"description":"replace the specified ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ClusterOperator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"delete":{"description":"delete a ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1ClusterOperator","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"patch":{"description":"partially update the specified ClusterOperator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ClusterOperator","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterOperator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/clusteroperators/{name}/status":{"get":{"description":"read status of the specified ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ClusterOperatorStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"put":{"description":"replace status of the specified ClusterOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ClusterOperatorStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterOperator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ClusterOperatorStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterOperator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/clusterversions":{"get":{"description":"list objects of kind ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1ClusterVersion","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"post":{"description":"create a ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1ClusterVersion","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"delete":{"description":"delete collection of ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionClusterVersion","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/clusterversions/{name}":{"get":{"description":"read the specified ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ClusterVersion","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"put":{"description":"replace the specified ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ClusterVersion","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"delete":{"description":"delete a ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1ClusterVersion","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"patch":{"description":"partially update the specified ClusterVersion","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ClusterVersion","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterVersion","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/clusterversions/{name}/status":{"get":{"description":"read status of the specified ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ClusterVersionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"put":{"description":"replace status of the specified ClusterVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ClusterVersionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterVersion","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ClusterVersionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterVersion","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/consoles":{"get":{"description":"list objects of kind Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ConsoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"post":{"description":"create a Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Console","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"delete":{"description":"delete collection of Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionConsole","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/consoles/{name}":{"get":{"description":"read the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"put":{"description":"replace the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Console","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"delete":{"description":"delete a Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"patch":{"description":"partially update the specified Console","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Console","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/consoles/{name}/status":{"get":{"description":"read status of the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ConsoleStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"put":{"description":"replace status of the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ConsoleStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"patch":{"description":"partially update status of the specified Console","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ConsoleStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Console","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Console","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/dnses":{"get":{"description":"list objects of kind DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNSList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"post":{"description":"create a DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1DNS","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"delete":{"description":"delete collection of DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionDNS","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/dnses/{name}":{"get":{"description":"read the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"put":{"description":"replace the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1DNS","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"delete":{"description":"delete a DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"patch":{"description":"partially update the specified DNS","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DNS","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/dnses/{name}/status":{"get":{"description":"read status of the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1DNSStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"put":{"description":"replace status of the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1DNSStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"patch":{"description":"partially update status of the specified DNS","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1DNSStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"DNS","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DNS","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/featuregates":{"get":{"description":"list objects of kind FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1FeatureGate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"post":{"description":"create a FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1FeatureGate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"delete":{"description":"delete collection of FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionFeatureGate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/featuregates/{name}":{"get":{"description":"read the specified FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1FeatureGate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"put":{"description":"replace the specified FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1FeatureGate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"delete":{"description":"delete a FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1FeatureGate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"patch":{"description":"partially update the specified FeatureGate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1FeatureGate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FeatureGate","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/featuregates/{name}/status":{"get":{"description":"read status of the specified FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1FeatureGateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"put":{"description":"replace status of the specified FeatureGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1FeatureGateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"patch":{"description":"partially update status of the specified FeatureGate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1FeatureGateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FeatureGate","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagecontentpolicies":{"get":{"description":"list objects of kind ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1ImageContentPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"post":{"description":"create an ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1ImageContentPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"delete":{"description":"delete collection of ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionImageContentPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagecontentpolicies/{name}":{"get":{"description":"read the specified ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ImageContentPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"put":{"description":"replace the specified ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ImageContentPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"delete":{"description":"delete an ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1ImageContentPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"patch":{"description":"partially update the specified ImageContentPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ImageContentPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageContentPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagecontentpolicies/{name}/status":{"get":{"description":"read status of the specified ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ImageContentPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"put":{"description":"replace status of the specified ImageContentPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ImageContentPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"patch":{"description":"partially update status of the specified ImageContentPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ImageContentPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageContentPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagedigestmirrorsets":{"get":{"description":"list objects of kind ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1ImageDigestMirrorSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"post":{"description":"create an ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1ImageDigestMirrorSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"delete":{"description":"delete collection of ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionImageDigestMirrorSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagedigestmirrorsets/{name}":{"get":{"description":"read the specified ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ImageDigestMirrorSet","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"put":{"description":"replace the specified ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ImageDigestMirrorSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"delete":{"description":"delete an ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1ImageDigestMirrorSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"patch":{"description":"partially update the specified ImageDigestMirrorSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ImageDigestMirrorSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageDigestMirrorSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagedigestmirrorsets/{name}/status":{"get":{"description":"read status of the specified ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ImageDigestMirrorSetStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"put":{"description":"replace status of the specified ImageDigestMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ImageDigestMirrorSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"patch":{"description":"partially update status of the specified ImageDigestMirrorSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ImageDigestMirrorSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageDigestMirrorSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/images":{"get":{"description":"list objects of kind Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Image","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"post":{"description":"create an Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Image","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"delete":{"description":"delete collection of Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionImage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/images/{name}":{"get":{"description":"read the specified Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Image","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"put":{"description":"replace the specified Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Image","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"delete":{"description":"delete an Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Image","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"patch":{"description":"partially update the specified Image","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Image","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Image","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/images/{name}/status":{"get":{"description":"read status of the specified Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ImageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"put":{"description":"replace status of the specified Image","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ImageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"patch":{"description":"partially update status of the specified Image","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ImageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Image","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Image","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagetagmirrorsets":{"get":{"description":"list objects of kind ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1ImageTagMirrorSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"post":{"description":"create an ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1ImageTagMirrorSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"delete":{"description":"delete collection of ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionImageTagMirrorSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagetagmirrorsets/{name}":{"get":{"description":"read the specified ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ImageTagMirrorSet","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"put":{"description":"replace the specified ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ImageTagMirrorSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"delete":{"description":"delete an ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1ImageTagMirrorSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"patch":{"description":"partially update the specified ImageTagMirrorSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ImageTagMirrorSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageTagMirrorSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/imagetagmirrorsets/{name}/status":{"get":{"description":"read status of the specified ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ImageTagMirrorSetStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"put":{"description":"replace status of the specified ImageTagMirrorSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ImageTagMirrorSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"patch":{"description":"partially update status of the specified ImageTagMirrorSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ImageTagMirrorSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageTagMirrorSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/infrastructures":{"get":{"description":"list objects of kind Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Infrastructure","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.InfrastructureList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"post":{"description":"create an Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Infrastructure","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"delete":{"description":"delete collection of Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionInfrastructure","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/infrastructures/{name}":{"get":{"description":"read the specified Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Infrastructure","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"put":{"description":"replace the specified Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Infrastructure","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"delete":{"description":"delete an Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Infrastructure","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"patch":{"description":"partially update the specified Infrastructure","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Infrastructure","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Infrastructure","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/infrastructures/{name}/status":{"get":{"description":"read status of the specified Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1InfrastructureStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"put":{"description":"replace status of the specified Infrastructure","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1InfrastructureStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"patch":{"description":"partially update status of the specified Infrastructure","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1InfrastructureStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Infrastructure","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/ingresses":{"get":{"description":"list objects of kind Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Ingress","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.IngressList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"post":{"description":"create an Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Ingress","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"delete":{"description":"delete collection of Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionIngress","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/ingresses/{name}":{"get":{"description":"read the specified Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Ingress","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"put":{"description":"replace the specified Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Ingress","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"delete":{"description":"delete an Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Ingress","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"patch":{"description":"partially update the specified Ingress","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Ingress","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Ingress","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/ingresses/{name}/status":{"get":{"description":"read status of the specified Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1IngressStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"put":{"description":"replace status of the specified Ingress","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1IngressStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"patch":{"description":"partially update status of the specified Ingress","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1IngressStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Ingress","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Ingress","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/networks":{"get":{"description":"list objects of kind Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.NetworkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Network","version":"v1"}},"post":{"description":"create a Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Network","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Network","version":"v1"}},"delete":{"description":"delete collection of Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionNetwork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Network","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/networks/{name}":{"get":{"description":"read the specified Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Network","version":"v1"}},"put":{"description":"replace the specified Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Network","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Network","version":"v1"}},"delete":{"description":"delete a Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Network","version":"v1"}},"patch":{"description":"partially update the specified Network","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Network","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Network","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/nodes":{"get":{"description":"list objects of kind Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Node","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.NodeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"post":{"description":"create a Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Node","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"delete":{"description":"delete collection of Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionNode","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/nodes/{name}":{"get":{"description":"read the specified Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Node","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"put":{"description":"replace the specified Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Node","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"delete":{"description":"delete a Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Node","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"patch":{"description":"partially update the specified Node","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Node","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Node","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/nodes/{name}/status":{"get":{"description":"read status of the specified Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1NodeStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"put":{"description":"replace status of the specified Node","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1NodeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"patch":{"description":"partially update status of the specified Node","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1NodeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Node","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Node","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/oauths":{"get":{"description":"list objects of kind OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1OAuth","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuthList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"post":{"description":"create an OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1OAuth","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"delete":{"description":"delete collection of OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionOAuth","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/oauths/{name}":{"get":{"description":"read the specified OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1OAuth","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"put":{"description":"replace the specified OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1OAuth","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"delete":{"description":"delete an OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1OAuth","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"patch":{"description":"partially update the specified OAuth","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1OAuth","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OAuth","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/oauths/{name}/status":{"get":{"description":"read status of the specified OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1OAuthStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"put":{"description":"replace status of the specified OAuth","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1OAuthStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"patch":{"description":"partially update status of the specified OAuth","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1OAuthStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OAuth","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OAuth","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/operatorhubs":{"get":{"description":"list objects of kind OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1OperatorHub","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHubList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"post":{"description":"create an OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1OperatorHub","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"delete":{"description":"delete collection of OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionOperatorHub","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/operatorhubs/{name}":{"get":{"description":"read the specified OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1OperatorHub","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"put":{"description":"replace the specified OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1OperatorHub","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"delete":{"description":"delete an OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1OperatorHub","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"patch":{"description":"partially update the specified OperatorHub","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1OperatorHub","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorHub","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/operatorhubs/{name}/status":{"get":{"description":"read status of the specified OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1OperatorHubStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"put":{"description":"replace status of the specified OperatorHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1OperatorHubStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"patch":{"description":"partially update status of the specified OperatorHub","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1OperatorHubStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorHub","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/projects":{"get":{"description":"list objects of kind Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Project","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ProjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"post":{"description":"create a Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Project","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"delete":{"description":"delete collection of Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionProject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/projects/{name}":{"get":{"description":"read the specified Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Project","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"put":{"description":"replace the specified Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Project","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"delete":{"description":"delete a Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Project","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"patch":{"description":"partially update the specified Project","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Project","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Project","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/projects/{name}/status":{"get":{"description":"read status of the specified Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ProjectStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"put":{"description":"replace status of the specified Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ProjectStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"patch":{"description":"partially update status of the specified Project","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ProjectStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Project","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Project","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/proxies":{"get":{"description":"list objects of kind Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Proxy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.ProxyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"post":{"description":"create a Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Proxy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"delete":{"description":"delete collection of Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionProxy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/proxies/{name}":{"get":{"description":"read the specified Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Proxy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"put":{"description":"replace the specified Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Proxy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"delete":{"description":"delete a Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Proxy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"patch":{"description":"partially update the specified Proxy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Proxy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Proxy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/proxies/{name}/status":{"get":{"description":"read status of the specified Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1ProxyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"put":{"description":"replace status of the specified Proxy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1ProxyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"patch":{"description":"partially update status of the specified Proxy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1ProxyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Proxy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Proxy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/schedulers":{"get":{"description":"list objects of kind Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"listConfigOpenshiftIoV1Scheduler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.SchedulerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"post":{"description":"create a Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"createConfigOpenshiftIoV1Scheduler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"delete":{"description":"delete collection of Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1CollectionScheduler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/schedulers/{name}":{"get":{"description":"read the specified Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1Scheduler","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"put":{"description":"replace the specified Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1Scheduler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"delete":{"description":"delete a Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"deleteConfigOpenshiftIoV1Scheduler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"patch":{"description":"partially update the specified Scheduler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1Scheduler","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Scheduler","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/config.openshift.io/v1/schedulers/{name}/status":{"get":{"description":"read status of the specified Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"readConfigOpenshiftIoV1SchedulerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"put":{"description":"replace status of the specified Scheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"replaceConfigOpenshiftIoV1SchedulerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"patch":{"description":"partially update status of the specified Scheduler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["configOpenshiftIo_v1"],"operationId":"patchConfigOpenshiftIoV1SchedulerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Scheduler","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleclidownloads":{"get":{"description":"list objects of kind ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsoleCLIDownload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownloadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"post":{"description":"create a ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsoleCLIDownload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"delete":{"description":"delete collection of ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsoleCLIDownload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleclidownloads/{name}":{"get":{"description":"read the specified ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleCLIDownload","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"put":{"description":"replace the specified ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleCLIDownload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"delete":{"description":"delete a ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsoleCLIDownload","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"patch":{"description":"partially update the specified ConsoleCLIDownload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleCLIDownload","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleCLIDownload","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleclidownloads/{name}/status":{"get":{"description":"read status of the specified ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleCLIDownloadStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"put":{"description":"replace status of the specified ConsoleCLIDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleCLIDownloadStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"patch":{"description":"partially update status of the specified ConsoleCLIDownload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleCLIDownloadStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleCLIDownload","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleexternalloglinks":{"get":{"description":"list objects of kind ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsoleExternalLogLink","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLinkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"post":{"description":"create a ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsoleExternalLogLink","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"delete":{"description":"delete collection of ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsoleExternalLogLink","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleexternalloglinks/{name}":{"get":{"description":"read the specified ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleExternalLogLink","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"put":{"description":"replace the specified ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleExternalLogLink","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"delete":{"description":"delete a ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsoleExternalLogLink","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"patch":{"description":"partially update the specified ConsoleExternalLogLink","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleExternalLogLink","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleExternalLogLink","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleexternalloglinks/{name}/status":{"get":{"description":"read status of the specified ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleExternalLogLinkStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"put":{"description":"replace status of the specified ConsoleExternalLogLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleExternalLogLinkStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"patch":{"description":"partially update status of the specified ConsoleExternalLogLink","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleExternalLogLinkStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleExternalLogLink","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolelinks":{"get":{"description":"list objects of kind ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsoleLink","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLinkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"post":{"description":"create a ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsoleLink","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"delete":{"description":"delete collection of ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsoleLink","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolelinks/{name}":{"get":{"description":"read the specified ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleLink","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"put":{"description":"replace the specified ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleLink","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"delete":{"description":"delete a ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsoleLink","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"patch":{"description":"partially update the specified ConsoleLink","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleLink","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleLink","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolelinks/{name}/status":{"get":{"description":"read status of the specified ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleLinkStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"put":{"description":"replace status of the specified ConsoleLink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleLinkStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"patch":{"description":"partially update status of the specified ConsoleLink","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleLinkStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleLink","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolenotifications":{"get":{"description":"list objects of kind ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsoleNotification","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotificationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"post":{"description":"create a ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsoleNotification","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"delete":{"description":"delete collection of ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsoleNotification","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolenotifications/{name}":{"get":{"description":"read the specified ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleNotification","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"put":{"description":"replace the specified ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleNotification","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"delete":{"description":"delete a ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsoleNotification","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"patch":{"description":"partially update the specified ConsoleNotification","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleNotification","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleNotification","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolenotifications/{name}/status":{"get":{"description":"read status of the specified ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleNotificationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"put":{"description":"replace status of the specified ConsoleNotification","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleNotificationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"patch":{"description":"partially update status of the specified ConsoleNotification","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleNotificationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleNotification","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleplugins":{"get":{"description":"list objects of kind ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsolePlugin","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePluginList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}},"post":{"description":"create a ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsolePlugin","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}},"delete":{"description":"delete collection of ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsolePlugin","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleplugins/{name}":{"get":{"description":"read the specified ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsolePlugin","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}},"put":{"description":"replace the specified ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsolePlugin","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}},"delete":{"description":"delete a ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsolePlugin","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}},"patch":{"description":"partially update the specified ConsolePlugin","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsolePlugin","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsolePlugin","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolequickstarts":{"get":{"description":"list objects of kind ConsoleQuickStart","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsoleQuickStart","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStartList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}},"post":{"description":"create a ConsoleQuickStart","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsoleQuickStart","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}},"delete":{"description":"delete collection of ConsoleQuickStart","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsoleQuickStart","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolequickstarts/{name}":{"get":{"description":"read the specified ConsoleQuickStart","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleQuickStart","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}},"put":{"description":"replace the specified ConsoleQuickStart","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleQuickStart","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}},"delete":{"description":"delete a ConsoleQuickStart","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsoleQuickStart","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}},"patch":{"description":"partially update the specified ConsoleQuickStart","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleQuickStart","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleQuickStart","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolesamples":{"get":{"description":"list objects of kind ConsoleSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsoleSample","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSampleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}},"post":{"description":"create a ConsoleSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsoleSample","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}},"delete":{"description":"delete collection of ConsoleSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsoleSample","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consolesamples/{name}":{"get":{"description":"read the specified ConsoleSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleSample","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}},"put":{"description":"replace the specified ConsoleSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleSample","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}},"delete":{"description":"delete a ConsoleSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsoleSample","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}},"patch":{"description":"partially update the specified ConsoleSample","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleSample","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleSample","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleyamlsamples":{"get":{"description":"list objects of kind ConsoleYAMLSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"listConsoleOpenshiftIoV1ConsoleYAMLSample","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSampleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}},"post":{"description":"create a ConsoleYAMLSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"createConsoleOpenshiftIoV1ConsoleYAMLSample","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}},"delete":{"description":"delete collection of ConsoleYAMLSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1CollectionConsoleYAMLSample","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1/consoleyamlsamples/{name}":{"get":{"description":"read the specified ConsoleYAMLSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"readConsoleOpenshiftIoV1ConsoleYAMLSample","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}},"put":{"description":"replace the specified ConsoleYAMLSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"replaceConsoleOpenshiftIoV1ConsoleYAMLSample","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}},"delete":{"description":"delete a ConsoleYAMLSample","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"deleteConsoleOpenshiftIoV1ConsoleYAMLSample","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}},"patch":{"description":"partially update the specified ConsoleYAMLSample","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1"],"operationId":"patchConsoleOpenshiftIoV1ConsoleYAMLSample","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsoleYAMLSample","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1alpha1/consoleplugins":{"get":{"description":"list objects of kind ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1alpha1"],"operationId":"listConsoleOpenshiftIoV1alpha1ConsolePlugin","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePluginList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}},"post":{"description":"create a ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1alpha1"],"operationId":"createConsoleOpenshiftIoV1alpha1ConsolePlugin","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}},"delete":{"description":"delete collection of ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1alpha1"],"operationId":"deleteConsoleOpenshiftIoV1alpha1CollectionConsolePlugin","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/console.openshift.io/v1alpha1/consoleplugins/{name}":{"get":{"description":"read the specified ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1alpha1"],"operationId":"readConsoleOpenshiftIoV1alpha1ConsolePlugin","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}},"put":{"description":"replace the specified ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1alpha1"],"operationId":"replaceConsoleOpenshiftIoV1alpha1ConsolePlugin","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}},"delete":{"description":"delete a ConsolePlugin","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1alpha1"],"operationId":"deleteConsoleOpenshiftIoV1alpha1ConsolePlugin","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}},"patch":{"description":"partially update the specified ConsolePlugin","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["consoleOpenshiftIo_v1alpha1"],"operationId":"patchConsoleOpenshiftIoV1alpha1ConsolePlugin","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConsolePlugin","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/controlplane.operator.openshift.io/v1alpha1/namespaces/{namespace}/podnetworkconnectivitychecks":{"get":{"description":"list objects of kind PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"listControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheckList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"post":{"description":"create a PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"createControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"delete":{"description":"delete collection of PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"deleteControlplaneOperatorOpenshiftIoV1alpha1CollectionNamespacedPodNetworkConnectivityCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/controlplane.operator.openshift.io/v1alpha1/namespaces/{namespace}/podnetworkconnectivitychecks/{name}":{"get":{"description":"read the specified PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"readControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheck","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"put":{"description":"replace the specified PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"replaceControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"delete":{"description":"delete a PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"deleteControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheck","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"patch":{"description":"partially update the specified PodNetworkConnectivityCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"patchControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheck","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodNetworkConnectivityCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/controlplane.operator.openshift.io/v1alpha1/namespaces/{namespace}/podnetworkconnectivitychecks/{name}/status":{"get":{"description":"read status of the specified PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"readControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheckStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"put":{"description":"replace status of the specified PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"replaceControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheckStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified PodNetworkConnectivityCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"patchControlplaneOperatorOpenshiftIoV1alpha1NamespacedPodNetworkConnectivityCheckStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodNetworkConnectivityCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/controlplane.operator.openshift.io/v1alpha1/podnetworkconnectivitychecks":{"get":{"description":"list objects of kind PodNetworkConnectivityCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["controlplaneOperatorOpenshiftIo_v1alpha1"],"operationId":"listControlplaneOperatorOpenshiftIoV1alpha1PodNetworkConnectivityCheckForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheckList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/coordination.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination"],"operationId":"getCoordinationAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/coordination.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"getCoordinationV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/coordination.k8s.io/v1/leases":{"get":{"description":"list or watch objects of kind Lease","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"listCoordinationV1LeaseForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.LeaseList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/coordination.k8s.io/v1/namespaces/{namespace}/leases":{"get":{"description":"list or watch objects of kind Lease","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"listCoordinationV1NamespacedLease","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.LeaseList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"post":{"description":"create a Lease","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"createCoordinationV1NamespacedLease","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"delete":{"description":"delete collection of Lease","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"deleteCoordinationV1CollectionNamespacedLease","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/coordination.k8s.io/v1/namespaces/{namespace}/leases/{name}":{"get":{"description":"read the specified Lease","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"readCoordinationV1NamespacedLease","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"put":{"description":"replace the specified Lease","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"replaceCoordinationV1NamespacedLease","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"delete":{"description":"delete a Lease","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"deleteCoordinationV1NamespacedLease","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"patch":{"description":"partially update the specified Lease","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"patchCoordinationV1NamespacedLease","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Lease","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/coordination.k8s.io/v1/watch/leases":{"get":{"description":"watch individual changes to a list of Lease. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"watchCoordinationV1LeaseListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/coordination.k8s.io/v1/watch/namespaces/{namespace}/leases":{"get":{"description":"watch individual changes to a list of Lease. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"watchCoordinationV1NamespacedLeaseList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/coordination.k8s.io/v1/watch/namespaces/{namespace}/leases/{name}":{"get":{"description":"watch changes to an object of kind Lease. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["coordination_v1"],"operationId":"watchCoordinationV1NamespacedLease","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Lease","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/authcodes":{"get":{"description":"list objects of kind AuthCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1AuthCodeForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCodeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/authrequests":{"get":{"description":"list objects of kind AuthRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1AuthRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/connectors":{"get":{"description":"list objects of kind Connector","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1ConnectorForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.ConnectorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/devicerequests":{"get":{"description":"list objects of kind DeviceRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1DeviceRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/devicetokens":{"get":{"description":"list objects of kind DeviceToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1DeviceTokenForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceTokenList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/authcodes":{"get":{"description":"list objects of kind AuthCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedAuthCode","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCodeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"post":{"description":"create an AuthCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedAuthCode","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"delete":{"description":"delete collection of AuthCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedAuthCode","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/authcodes/{name}":{"get":{"description":"read the specified AuthCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedAuthCode","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"put":{"description":"replace the specified AuthCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedAuthCode","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"delete":{"description":"delete an AuthCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedAuthCode","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"patch":{"description":"partially update the specified AuthCode","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedAuthCode","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AuthCode","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/authrequests":{"get":{"description":"list objects of kind AuthRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedAuthRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"post":{"description":"create an AuthRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedAuthRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"delete":{"description":"delete collection of AuthRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedAuthRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/authrequests/{name}":{"get":{"description":"read the specified AuthRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedAuthRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"put":{"description":"replace the specified AuthRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedAuthRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"delete":{"description":"delete an AuthRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedAuthRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"patch":{"description":"partially update the specified AuthRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedAuthRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AuthRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/connectors":{"get":{"description":"list objects of kind Connector","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedConnector","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.ConnectorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"post":{"description":"create a Connector","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedConnector","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"delete":{"description":"delete collection of Connector","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedConnector","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/connectors/{name}":{"get":{"description":"read the specified Connector","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedConnector","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"put":{"description":"replace the specified Connector","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedConnector","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"delete":{"description":"delete a Connector","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedConnector","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"patch":{"description":"partially update the specified Connector","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedConnector","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Connector","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Connector","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/devicerequests":{"get":{"description":"list objects of kind DeviceRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedDeviceRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"post":{"description":"create a DeviceRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedDeviceRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"delete":{"description":"delete collection of DeviceRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedDeviceRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/devicerequests/{name}":{"get":{"description":"read the specified DeviceRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedDeviceRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"put":{"description":"replace the specified DeviceRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedDeviceRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"delete":{"description":"delete a DeviceRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedDeviceRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"patch":{"description":"partially update the specified DeviceRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedDeviceRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeviceRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/devicetokens":{"get":{"description":"list objects of kind DeviceToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedDeviceToken","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceTokenList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"post":{"description":"create a DeviceToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedDeviceToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"delete":{"description":"delete collection of DeviceToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedDeviceToken","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/devicetokens/{name}":{"get":{"description":"read the specified DeviceToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedDeviceToken","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"put":{"description":"replace the specified DeviceToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedDeviceToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"delete":{"description":"delete a DeviceToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedDeviceToken","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"patch":{"description":"partially update the specified DeviceToken","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedDeviceToken","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeviceToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/oauth2clients":{"get":{"description":"list objects of kind OAuth2Client","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedOAuth2Client","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2ClientList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"post":{"description":"create an OAuth2Client","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedOAuth2Client","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"delete":{"description":"delete collection of OAuth2Client","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedOAuth2Client","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/oauth2clients/{name}":{"get":{"description":"read the specified OAuth2Client","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedOAuth2Client","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"put":{"description":"replace the specified OAuth2Client","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedOAuth2Client","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"delete":{"description":"delete an OAuth2Client","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedOAuth2Client","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"patch":{"description":"partially update the specified OAuth2Client","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedOAuth2Client","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OAuth2Client","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/offlinesessionses":{"get":{"description":"list objects of kind OfflineSessions","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedOfflineSessions","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessionsList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"post":{"description":"create OfflineSessions","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedOfflineSessions","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"delete":{"description":"delete collection of OfflineSessions","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedOfflineSessions","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/offlinesessionses/{name}":{"get":{"description":"read the specified OfflineSessions","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedOfflineSessions","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"put":{"description":"replace the specified OfflineSessions","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedOfflineSessions","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"delete":{"description":"delete OfflineSessions","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedOfflineSessions","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"patch":{"description":"partially update the specified OfflineSessions","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedOfflineSessions","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OfflineSessions","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/passwords":{"get":{"description":"list objects of kind Password","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedPassword","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.PasswordList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"post":{"description":"create a Password","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedPassword","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"delete":{"description":"delete collection of Password","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedPassword","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/passwords/{name}":{"get":{"description":"read the specified Password","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedPassword","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"put":{"description":"replace the specified Password","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedPassword","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"delete":{"description":"delete a Password","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedPassword","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"patch":{"description":"partially update the specified Password","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedPassword","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Password","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/refreshtokens":{"get":{"description":"list objects of kind RefreshToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedRefreshToken","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshTokenList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"post":{"description":"create a RefreshToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedRefreshToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"delete":{"description":"delete collection of RefreshToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedRefreshToken","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/refreshtokens/{name}":{"get":{"description":"read the specified RefreshToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedRefreshToken","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"put":{"description":"replace the specified RefreshToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedRefreshToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"delete":{"description":"delete a RefreshToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedRefreshToken","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"patch":{"description":"partially update the specified RefreshToken","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedRefreshToken","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RefreshToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/signingkeies":{"get":{"description":"list objects of kind SigningKey","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1NamespacedSigningKey","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKeyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"post":{"description":"create a SigningKey","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"createDexCoreosComV1NamespacedSigningKey","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"delete":{"description":"delete collection of SigningKey","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1CollectionNamespacedSigningKey","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/namespaces/{namespace}/signingkeies/{name}":{"get":{"description":"read the specified SigningKey","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"readDexCoreosComV1NamespacedSigningKey","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"put":{"description":"replace the specified SigningKey","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"replaceDexCoreosComV1NamespacedSigningKey","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"delete":{"description":"delete a SigningKey","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"deleteDexCoreosComV1NamespacedSigningKey","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"patch":{"description":"partially update the specified SigningKey","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"patchDexCoreosComV1NamespacedSigningKey","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SigningKey","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/dex.coreos.com/v1/oauth2clients":{"get":{"description":"list objects of kind OAuth2Client","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1OAuth2ClientForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2ClientList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/offlinesessionses":{"get":{"description":"list objects of kind OfflineSessions","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1OfflineSessionsForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessionsList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/passwords":{"get":{"description":"list objects of kind Password","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1PasswordForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.PasswordList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"Password","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/refreshtokens":{"get":{"description":"list objects of kind RefreshToken","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1RefreshTokenForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshTokenList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/dex.coreos.com/v1/signingkeies":{"get":{"description":"list objects of kind SigningKey","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["dexCoreosCom_v1"],"operationId":"listDexCoreosComV1SigningKeyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKeyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/discovery.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery"],"operationId":"getDiscoveryAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/discovery.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"getDiscoveryV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/discovery.k8s.io/v1/endpointslices":{"get":{"description":"list or watch objects of kind EndpointSlice","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"listDiscoveryV1EndpointSliceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSliceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices":{"get":{"description":"list or watch objects of kind EndpointSlice","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"listDiscoveryV1NamespacedEndpointSlice","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSliceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"post":{"description":"create an EndpointSlice","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"createDiscoveryV1NamespacedEndpointSlice","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"delete":{"description":"delete collection of EndpointSlice","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"deleteDiscoveryV1CollectionNamespacedEndpointSlice","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/discovery.k8s.io/v1/namespaces/{namespace}/endpointslices/{name}":{"get":{"description":"read the specified EndpointSlice","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"readDiscoveryV1NamespacedEndpointSlice","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"put":{"description":"replace the specified EndpointSlice","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"replaceDiscoveryV1NamespacedEndpointSlice","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"delete":{"description":"delete an EndpointSlice","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"deleteDiscoveryV1NamespacedEndpointSlice","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"patch":{"description":"partially update the specified EndpointSlice","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"patchDiscoveryV1NamespacedEndpointSlice","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EndpointSlice","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/discovery.k8s.io/v1/watch/endpointslices":{"get":{"description":"watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"watchDiscoveryV1EndpointSliceListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/discovery.k8s.io/v1/watch/namespaces/{namespace}/endpointslices":{"get":{"description":"watch individual changes to a list of EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"watchDiscoveryV1NamespacedEndpointSliceList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/discovery.k8s.io/v1/watch/namespaces/{namespace}/endpointslices/{name}":{"get":{"description":"watch changes to an object of kind EndpointSlice. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["discovery_v1"],"operationId":"watchDiscoveryV1NamespacedEndpointSlice","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the EndpointSlice","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eaas.konflux-ci.dev/v1alpha1/namespaces":{"get":{"description":"list objects of kind Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"listEaasKonfluxCiDevV1alpha1NamespaceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.NamespaceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eaas.konflux-ci.dev/v1alpha1/namespaces/{namespace}/namespaces":{"get":{"description":"list objects of kind Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"listEaasKonfluxCiDevV1alpha1NamespacedNamespace","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.NamespaceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"post":{"description":"create a Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"createEaasKonfluxCiDevV1alpha1NamespacedNamespace","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"delete":{"description":"delete collection of Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"deleteEaasKonfluxCiDevV1alpha1CollectionNamespacedNamespace","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eaas.konflux-ci.dev/v1alpha1/namespaces/{namespace}/namespaces/{name}":{"get":{"description":"read the specified Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"readEaasKonfluxCiDevV1alpha1NamespacedNamespace","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"put":{"description":"replace the specified Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"replaceEaasKonfluxCiDevV1alpha1NamespacedNamespace","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"delete":{"description":"delete a Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"deleteEaasKonfluxCiDevV1alpha1NamespacedNamespace","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"patch":{"description":"partially update the specified Namespace","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"patchEaasKonfluxCiDevV1alpha1NamespacedNamespace","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Namespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eaas.konflux-ci.dev/v1alpha1/namespaces/{namespace}/namespaces/{name}/status":{"get":{"description":"read status of the specified Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"readEaasKonfluxCiDevV1alpha1NamespacedNamespaceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"put":{"description":"replace status of the specified Namespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"replaceEaasKonfluxCiDevV1alpha1NamespacedNamespaceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Namespace","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"patchEaasKonfluxCiDevV1alpha1NamespacedNamespaceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Namespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eaas.konflux-ci.dev/v1alpha1/xnamespaces":{"get":{"description":"list objects of kind XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"listEaasKonfluxCiDevV1alpha1XNamespace","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespaceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"post":{"description":"create a XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"createEaasKonfluxCiDevV1alpha1XNamespace","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"delete":{"description":"delete collection of XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"deleteEaasKonfluxCiDevV1alpha1CollectionXNamespace","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eaas.konflux-ci.dev/v1alpha1/xnamespaces/{name}":{"get":{"description":"read the specified XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"readEaasKonfluxCiDevV1alpha1XNamespace","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"put":{"description":"replace the specified XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"replaceEaasKonfluxCiDevV1alpha1XNamespace","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"delete":{"description":"delete a XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"deleteEaasKonfluxCiDevV1alpha1XNamespace","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"patch":{"description":"partially update the specified XNamespace","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"patchEaasKonfluxCiDevV1alpha1XNamespace","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the XNamespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eaas.konflux-ci.dev/v1alpha1/xnamespaces/{name}/status":{"get":{"description":"read status of the specified XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"readEaasKonfluxCiDevV1alpha1XNamespaceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"put":{"description":"replace status of the specified XNamespace","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"replaceEaasKonfluxCiDevV1alpha1XNamespaceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified XNamespace","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eaasKonfluxCiDev_v1alpha1"],"operationId":"patchEaasKonfluxCiDevV1alpha1XNamespaceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the XNamespace","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1/brokers":{"get":{"description":"list objects of kind Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"listEventingKnativeDevV1BrokerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.BrokerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eventing.knative.dev/v1/namespaces/{namespace}/brokers":{"get":{"description":"list objects of kind Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"listEventingKnativeDevV1NamespacedBroker","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.BrokerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"post":{"description":"create a Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"createEventingKnativeDevV1NamespacedBroker","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"delete":{"description":"delete collection of Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"deleteEventingKnativeDevV1CollectionNamespacedBroker","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1/namespaces/{namespace}/brokers/{name}":{"get":{"description":"read the specified Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"readEventingKnativeDevV1NamespacedBroker","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"put":{"description":"replace the specified Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"replaceEventingKnativeDevV1NamespacedBroker","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"delete":{"description":"delete a Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"deleteEventingKnativeDevV1NamespacedBroker","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"patch":{"description":"partially update the specified Broker","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"patchEventingKnativeDevV1NamespacedBroker","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Broker","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1/namespaces/{namespace}/brokers/{name}/status":{"get":{"description":"read status of the specified Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"readEventingKnativeDevV1NamespacedBrokerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"put":{"description":"replace status of the specified Broker","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"replaceEventingKnativeDevV1NamespacedBrokerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"patch":{"description":"partially update status of the specified Broker","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"patchEventingKnativeDevV1NamespacedBrokerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Broker","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1/namespaces/{namespace}/triggers":{"get":{"description":"list objects of kind Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"listEventingKnativeDevV1NamespacedTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.TriggerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"post":{"description":"create a Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"createEventingKnativeDevV1NamespacedTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"delete":{"description":"delete collection of Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"deleteEventingKnativeDevV1CollectionNamespacedTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1/namespaces/{namespace}/triggers/{name}":{"get":{"description":"read the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"readEventingKnativeDevV1NamespacedTrigger","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"put":{"description":"replace the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"replaceEventingKnativeDevV1NamespacedTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"delete":{"description":"delete a Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"deleteEventingKnativeDevV1NamespacedTrigger","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"patch":{"description":"partially update the specified Trigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"patchEventingKnativeDevV1NamespacedTrigger","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Trigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1/namespaces/{namespace}/triggers/{name}/status":{"get":{"description":"read status of the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"readEventingKnativeDevV1NamespacedTriggerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"put":{"description":"replace status of the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"replaceEventingKnativeDevV1NamespacedTriggerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"patch":{"description":"partially update status of the specified Trigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"patchEventingKnativeDevV1NamespacedTriggerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Trigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1/triggers":{"get":{"description":"list objects of kind Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1"],"operationId":"listEventingKnativeDevV1TriggerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1.TriggerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eventing.knative.dev/v1alpha1/eventpolicies":{"get":{"description":"list objects of kind EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"listEventingKnativeDevV1alpha1EventPolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eventing.knative.dev/v1alpha1/namespaces/{namespace}/eventpolicies":{"get":{"description":"list objects of kind EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"listEventingKnativeDevV1alpha1NamespacedEventPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"post":{"description":"create an EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"createEventingKnativeDevV1alpha1NamespacedEventPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"deleteEventingKnativeDevV1alpha1CollectionNamespacedEventPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1alpha1/namespaces/{namespace}/eventpolicies/{name}":{"get":{"description":"read the specified EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"readEventingKnativeDevV1alpha1NamespacedEventPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"replaceEventingKnativeDevV1alpha1NamespacedEventPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"delete":{"description":"delete an EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"deleteEventingKnativeDevV1alpha1NamespacedEventPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified EventPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"patchEventingKnativeDevV1alpha1NamespacedEventPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1alpha1/namespaces/{namespace}/eventpolicies/{name}/status":{"get":{"description":"read status of the specified EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"readEventingKnativeDevV1alpha1NamespacedEventPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified EventPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"replaceEventingKnativeDevV1alpha1NamespacedEventPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified EventPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1alpha1"],"operationId":"patchEventingKnativeDevV1alpha1NamespacedEventPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta1/eventtypes":{"get":{"description":"list objects of kind EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"listEventingKnativeDevV1beta1EventTypeForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventTypeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eventing.knative.dev/v1beta1/namespaces/{namespace}/eventtypes":{"get":{"description":"list objects of kind EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"listEventingKnativeDevV1beta1NamespacedEventType","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventTypeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"post":{"description":"create an EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"createEventingKnativeDevV1beta1NamespacedEventType","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"delete":{"description":"delete collection of EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"deleteEventingKnativeDevV1beta1CollectionNamespacedEventType","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta1/namespaces/{namespace}/eventtypes/{name}":{"get":{"description":"read the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"readEventingKnativeDevV1beta1NamespacedEventType","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"put":{"description":"replace the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"replaceEventingKnativeDevV1beta1NamespacedEventType","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"delete":{"description":"delete an EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"deleteEventingKnativeDevV1beta1NamespacedEventType","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"patch":{"description":"partially update the specified EventType","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"patchEventingKnativeDevV1beta1NamespacedEventType","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventType","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta1/namespaces/{namespace}/eventtypes/{name}/status":{"get":{"description":"read status of the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"readEventingKnativeDevV1beta1NamespacedEventTypeStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"put":{"description":"replace status of the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"replaceEventingKnativeDevV1beta1NamespacedEventTypeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"patch":{"description":"partially update status of the specified EventType","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta1"],"operationId":"patchEventingKnativeDevV1beta1NamespacedEventTypeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventType","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta2/eventtypes":{"get":{"description":"list objects of kind EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"listEventingKnativeDevV1beta2EventTypeForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventTypeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eventing.knative.dev/v1beta2/namespaces/{namespace}/eventtypes":{"get":{"description":"list objects of kind EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"listEventingKnativeDevV1beta2NamespacedEventType","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventTypeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"post":{"description":"create an EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"createEventingKnativeDevV1beta2NamespacedEventType","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"delete":{"description":"delete collection of EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"deleteEventingKnativeDevV1beta2CollectionNamespacedEventType","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta2/namespaces/{namespace}/eventtypes/{name}":{"get":{"description":"read the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"readEventingKnativeDevV1beta2NamespacedEventType","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"put":{"description":"replace the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"replaceEventingKnativeDevV1beta2NamespacedEventType","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"delete":{"description":"delete an EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"deleteEventingKnativeDevV1beta2NamespacedEventType","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"patch":{"description":"partially update the specified EventType","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"patchEventingKnativeDevV1beta2NamespacedEventType","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventType","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta2/namespaces/{namespace}/eventtypes/{name}/status":{"get":{"description":"read status of the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"readEventingKnativeDevV1beta2NamespacedEventTypeStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"put":{"description":"replace status of the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"replaceEventingKnativeDevV1beta2NamespacedEventTypeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"patch":{"description":"partially update status of the specified EventType","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta2"],"operationId":"patchEventingKnativeDevV1beta2NamespacedEventTypeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventType","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta3/eventtypes":{"get":{"description":"list objects of kind EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"listEventingKnativeDevV1beta3EventTypeForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventTypeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/eventing.knative.dev/v1beta3/namespaces/{namespace}/eventtypes":{"get":{"description":"list objects of kind EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"listEventingKnativeDevV1beta3NamespacedEventType","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventTypeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"post":{"description":"create an EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"createEventingKnativeDevV1beta3NamespacedEventType","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"delete":{"description":"delete collection of EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"deleteEventingKnativeDevV1beta3CollectionNamespacedEventType","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta3/namespaces/{namespace}/eventtypes/{name}":{"get":{"description":"read the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"readEventingKnativeDevV1beta3NamespacedEventType","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"put":{"description":"replace the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"replaceEventingKnativeDevV1beta3NamespacedEventType","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"delete":{"description":"delete an EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"deleteEventingKnativeDevV1beta3NamespacedEventType","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"patch":{"description":"partially update the specified EventType","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"patchEventingKnativeDevV1beta3NamespacedEventType","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventType","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/eventing.knative.dev/v1beta3/namespaces/{namespace}/eventtypes/{name}/status":{"get":{"description":"read status of the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"readEventingKnativeDevV1beta3NamespacedEventTypeStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"put":{"description":"replace status of the specified EventType","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"replaceEventingKnativeDevV1beta3NamespacedEventTypeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"patch":{"description":"partially update status of the specified EventType","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["eventingKnativeDev_v1beta3"],"operationId":"patchEventingKnativeDevV1beta3NamespacedEventTypeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventType","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/events.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events"],"operationId":"getEventsAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/events.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events_v1"],"operationId":"getEventsV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/events.k8s.io/v1/events":{"get":{"description":"list or watch objects of kind Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["events_v1"],"operationId":"listEventsV1EventForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.EventList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/events.k8s.io/v1/namespaces/{namespace}/events":{"get":{"description":"list or watch objects of kind Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["events_v1"],"operationId":"listEventsV1NamespacedEvent","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.EventList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"post":{"description":"create an Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events_v1"],"operationId":"createEventsV1NamespacedEvent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"delete":{"description":"delete collection of Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events_v1"],"operationId":"deleteEventsV1CollectionNamespacedEvent","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/events.k8s.io/v1/namespaces/{namespace}/events/{name}":{"get":{"description":"read the specified Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events_v1"],"operationId":"readEventsV1NamespacedEvent","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"put":{"description":"replace the specified Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events_v1"],"operationId":"replaceEventsV1NamespacedEvent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"delete":{"description":"delete an Event","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events_v1"],"operationId":"deleteEventsV1NamespacedEvent","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"patch":{"description":"partially update the specified Event","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["events_v1"],"operationId":"patchEventsV1NamespacedEvent","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Event","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/events.k8s.io/v1/watch/events":{"get":{"description":"watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["events_v1"],"operationId":"watchEventsV1EventListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/events.k8s.io/v1/watch/namespaces/{namespace}/events":{"get":{"description":"watch individual changes to a list of Event. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["events_v1"],"operationId":"watchEventsV1NamespacedEventList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/events.k8s.io/v1/watch/namespaces/{namespace}/events/{name}":{"get":{"description":"watch changes to an object of kind Event. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["events_v1"],"operationId":"watchEventsV1NamespacedEvent","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"events.k8s.io","kind":"Event","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Event","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver"],"operationId":"getFlowcontrolApiserverAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/flowcontrol.apiserver.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"getFlowcontrolApiserverV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/flowcontrol.apiserver.k8s.io/v1/flowschemas":{"get":{"description":"list or watch objects of kind FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"listFlowcontrolApiserverV1FlowSchema","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchemaList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"post":{"description":"create a FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"createFlowcontrolApiserverV1FlowSchema","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"delete":{"description":"delete collection of FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"deleteFlowcontrolApiserverV1CollectionFlowSchema","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/flowschemas/{name}":{"get":{"description":"read the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"readFlowcontrolApiserverV1FlowSchema","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"put":{"description":"replace the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"replaceFlowcontrolApiserverV1FlowSchema","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"delete":{"description":"delete a FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"deleteFlowcontrolApiserverV1FlowSchema","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"patch":{"description":"partially update the specified FlowSchema","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"patchFlowcontrolApiserverV1FlowSchema","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FlowSchema","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/flowschemas/{name}/status":{"get":{"description":"read status of the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"readFlowcontrolApiserverV1FlowSchemaStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"put":{"description":"replace status of the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"replaceFlowcontrolApiserverV1FlowSchemaStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"patch":{"description":"partially update status of the specified FlowSchema","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"patchFlowcontrolApiserverV1FlowSchemaStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FlowSchema","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/prioritylevelconfigurations":{"get":{"description":"list or watch objects of kind PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"listFlowcontrolApiserverV1PriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"post":{"description":"create a PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"createFlowcontrolApiserverV1PriorityLevelConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"delete":{"description":"delete collection of PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"deleteFlowcontrolApiserverV1CollectionPriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/prioritylevelconfigurations/{name}":{"get":{"description":"read the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"readFlowcontrolApiserverV1PriorityLevelConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"put":{"description":"replace the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"replaceFlowcontrolApiserverV1PriorityLevelConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"delete":{"description":"delete a PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"deleteFlowcontrolApiserverV1PriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"patch":{"description":"partially update the specified PriorityLevelConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"patchFlowcontrolApiserverV1PriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PriorityLevelConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/prioritylevelconfigurations/{name}/status":{"get":{"description":"read status of the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"readFlowcontrolApiserverV1PriorityLevelConfigurationStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"put":{"description":"replace status of the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"replaceFlowcontrolApiserverV1PriorityLevelConfigurationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"patch":{"description":"partially update status of the specified PriorityLevelConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"patchFlowcontrolApiserverV1PriorityLevelConfigurationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PriorityLevelConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/watch/flowschemas":{"get":{"description":"watch individual changes to a list of FlowSchema. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"watchFlowcontrolApiserverV1FlowSchemaList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/watch/flowschemas/{name}":{"get":{"description":"watch changes to an object of kind FlowSchema. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"watchFlowcontrolApiserverV1FlowSchema","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the FlowSchema","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/watch/prioritylevelconfigurations":{"get":{"description":"watch individual changes to a list of PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"watchFlowcontrolApiserverV1PriorityLevelConfigurationList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/v1/watch/prioritylevelconfigurations/{name}":{"get":{"description":"watch changes to an object of kind PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1"],"operationId":"watchFlowcontrolApiserverV1PriorityLevelConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the PriorityLevelConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"getFlowcontrolApiserverV1beta3APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/flowschemas":{"get":{"description":"list or watch objects of kind FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"listFlowcontrolApiserverV1beta3FlowSchema","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchemaList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"post":{"description":"create a FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"createFlowcontrolApiserverV1beta3FlowSchema","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"delete":{"description":"delete collection of FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"deleteFlowcontrolApiserverV1beta3CollectionFlowSchema","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/flowschemas/{name}":{"get":{"description":"read the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"readFlowcontrolApiserverV1beta3FlowSchema","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"put":{"description":"replace the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"replaceFlowcontrolApiserverV1beta3FlowSchema","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"delete":{"description":"delete a FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"deleteFlowcontrolApiserverV1beta3FlowSchema","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"patch":{"description":"partially update the specified FlowSchema","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"patchFlowcontrolApiserverV1beta3FlowSchema","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FlowSchema","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/flowschemas/{name}/status":{"get":{"description":"read status of the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"readFlowcontrolApiserverV1beta3FlowSchemaStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"put":{"description":"replace status of the specified FlowSchema","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"replaceFlowcontrolApiserverV1beta3FlowSchemaStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"patch":{"description":"partially update status of the specified FlowSchema","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"patchFlowcontrolApiserverV1beta3FlowSchemaStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FlowSchema","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/prioritylevelconfigurations":{"get":{"description":"list or watch objects of kind PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"listFlowcontrolApiserverV1beta3PriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"post":{"description":"create a PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"createFlowcontrolApiserverV1beta3PriorityLevelConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"delete":{"description":"delete collection of PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"deleteFlowcontrolApiserverV1beta3CollectionPriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/prioritylevelconfigurations/{name}":{"get":{"description":"read the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"readFlowcontrolApiserverV1beta3PriorityLevelConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"put":{"description":"replace the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"replaceFlowcontrolApiserverV1beta3PriorityLevelConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"delete":{"description":"delete a PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"deleteFlowcontrolApiserverV1beta3PriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"patch":{"description":"partially update the specified PriorityLevelConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"patchFlowcontrolApiserverV1beta3PriorityLevelConfiguration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PriorityLevelConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/prioritylevelconfigurations/{name}/status":{"get":{"description":"read status of the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"readFlowcontrolApiserverV1beta3PriorityLevelConfigurationStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"put":{"description":"replace status of the specified PriorityLevelConfiguration","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"replaceFlowcontrolApiserverV1beta3PriorityLevelConfigurationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"patch":{"description":"partially update status of the specified PriorityLevelConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"patchFlowcontrolApiserverV1beta3PriorityLevelConfigurationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PriorityLevelConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/watch/flowschemas":{"get":{"description":"watch individual changes to a list of FlowSchema. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"watchFlowcontrolApiserverV1beta3FlowSchemaList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/watch/flowschemas/{name}":{"get":{"description":"watch changes to an object of kind FlowSchema. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"watchFlowcontrolApiserverV1beta3FlowSchema","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the FlowSchema","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/watch/prioritylevelconfigurations":{"get":{"description":"watch individual changes to a list of PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"watchFlowcontrolApiserverV1beta3PriorityLevelConfigurationList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flowcontrol.apiserver.k8s.io/v1beta3/watch/prioritylevelconfigurations/{name}":{"get":{"description":"watch changes to an object of kind PriorityLevelConfiguration. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["flowcontrolApiserver_v1beta3"],"operationId":"watchFlowcontrolApiserverV1beta3PriorityLevelConfiguration","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the PriorityLevelConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flows.knative.dev/v1/namespaces/{namespace}/parallels":{"get":{"description":"list objects of kind Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"listFlowsKnativeDevV1NamespacedParallel","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.ParallelList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"post":{"description":"create a Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"createFlowsKnativeDevV1NamespacedParallel","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"delete":{"description":"delete collection of Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"deleteFlowsKnativeDevV1CollectionNamespacedParallel","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flows.knative.dev/v1/namespaces/{namespace}/parallels/{name}":{"get":{"description":"read the specified Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"readFlowsKnativeDevV1NamespacedParallel","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"put":{"description":"replace the specified Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"replaceFlowsKnativeDevV1NamespacedParallel","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"delete":{"description":"delete a Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"deleteFlowsKnativeDevV1NamespacedParallel","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"patch":{"description":"partially update the specified Parallel","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"patchFlowsKnativeDevV1NamespacedParallel","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Parallel","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flows.knative.dev/v1/namespaces/{namespace}/parallels/{name}/status":{"get":{"description":"read status of the specified Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"readFlowsKnativeDevV1NamespacedParallelStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"put":{"description":"replace status of the specified Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"replaceFlowsKnativeDevV1NamespacedParallelStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"patch":{"description":"partially update status of the specified Parallel","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"patchFlowsKnativeDevV1NamespacedParallelStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Parallel","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flows.knative.dev/v1/namespaces/{namespace}/sequences":{"get":{"description":"list objects of kind Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"listFlowsKnativeDevV1NamespacedSequence","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.SequenceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"post":{"description":"create a Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"createFlowsKnativeDevV1NamespacedSequence","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"delete":{"description":"delete collection of Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"deleteFlowsKnativeDevV1CollectionNamespacedSequence","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flows.knative.dev/v1/namespaces/{namespace}/sequences/{name}":{"get":{"description":"read the specified Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"readFlowsKnativeDevV1NamespacedSequence","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"put":{"description":"replace the specified Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"replaceFlowsKnativeDevV1NamespacedSequence","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"delete":{"description":"delete a Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"deleteFlowsKnativeDevV1NamespacedSequence","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"patch":{"description":"partially update the specified Sequence","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"patchFlowsKnativeDevV1NamespacedSequence","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Sequence","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flows.knative.dev/v1/namespaces/{namespace}/sequences/{name}/status":{"get":{"description":"read status of the specified Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"readFlowsKnativeDevV1NamespacedSequenceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"put":{"description":"replace status of the specified Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"replaceFlowsKnativeDevV1NamespacedSequenceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"patch":{"description":"partially update status of the specified Sequence","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"patchFlowsKnativeDevV1NamespacedSequenceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Sequence","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/flows.knative.dev/v1/parallels":{"get":{"description":"list objects of kind Parallel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"listFlowsKnativeDevV1ParallelForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.ParallelList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/flows.knative.dev/v1/sequences":{"get":{"description":"list objects of kind Sequence","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["flowsKnativeDev_v1"],"operationId":"listFlowsKnativeDevV1SequenceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.flows.v1.SequenceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/helm.openshift.io/v1beta1/helmchartrepositories":{"get":{"description":"list objects of kind HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"listHelmOpenshiftIoV1beta1HelmChartRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"post":{"description":"create a HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"createHelmOpenshiftIoV1beta1HelmChartRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"delete":{"description":"delete collection of HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"deleteHelmOpenshiftIoV1beta1CollectionHelmChartRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/helm.openshift.io/v1beta1/helmchartrepositories/{name}":{"get":{"description":"read the specified HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"readHelmOpenshiftIoV1beta1HelmChartRepository","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"put":{"description":"replace the specified HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"replaceHelmOpenshiftIoV1beta1HelmChartRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"delete":{"description":"delete a HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"deleteHelmOpenshiftIoV1beta1HelmChartRepository","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"patch":{"description":"partially update the specified HelmChartRepository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"patchHelmOpenshiftIoV1beta1HelmChartRepository","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HelmChartRepository","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/helm.openshift.io/v1beta1/helmchartrepositories/{name}/status":{"get":{"description":"read status of the specified HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"readHelmOpenshiftIoV1beta1HelmChartRepositoryStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"put":{"description":"replace status of the specified HelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"replaceHelmOpenshiftIoV1beta1HelmChartRepositoryStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"patch":{"description":"partially update status of the specified HelmChartRepository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"patchHelmOpenshiftIoV1beta1HelmChartRepositoryStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HelmChartRepository","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/helm.openshift.io/v1beta1/namespaces/{namespace}/projecthelmchartrepositories":{"get":{"description":"list objects of kind ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"listHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"post":{"description":"create a ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"createHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"delete":{"description":"delete collection of ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"deleteHelmOpenshiftIoV1beta1CollectionNamespacedProjectHelmChartRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/helm.openshift.io/v1beta1/namespaces/{namespace}/projecthelmchartrepositories/{name}":{"get":{"description":"read the specified ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"readHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepository","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"put":{"description":"replace the specified ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"replaceHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"delete":{"description":"delete a ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"deleteHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepository","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"patch":{"description":"partially update the specified ProjectHelmChartRepository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"patchHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepository","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProjectHelmChartRepository","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/helm.openshift.io/v1beta1/namespaces/{namespace}/projecthelmchartrepositories/{name}/status":{"get":{"description":"read status of the specified ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"readHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepositoryStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"put":{"description":"replace status of the specified ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"replaceHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepositoryStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ProjectHelmChartRepository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"patchHelmOpenshiftIoV1beta1NamespacedProjectHelmChartRepositoryStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProjectHelmChartRepository","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/helm.openshift.io/v1beta1/projecthelmchartrepositories":{"get":{"description":"list objects of kind ProjectHelmChartRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["helmOpenshiftIo_v1beta1"],"operationId":"listHelmOpenshiftIoV1beta1ProjectHelmChartRepositoryForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"getImageOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v5"}},"401":{"description":"Unauthorized"}}}},"/apis/image.openshift.io/v1/images":{"get":{"description":"list or watch objects of kind Image","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"listImageOpenshiftIoV1Image","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"post":{"description":"create an Image","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"createImageOpenshiftIoV1Image","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"delete":{"description":"delete collection of Image","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"deleteImageOpenshiftIoV1CollectionImage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/images/{name}":{"get":{"description":"read the specified Image","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1Image","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"put":{"description":"replace the specified Image","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"replaceImageOpenshiftIoV1Image","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"delete":{"description":"delete an Image","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"deleteImageOpenshiftIoV1Image","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"patch":{"description":"partially update the specified Image","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"patchImageOpenshiftIoV1Image","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Image","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/imagesignatures":{"post":{"description":"create an ImageSignature","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"createImageOpenshiftIoV1ImageSignature","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageSignature"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageSignature"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageSignature"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageSignature"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageSignature","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/imagesignatures/{name}":{"delete":{"description":"delete an ImageSignature","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"deleteImageOpenshiftIoV1ImageSignature","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageSignature","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"uniqueItems":true,"type":"string","description":"name of the ImageSignature","name":"name","in":"path","required":true},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}]},"/apis/image.openshift.io/v1/imagestreams":{"get":{"description":"list or watch objects of kind ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"listImageOpenshiftIoV1ImageStreamForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/imagestreamtags":{"get":{"description":"list objects of kind ImageStreamTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"listImageOpenshiftIoV1ImageStreamTagForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTagList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/imagetags":{"get":{"description":"list objects of kind ImageTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"listImageOpenshiftIoV1ImageTagForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTagList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreamimages/{name}":{"get":{"description":"read the specified ImageStreamImage","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1NamespacedImageStreamImage","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamImage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamImage","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageStreamImage","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreamimports":{"post":{"description":"create an ImageStreamImport","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"createImageOpenshiftIoV1NamespacedImageStreamImport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamImport"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamImport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamImport"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamImport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamImport","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreammappings":{"post":{"description":"create an ImageStreamMapping","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"createImageOpenshiftIoV1NamespacedImageStreamMapping","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamMapping"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamMapping"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamMapping"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamMapping"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamMapping","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreams":{"get":{"description":"list or watch objects of kind ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"listImageOpenshiftIoV1NamespacedImageStream","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"post":{"description":"create an ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"createImageOpenshiftIoV1NamespacedImageStream","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"delete":{"description":"delete collection of ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"deleteImageOpenshiftIoV1CollectionNamespacedImageStream","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreams/{name}":{"get":{"description":"read the specified ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1NamespacedImageStream","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"put":{"description":"replace the specified ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"replaceImageOpenshiftIoV1NamespacedImageStream","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"delete":{"description":"delete an ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"deleteImageOpenshiftIoV1NamespacedImageStream","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"patch":{"description":"partially update the specified ImageStream","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"patchImageOpenshiftIoV1NamespacedImageStream","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageStream","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreams/{name}/layers":{"get":{"description":"read layers of the specified ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1NamespacedImageStreamLayers","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamLayers"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamLayers","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageStreamLayers","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreams/{name}/secrets":{"get":{"description":"read secrets of the specified ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1NamespacedImageStreamSecrets","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.SecretList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"SecretList","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the SecretList","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreams/{name}/status":{"get":{"description":"read status of the specified ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1NamespacedImageStreamStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"put":{"description":"replace status of the specified ImageStream","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"replaceImageOpenshiftIoV1NamespacedImageStreamStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"patch":{"description":"partially update status of the specified ImageStream","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"patchImageOpenshiftIoV1NamespacedImageStreamStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageStream","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreamtags":{"get":{"description":"list objects of kind ImageStreamTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"listImageOpenshiftIoV1NamespacedImageStreamTag","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTagList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}},"post":{"description":"create an ImageStreamTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"createImageOpenshiftIoV1NamespacedImageStreamTag","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagestreamtags/{name}":{"get":{"description":"read the specified ImageStreamTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1NamespacedImageStreamTag","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}},"put":{"description":"replace the specified ImageStreamTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"replaceImageOpenshiftIoV1NamespacedImageStreamTag","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}},"delete":{"description":"delete an ImageStreamTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"deleteImageOpenshiftIoV1NamespacedImageStreamTag","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}},"patch":{"description":"partially update the specified ImageStreamTag","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"patchImageOpenshiftIoV1NamespacedImageStreamTag","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageStreamTag","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagetags":{"get":{"description":"list objects of kind ImageTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"listImageOpenshiftIoV1NamespacedImageTag","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTagList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}},"post":{"description":"create an ImageTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"createImageOpenshiftIoV1NamespacedImageTag","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/namespaces/{namespace}/imagetags/{name}":{"get":{"description":"read the specified ImageTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"readImageOpenshiftIoV1NamespacedImageTag","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}},"put":{"description":"replace the specified ImageTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"replaceImageOpenshiftIoV1NamespacedImageTag","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}},"delete":{"description":"delete an ImageTag","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"deleteImageOpenshiftIoV1NamespacedImageTag","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}},"patch":{"description":"partially update the specified ImageTag","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"patchImageOpenshiftIoV1NamespacedImageTag","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageTag","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/image.openshift.io/v1/watch/images":{"get":{"description":"watch individual changes to a list of Image. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"watchImageOpenshiftIoV1ImageList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/watch/images/{name}":{"get":{"description":"watch changes to an object of kind Image. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"watchImageOpenshiftIoV1Image","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"Image","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Image","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/watch/imagestreams":{"get":{"description":"watch individual changes to a list of ImageStream. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"watchImageOpenshiftIoV1ImageStreamListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/watch/namespaces/{namespace}/imagestreams":{"get":{"description":"watch individual changes to a list of ImageStream. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"watchImageOpenshiftIoV1NamespacedImageStreamList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/image.openshift.io/v1/watch/namespaces/{namespace}/imagestreams/{name}":{"get":{"description":"watch changes to an object of kind ImageStream. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["imageOpenshiftIo_v1"],"operationId":"watchImageOpenshiftIoV1NamespacedImageStream","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ImageStream","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/imageregistry.operator.openshift.io/v1/configs":{"get":{"description":"list objects of kind Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"listImageregistryOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"post":{"description":"create a Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"createImageregistryOperatorOpenshiftIoV1Config","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"delete":{"description":"delete collection of Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"deleteImageregistryOperatorOpenshiftIoV1CollectionConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/imageregistry.operator.openshift.io/v1/configs/{name}":{"get":{"description":"read the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"readImageregistryOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"put":{"description":"replace the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"replaceImageregistryOperatorOpenshiftIoV1Config","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"delete":{"description":"delete a Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"deleteImageregistryOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"patch":{"description":"partially update the specified Config","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"patchImageregistryOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Config","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/imageregistry.operator.openshift.io/v1/configs/{name}/status":{"get":{"description":"read status of the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"readImageregistryOperatorOpenshiftIoV1ConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"put":{"description":"replace status of the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"replaceImageregistryOperatorOpenshiftIoV1ConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"patch":{"description":"partially update status of the specified Config","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"patchImageregistryOperatorOpenshiftIoV1ConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Config","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/imageregistry.operator.openshift.io/v1/imagepruners":{"get":{"description":"list objects of kind ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"listImageregistryOperatorOpenshiftIoV1ImagePruner","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePrunerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"post":{"description":"create an ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"createImageregistryOperatorOpenshiftIoV1ImagePruner","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"delete":{"description":"delete collection of ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"deleteImageregistryOperatorOpenshiftIoV1CollectionImagePruner","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/imageregistry.operator.openshift.io/v1/imagepruners/{name}":{"get":{"description":"read the specified ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"readImageregistryOperatorOpenshiftIoV1ImagePruner","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"put":{"description":"replace the specified ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"replaceImageregistryOperatorOpenshiftIoV1ImagePruner","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"delete":{"description":"delete an ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"deleteImageregistryOperatorOpenshiftIoV1ImagePruner","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"patch":{"description":"partially update the specified ImagePruner","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"patchImageregistryOperatorOpenshiftIoV1ImagePruner","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImagePruner","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/imageregistry.operator.openshift.io/v1/imagepruners/{name}/status":{"get":{"description":"read status of the specified ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"readImageregistryOperatorOpenshiftIoV1ImagePrunerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"put":{"description":"replace status of the specified ImagePruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"replaceImageregistryOperatorOpenshiftIoV1ImagePrunerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"patch":{"description":"partially update status of the specified ImagePruner","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["imageregistryOperatorOpenshiftIo_v1"],"operationId":"patchImageregistryOperatorOpenshiftIoV1ImagePrunerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImagePruner","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ingress.operator.openshift.io/v1/dnsrecords":{"get":{"description":"list objects of kind DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"listIngressOperatorOpenshiftIoV1DNSRecordForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecordList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/ingress.operator.openshift.io/v1/namespaces/{namespace}/dnsrecords":{"get":{"description":"list objects of kind DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"listIngressOperatorOpenshiftIoV1NamespacedDNSRecord","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecordList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"post":{"description":"create a DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"createIngressOperatorOpenshiftIoV1NamespacedDNSRecord","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"delete":{"description":"delete collection of DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"deleteIngressOperatorOpenshiftIoV1CollectionNamespacedDNSRecord","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ingress.operator.openshift.io/v1/namespaces/{namespace}/dnsrecords/{name}":{"get":{"description":"read the specified DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"readIngressOperatorOpenshiftIoV1NamespacedDNSRecord","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"put":{"description":"replace the specified DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"replaceIngressOperatorOpenshiftIoV1NamespacedDNSRecord","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"delete":{"description":"delete a DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"deleteIngressOperatorOpenshiftIoV1NamespacedDNSRecord","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"patch":{"description":"partially update the specified DNSRecord","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"patchIngressOperatorOpenshiftIoV1NamespacedDNSRecord","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DNSRecord","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ingress.operator.openshift.io/v1/namespaces/{namespace}/dnsrecords/{name}/status":{"get":{"description":"read status of the specified DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"readIngressOperatorOpenshiftIoV1NamespacedDNSRecordStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"put":{"description":"replace status of the specified DNSRecord","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"replaceIngressOperatorOpenshiftIoV1NamespacedDNSRecordStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"patch":{"description":"partially update status of the specified DNSRecord","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["ingressOperatorOpenshiftIo_v1"],"operationId":"patchIngressOperatorOpenshiftIoV1NamespacedDNSRecordStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DNSRecord","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/job.min.io/v1alpha1/miniojobs":{"get":{"description":"list objects of kind MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"listJobMinIoV1alpha1MinIOJobForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJobList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/job.min.io/v1alpha1/namespaces/{namespace}/miniojobs":{"get":{"description":"list objects of kind MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"listJobMinIoV1alpha1NamespacedMinIOJob","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJobList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"post":{"description":"create a MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"createJobMinIoV1alpha1NamespacedMinIOJob","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"delete":{"description":"delete collection of MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"deleteJobMinIoV1alpha1CollectionNamespacedMinIOJob","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/job.min.io/v1alpha1/namespaces/{namespace}/miniojobs/{name}":{"get":{"description":"read the specified MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"readJobMinIoV1alpha1NamespacedMinIOJob","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"put":{"description":"replace the specified MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"replaceJobMinIoV1alpha1NamespacedMinIOJob","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"delete":{"description":"delete a MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"deleteJobMinIoV1alpha1NamespacedMinIOJob","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"patch":{"description":"partially update the specified MinIOJob","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"patchJobMinIoV1alpha1NamespacedMinIOJob","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MinIOJob","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/job.min.io/v1alpha1/namespaces/{namespace}/miniojobs/{name}/status":{"get":{"description":"read status of the specified MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"readJobMinIoV1alpha1NamespacedMinIOJobStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"put":{"description":"replace status of the specified MinIOJob","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"replaceJobMinIoV1alpha1NamespacedMinIOJobStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified MinIOJob","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["jobMinIo_v1alpha1"],"operationId":"patchJobMinIoV1alpha1NamespacedMinIOJobStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MinIOJob","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.cni.cncf.io/v1/namespaces/{namespace}/network-attachment-definitions":{"get":{"description":"list objects of kind NetworkAttachmentDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"listK8sCniCncfIoV1NamespacedNetworkAttachmentDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinitionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"post":{"description":"create a NetworkAttachmentDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"createK8sCniCncfIoV1NamespacedNetworkAttachmentDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"delete":{"description":"delete collection of NetworkAttachmentDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"deleteK8sCniCncfIoV1CollectionNamespacedNetworkAttachmentDefinition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.cni.cncf.io/v1/namespaces/{namespace}/network-attachment-definitions/{name}":{"get":{"description":"read the specified NetworkAttachmentDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"readK8sCniCncfIoV1NamespacedNetworkAttachmentDefinition","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"put":{"description":"replace the specified NetworkAttachmentDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"replaceK8sCniCncfIoV1NamespacedNetworkAttachmentDefinition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"delete":{"description":"delete a NetworkAttachmentDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"deleteK8sCniCncfIoV1NamespacedNetworkAttachmentDefinition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"patch":{"description":"partially update the specified NetworkAttachmentDefinition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"patchK8sCniCncfIoV1NamespacedNetworkAttachmentDefinition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NetworkAttachmentDefinition","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.cni.cncf.io/v1/network-attachment-definitions":{"get":{"description":"list objects of kind NetworkAttachmentDefinition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1"],"operationId":"listK8sCniCncfIoV1NetworkAttachmentDefinitionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinitionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/k8s.cni.cncf.io/v1alpha1/ipamclaims":{"get":{"description":"list objects of kind IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"listK8sCniCncfIoV1alpha1IPAMClaimForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaimList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/k8s.cni.cncf.io/v1alpha1/namespaces/{namespace}/ipamclaims":{"get":{"description":"list objects of kind IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"listK8sCniCncfIoV1alpha1NamespacedIPAMClaim","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaimList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"post":{"description":"create an IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"createK8sCniCncfIoV1alpha1NamespacedIPAMClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"delete":{"description":"delete collection of IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"deleteK8sCniCncfIoV1alpha1CollectionNamespacedIPAMClaim","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.cni.cncf.io/v1alpha1/namespaces/{namespace}/ipamclaims/{name}":{"get":{"description":"read the specified IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"readK8sCniCncfIoV1alpha1NamespacedIPAMClaim","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"put":{"description":"replace the specified IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"replaceK8sCniCncfIoV1alpha1NamespacedIPAMClaim","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"delete":{"description":"delete an IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"deleteK8sCniCncfIoV1alpha1NamespacedIPAMClaim","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"patch":{"description":"partially update the specified IPAMClaim","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"patchK8sCniCncfIoV1alpha1NamespacedIPAMClaim","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IPAMClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.cni.cncf.io/v1alpha1/namespaces/{namespace}/ipamclaims/{name}/status":{"get":{"description":"read status of the specified IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"readK8sCniCncfIoV1alpha1NamespacedIPAMClaimStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"put":{"description":"replace status of the specified IPAMClaim","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"replaceK8sCniCncfIoV1alpha1NamespacedIPAMClaimStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified IPAMClaim","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sCniCncfIo_v1alpha1"],"operationId":"patchK8sCniCncfIoV1alpha1NamespacedIPAMClaimStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IPAMClaim","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/adminpolicybasedexternalroutes":{"get":{"description":"list objects of kind AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1AdminPolicyBasedExternalRoute","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRouteList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"post":{"description":"create an AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"createK8sOvnOrgV1AdminPolicyBasedExternalRoute","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"delete":{"description":"delete collection of AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1CollectionAdminPolicyBasedExternalRoute","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/adminpolicybasedexternalroutes/{name}":{"get":{"description":"read the specified AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1AdminPolicyBasedExternalRoute","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"put":{"description":"replace the specified AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1AdminPolicyBasedExternalRoute","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"delete":{"description":"delete an AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1AdminPolicyBasedExternalRoute","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"patch":{"description":"partially update the specified AdminPolicyBasedExternalRoute","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1AdminPolicyBasedExternalRoute","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdminPolicyBasedExternalRoute","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/adminpolicybasedexternalroutes/{name}/status":{"get":{"description":"read status of the specified AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1AdminPolicyBasedExternalRouteStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"put":{"description":"replace status of the specified AdminPolicyBasedExternalRoute","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1AdminPolicyBasedExternalRouteStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"patch":{"description":"partially update status of the specified AdminPolicyBasedExternalRoute","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1AdminPolicyBasedExternalRouteStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdminPolicyBasedExternalRoute","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/clusteruserdefinednetworks":{"get":{"description":"list objects of kind ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1ClusterUserDefinedNetwork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetworkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"post":{"description":"create a ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"createK8sOvnOrgV1ClusterUserDefinedNetwork","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"delete":{"description":"delete collection of ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1CollectionClusterUserDefinedNetwork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/clusteruserdefinednetworks/{name}":{"get":{"description":"read the specified ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1ClusterUserDefinedNetwork","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"put":{"description":"replace the specified ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1ClusterUserDefinedNetwork","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"delete":{"description":"delete a ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1ClusterUserDefinedNetwork","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"patch":{"description":"partially update the specified ClusterUserDefinedNetwork","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1ClusterUserDefinedNetwork","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterUserDefinedNetwork","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/clusteruserdefinednetworks/{name}/status":{"get":{"description":"read status of the specified ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1ClusterUserDefinedNetworkStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"put":{"description":"replace status of the specified ClusterUserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1ClusterUserDefinedNetworkStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterUserDefinedNetwork","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1ClusterUserDefinedNetworkStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterUserDefinedNetwork","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/egressfirewalls":{"get":{"description":"list objects of kind EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1EgressFirewallForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewallList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/k8s.ovn.org/v1/egressips":{"get":{"description":"list objects of kind EgressIP","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1EgressIP","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIPList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}},"post":{"description":"create an EgressIP","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"createK8sOvnOrgV1EgressIP","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}},"delete":{"description":"delete collection of EgressIP","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1CollectionEgressIP","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/egressips/{name}":{"get":{"description":"read the specified EgressIP","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1EgressIP","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}},"put":{"description":"replace the specified EgressIP","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1EgressIP","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}},"delete":{"description":"delete an EgressIP","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1EgressIP","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}},"patch":{"description":"partially update the specified EgressIP","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1EgressIP","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressIP","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/egressqoses":{"get":{"description":"list objects of kind EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1EgressQoSForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoSList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/k8s.ovn.org/v1/egressservices":{"get":{"description":"list objects of kind EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1EgressServiceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressServiceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressfirewalls":{"get":{"description":"list objects of kind EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1NamespacedEgressFirewall","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewallList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"post":{"description":"create an EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"createK8sOvnOrgV1NamespacedEgressFirewall","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"delete":{"description":"delete collection of EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1CollectionNamespacedEgressFirewall","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressfirewalls/{name}":{"get":{"description":"read the specified EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedEgressFirewall","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"put":{"description":"replace the specified EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedEgressFirewall","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"delete":{"description":"delete an EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1NamespacedEgressFirewall","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"patch":{"description":"partially update the specified EgressFirewall","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedEgressFirewall","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressFirewall","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressfirewalls/{name}/status":{"get":{"description":"read status of the specified EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedEgressFirewallStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"put":{"description":"replace status of the specified EgressFirewall","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedEgressFirewallStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"patch":{"description":"partially update status of the specified EgressFirewall","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedEgressFirewallStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressFirewall","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressqoses":{"get":{"description":"list objects of kind EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1NamespacedEgressQoS","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoSList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"post":{"description":"create an EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"createK8sOvnOrgV1NamespacedEgressQoS","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"delete":{"description":"delete collection of EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1CollectionNamespacedEgressQoS","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressqoses/{name}":{"get":{"description":"read the specified EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedEgressQoS","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"put":{"description":"replace the specified EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedEgressQoS","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"delete":{"description":"delete an EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1NamespacedEgressQoS","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"patch":{"description":"partially update the specified EgressQoS","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedEgressQoS","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressQoS","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressqoses/{name}/status":{"get":{"description":"read status of the specified EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedEgressQoSStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"put":{"description":"replace status of the specified EgressQoS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedEgressQoSStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"patch":{"description":"partially update status of the specified EgressQoS","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedEgressQoSStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressQoS","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressservices":{"get":{"description":"list objects of kind EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1NamespacedEgressService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressServiceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"post":{"description":"create an EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"createK8sOvnOrgV1NamespacedEgressService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"delete":{"description":"delete collection of EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1CollectionNamespacedEgressService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressservices/{name}":{"get":{"description":"read the specified EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedEgressService","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"put":{"description":"replace the specified EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedEgressService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"delete":{"description":"delete an EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1NamespacedEgressService","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"patch":{"description":"partially update the specified EgressService","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedEgressService","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressService","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/egressservices/{name}/status":{"get":{"description":"read status of the specified EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedEgressServiceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"put":{"description":"replace status of the specified EgressService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedEgressServiceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"patch":{"description":"partially update status of the specified EgressService","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedEgressServiceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressService","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/userdefinednetworks":{"get":{"description":"list objects of kind UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1NamespacedUserDefinedNetwork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetworkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"post":{"description":"create an UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"createK8sOvnOrgV1NamespacedUserDefinedNetwork","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"delete":{"description":"delete collection of UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1CollectionNamespacedUserDefinedNetwork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/userdefinednetworks/{name}":{"get":{"description":"read the specified UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedUserDefinedNetwork","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"put":{"description":"replace the specified UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedUserDefinedNetwork","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"delete":{"description":"delete an UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"deleteK8sOvnOrgV1NamespacedUserDefinedNetwork","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"patch":{"description":"partially update the specified UserDefinedNetwork","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedUserDefinedNetwork","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UserDefinedNetwork","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/namespaces/{namespace}/userdefinednetworks/{name}/status":{"get":{"description":"read status of the specified UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"readK8sOvnOrgV1NamespacedUserDefinedNetworkStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"put":{"description":"replace status of the specified UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"replaceK8sOvnOrgV1NamespacedUserDefinedNetworkStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"patch":{"description":"partially update status of the specified UserDefinedNetwork","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"patchK8sOvnOrgV1NamespacedUserDefinedNetworkStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UserDefinedNetwork","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/k8s.ovn.org/v1/userdefinednetworks":{"get":{"description":"list objects of kind UserDefinedNetwork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["k8sOvnOrg_v1"],"operationId":"listK8sOvnOrgV1UserDefinedNetworkForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetworkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubearchive.org/v1/clusterkubearchiveconfigs":{"get":{"description":"list objects of kind ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1ClusterKubeArchiveConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"post":{"description":"create a ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"createKubearchiveOrgV1ClusterKubeArchiveConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"delete":{"description":"delete collection of ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1CollectionClusterKubeArchiveConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/clusterkubearchiveconfigs/{name}":{"get":{"description":"read the specified ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1ClusterKubeArchiveConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"put":{"description":"replace the specified ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1ClusterKubeArchiveConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"delete":{"description":"delete a ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1ClusterKubeArchiveConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"patch":{"description":"partially update the specified ClusterKubeArchiveConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1ClusterKubeArchiveConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterKubeArchiveConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/clusterkubearchiveconfigs/{name}/status":{"get":{"description":"read status of the specified ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1ClusterKubeArchiveConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"put":{"description":"replace status of the specified ClusterKubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1ClusterKubeArchiveConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterKubeArchiveConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1ClusterKubeArchiveConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterKubeArchiveConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/clustervacuumconfigs":{"get":{"description":"list objects of kind ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1ClusterVacuumConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubearchive.org/v1/kubearchiveconfigs":{"get":{"description":"list objects of kind KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1KubeArchiveConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/clustervacuumconfigs":{"get":{"description":"list objects of kind ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1NamespacedClusterVacuumConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"post":{"description":"create a ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"createKubearchiveOrgV1NamespacedClusterVacuumConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"delete":{"description":"delete collection of ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1CollectionNamespacedClusterVacuumConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/clustervacuumconfigs/{name}":{"get":{"description":"read the specified ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedClusterVacuumConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"put":{"description":"replace the specified ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedClusterVacuumConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"delete":{"description":"delete a ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1NamespacedClusterVacuumConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"patch":{"description":"partially update the specified ClusterVacuumConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedClusterVacuumConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterVacuumConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/clustervacuumconfigs/{name}/status":{"get":{"description":"read status of the specified ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedClusterVacuumConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"put":{"description":"replace status of the specified ClusterVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedClusterVacuumConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterVacuumConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedClusterVacuumConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterVacuumConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/kubearchiveconfigs":{"get":{"description":"list objects of kind KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1NamespacedKubeArchiveConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"post":{"description":"create a KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"createKubearchiveOrgV1NamespacedKubeArchiveConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"delete":{"description":"delete collection of KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1CollectionNamespacedKubeArchiveConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/kubearchiveconfigs/{name}":{"get":{"description":"read the specified KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedKubeArchiveConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"put":{"description":"replace the specified KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedKubeArchiveConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"delete":{"description":"delete a KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1NamespacedKubeArchiveConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"patch":{"description":"partially update the specified KubeArchiveConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedKubeArchiveConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeArchiveConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/kubearchiveconfigs/{name}/status":{"get":{"description":"read status of the specified KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedKubeArchiveConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"put":{"description":"replace status of the specified KubeArchiveConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedKubeArchiveConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"patch":{"description":"partially update status of the specified KubeArchiveConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedKubeArchiveConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeArchiveConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/namespacevacuumconfigs":{"get":{"description":"list objects of kind NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1NamespacedNamespaceVacuumConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"post":{"description":"create a NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"createKubearchiveOrgV1NamespacedNamespaceVacuumConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"delete":{"description":"delete collection of NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1CollectionNamespacedNamespaceVacuumConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/namespacevacuumconfigs/{name}":{"get":{"description":"read the specified NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedNamespaceVacuumConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"put":{"description":"replace the specified NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedNamespaceVacuumConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"delete":{"description":"delete a NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1NamespacedNamespaceVacuumConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"patch":{"description":"partially update the specified NamespaceVacuumConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedNamespaceVacuumConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NamespaceVacuumConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/namespacevacuumconfigs/{name}/status":{"get":{"description":"read status of the specified NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedNamespaceVacuumConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"put":{"description":"replace status of the specified NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedNamespaceVacuumConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"patch":{"description":"partially update status of the specified NamespaceVacuumConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedNamespaceVacuumConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NamespaceVacuumConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/sinkfilters":{"get":{"description":"list objects of kind SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1NamespacedSinkFilter","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"post":{"description":"create a SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"createKubearchiveOrgV1NamespacedSinkFilter","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"delete":{"description":"delete collection of SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1CollectionNamespacedSinkFilter","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/sinkfilters/{name}":{"get":{"description":"read the specified SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedSinkFilter","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"put":{"description":"replace the specified SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedSinkFilter","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"delete":{"description":"delete a SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"deleteKubearchiveOrgV1NamespacedSinkFilter","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"patch":{"description":"partially update the specified SinkFilter","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedSinkFilter","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SinkFilter","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespaces/{namespace}/sinkfilters/{name}/status":{"get":{"description":"read status of the specified SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"readKubearchiveOrgV1NamespacedSinkFilterStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"put":{"description":"replace status of the specified SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"replaceKubearchiveOrgV1NamespacedSinkFilterStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"patch":{"description":"partially update status of the specified SinkFilter","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"patchKubearchiveOrgV1NamespacedSinkFilterStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SinkFilter","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubearchive.org/v1/namespacevacuumconfigs":{"get":{"description":"list objects of kind NamespaceVacuumConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1NamespaceVacuumConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubearchive.org/v1/sinkfilters":{"get":{"description":"list objects of kind SinkFilter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubearchiveOrg_v1"],"operationId":"listKubearchiveOrgV1SinkFilterForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubernetes.crossplane.io/v1alpha1/objects":{"get":{"description":"list objects of kind Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"listKubernetesCrossplaneIoV1alpha1Object","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"post":{"description":"create an Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"createKubernetesCrossplaneIoV1alpha1Object","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"delete":{"description":"delete collection of Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1CollectionObject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/objects/{name}":{"get":{"description":"read the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"readKubernetesCrossplaneIoV1alpha1Object","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"put":{"description":"replace the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesCrossplaneIoV1alpha1Object","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"delete":{"description":"delete an Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1Object","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"patch":{"description":"partially update the specified Object","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesCrossplaneIoV1alpha1Object","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Object","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/objects/{name}/status":{"get":{"description":"read status of the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"readKubernetesCrossplaneIoV1alpha1ObjectStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"put":{"description":"replace status of the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesCrossplaneIoV1alpha1ObjectStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Object","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesCrossplaneIoV1alpha1ObjectStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Object","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/observedobjectcollections":{"get":{"description":"list objects of kind ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"listKubernetesCrossplaneIoV1alpha1ObservedObjectCollection","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollectionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"post":{"description":"create an ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"createKubernetesCrossplaneIoV1alpha1ObservedObjectCollection","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"delete":{"description":"delete collection of ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1CollectionObservedObjectCollection","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/observedobjectcollections/{name}":{"get":{"description":"read the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"readKubernetesCrossplaneIoV1alpha1ObservedObjectCollection","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"put":{"description":"replace the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesCrossplaneIoV1alpha1ObservedObjectCollection","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"delete":{"description":"delete an ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1ObservedObjectCollection","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"patch":{"description":"partially update the specified ObservedObjectCollection","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesCrossplaneIoV1alpha1ObservedObjectCollection","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObservedObjectCollection","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/observedobjectcollections/{name}/status":{"get":{"description":"read status of the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"readKubernetesCrossplaneIoV1alpha1ObservedObjectCollectionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"put":{"description":"replace status of the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesCrossplaneIoV1alpha1ObservedObjectCollectionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ObservedObjectCollection","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesCrossplaneIoV1alpha1ObservedObjectCollectionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObservedObjectCollection","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/providerconfigs":{"get":{"description":"list objects of kind ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"listKubernetesCrossplaneIoV1alpha1ProviderConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"post":{"description":"create a ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"createKubernetesCrossplaneIoV1alpha1ProviderConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"delete":{"description":"delete collection of ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1CollectionProviderConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/providerconfigs/{name}":{"get":{"description":"read the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"readKubernetesCrossplaneIoV1alpha1ProviderConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"put":{"description":"replace the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesCrossplaneIoV1alpha1ProviderConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"delete":{"description":"delete a ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1ProviderConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"patch":{"description":"partially update the specified ProviderConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesCrossplaneIoV1alpha1ProviderConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/providerconfigs/{name}/status":{"get":{"description":"read status of the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"readKubernetesCrossplaneIoV1alpha1ProviderConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"put":{"description":"replace status of the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesCrossplaneIoV1alpha1ProviderConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ProviderConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesCrossplaneIoV1alpha1ProviderConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/providerconfigusages":{"get":{"description":"list objects of kind ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"listKubernetesCrossplaneIoV1alpha1ProviderConfigUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"post":{"description":"create a ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"createKubernetesCrossplaneIoV1alpha1ProviderConfigUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"delete":{"description":"delete collection of ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1CollectionProviderConfigUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha1/providerconfigusages/{name}":{"get":{"description":"read the specified ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"readKubernetesCrossplaneIoV1alpha1ProviderConfigUsage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"put":{"description":"replace the specified ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesCrossplaneIoV1alpha1ProviderConfigUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"delete":{"description":"delete a ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesCrossplaneIoV1alpha1ProviderConfigUsage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"patch":{"description":"partially update the specified ProviderConfigUsage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesCrossplaneIoV1alpha1ProviderConfigUsage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderConfigUsage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha2/objects":{"get":{"description":"list objects of kind Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"listKubernetesCrossplaneIoV1alpha2Object","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.ObjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"post":{"description":"create an Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"createKubernetesCrossplaneIoV1alpha2Object","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"delete":{"description":"delete collection of Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"deleteKubernetesCrossplaneIoV1alpha2CollectionObject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha2/objects/{name}":{"get":{"description":"read the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"readKubernetesCrossplaneIoV1alpha2Object","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"put":{"description":"replace the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"replaceKubernetesCrossplaneIoV1alpha2Object","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"delete":{"description":"delete an Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"deleteKubernetesCrossplaneIoV1alpha2Object","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"patch":{"description":"partially update the specified Object","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"patchKubernetesCrossplaneIoV1alpha2Object","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Object","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.crossplane.io/v1alpha2/objects/{name}/status":{"get":{"description":"read status of the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"readKubernetesCrossplaneIoV1alpha2ObjectStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"put":{"description":"replace status of the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"replaceKubernetesCrossplaneIoV1alpha2ObjectStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"patch":{"description":"partially update status of the specified Object","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesCrossplaneIo_v1alpha2"],"operationId":"patchKubernetesCrossplaneIoV1alpha2ObjectStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Object","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/clusterproviderconfigs":{"get":{"description":"list objects of kind ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1ClusterProviderConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"post":{"description":"create a ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"createKubernetesMCrossplaneIoV1alpha1ClusterProviderConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1CollectionClusterProviderConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/clusterproviderconfigs/{name}":{"get":{"description":"read the specified ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1ClusterProviderConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1ClusterProviderConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"delete":{"description":"delete a ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1ClusterProviderConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterProviderConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1ClusterProviderConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterProviderConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/clusterproviderconfigs/{name}/status":{"get":{"description":"read status of the specified ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1ClusterProviderConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1ClusterProviderConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterProviderConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1ClusterProviderConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterProviderConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/objects":{"get":{"description":"list objects of kind Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1NamespacedObject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"post":{"description":"create an Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"createKubernetesMCrossplaneIoV1alpha1NamespacedObject","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"delete":{"description":"delete collection of Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1CollectionNamespacedObject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/objects/{name}":{"get":{"description":"read the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1NamespacedObject","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"put":{"description":"replace the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1NamespacedObject","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"delete":{"description":"delete an Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1NamespacedObject","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"patch":{"description":"partially update the specified Object","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1NamespacedObject","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Object","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/objects/{name}/status":{"get":{"description":"read status of the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1NamespacedObjectStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"put":{"description":"replace status of the specified Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1NamespacedObjectStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Object","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1NamespacedObjectStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Object","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/observedobjectcollections":{"get":{"description":"list objects of kind ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollection","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollectionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"post":{"description":"create an ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"createKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollection","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"delete":{"description":"delete collection of ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1CollectionNamespacedObservedObjectCollection","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/observedobjectcollections/{name}":{"get":{"description":"read the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollection","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"put":{"description":"replace the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollection","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"delete":{"description":"delete an ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollection","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"patch":{"description":"partially update the specified ObservedObjectCollection","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollection","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObservedObjectCollection","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/observedobjectcollections/{name}/status":{"get":{"description":"read status of the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollectionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"put":{"description":"replace status of the specified ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollectionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ObservedObjectCollection","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1NamespacedObservedObjectCollectionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObservedObjectCollection","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/providerconfigs":{"get":{"description":"list objects of kind ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"post":{"description":"create a ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"createKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"delete":{"description":"delete collection of ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1CollectionNamespacedProviderConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/providerconfigs/{name}":{"get":{"description":"read the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"put":{"description":"replace the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"delete":{"description":"delete a ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"patch":{"description":"partially update the specified ProviderConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/providerconfigs/{name}/status":{"get":{"description":"read status of the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"put":{"description":"replace status of the specified ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ProviderConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/providerconfigusages":{"get":{"description":"list objects of kind ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"post":{"description":"create a ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"createKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"delete":{"description":"delete collection of ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1CollectionNamespacedProviderConfigUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/namespaces/{namespace}/providerconfigusages/{name}":{"get":{"description":"read the specified ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"readKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigUsage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"put":{"description":"replace the specified ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"replaceKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"delete":{"description":"delete a ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"deleteKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigUsage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"patch":{"description":"partially update the specified ProviderConfigUsage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"patchKubernetesMCrossplaneIoV1alpha1NamespacedProviderConfigUsage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderConfigUsage","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/objects":{"get":{"description":"list objects of kind Object","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1ObjectForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/observedobjectcollections":{"get":{"description":"list objects of kind ObservedObjectCollection","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1ObservedObjectCollectionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollectionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/providerconfigs":{"get":{"description":"list objects of kind ProviderConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1ProviderConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kubernetes.m.crossplane.io/v1alpha1/providerconfigusages":{"get":{"description":"list objects of kind ProviderConfigUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kubernetesMCrossplaneIo_v1alpha1"],"operationId":"listKubernetesMCrossplaneIoV1alpha1ProviderConfigUsageForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kueue.openshift.io/v1/kueues":{"get":{"description":"list objects of kind Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"listKueueOpenshiftIoV1Kueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.KueueList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"post":{"description":"create a Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"createKueueOpenshiftIoV1Kueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"delete":{"description":"delete collection of Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"deleteKueueOpenshiftIoV1CollectionKueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.openshift.io/v1/kueues/{name}":{"get":{"description":"read the specified Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"readKueueOpenshiftIoV1Kueue","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"put":{"description":"replace the specified Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"replaceKueueOpenshiftIoV1Kueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"delete":{"description":"delete a Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"deleteKueueOpenshiftIoV1Kueue","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"patch":{"description":"partially update the specified Kueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"patchKueueOpenshiftIoV1Kueue","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Kueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.openshift.io/v1/kueues/{name}/status":{"get":{"description":"read status of the specified Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"readKueueOpenshiftIoV1KueueStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"put":{"description":"replace status of the specified Kueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"replaceKueueOpenshiftIoV1KueueStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"patch":{"description":"partially update status of the specified Kueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueOpenshiftIo_v1"],"operationId":"patchKueueOpenshiftIoV1KueueStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Kueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/admissionchecks":{"get":{"description":"list objects of kind AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1AdmissionCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheckList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"post":{"description":"create an AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1AdmissionCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"delete":{"description":"delete collection of AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionAdmissionCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/admissionchecks/{name}":{"get":{"description":"read the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1AdmissionCheck","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"put":{"description":"replace the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1AdmissionCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"delete":{"description":"delete an AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1AdmissionCheck","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"patch":{"description":"partially update the specified AdmissionCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1AdmissionCheck","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdmissionCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/admissionchecks/{name}/status":{"get":{"description":"read status of the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1AdmissionCheckStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"put":{"description":"replace status of the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1AdmissionCheckStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"patch":{"description":"partially update status of the specified AdmissionCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1AdmissionCheckStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdmissionCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/clusterqueues":{"get":{"description":"list objects of kind ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1ClusterQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueueList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"post":{"description":"create a ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1ClusterQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"delete":{"description":"delete collection of ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionClusterQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/clusterqueues/{name}":{"get":{"description":"read the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1ClusterQueue","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"put":{"description":"replace the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1ClusterQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"delete":{"description":"delete a ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1ClusterQueue","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"patch":{"description":"partially update the specified ClusterQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1ClusterQueue","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/clusterqueues/{name}/status":{"get":{"description":"read status of the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1ClusterQueueStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"put":{"description":"replace status of the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1ClusterQueueStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ClusterQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1ClusterQueueStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/cohorts":{"get":{"description":"list objects of kind Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1Cohort","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.CohortList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"post":{"description":"create a Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1Cohort","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"delete":{"description":"delete collection of Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionCohort","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/cohorts/{name}":{"get":{"description":"read the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1Cohort","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"put":{"description":"replace the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1Cohort","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"delete":{"description":"delete a Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1Cohort","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"patch":{"description":"partially update the specified Cohort","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1Cohort","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Cohort","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/cohorts/{name}/status":{"get":{"description":"read status of the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1CohortStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"put":{"description":"replace status of the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1CohortStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Cohort","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1CohortStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Cohort","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/localqueues":{"get":{"description":"list objects of kind LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1LocalQueueForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueueList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kueue.x-k8s.io/v1beta1/multikueueclusters":{"get":{"description":"list objects of kind MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1MultiKueueCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueClusterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"post":{"description":"create a MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1MultiKueueCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"delete":{"description":"delete collection of MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionMultiKueueCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/multikueueclusters/{name}":{"get":{"description":"read the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1MultiKueueCluster","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"put":{"description":"replace the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1MultiKueueCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"delete":{"description":"delete a MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1MultiKueueCluster","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"patch":{"description":"partially update the specified MultiKueueCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1MultiKueueCluster","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MultiKueueCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/multikueueclusters/{name}/status":{"get":{"description":"read status of the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1MultiKueueClusterStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"put":{"description":"replace status of the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1MultiKueueClusterStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"patch":{"description":"partially update status of the specified MultiKueueCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1MultiKueueClusterStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MultiKueueCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/multikueueconfigs":{"get":{"description":"list objects of kind MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1MultiKueueConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}},"post":{"description":"create a MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1MultiKueueConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}},"delete":{"description":"delete collection of MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionMultiKueueConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/multikueueconfigs/{name}":{"get":{"description":"read the specified MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1MultiKueueConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}},"put":{"description":"replace the specified MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1MultiKueueConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}},"delete":{"description":"delete a MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1MultiKueueConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}},"patch":{"description":"partially update the specified MultiKueueConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1MultiKueueConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MultiKueueConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/namespaces/{namespace}/localqueues":{"get":{"description":"list objects of kind LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueueList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"post":{"description":"create a LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1NamespacedLocalQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"delete":{"description":"delete collection of LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionNamespacedLocalQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/namespaces/{namespace}/localqueues/{name}":{"get":{"description":"read the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"put":{"description":"replace the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1NamespacedLocalQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"delete":{"description":"delete a LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"patch":{"description":"partially update the specified LocalQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the LocalQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/namespaces/{namespace}/localqueues/{name}/status":{"get":{"description":"read status of the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1NamespacedLocalQueueStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"put":{"description":"replace status of the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1NamespacedLocalQueueStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"patch":{"description":"partially update status of the specified LocalQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1NamespacedLocalQueueStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the LocalQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/namespaces/{namespace}/workloads":{"get":{"description":"list objects of kind Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1NamespacedWorkload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"post":{"description":"create a Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1NamespacedWorkload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"delete":{"description":"delete collection of Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionNamespacedWorkload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/namespaces/{namespace}/workloads/{name}":{"get":{"description":"read the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1NamespacedWorkload","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"put":{"description":"replace the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1NamespacedWorkload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"delete":{"description":"delete a Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1NamespacedWorkload","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"patch":{"description":"partially update the specified Workload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1NamespacedWorkload","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Workload","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/namespaces/{namespace}/workloads/{name}/status":{"get":{"description":"read status of the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1NamespacedWorkloadStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"put":{"description":"replace status of the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1NamespacedWorkloadStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Workload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1NamespacedWorkloadStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Workload","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/provisioningrequestconfigs":{"get":{"description":"list objects of kind ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}},"post":{"description":"create a ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1ProvisioningRequestConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}},"delete":{"description":"delete collection of ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/provisioningrequestconfigs/{name}":{"get":{"description":"read the specified ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}},"put":{"description":"replace the specified ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1ProvisioningRequestConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}},"delete":{"description":"delete a ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}},"patch":{"description":"partially update the specified ProvisioningRequestConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProvisioningRequestConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/resourceflavors":{"get":{"description":"list objects of kind ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1ResourceFlavor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}},"post":{"description":"create a ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1ResourceFlavor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}},"delete":{"description":"delete collection of ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionResourceFlavor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/resourceflavors/{name}":{"get":{"description":"read the specified ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1ResourceFlavor","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}},"put":{"description":"replace the specified ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1ResourceFlavor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}},"delete":{"description":"delete a ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1ResourceFlavor","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}},"patch":{"description":"partially update the specified ResourceFlavor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1ResourceFlavor","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResourceFlavor","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/topologies":{"get":{"description":"list objects of kind Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1Topology","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.TopologyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}},"post":{"description":"create a Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1Topology","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}},"delete":{"description":"delete collection of Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionTopology","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/topologies/{name}":{"get":{"description":"read the specified Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1Topology","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}},"put":{"description":"replace the specified Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1Topology","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}},"delete":{"description":"delete a Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1Topology","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}},"patch":{"description":"partially update the specified Topology","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1Topology","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Topology","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/workloadpriorityclasses":{"get":{"description":"list objects of kind WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}},"post":{"description":"create a WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"createKueueXK8sIoV1beta1WorkloadPriorityClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}},"delete":{"description":"delete collection of WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1CollectionWorkloadPriorityClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/workloadpriorityclasses/{name}":{"get":{"description":"read the specified WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"readKueueXK8sIoV1beta1WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}},"put":{"description":"replace the specified WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"replaceKueueXK8sIoV1beta1WorkloadPriorityClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}},"delete":{"description":"delete a WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"deleteKueueXK8sIoV1beta1WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}},"patch":{"description":"partially update the specified WorkloadPriorityClass","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"patchKueueXK8sIoV1beta1WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the WorkloadPriorityClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta1/workloads":{"get":{"description":"list objects of kind Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta1"],"operationId":"listKueueXK8sIoV1beta1WorkloadForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kueue.x-k8s.io/v1beta2/admissionchecks":{"get":{"description":"list objects of kind AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2AdmissionCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheckList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"post":{"description":"create an AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2AdmissionCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"delete":{"description":"delete collection of AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionAdmissionCheck","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/admissionchecks/{name}":{"get":{"description":"read the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2AdmissionCheck","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"put":{"description":"replace the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2AdmissionCheck","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"delete":{"description":"delete an AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2AdmissionCheck","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"patch":{"description":"partially update the specified AdmissionCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2AdmissionCheck","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdmissionCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/admissionchecks/{name}/status":{"get":{"description":"read status of the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2AdmissionCheckStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"put":{"description":"replace status of the specified AdmissionCheck","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2AdmissionCheckStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"patch":{"description":"partially update status of the specified AdmissionCheck","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2AdmissionCheckStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdmissionCheck","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/clusterqueues":{"get":{"description":"list objects of kind ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2ClusterQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueueList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"post":{"description":"create a ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2ClusterQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"delete":{"description":"delete collection of ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionClusterQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/clusterqueues/{name}":{"get":{"description":"read the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2ClusterQueue","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"put":{"description":"replace the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2ClusterQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"delete":{"description":"delete a ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2ClusterQueue","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"patch":{"description":"partially update the specified ClusterQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2ClusterQueue","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/clusterqueues/{name}/status":{"get":{"description":"read status of the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2ClusterQueueStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"put":{"description":"replace status of the specified ClusterQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2ClusterQueueStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"patch":{"description":"partially update status of the specified ClusterQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2ClusterQueueStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/cohorts":{"get":{"description":"list objects of kind Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2Cohort","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.CohortList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"post":{"description":"create a Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2Cohort","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"delete":{"description":"delete collection of Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionCohort","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/cohorts/{name}":{"get":{"description":"read the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2Cohort","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"put":{"description":"replace the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2Cohort","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"delete":{"description":"delete a Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2Cohort","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"patch":{"description":"partially update the specified Cohort","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2Cohort","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Cohort","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/cohorts/{name}/status":{"get":{"description":"read status of the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2CohortStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"put":{"description":"replace status of the specified Cohort","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2CohortStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"patch":{"description":"partially update status of the specified Cohort","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2CohortStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Cohort","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/localqueues":{"get":{"description":"list objects of kind LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2LocalQueueForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueueList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kueue.x-k8s.io/v1beta2/multikueueclusters":{"get":{"description":"list objects of kind MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2MultiKueueCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueClusterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"post":{"description":"create a MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2MultiKueueCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"delete":{"description":"delete collection of MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionMultiKueueCluster","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/multikueueclusters/{name}":{"get":{"description":"read the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2MultiKueueCluster","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"put":{"description":"replace the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2MultiKueueCluster","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"delete":{"description":"delete a MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2MultiKueueCluster","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"patch":{"description":"partially update the specified MultiKueueCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2MultiKueueCluster","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MultiKueueCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/multikueueclusters/{name}/status":{"get":{"description":"read status of the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2MultiKueueClusterStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"put":{"description":"replace status of the specified MultiKueueCluster","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2MultiKueueClusterStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"patch":{"description":"partially update status of the specified MultiKueueCluster","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2MultiKueueClusterStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MultiKueueCluster","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/multikueueconfigs":{"get":{"description":"list objects of kind MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2MultiKueueConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}},"post":{"description":"create a MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2MultiKueueConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}},"delete":{"description":"delete collection of MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionMultiKueueConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/multikueueconfigs/{name}":{"get":{"description":"read the specified MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2MultiKueueConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}},"put":{"description":"replace the specified MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2MultiKueueConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}},"delete":{"description":"delete a MultiKueueConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2MultiKueueConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}},"patch":{"description":"partially update the specified MultiKueueConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2MultiKueueConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MultiKueueConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/namespaces/{namespace}/localqueues":{"get":{"description":"list objects of kind LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueueList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"post":{"description":"create a LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2NamespacedLocalQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"delete":{"description":"delete collection of LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionNamespacedLocalQueue","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/namespaces/{namespace}/localqueues/{name}":{"get":{"description":"read the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"put":{"description":"replace the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2NamespacedLocalQueue","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"delete":{"description":"delete a LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"patch":{"description":"partially update the specified LocalQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2NamespacedLocalQueue","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the LocalQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/namespaces/{namespace}/localqueues/{name}/status":{"get":{"description":"read status of the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2NamespacedLocalQueueStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"put":{"description":"replace status of the specified LocalQueue","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2NamespacedLocalQueueStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"patch":{"description":"partially update status of the specified LocalQueue","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2NamespacedLocalQueueStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the LocalQueue","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/namespaces/{namespace}/workloads":{"get":{"description":"list objects of kind Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2NamespacedWorkload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"post":{"description":"create a Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2NamespacedWorkload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"delete":{"description":"delete collection of Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionNamespacedWorkload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/namespaces/{namespace}/workloads/{name}":{"get":{"description":"read the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2NamespacedWorkload","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"put":{"description":"replace the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2NamespacedWorkload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"delete":{"description":"delete a Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2NamespacedWorkload","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"patch":{"description":"partially update the specified Workload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2NamespacedWorkload","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Workload","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/namespaces/{namespace}/workloads/{name}/status":{"get":{"description":"read status of the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2NamespacedWorkloadStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"put":{"description":"replace status of the specified Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2NamespacedWorkloadStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"patch":{"description":"partially update status of the specified Workload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2NamespacedWorkloadStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Workload","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/provisioningrequestconfigs":{"get":{"description":"list objects of kind ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}},"post":{"description":"create a ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2ProvisioningRequestConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}},"delete":{"description":"delete collection of ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/provisioningrequestconfigs/{name}":{"get":{"description":"read the specified ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}},"put":{"description":"replace the specified ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2ProvisioningRequestConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}},"delete":{"description":"delete a ProvisioningRequestConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}},"patch":{"description":"partially update the specified ProvisioningRequestConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2ProvisioningRequestConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProvisioningRequestConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/resourceflavors":{"get":{"description":"list objects of kind ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2ResourceFlavor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}},"post":{"description":"create a ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2ResourceFlavor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}},"delete":{"description":"delete collection of ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionResourceFlavor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/resourceflavors/{name}":{"get":{"description":"read the specified ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2ResourceFlavor","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}},"put":{"description":"replace the specified ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2ResourceFlavor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}},"delete":{"description":"delete a ResourceFlavor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2ResourceFlavor","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}},"patch":{"description":"partially update the specified ResourceFlavor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2ResourceFlavor","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResourceFlavor","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/topologies":{"get":{"description":"list objects of kind Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2Topology","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.TopologyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}},"post":{"description":"create a Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2Topology","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}},"delete":{"description":"delete collection of Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionTopology","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/topologies/{name}":{"get":{"description":"read the specified Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2Topology","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}},"put":{"description":"replace the specified Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2Topology","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}},"delete":{"description":"delete a Topology","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2Topology","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}},"patch":{"description":"partially update the specified Topology","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2Topology","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Topology","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/workloadpriorityclasses":{"get":{"description":"list objects of kind WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}},"post":{"description":"create a WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"createKueueXK8sIoV1beta2WorkloadPriorityClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}},"delete":{"description":"delete collection of WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2CollectionWorkloadPriorityClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/workloadpriorityclasses/{name}":{"get":{"description":"read the specified WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"readKueueXK8sIoV1beta2WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}},"put":{"description":"replace the specified WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"replaceKueueXK8sIoV1beta2WorkloadPriorityClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}},"delete":{"description":"delete a WorkloadPriorityClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"deleteKueueXK8sIoV1beta2WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}},"patch":{"description":"partially update the specified WorkloadPriorityClass","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"patchKueueXK8sIoV1beta2WorkloadPriorityClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the WorkloadPriorityClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kueue.x-k8s.io/v1beta2/workloads":{"get":{"description":"list objects of kind Workload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kueueXK8sIo_v1beta2"],"operationId":"listKueueXK8sIoV1beta2WorkloadForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v1/clusterpolicies":{"get":{"description":"list objects of kind ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"listKyvernoIoV1ClusterPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"post":{"description":"create a ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"createKyvernoIoV1ClusterPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"delete":{"description":"delete collection of ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"deleteKyvernoIoV1CollectionClusterPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1/clusterpolicies/{name}":{"get":{"description":"read the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"readKyvernoIoV1ClusterPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"put":{"description":"replace the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"replaceKyvernoIoV1ClusterPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"delete":{"description":"delete a ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"deleteKyvernoIoV1ClusterPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"patch":{"description":"partially update the specified ClusterPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"patchKyvernoIoV1ClusterPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1/clusterpolicies/{name}/status":{"get":{"description":"read status of the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"readKyvernoIoV1ClusterPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"put":{"description":"replace status of the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"replaceKyvernoIoV1ClusterPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"patchKyvernoIoV1ClusterPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1/namespaces/{namespace}/policies":{"get":{"description":"list objects of kind Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"listKyvernoIoV1NamespacedPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.PolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"post":{"description":"create a Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"createKyvernoIoV1NamespacedPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"delete":{"description":"delete collection of Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"deleteKyvernoIoV1CollectionNamespacedPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1/namespaces/{namespace}/policies/{name}":{"get":{"description":"read the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"readKyvernoIoV1NamespacedPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"put":{"description":"replace the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"replaceKyvernoIoV1NamespacedPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"delete":{"description":"delete a Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"deleteKyvernoIoV1NamespacedPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"patch":{"description":"partially update the specified Policy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"patchKyvernoIoV1NamespacedPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Policy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1/namespaces/{namespace}/policies/{name}/status":{"get":{"description":"read status of the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"readKyvernoIoV1NamespacedPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"put":{"description":"replace status of the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"replaceKyvernoIoV1NamespacedPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"patch":{"description":"partially update status of the specified Policy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"patchKyvernoIoV1NamespacedPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Policy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1/policies":{"get":{"description":"list objects of kind Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1"],"operationId":"listKyvernoIoV1PolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1.PolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v1beta1/namespaces/{namespace}/updaterequests":{"get":{"description":"list objects of kind UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"listKyvernoIoV1beta1NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"post":{"description":"create an UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"createKyvernoIoV1beta1NamespacedUpdateRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"delete":{"description":"delete collection of UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"deleteKyvernoIoV1beta1CollectionNamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1beta1/namespaces/{namespace}/updaterequests/{name}":{"get":{"description":"read the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"readKyvernoIoV1beta1NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"put":{"description":"replace the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"replaceKyvernoIoV1beta1NamespacedUpdateRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"delete":{"description":"delete an UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"deleteKyvernoIoV1beta1NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"patch":{"description":"partially update the specified UpdateRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"patchKyvernoIoV1beta1NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UpdateRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1beta1/namespaces/{namespace}/updaterequests/{name}/status":{"get":{"description":"read status of the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"readKyvernoIoV1beta1NamespacedUpdateRequestStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"put":{"description":"replace status of the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"replaceKyvernoIoV1beta1NamespacedUpdateRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"patch":{"description":"partially update status of the specified UpdateRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"patchKyvernoIoV1beta1NamespacedUpdateRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UpdateRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v1beta1/updaterequests":{"get":{"description":"list objects of kind UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v1beta1"],"operationId":"listKyvernoIoV1beta1UpdateRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v2/cleanuppolicies":{"get":{"description":"list objects of kind CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"listKyvernoIoV2CleanupPolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v2/clustercleanuppolicies":{"get":{"description":"list objects of kind ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"listKyvernoIoV2ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"post":{"description":"create a ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"createKyvernoIoV2ClusterCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"delete":{"description":"delete collection of ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2CollectionClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/clustercleanuppolicies/{name}":{"get":{"description":"read the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"readKyvernoIoV2ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"put":{"description":"replace the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"replaceKyvernoIoV2ClusterCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"delete":{"description":"delete a ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"patch":{"description":"partially update the specified ClusterCleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"patchKyvernoIoV2ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterCleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/clustercleanuppolicies/{name}/status":{"get":{"description":"read status of the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"readKyvernoIoV2ClusterCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"put":{"description":"replace status of the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"replaceKyvernoIoV2ClusterCleanupPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"patch":{"description":"partially update status of the specified ClusterCleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"patchKyvernoIoV2ClusterCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterCleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/cleanuppolicies":{"get":{"description":"list objects of kind CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"listKyvernoIoV2NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"post":{"description":"create a CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"createKyvernoIoV2NamespacedCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"delete":{"description":"delete collection of CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2CollectionNamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/cleanuppolicies/{name}":{"get":{"description":"read the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"readKyvernoIoV2NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"put":{"description":"replace the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"replaceKyvernoIoV2NamespacedCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"delete":{"description":"delete a CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"patch":{"description":"partially update the specified CleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"patchKyvernoIoV2NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/cleanuppolicies/{name}/status":{"get":{"description":"read status of the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"readKyvernoIoV2NamespacedCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"put":{"description":"replace status of the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"replaceKyvernoIoV2NamespacedCleanupPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"patch":{"description":"partially update status of the specified CleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"patchKyvernoIoV2NamespacedCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/policyexceptions":{"get":{"description":"list objects of kind PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"listKyvernoIoV2NamespacedPolicyException","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyExceptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"post":{"description":"create a PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"createKyvernoIoV2NamespacedPolicyException","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"delete":{"description":"delete collection of PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2CollectionNamespacedPolicyException","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/policyexceptions/{name}":{"get":{"description":"read the specified PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"readKyvernoIoV2NamespacedPolicyException","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"put":{"description":"replace the specified PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"replaceKyvernoIoV2NamespacedPolicyException","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"delete":{"description":"delete a PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2NamespacedPolicyException","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"patch":{"description":"partially update the specified PolicyException","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"patchKyvernoIoV2NamespacedPolicyException","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PolicyException","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/updaterequests":{"get":{"description":"list objects of kind UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"listKyvernoIoV2NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"post":{"description":"create an UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"createKyvernoIoV2NamespacedUpdateRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"delete":{"description":"delete collection of UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2CollectionNamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/updaterequests/{name}":{"get":{"description":"read the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"readKyvernoIoV2NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"put":{"description":"replace the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"replaceKyvernoIoV2NamespacedUpdateRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"delete":{"description":"delete an UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"deleteKyvernoIoV2NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"patch":{"description":"partially update the specified UpdateRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"patchKyvernoIoV2NamespacedUpdateRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UpdateRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/namespaces/{namespace}/updaterequests/{name}/status":{"get":{"description":"read status of the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"readKyvernoIoV2NamespacedUpdateRequestStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"put":{"description":"replace status of the specified UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"replaceKyvernoIoV2NamespacedUpdateRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"patch":{"description":"partially update status of the specified UpdateRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"patchKyvernoIoV2NamespacedUpdateRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UpdateRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2/policyexceptions":{"get":{"description":"list objects of kind PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"listKyvernoIoV2PolicyExceptionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.PolicyExceptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v2/updaterequests":{"get":{"description":"list objects of kind UpdateRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2"],"operationId":"listKyvernoIoV2UpdateRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v2alpha1/globalcontextentries":{"get":{"description":"list objects of kind GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"listKyvernoIoV2alpha1GlobalContextEntry","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"post":{"description":"create a GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"createKyvernoIoV2alpha1GlobalContextEntry","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"delete":{"description":"delete collection of GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"deleteKyvernoIoV2alpha1CollectionGlobalContextEntry","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2alpha1/globalcontextentries/{name}":{"get":{"description":"read the specified GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"readKyvernoIoV2alpha1GlobalContextEntry","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"put":{"description":"replace the specified GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"replaceKyvernoIoV2alpha1GlobalContextEntry","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"delete":{"description":"delete a GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"deleteKyvernoIoV2alpha1GlobalContextEntry","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"patch":{"description":"partially update the specified GlobalContextEntry","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"patchKyvernoIoV2alpha1GlobalContextEntry","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the GlobalContextEntry","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2alpha1/globalcontextentries/{name}/status":{"get":{"description":"read status of the specified GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"readKyvernoIoV2alpha1GlobalContextEntryStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"put":{"description":"replace status of the specified GlobalContextEntry","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"replaceKyvernoIoV2alpha1GlobalContextEntryStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"patch":{"description":"partially update status of the specified GlobalContextEntry","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2alpha1"],"operationId":"patchKyvernoIoV2alpha1GlobalContextEntryStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the GlobalContextEntry","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/cleanuppolicies":{"get":{"description":"list objects of kind CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1CleanupPolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v2beta1/clustercleanuppolicies":{"get":{"description":"list objects of kind ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"post":{"description":"create a ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"createKyvernoIoV2beta1ClusterCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"delete":{"description":"delete collection of ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1CollectionClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/clustercleanuppolicies/{name}":{"get":{"description":"read the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"put":{"description":"replace the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1ClusterCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"delete":{"description":"delete a ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"patch":{"description":"partially update the specified ClusterCleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1ClusterCleanupPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterCleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/clustercleanuppolicies/{name}/status":{"get":{"description":"read status of the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1ClusterCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"put":{"description":"replace status of the specified ClusterCleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1ClusterCleanupPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"patch":{"description":"partially update status of the specified ClusterCleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1ClusterCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterCleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/clusterpolicies":{"get":{"description":"list objects of kind ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1ClusterPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"post":{"description":"create a ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"createKyvernoIoV2beta1ClusterPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"delete":{"description":"delete collection of ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1CollectionClusterPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/clusterpolicies/{name}":{"get":{"description":"read the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1ClusterPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"put":{"description":"replace the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1ClusterPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"delete":{"description":"delete a ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1ClusterPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"patch":{"description":"partially update the specified ClusterPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1ClusterPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/clusterpolicies/{name}/status":{"get":{"description":"read status of the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1ClusterPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"put":{"description":"replace status of the specified ClusterPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1ClusterPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"patch":{"description":"partially update status of the specified ClusterPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1ClusterPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/cleanuppolicies":{"get":{"description":"list objects of kind CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"post":{"description":"create a CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"createKyvernoIoV2beta1NamespacedCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"delete":{"description":"delete collection of CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1CollectionNamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/cleanuppolicies/{name}":{"get":{"description":"read the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"put":{"description":"replace the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1NamespacedCleanupPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"delete":{"description":"delete a CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"patch":{"description":"partially update the specified CleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1NamespacedCleanupPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/cleanuppolicies/{name}/status":{"get":{"description":"read status of the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1NamespacedCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"put":{"description":"replace status of the specified CleanupPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1NamespacedCleanupPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"patch":{"description":"partially update status of the specified CleanupPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1NamespacedCleanupPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CleanupPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/policies":{"get":{"description":"list objects of kind Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1NamespacedPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"post":{"description":"create a Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"createKyvernoIoV2beta1NamespacedPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"delete":{"description":"delete collection of Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1CollectionNamespacedPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/policies/{name}":{"get":{"description":"read the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1NamespacedPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"put":{"description":"replace the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1NamespacedPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"delete":{"description":"delete a Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1NamespacedPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"patch":{"description":"partially update the specified Policy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1NamespacedPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Policy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/policies/{name}/status":{"get":{"description":"read status of the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1NamespacedPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"put":{"description":"replace status of the specified Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1NamespacedPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"patch":{"description":"partially update status of the specified Policy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1NamespacedPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Policy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/policyexceptions":{"get":{"description":"list objects of kind PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyExceptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"post":{"description":"create a PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"createKyvernoIoV2beta1NamespacedPolicyException","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"delete":{"description":"delete collection of PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1CollectionNamespacedPolicyException","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/namespaces/{namespace}/policyexceptions/{name}":{"get":{"description":"read the specified PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"readKyvernoIoV2beta1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"put":{"description":"replace the specified PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"replaceKyvernoIoV2beta1NamespacedPolicyException","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"delete":{"description":"delete a PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"deleteKyvernoIoV2beta1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"patch":{"description":"partially update the specified PolicyException","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"patchKyvernoIoV2beta1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PolicyException","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/kyverno.io/v2beta1/policies":{"get":{"description":"list objects of kind Policy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1PolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/kyverno.io/v2beta1/policyexceptions":{"get":{"description":"list objects of kind PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["kyvernoIo_v2beta1"],"operationId":"listKyvernoIoV2beta1PolicyExceptionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyExceptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/machineconfiguration.openshift.io/v1/controllerconfigs":{"get":{"description":"list objects of kind ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"listMachineconfigurationOpenshiftIoV1ControllerConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"post":{"description":"create a ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"createMachineconfigurationOpenshiftIoV1ControllerConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"delete":{"description":"delete collection of ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"deleteMachineconfigurationOpenshiftIoV1CollectionControllerConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/machineconfiguration.openshift.io/v1/controllerconfigs/{name}":{"get":{"description":"read the specified ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"readMachineconfigurationOpenshiftIoV1ControllerConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"put":{"description":"replace the specified ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"replaceMachineconfigurationOpenshiftIoV1ControllerConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"delete":{"description":"delete a ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"deleteMachineconfigurationOpenshiftIoV1ControllerConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"patch":{"description":"partially update the specified ControllerConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"patchMachineconfigurationOpenshiftIoV1ControllerConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ControllerConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/machineconfiguration.openshift.io/v1/controllerconfigs/{name}/status":{"get":{"description":"read status of the specified ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"readMachineconfigurationOpenshiftIoV1ControllerConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"put":{"description":"replace status of the specified ControllerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"replaceMachineconfigurationOpenshiftIoV1ControllerConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"patch":{"description":"partially update status of the specified ControllerConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["machineconfigurationOpenshiftIo_v1"],"operationId":"patchMachineconfigurationOpenshiftIoV1ControllerConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ControllerConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/channels":{"get":{"description":"list objects of kind Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"listMessagingKnativeDevV1ChannelForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.ChannelList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/messaging.knative.dev/v1/inmemorychannels":{"get":{"description":"list objects of kind InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"listMessagingKnativeDevV1InMemoryChannelForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannelList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/channels":{"get":{"description":"list objects of kind Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"listMessagingKnativeDevV1NamespacedChannel","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.ChannelList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"post":{"description":"create a Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"createMessagingKnativeDevV1NamespacedChannel","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"delete":{"description":"delete collection of Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"deleteMessagingKnativeDevV1CollectionNamespacedChannel","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/channels/{name}":{"get":{"description":"read the specified Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"readMessagingKnativeDevV1NamespacedChannel","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"put":{"description":"replace the specified Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"replaceMessagingKnativeDevV1NamespacedChannel","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"delete":{"description":"delete a Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"deleteMessagingKnativeDevV1NamespacedChannel","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"patch":{"description":"partially update the specified Channel","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"patchMessagingKnativeDevV1NamespacedChannel","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Channel","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/channels/{name}/status":{"get":{"description":"read status of the specified Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"readMessagingKnativeDevV1NamespacedChannelStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"put":{"description":"replace status of the specified Channel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"replaceMessagingKnativeDevV1NamespacedChannelStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"patch":{"description":"partially update status of the specified Channel","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"patchMessagingKnativeDevV1NamespacedChannelStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Channel","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/inmemorychannels":{"get":{"description":"list objects of kind InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"listMessagingKnativeDevV1NamespacedInMemoryChannel","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannelList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"post":{"description":"create an InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"createMessagingKnativeDevV1NamespacedInMemoryChannel","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"delete":{"description":"delete collection of InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"deleteMessagingKnativeDevV1CollectionNamespacedInMemoryChannel","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/inmemorychannels/{name}":{"get":{"description":"read the specified InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"readMessagingKnativeDevV1NamespacedInMemoryChannel","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"put":{"description":"replace the specified InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"replaceMessagingKnativeDevV1NamespacedInMemoryChannel","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"delete":{"description":"delete an InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"deleteMessagingKnativeDevV1NamespacedInMemoryChannel","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"patch":{"description":"partially update the specified InMemoryChannel","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"patchMessagingKnativeDevV1NamespacedInMemoryChannel","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InMemoryChannel","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/inmemorychannels/{name}/status":{"get":{"description":"read status of the specified InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"readMessagingKnativeDevV1NamespacedInMemoryChannelStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"put":{"description":"replace status of the specified InMemoryChannel","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"replaceMessagingKnativeDevV1NamespacedInMemoryChannelStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"patch":{"description":"partially update status of the specified InMemoryChannel","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"patchMessagingKnativeDevV1NamespacedInMemoryChannelStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InMemoryChannel","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/subscriptions":{"get":{"description":"list objects of kind Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"listMessagingKnativeDevV1NamespacedSubscription","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.SubscriptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"post":{"description":"create a Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"createMessagingKnativeDevV1NamespacedSubscription","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"delete":{"description":"delete collection of Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"deleteMessagingKnativeDevV1CollectionNamespacedSubscription","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/subscriptions/{name}":{"get":{"description":"read the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"readMessagingKnativeDevV1NamespacedSubscription","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"put":{"description":"replace the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"replaceMessagingKnativeDevV1NamespacedSubscription","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"delete":{"description":"delete a Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"deleteMessagingKnativeDevV1NamespacedSubscription","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"patch":{"description":"partially update the specified Subscription","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"patchMessagingKnativeDevV1NamespacedSubscription","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Subscription","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/namespaces/{namespace}/subscriptions/{name}/status":{"get":{"description":"read status of the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"readMessagingKnativeDevV1NamespacedSubscriptionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"put":{"description":"replace status of the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"replaceMessagingKnativeDevV1NamespacedSubscriptionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"patch":{"description":"partially update status of the specified Subscription","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"patchMessagingKnativeDevV1NamespacedSubscriptionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Subscription","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/messaging.knative.dev/v1/subscriptions":{"get":{"description":"list objects of kind Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["messagingKnativeDev_v1"],"operationId":"listMessagingKnativeDevV1SubscriptionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.messaging.v1.SubscriptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/metrics.k8s.io/v1beta1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["metrics_v1beta1"],"operationId":"getMetricsV1beta1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}}}}},"/apis/metrics.k8s.io/v1beta1/namespaces/{namespace}/pods":{"get":{"description":"list objects of kind PodMetrics","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["metrics_v1beta1"],"operationId":"listMetricsV1beta1NamespacedPodMetrics","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.PodMetricsList"}}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"metrics.k8s.io","kind":"PodMetrics","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/metrics.k8s.io/v1beta1/namespaces/{namespace}/pods/{name}":{"get":{"description":"read the specified PodMetrics","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["metrics_v1beta1"],"operationId":"readMetricsV1beta1NamespacedPodMetrics","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.PodMetrics"}}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"metrics.k8s.io","kind":"PodMetrics","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodMetrics","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/metrics.k8s.io/v1beta1/nodes":{"get":{"description":"list objects of kind NodeMetrics","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["metrics_v1beta1"],"operationId":"listMetricsV1beta1NodeMetrics","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.NodeMetricsList"}}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"metrics.k8s.io","kind":"NodeMetrics","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/metrics.k8s.io/v1beta1/nodes/{name}":{"get":{"description":"read the specified NodeMetrics","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["metrics_v1beta1"],"operationId":"readMetricsV1beta1NodeMetrics","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.NodeMetrics"}}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"metrics.k8s.io","kind":"NodeMetrics","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NodeMetrics","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/metrics.k8s.io/v1beta1/pods":{"get":{"description":"list objects of kind PodMetrics","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["metrics_v1beta1"],"operationId":"listMetricsV1beta1PodMetricsForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.PodMetricsList"}}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"metrics.k8s.io","kind":"PodMetrics","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/migration.k8s.io/v1alpha1/storagestates":{"get":{"description":"list objects of kind StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"listMigrationV1alpha1StorageState","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageStateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"post":{"description":"create a StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"createMigrationV1alpha1StorageState","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"delete":{"description":"delete collection of StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"deleteMigrationV1alpha1CollectionStorageState","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/migration.k8s.io/v1alpha1/storagestates/{name}":{"get":{"description":"read the specified StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"readMigrationV1alpha1StorageState","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"put":{"description":"replace the specified StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"replaceMigrationV1alpha1StorageState","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"delete":{"description":"delete a StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"deleteMigrationV1alpha1StorageState","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"patch":{"description":"partially update the specified StorageState","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"patchMigrationV1alpha1StorageState","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StorageState","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/migration.k8s.io/v1alpha1/storagestates/{name}/status":{"get":{"description":"read status of the specified StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"readMigrationV1alpha1StorageStateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"put":{"description":"replace status of the specified StorageState","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"replaceMigrationV1alpha1StorageStateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified StorageState","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"patchMigrationV1alpha1StorageStateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StorageState","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/migration.k8s.io/v1alpha1/storageversionmigrations":{"get":{"description":"list objects of kind StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"listMigrationV1alpha1StorageVersionMigration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigrationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"post":{"description":"create a StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"createMigrationV1alpha1StorageVersionMigration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"delete":{"description":"delete collection of StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"deleteMigrationV1alpha1CollectionStorageVersionMigration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/migration.k8s.io/v1alpha1/storageversionmigrations/{name}":{"get":{"description":"read the specified StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"readMigrationV1alpha1StorageVersionMigration","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"put":{"description":"replace the specified StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"replaceMigrationV1alpha1StorageVersionMigration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"delete":{"description":"delete a StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"deleteMigrationV1alpha1StorageVersionMigration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"patch":{"description":"partially update the specified StorageVersionMigration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"patchMigrationV1alpha1StorageVersionMigration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StorageVersionMigration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/migration.k8s.io/v1alpha1/storageversionmigrations/{name}/status":{"get":{"description":"read status of the specified StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"readMigrationV1alpha1StorageVersionMigrationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"put":{"description":"replace status of the specified StorageVersionMigration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"replaceMigrationV1alpha1StorageVersionMigrationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified StorageVersionMigration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["migration_v1alpha1"],"operationId":"patchMigrationV1alpha1StorageVersionMigrationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StorageVersionMigration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/minio.min.io/v2/namespaces/{namespace}/tenants":{"get":{"description":"list objects of kind Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"listMinioMinIoV2NamespacedTenant","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.TenantList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"post":{"description":"create a Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"createMinioMinIoV2NamespacedTenant","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"delete":{"description":"delete collection of Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"deleteMinioMinIoV2CollectionNamespacedTenant","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/minio.min.io/v2/namespaces/{namespace}/tenants/{name}":{"get":{"description":"read the specified Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"readMinioMinIoV2NamespacedTenant","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"put":{"description":"replace the specified Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"replaceMinioMinIoV2NamespacedTenant","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"delete":{"description":"delete a Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"deleteMinioMinIoV2NamespacedTenant","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"patch":{"description":"partially update the specified Tenant","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"patchMinioMinIoV2NamespacedTenant","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Tenant","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/minio.min.io/v2/namespaces/{namespace}/tenants/{name}/status":{"get":{"description":"read status of the specified Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"readMinioMinIoV2NamespacedTenantStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"put":{"description":"replace status of the specified Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"replaceMinioMinIoV2NamespacedTenantStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"patch":{"description":"partially update status of the specified Tenant","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"patchMinioMinIoV2NamespacedTenantStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Tenant","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/minio.min.io/v2/tenants":{"get":{"description":"list objects of kind Tenant","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["minioMinIo_v2"],"operationId":"listMinioMinIoV2TenantForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.minio.v2.TenantList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"minio.min.io","kind":"Tenant","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1/alertmanagers":{"get":{"description":"list objects of kind Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1AlertmanagerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.AlertmanagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/alertmanagers":{"get":{"description":"list objects of kind Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1NamespacedAlertmanager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.AlertmanagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"post":{"description":"create an Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"createMonitoringCoreosComV1NamespacedAlertmanager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"delete":{"description":"delete collection of Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1CollectionNamespacedAlertmanager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/alertmanagers/{name}":{"get":{"description":"read the specified Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedAlertmanager","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"put":{"description":"replace the specified Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedAlertmanager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"delete":{"description":"delete an Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1NamespacedAlertmanager","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"patch":{"description":"partially update the specified Alertmanager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedAlertmanager","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Alertmanager","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/alertmanagers/{name}/scale":{"get":{"description":"read scale of the specified Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedAlertmanagerScale","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"put":{"description":"replace scale of the specified Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedAlertmanagerScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"patch":{"description":"partially update scale of the specified Alertmanager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedAlertmanagerScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Alertmanager","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/alertmanagers/{name}/status":{"get":{"description":"read status of the specified Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedAlertmanagerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"put":{"description":"replace status of the specified Alertmanager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedAlertmanagerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"patch":{"description":"partially update status of the specified Alertmanager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedAlertmanagerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Alertmanager","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/podmonitors":{"get":{"description":"list objects of kind PodMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1NamespacedPodMonitor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"post":{"description":"create a PodMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"createMonitoringCoreosComV1NamespacedPodMonitor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"delete":{"description":"delete collection of PodMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1CollectionNamespacedPodMonitor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/podmonitors/{name}":{"get":{"description":"read the specified PodMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedPodMonitor","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"put":{"description":"replace the specified PodMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedPodMonitor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"delete":{"description":"delete a PodMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1NamespacedPodMonitor","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"patch":{"description":"partially update the specified PodMonitor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedPodMonitor","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodMonitor","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/probes":{"get":{"description":"list objects of kind Probe","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1NamespacedProbe","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ProbeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"post":{"description":"create a Probe","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"createMonitoringCoreosComV1NamespacedProbe","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"delete":{"description":"delete collection of Probe","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1CollectionNamespacedProbe","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/probes/{name}":{"get":{"description":"read the specified Probe","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedProbe","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"put":{"description":"replace the specified Probe","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedProbe","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"delete":{"description":"delete a Probe","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1NamespacedProbe","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"patch":{"description":"partially update the specified Probe","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedProbe","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Probe","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/prometheuses":{"get":{"description":"list objects of kind Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1NamespacedPrometheus","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"post":{"description":"create Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"createMonitoringCoreosComV1NamespacedPrometheus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"delete":{"description":"delete collection of Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1CollectionNamespacedPrometheus","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/prometheuses/{name}":{"get":{"description":"read the specified Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedPrometheus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"put":{"description":"replace the specified Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedPrometheus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"delete":{"description":"delete Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1NamespacedPrometheus","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"patch":{"description":"partially update the specified Prometheus","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedPrometheus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Prometheus","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/prometheuses/{name}/scale":{"get":{"description":"read scale of the specified Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedPrometheusScale","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"put":{"description":"replace scale of the specified Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedPrometheusScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"patch":{"description":"partially update scale of the specified Prometheus","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedPrometheusScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Prometheus","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/prometheuses/{name}/status":{"get":{"description":"read status of the specified Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedPrometheusStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"put":{"description":"replace status of the specified Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedPrometheusStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"patch":{"description":"partially update status of the specified Prometheus","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedPrometheusStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Prometheus","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/prometheusrules":{"get":{"description":"list objects of kind PrometheusRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1NamespacedPrometheusRule","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRuleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"post":{"description":"create a PrometheusRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"createMonitoringCoreosComV1NamespacedPrometheusRule","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"delete":{"description":"delete collection of PrometheusRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1CollectionNamespacedPrometheusRule","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/prometheusrules/{name}":{"get":{"description":"read the specified PrometheusRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedPrometheusRule","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"put":{"description":"replace the specified PrometheusRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedPrometheusRule","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"delete":{"description":"delete a PrometheusRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1NamespacedPrometheusRule","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"patch":{"description":"partially update the specified PrometheusRule","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedPrometheusRule","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PrometheusRule","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/servicemonitors":{"get":{"description":"list objects of kind ServiceMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1NamespacedServiceMonitor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"post":{"description":"create a ServiceMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"createMonitoringCoreosComV1NamespacedServiceMonitor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"delete":{"description":"delete collection of ServiceMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1CollectionNamespacedServiceMonitor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/servicemonitors/{name}":{"get":{"description":"read the specified ServiceMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedServiceMonitor","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"put":{"description":"replace the specified ServiceMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedServiceMonitor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"delete":{"description":"delete a ServiceMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1NamespacedServiceMonitor","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"patch":{"description":"partially update the specified ServiceMonitor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedServiceMonitor","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ServiceMonitor","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/thanosrulers":{"get":{"description":"list objects of kind ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1NamespacedThanosRuler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRulerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"post":{"description":"create a ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"createMonitoringCoreosComV1NamespacedThanosRuler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"delete":{"description":"delete collection of ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1CollectionNamespacedThanosRuler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/thanosrulers/{name}":{"get":{"description":"read the specified ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedThanosRuler","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"put":{"description":"replace the specified ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedThanosRuler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"delete":{"description":"delete a ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"deleteMonitoringCoreosComV1NamespacedThanosRuler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"patch":{"description":"partially update the specified ThanosRuler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedThanosRuler","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ThanosRuler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/namespaces/{namespace}/thanosrulers/{name}/status":{"get":{"description":"read status of the specified ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"readMonitoringCoreosComV1NamespacedThanosRulerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"put":{"description":"replace status of the specified ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"replaceMonitoringCoreosComV1NamespacedThanosRulerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"patch":{"description":"partially update status of the specified ThanosRuler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"patchMonitoringCoreosComV1NamespacedThanosRulerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ThanosRuler","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1/podmonitors":{"get":{"description":"list objects of kind PodMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1PodMonitorForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1/probes":{"get":{"description":"list objects of kind Probe","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1ProbeForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ProbeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1/prometheuses":{"get":{"description":"list objects of kind Prometheus","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1PrometheusForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1/prometheusrules":{"get":{"description":"list objects of kind PrometheusRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1PrometheusRuleForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRuleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1/servicemonitors":{"get":{"description":"list objects of kind ServiceMonitor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1ServiceMonitorForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1/thanosrulers":{"get":{"description":"list objects of kind ThanosRuler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1"],"operationId":"listMonitoringCoreosComV1ThanosRulerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRulerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1alpha1/alertmanagerconfigs":{"get":{"description":"list objects of kind AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"listMonitoringCoreosComV1alpha1AlertmanagerConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1alpha1/namespaces/{namespace}/alertmanagerconfigs":{"get":{"description":"list objects of kind AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"listMonitoringCoreosComV1alpha1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"post":{"description":"create an AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"createMonitoringCoreosComV1alpha1NamespacedAlertmanagerConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"delete":{"description":"delete collection of AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"deleteMonitoringCoreosComV1alpha1CollectionNamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1alpha1/namespaces/{namespace}/alertmanagerconfigs/{name}":{"get":{"description":"read the specified AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"readMonitoringCoreosComV1alpha1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"put":{"description":"replace the specified AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"replaceMonitoringCoreosComV1alpha1NamespacedAlertmanagerConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"delete":{"description":"delete an AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"deleteMonitoringCoreosComV1alpha1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"patch":{"description":"partially update the specified AlertmanagerConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1alpha1"],"operationId":"patchMonitoringCoreosComV1alpha1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AlertmanagerConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1beta1/alertmanagerconfigs":{"get":{"description":"list objects of kind AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"listMonitoringCoreosComV1beta1AlertmanagerConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.coreos.com/v1beta1/namespaces/{namespace}/alertmanagerconfigs":{"get":{"description":"list objects of kind AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"listMonitoringCoreosComV1beta1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"post":{"description":"create an AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"createMonitoringCoreosComV1beta1NamespacedAlertmanagerConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"delete":{"description":"delete collection of AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"deleteMonitoringCoreosComV1beta1CollectionNamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.coreos.com/v1beta1/namespaces/{namespace}/alertmanagerconfigs/{name}":{"get":{"description":"read the specified AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"readMonitoringCoreosComV1beta1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"put":{"description":"replace the specified AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"replaceMonitoringCoreosComV1beta1NamespacedAlertmanagerConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"delete":{"description":"delete an AlertmanagerConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"deleteMonitoringCoreosComV1beta1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"patch":{"description":"partially update the specified AlertmanagerConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringCoreosCom_v1beta1"],"operationId":"patchMonitoringCoreosComV1beta1NamespacedAlertmanagerConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AlertmanagerConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.openshift.io/v1/alertingrules":{"get":{"description":"list objects of kind AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"listMonitoringOpenshiftIoV1AlertingRuleForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRuleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.openshift.io/v1/alertrelabelconfigs":{"get":{"description":"list objects of kind AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"listMonitoringOpenshiftIoV1AlertRelabelConfigForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/monitoring.openshift.io/v1/namespaces/{namespace}/alertingrules":{"get":{"description":"list objects of kind AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"listMonitoringOpenshiftIoV1NamespacedAlertingRule","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRuleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"post":{"description":"create an AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"createMonitoringOpenshiftIoV1NamespacedAlertingRule","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"delete":{"description":"delete collection of AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"deleteMonitoringOpenshiftIoV1CollectionNamespacedAlertingRule","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.openshift.io/v1/namespaces/{namespace}/alertingrules/{name}":{"get":{"description":"read the specified AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"readMonitoringOpenshiftIoV1NamespacedAlertingRule","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"put":{"description":"replace the specified AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"replaceMonitoringOpenshiftIoV1NamespacedAlertingRule","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"delete":{"description":"delete an AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"deleteMonitoringOpenshiftIoV1NamespacedAlertingRule","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"patch":{"description":"partially update the specified AlertingRule","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"patchMonitoringOpenshiftIoV1NamespacedAlertingRule","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AlertingRule","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.openshift.io/v1/namespaces/{namespace}/alertingrules/{name}/status":{"get":{"description":"read status of the specified AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"readMonitoringOpenshiftIoV1NamespacedAlertingRuleStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"put":{"description":"replace status of the specified AlertingRule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"replaceMonitoringOpenshiftIoV1NamespacedAlertingRuleStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"patch":{"description":"partially update status of the specified AlertingRule","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"patchMonitoringOpenshiftIoV1NamespacedAlertingRuleStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AlertingRule","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.openshift.io/v1/namespaces/{namespace}/alertrelabelconfigs":{"get":{"description":"list objects of kind AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"listMonitoringOpenshiftIoV1NamespacedAlertRelabelConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"post":{"description":"create an AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"createMonitoringOpenshiftIoV1NamespacedAlertRelabelConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"delete":{"description":"delete collection of AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"deleteMonitoringOpenshiftIoV1CollectionNamespacedAlertRelabelConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.openshift.io/v1/namespaces/{namespace}/alertrelabelconfigs/{name}":{"get":{"description":"read the specified AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"readMonitoringOpenshiftIoV1NamespacedAlertRelabelConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"put":{"description":"replace the specified AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"replaceMonitoringOpenshiftIoV1NamespacedAlertRelabelConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"delete":{"description":"delete an AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"deleteMonitoringOpenshiftIoV1NamespacedAlertRelabelConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"patch":{"description":"partially update the specified AlertRelabelConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"patchMonitoringOpenshiftIoV1NamespacedAlertRelabelConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AlertRelabelConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/monitoring.openshift.io/v1/namespaces/{namespace}/alertrelabelconfigs/{name}/status":{"get":{"description":"read status of the specified AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"readMonitoringOpenshiftIoV1NamespacedAlertRelabelConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"put":{"description":"replace status of the specified AlertRelabelConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"replaceMonitoringOpenshiftIoV1NamespacedAlertRelabelConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"patch":{"description":"partially update status of the specified AlertRelabelConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["monitoringOpenshiftIo_v1"],"operationId":"patchMonitoringOpenshiftIoV1NamespacedAlertRelabelConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AlertRelabelConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/network.operator.openshift.io/v1/egressrouters":{"get":{"description":"list objects of kind EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"listNetworkOperatorOpenshiftIoV1EgressRouterForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/network.operator.openshift.io/v1/namespaces/{namespace}/egressrouters":{"get":{"description":"list objects of kind EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"listNetworkOperatorOpenshiftIoV1NamespacedEgressRouter","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouterList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"post":{"description":"create an EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"createNetworkOperatorOpenshiftIoV1NamespacedEgressRouter","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"delete":{"description":"delete collection of EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"deleteNetworkOperatorOpenshiftIoV1CollectionNamespacedEgressRouter","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/network.operator.openshift.io/v1/namespaces/{namespace}/egressrouters/{name}":{"get":{"description":"read the specified EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"readNetworkOperatorOpenshiftIoV1NamespacedEgressRouter","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"put":{"description":"replace the specified EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"replaceNetworkOperatorOpenshiftIoV1NamespacedEgressRouter","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"delete":{"description":"delete an EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"deleteNetworkOperatorOpenshiftIoV1NamespacedEgressRouter","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"patch":{"description":"partially update the specified EgressRouter","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"patchNetworkOperatorOpenshiftIoV1NamespacedEgressRouter","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressRouter","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/network.operator.openshift.io/v1/namespaces/{namespace}/egressrouters/{name}/status":{"get":{"description":"read status of the specified EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"readNetworkOperatorOpenshiftIoV1NamespacedEgressRouterStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"put":{"description":"replace status of the specified EgressRouter","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"replaceNetworkOperatorOpenshiftIoV1NamespacedEgressRouterStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"patch":{"description":"partially update status of the specified EgressRouter","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"patchNetworkOperatorOpenshiftIoV1NamespacedEgressRouterStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EgressRouter","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/network.operator.openshift.io/v1/namespaces/{namespace}/operatorpkis":{"get":{"description":"list objects of kind OperatorPKI","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"listNetworkOperatorOpenshiftIoV1NamespacedOperatorPKI","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKIList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"post":{"description":"create an OperatorPKI","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"createNetworkOperatorOpenshiftIoV1NamespacedOperatorPKI","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"delete":{"description":"delete collection of OperatorPKI","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"deleteNetworkOperatorOpenshiftIoV1CollectionNamespacedOperatorPKI","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/network.operator.openshift.io/v1/namespaces/{namespace}/operatorpkis/{name}":{"get":{"description":"read the specified OperatorPKI","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"readNetworkOperatorOpenshiftIoV1NamespacedOperatorPKI","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"put":{"description":"replace the specified OperatorPKI","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"replaceNetworkOperatorOpenshiftIoV1NamespacedOperatorPKI","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"delete":{"description":"delete an OperatorPKI","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"deleteNetworkOperatorOpenshiftIoV1NamespacedOperatorPKI","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"patch":{"description":"partially update the specified OperatorPKI","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"patchNetworkOperatorOpenshiftIoV1NamespacedOperatorPKI","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorPKI","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/network.operator.openshift.io/v1/operatorpkis":{"get":{"description":"list objects of kind OperatorPKI","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["networkOperatorOpenshiftIo_v1"],"operationId":"listNetworkOperatorOpenshiftIoV1OperatorPKIForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKIList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking"],"operationId":"getNetworkingAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/networking.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"getNetworkingV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/networking.k8s.io/v1/ingressclasses":{"get":{"description":"list or watch objects of kind IngressClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"listNetworkingV1IngressClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"post":{"description":"create an IngressClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"createNetworkingV1IngressClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"delete":{"description":"delete collection of IngressClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"deleteNetworkingV1CollectionIngressClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/networking.k8s.io/v1/ingressclasses/{name}":{"get":{"description":"read the specified IngressClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"readNetworkingV1IngressClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"put":{"description":"replace the specified IngressClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"replaceNetworkingV1IngressClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"delete":{"description":"delete an IngressClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"deleteNetworkingV1IngressClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"patch":{"description":"partially update the specified IngressClass","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"patchNetworkingV1IngressClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IngressClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/networking.k8s.io/v1/ingresses":{"get":{"description":"list or watch objects of kind Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"listNetworkingV1IngressForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses":{"get":{"description":"list or watch objects of kind Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"listNetworkingV1NamespacedIngress","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"post":{"description":"create an Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"createNetworkingV1NamespacedIngress","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"delete":{"description":"delete collection of Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"deleteNetworkingV1CollectionNamespacedIngress","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}":{"get":{"description":"read the specified Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"readNetworkingV1NamespacedIngress","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"put":{"description":"replace the specified Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"replaceNetworkingV1NamespacedIngress","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"delete":{"description":"delete an Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"deleteNetworkingV1NamespacedIngress","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"patch":{"description":"partially update the specified Ingress","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"patchNetworkingV1NamespacedIngress","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Ingress","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/networking.k8s.io/v1/namespaces/{namespace}/ingresses/{name}/status":{"get":{"description":"read status of the specified Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"readNetworkingV1NamespacedIngressStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"put":{"description":"replace status of the specified Ingress","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"replaceNetworkingV1NamespacedIngressStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"patch":{"description":"partially update status of the specified Ingress","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"patchNetworkingV1NamespacedIngressStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Ingress","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies":{"get":{"description":"list or watch objects of kind NetworkPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"listNetworkingV1NamespacedNetworkPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"post":{"description":"create a NetworkPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"createNetworkingV1NamespacedNetworkPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"delete":{"description":"delete collection of NetworkPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"deleteNetworkingV1CollectionNamespacedNetworkPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/networking.k8s.io/v1/namespaces/{namespace}/networkpolicies/{name}":{"get":{"description":"read the specified NetworkPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"readNetworkingV1NamespacedNetworkPolicy","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"put":{"description":"replace the specified NetworkPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"replaceNetworkingV1NamespacedNetworkPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"delete":{"description":"delete a NetworkPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"deleteNetworkingV1NamespacedNetworkPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"patch":{"description":"partially update the specified NetworkPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["networking_v1"],"operationId":"patchNetworkingV1NamespacedNetworkPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NetworkPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/networking.k8s.io/v1/networkpolicies":{"get":{"description":"list or watch objects of kind NetworkPolicy","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"listNetworkingV1NetworkPolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/ingressclasses":{"get":{"description":"watch individual changes to a list of IngressClass. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1IngressClassList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/ingressclasses/{name}":{"get":{"description":"watch changes to an object of kind IngressClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1IngressClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the IngressClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/ingresses":{"get":{"description":"watch individual changes to a list of Ingress. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1IngressListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/namespaces/{namespace}/ingresses":{"get":{"description":"watch individual changes to a list of Ingress. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1NamespacedIngressList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/namespaces/{namespace}/ingresses/{name}":{"get":{"description":"watch changes to an object of kind Ingress. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1NamespacedIngress","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Ingress","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/namespaces/{namespace}/networkpolicies":{"get":{"description":"watch individual changes to a list of NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1NamespacedNetworkPolicyList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/namespaces/{namespace}/networkpolicies/{name}":{"get":{"description":"watch changes to an object of kind NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1NamespacedNetworkPolicy","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the NetworkPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/networking.k8s.io/v1/watch/networkpolicies":{"get":{"description":"watch individual changes to a list of NetworkPolicy. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["networking_v1"],"operationId":"watchNetworkingV1NetworkPolicyListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/node.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node"],"operationId":"getNodeAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/node.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node_v1"],"operationId":"getNodeV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/node.k8s.io/v1/runtimeclasses":{"get":{"description":"list or watch objects of kind RuntimeClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["node_v1"],"operationId":"listNodeV1RuntimeClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"post":{"description":"create a RuntimeClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node_v1"],"operationId":"createNodeV1RuntimeClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"delete":{"description":"delete collection of RuntimeClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node_v1"],"operationId":"deleteNodeV1CollectionRuntimeClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/node.k8s.io/v1/runtimeclasses/{name}":{"get":{"description":"read the specified RuntimeClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node_v1"],"operationId":"readNodeV1RuntimeClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"put":{"description":"replace the specified RuntimeClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node_v1"],"operationId":"replaceNodeV1RuntimeClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"delete":{"description":"delete a RuntimeClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node_v1"],"operationId":"deleteNodeV1RuntimeClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"patch":{"description":"partially update the specified RuntimeClass","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["node_v1"],"operationId":"patchNodeV1RuntimeClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RuntimeClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/node.k8s.io/v1/watch/runtimeclasses":{"get":{"description":"watch individual changes to a list of RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["node_v1"],"operationId":"watchNodeV1RuntimeClassList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/node.k8s.io/v1/watch/runtimeclasses/{name}":{"get":{"description":"watch changes to an object of kind RuntimeClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["node_v1"],"operationId":"watchNodeV1RuntimeClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the RuntimeClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oadp.openshift.io/v1alpha1/cloudstorages":{"get":{"description":"list objects of kind CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"listOadpOpenshiftIoV1alpha1CloudStorageForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oadp.openshift.io/v1alpha1/dataprotectionapplications":{"get":{"description":"list objects of kind DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"listOadpOpenshiftIoV1alpha1DataProtectionApplicationForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplicationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oadp.openshift.io/v1alpha1/namespaces/{namespace}/cloudstorages":{"get":{"description":"list objects of kind CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"listOadpOpenshiftIoV1alpha1NamespacedCloudStorage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"post":{"description":"create a CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"createOadpOpenshiftIoV1alpha1NamespacedCloudStorage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"delete":{"description":"delete collection of CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"deleteOadpOpenshiftIoV1alpha1CollectionNamespacedCloudStorage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oadp.openshift.io/v1alpha1/namespaces/{namespace}/cloudstorages/{name}":{"get":{"description":"read the specified CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"readOadpOpenshiftIoV1alpha1NamespacedCloudStorage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"put":{"description":"replace the specified CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"replaceOadpOpenshiftIoV1alpha1NamespacedCloudStorage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"delete":{"description":"delete a CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"deleteOadpOpenshiftIoV1alpha1NamespacedCloudStorage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"patch":{"description":"partially update the specified CloudStorage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"patchOadpOpenshiftIoV1alpha1NamespacedCloudStorage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CloudStorage","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oadp.openshift.io/v1alpha1/namespaces/{namespace}/cloudstorages/{name}/status":{"get":{"description":"read status of the specified CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"readOadpOpenshiftIoV1alpha1NamespacedCloudStorageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"put":{"description":"replace status of the specified CloudStorage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"replaceOadpOpenshiftIoV1alpha1NamespacedCloudStorageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified CloudStorage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"patchOadpOpenshiftIoV1alpha1NamespacedCloudStorageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CloudStorage","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oadp.openshift.io/v1alpha1/namespaces/{namespace}/dataprotectionapplications":{"get":{"description":"list objects of kind DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"listOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplicationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"post":{"description":"create a DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"createOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"delete":{"description":"delete collection of DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"deleteOadpOpenshiftIoV1alpha1CollectionNamespacedDataProtectionApplication","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oadp.openshift.io/v1alpha1/namespaces/{namespace}/dataprotectionapplications/{name}":{"get":{"description":"read the specified DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"readOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplication","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"put":{"description":"replace the specified DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"replaceOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplication","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"delete":{"description":"delete a DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"deleteOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplication","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"patch":{"description":"partially update the specified DataProtectionApplication","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"patchOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplication","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DataProtectionApplication","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oadp.openshift.io/v1alpha1/namespaces/{namespace}/dataprotectionapplications/{name}/status":{"get":{"description":"read status of the specified DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"readOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplicationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"put":{"description":"replace status of the specified DataProtectionApplication","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"replaceOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplicationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified DataProtectionApplication","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["oadpOpenshiftIo_v1alpha1"],"operationId":"patchOadpOpenshiftIoV1alpha1NamespacedDataProtectionApplicationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DataProtectionApplication","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"getOauthOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/oauth.openshift.io/v1/oauthaccesstokens":{"get":{"description":"list or watch objects of kind OAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"listOauthOpenshiftIoV1OAuthAccessToken","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessTokenList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"post":{"description":"create an OAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"createOauthOpenshiftIoV1OAuthAccessToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"delete":{"description":"delete collection of OAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1CollectionOAuthAccessToken","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/oauthaccesstokens/{name}":{"get":{"description":"read the specified OAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"readOauthOpenshiftIoV1OAuthAccessToken","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"put":{"description":"replace the specified OAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"replaceOauthOpenshiftIoV1OAuthAccessToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"delete":{"description":"delete an OAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1OAuthAccessToken","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"patch":{"description":"partially update the specified OAuthAccessToken","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"patchOauthOpenshiftIoV1OAuthAccessToken","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OAuthAccessToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/oauthauthorizetokens":{"get":{"description":"list or watch objects of kind OAuthAuthorizeToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"listOauthOpenshiftIoV1OAuthAuthorizeToken","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeTokenList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"post":{"description":"create an OAuthAuthorizeToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"createOauthOpenshiftIoV1OAuthAuthorizeToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"delete":{"description":"delete collection of OAuthAuthorizeToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1CollectionOAuthAuthorizeToken","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/oauthauthorizetokens/{name}":{"get":{"description":"read the specified OAuthAuthorizeToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"readOauthOpenshiftIoV1OAuthAuthorizeToken","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"put":{"description":"replace the specified OAuthAuthorizeToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"replaceOauthOpenshiftIoV1OAuthAuthorizeToken","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"delete":{"description":"delete an OAuthAuthorizeToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1OAuthAuthorizeToken","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"patch":{"description":"partially update the specified OAuthAuthorizeToken","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"patchOauthOpenshiftIoV1OAuthAuthorizeToken","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OAuthAuthorizeToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/oauthclientauthorizations":{"get":{"description":"list or watch objects of kind OAuthClientAuthorization","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"listOauthOpenshiftIoV1OAuthClientAuthorization","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorizationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"post":{"description":"create an OAuthClientAuthorization","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"createOauthOpenshiftIoV1OAuthClientAuthorization","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"delete":{"description":"delete collection of OAuthClientAuthorization","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1CollectionOAuthClientAuthorization","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/oauthclientauthorizations/{name}":{"get":{"description":"read the specified OAuthClientAuthorization","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"readOauthOpenshiftIoV1OAuthClientAuthorization","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"put":{"description":"replace the specified OAuthClientAuthorization","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"replaceOauthOpenshiftIoV1OAuthClientAuthorization","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"delete":{"description":"delete an OAuthClientAuthorization","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1OAuthClientAuthorization","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"patch":{"description":"partially update the specified OAuthClientAuthorization","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"patchOauthOpenshiftIoV1OAuthClientAuthorization","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OAuthClientAuthorization","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/oauthclients":{"get":{"description":"list or watch objects of kind OAuthClient","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"listOauthOpenshiftIoV1OAuthClient","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"post":{"description":"create an OAuthClient","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"createOauthOpenshiftIoV1OAuthClient","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"delete":{"description":"delete collection of OAuthClient","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1CollectionOAuthClient","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/oauthclients/{name}":{"get":{"description":"read the specified OAuthClient","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"readOauthOpenshiftIoV1OAuthClient","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"put":{"description":"replace the specified OAuthClient","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"replaceOauthOpenshiftIoV1OAuthClient","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"delete":{"description":"delete an OAuthClient","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1OAuthClient","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"patch":{"description":"partially update the specified OAuthClient","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"patchOauthOpenshiftIoV1OAuthClient","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OAuthClient","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/tokenreviews":{"post":{"description":"create a TokenReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"createOauthOpenshiftIoV1TokenReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"authentication.k8s.io","kind":"TokenReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/useroauthaccesstokens":{"get":{"description":"list or watch objects of kind UserOAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"listOauthOpenshiftIoV1UserOAuthAccessToken","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.UserOAuthAccessTokenList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"UserOAuthAccessToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/useroauthaccesstokens/{name}":{"get":{"description":"read the specified UserOAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"readOauthOpenshiftIoV1UserOAuthAccessToken","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.UserOAuthAccessToken"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"UserOAuthAccessToken","version":"v1"}},"delete":{"description":"delete an UserOAuthAccessToken","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"deleteOauthOpenshiftIoV1UserOAuthAccessToken","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"UserOAuthAccessToken","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UserOAuthAccessToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/oauth.openshift.io/v1/watch/oauthaccesstokens":{"get":{"description":"watch individual changes to a list of OAuthAccessToken. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthAccessTokenList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/oauthaccesstokens/{name}":{"get":{"description":"watch changes to an object of kind OAuthAccessToken. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthAccessToken","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the OAuthAccessToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/oauthauthorizetokens":{"get":{"description":"watch individual changes to a list of OAuthAuthorizeToken. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthAuthorizeTokenList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/oauthauthorizetokens/{name}":{"get":{"description":"watch changes to an object of kind OAuthAuthorizeToken. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthAuthorizeToken","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the OAuthAuthorizeToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/oauthclientauthorizations":{"get":{"description":"watch individual changes to a list of OAuthClientAuthorization. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthClientAuthorizationList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/oauthclientauthorizations/{name}":{"get":{"description":"watch changes to an object of kind OAuthClientAuthorization. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthClientAuthorization","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the OAuthClientAuthorization","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/oauthclients":{"get":{"description":"watch individual changes to a list of OAuthClient. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthClientList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/oauthclients/{name}":{"get":{"description":"watch changes to an object of kind OAuthClient. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1OAuthClient","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the OAuthClient","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/useroauthaccesstokens":{"get":{"description":"watch individual changes to a list of UserOAuthAccessToken. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1UserOAuthAccessTokenList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"UserOAuthAccessToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/oauth.openshift.io/v1/watch/useroauthaccesstokens/{name}":{"get":{"description":"watch changes to an object of kind UserOAuthAccessToken. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["oauthOpenshiftIo_v1"],"operationId":"watchOauthOpenshiftIoV1UserOAuthAccessToken","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"oauth.openshift.io","kind":"UserOAuthAccessToken","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the UserOAuthAccessToken","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operator.openshift.io/v1/cloudcredentials":{"get":{"description":"list objects of kind CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1CloudCredential","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredentialList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"post":{"description":"create a CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1CloudCredential","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"delete":{"description":"delete collection of CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionCloudCredential","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/cloudcredentials/{name}":{"get":{"description":"read the specified CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1CloudCredential","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"put":{"description":"replace the specified CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1CloudCredential","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"delete":{"description":"delete a CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CloudCredential","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"patch":{"description":"partially update the specified CloudCredential","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1CloudCredential","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CloudCredential","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/cloudcredentials/{name}/status":{"get":{"description":"read status of the specified CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1CloudCredentialStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"put":{"description":"replace status of the specified CloudCredential","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1CloudCredentialStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"patch":{"description":"partially update status of the specified CloudCredential","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1CloudCredentialStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CloudCredential","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/clustercsidrivers":{"get":{"description":"list objects of kind ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1ClusterCSIDriver","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriverList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"post":{"description":"create a ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1ClusterCSIDriver","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"delete":{"description":"delete collection of ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionClusterCSIDriver","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/clustercsidrivers/{name}":{"get":{"description":"read the specified ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1ClusterCSIDriver","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"put":{"description":"replace the specified ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1ClusterCSIDriver","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"delete":{"description":"delete a ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1ClusterCSIDriver","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"patch":{"description":"partially update the specified ClusterCSIDriver","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1ClusterCSIDriver","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterCSIDriver","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/clustercsidrivers/{name}/status":{"get":{"description":"read status of the specified ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1ClusterCSIDriverStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"put":{"description":"replace status of the specified ClusterCSIDriver","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1ClusterCSIDriverStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterCSIDriver","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1ClusterCSIDriverStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterCSIDriver","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/configs":{"get":{"description":"list objects of kind Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"post":{"description":"create a Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1Config","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"delete":{"description":"delete collection of Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/configs/{name}":{"get":{"description":"read the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"put":{"description":"replace the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1Config","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"delete":{"description":"delete a Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"patch":{"description":"partially update the specified Config","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Config","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/configs/{name}/status":{"get":{"description":"read status of the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1ConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"put":{"description":"replace status of the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1ConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"patch":{"description":"partially update status of the specified Config","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1ConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Config","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/consoles":{"get":{"description":"list objects of kind Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ConsoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"post":{"description":"create a Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1Console","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"delete":{"description":"delete collection of Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionConsole","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/consoles/{name}":{"get":{"description":"read the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"put":{"description":"replace the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1Console","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"delete":{"description":"delete a Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"patch":{"description":"partially update the specified Console","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1Console","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Console","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/consoles/{name}/status":{"get":{"description":"read status of the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1ConsoleStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"put":{"description":"replace status of the specified Console","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1ConsoleStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"patch":{"description":"partially update status of the specified Console","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1ConsoleStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Console","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Console","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/csisnapshotcontrollers":{"get":{"description":"list objects of kind CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1CSISnapshotController","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotControllerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"post":{"description":"create a CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1CSISnapshotController","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"delete":{"description":"delete collection of CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionCSISnapshotController","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/csisnapshotcontrollers/{name}":{"get":{"description":"read the specified CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1CSISnapshotController","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"put":{"description":"replace the specified CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1CSISnapshotController","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"delete":{"description":"delete a CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CSISnapshotController","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"patch":{"description":"partially update the specified CSISnapshotController","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1CSISnapshotController","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CSISnapshotController","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/csisnapshotcontrollers/{name}/status":{"get":{"description":"read status of the specified CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1CSISnapshotControllerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"put":{"description":"replace status of the specified CSISnapshotController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1CSISnapshotControllerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"patch":{"description":"partially update status of the specified CSISnapshotController","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1CSISnapshotControllerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CSISnapshotController","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/dnses":{"get":{"description":"list objects of kind DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNSList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"post":{"description":"create a DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1DNS","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"delete":{"description":"delete collection of DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionDNS","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/dnses/{name}":{"get":{"description":"read the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"put":{"description":"replace the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1DNS","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"delete":{"description":"delete a DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"patch":{"description":"partially update the specified DNS","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1DNS","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DNS","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/dnses/{name}/status":{"get":{"description":"read status of the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1DNSStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"put":{"description":"replace status of the specified DNS","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1DNSStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"patch":{"description":"partially update status of the specified DNS","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1DNSStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"DNS","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DNS","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/etcds":{"get":{"description":"list objects of kind Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1Etcd","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.EtcdList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"post":{"description":"create an Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1Etcd","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"delete":{"description":"delete collection of Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionEtcd","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/etcds/{name}":{"get":{"description":"read the specified Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1Etcd","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"put":{"description":"replace the specified Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1Etcd","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"delete":{"description":"delete an Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1Etcd","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"patch":{"description":"partially update the specified Etcd","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1Etcd","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Etcd","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/etcds/{name}/status":{"get":{"description":"read status of the specified Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1EtcdStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"put":{"description":"replace status of the specified Etcd","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1EtcdStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"patch":{"description":"partially update status of the specified Etcd","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1EtcdStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Etcd","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/ingresscontrollers":{"get":{"description":"list objects of kind IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1IngressControllerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressControllerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operator.openshift.io/v1/insightsoperators":{"get":{"description":"list objects of kind InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1InsightsOperator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperatorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"post":{"description":"create an InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1InsightsOperator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"delete":{"description":"delete collection of InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionInsightsOperator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/insightsoperators/{name}":{"get":{"description":"read the specified InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1InsightsOperator","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"put":{"description":"replace the specified InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1InsightsOperator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"delete":{"description":"delete an InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1InsightsOperator","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"patch":{"description":"partially update the specified InsightsOperator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1InsightsOperator","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InsightsOperator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/insightsoperators/{name}/scale":{"get":{"description":"read scale of the specified InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1InsightsOperatorScale","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"put":{"description":"replace scale of the specified InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1InsightsOperatorScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"patch":{"description":"partially update scale of the specified InsightsOperator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1InsightsOperatorScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InsightsOperator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/insightsoperators/{name}/status":{"get":{"description":"read status of the specified InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1InsightsOperatorStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"put":{"description":"replace status of the specified InsightsOperator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1InsightsOperatorStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"patch":{"description":"partially update status of the specified InsightsOperator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1InsightsOperatorStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InsightsOperator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubeapiservers":{"get":{"description":"list objects of kind KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1KubeAPIServer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"post":{"description":"create a KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1KubeAPIServer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"delete":{"description":"delete collection of KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionKubeAPIServer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubeapiservers/{name}":{"get":{"description":"read the specified KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeAPIServer","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"put":{"description":"replace the specified KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeAPIServer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"delete":{"description":"delete a KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1KubeAPIServer","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"patch":{"description":"partially update the specified KubeAPIServer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeAPIServer","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeAPIServer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubeapiservers/{name}/status":{"get":{"description":"read status of the specified KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeAPIServerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"put":{"description":"replace status of the specified KubeAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeAPIServerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"patch":{"description":"partially update status of the specified KubeAPIServer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeAPIServerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeAPIServer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubecontrollermanagers":{"get":{"description":"list objects of kind KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1KubeControllerManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"post":{"description":"create a KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1KubeControllerManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"delete":{"description":"delete collection of KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionKubeControllerManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubecontrollermanagers/{name}":{"get":{"description":"read the specified KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeControllerManager","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"put":{"description":"replace the specified KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeControllerManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"delete":{"description":"delete a KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1KubeControllerManager","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"patch":{"description":"partially update the specified KubeControllerManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeControllerManager","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeControllerManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubecontrollermanagers/{name}/status":{"get":{"description":"read status of the specified KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeControllerManagerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"put":{"description":"replace status of the specified KubeControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeControllerManagerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"patch":{"description":"partially update status of the specified KubeControllerManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeControllerManagerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeControllerManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubeschedulers":{"get":{"description":"list objects of kind KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1KubeScheduler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeSchedulerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"post":{"description":"create a KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1KubeScheduler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"delete":{"description":"delete collection of KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionKubeScheduler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubeschedulers/{name}":{"get":{"description":"read the specified KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeScheduler","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"put":{"description":"replace the specified KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeScheduler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"delete":{"description":"delete a KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1KubeScheduler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"patch":{"description":"partially update the specified KubeScheduler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeScheduler","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeScheduler","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubeschedulers/{name}/status":{"get":{"description":"read status of the specified KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeSchedulerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"put":{"description":"replace status of the specified KubeScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeSchedulerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"patch":{"description":"partially update status of the specified KubeScheduler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeSchedulerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeScheduler","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubestorageversionmigrators":{"get":{"description":"list objects of kind KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1KubeStorageVersionMigrator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigratorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"post":{"description":"create a KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1KubeStorageVersionMigrator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"delete":{"description":"delete collection of KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionKubeStorageVersionMigrator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubestorageversionmigrators/{name}":{"get":{"description":"read the specified KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeStorageVersionMigrator","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"put":{"description":"replace the specified KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeStorageVersionMigrator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"delete":{"description":"delete a KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1KubeStorageVersionMigrator","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"patch":{"description":"partially update the specified KubeStorageVersionMigrator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeStorageVersionMigrator","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeStorageVersionMigrator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/kubestorageversionmigrators/{name}/status":{"get":{"description":"read status of the specified KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1KubeStorageVersionMigratorStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"put":{"description":"replace status of the specified KubeStorageVersionMigrator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1KubeStorageVersionMigratorStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"patch":{"description":"partially update status of the specified KubeStorageVersionMigrator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1KubeStorageVersionMigratorStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the KubeStorageVersionMigrator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/machineconfigurations":{"get":{"description":"list objects of kind MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1MachineConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"post":{"description":"create a MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1MachineConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"delete":{"description":"delete collection of MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionMachineConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/machineconfigurations/{name}":{"get":{"description":"read the specified MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1MachineConfiguration","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"put":{"description":"replace the specified MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1MachineConfiguration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"delete":{"description":"delete a MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1MachineConfiguration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"patch":{"description":"partially update the specified MachineConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1MachineConfiguration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MachineConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/machineconfigurations/{name}/status":{"get":{"description":"read status of the specified MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1MachineConfigurationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"put":{"description":"replace status of the specified MachineConfiguration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1MachineConfigurationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"patch":{"description":"partially update status of the specified MachineConfiguration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1MachineConfigurationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MachineConfiguration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/namespaces/{namespace}/ingresscontrollers":{"get":{"description":"list objects of kind IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1NamespacedIngressController","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressControllerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"post":{"description":"create an IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1NamespacedIngressController","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"delete":{"description":"delete collection of IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionNamespacedIngressController","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/namespaces/{namespace}/ingresscontrollers/{name}":{"get":{"description":"read the specified IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1NamespacedIngressController","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"put":{"description":"replace the specified IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1NamespacedIngressController","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"delete":{"description":"delete an IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1NamespacedIngressController","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"patch":{"description":"partially update the specified IngressController","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1NamespacedIngressController","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IngressController","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/namespaces/{namespace}/ingresscontrollers/{name}/scale":{"get":{"description":"read scale of the specified IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1NamespacedIngressControllerScale","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"put":{"description":"replace scale of the specified IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1NamespacedIngressControllerScale","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"patch":{"description":"partially update scale of the specified IngressController","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1NamespacedIngressControllerScale","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.Scale"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IngressController","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/namespaces/{namespace}/ingresscontrollers/{name}/status":{"get":{"description":"read status of the specified IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1NamespacedIngressControllerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"put":{"description":"replace status of the specified IngressController","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1NamespacedIngressControllerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"patch":{"description":"partially update status of the specified IngressController","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1NamespacedIngressControllerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IngressController","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/networks":{"get":{"description":"list objects of kind Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.NetworkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"post":{"description":"create a Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1Network","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"delete":{"description":"delete collection of Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionNetwork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/networks/{name}":{"get":{"description":"read the specified Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"put":{"description":"replace the specified Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1Network","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"delete":{"description":"delete a Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"patch":{"description":"partially update the specified Network","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1Network","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Network","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/networks/{name}/status":{"get":{"description":"read status of the specified Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1NetworkStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"put":{"description":"replace status of the specified Network","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1NetworkStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"patch":{"description":"partially update status of the specified Network","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1NetworkStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Network","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Network","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/openshiftapiservers":{"get":{"description":"list objects of kind OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1OpenShiftAPIServer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"post":{"description":"create an OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1OpenShiftAPIServer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"delete":{"description":"delete collection of OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionOpenShiftAPIServer","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/openshiftapiservers/{name}":{"get":{"description":"read the specified OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1OpenShiftAPIServer","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"put":{"description":"replace the specified OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1OpenShiftAPIServer","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"delete":{"description":"delete an OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1OpenShiftAPIServer","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"patch":{"description":"partially update the specified OpenShiftAPIServer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1OpenShiftAPIServer","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OpenShiftAPIServer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/openshiftapiservers/{name}/status":{"get":{"description":"read status of the specified OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1OpenShiftAPIServerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"put":{"description":"replace status of the specified OpenShiftAPIServer","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1OpenShiftAPIServerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"patch":{"description":"partially update status of the specified OpenShiftAPIServer","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1OpenShiftAPIServerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OpenShiftAPIServer","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/openshiftcontrollermanagers":{"get":{"description":"list objects of kind OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1OpenShiftControllerManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"post":{"description":"create an OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1OpenShiftControllerManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"delete":{"description":"delete collection of OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionOpenShiftControllerManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/openshiftcontrollermanagers/{name}":{"get":{"description":"read the specified OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1OpenShiftControllerManager","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"put":{"description":"replace the specified OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1OpenShiftControllerManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"delete":{"description":"delete an OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1OpenShiftControllerManager","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"patch":{"description":"partially update the specified OpenShiftControllerManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1OpenShiftControllerManager","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OpenShiftControllerManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/openshiftcontrollermanagers/{name}/status":{"get":{"description":"read status of the specified OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1OpenShiftControllerManagerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"put":{"description":"replace status of the specified OpenShiftControllerManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1OpenShiftControllerManagerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"patch":{"description":"partially update status of the specified OpenShiftControllerManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1OpenShiftControllerManagerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OpenShiftControllerManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/servicecas":{"get":{"description":"list objects of kind ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1ServiceCA","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCAList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"post":{"description":"create a ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1ServiceCA","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"delete":{"description":"delete collection of ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionServiceCA","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/servicecas/{name}":{"get":{"description":"read the specified ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1ServiceCA","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"put":{"description":"replace the specified ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1ServiceCA","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"delete":{"description":"delete a ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1ServiceCA","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"patch":{"description":"partially update the specified ServiceCA","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1ServiceCA","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ServiceCA","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/servicecas/{name}/status":{"get":{"description":"read status of the specified ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1ServiceCAStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"put":{"description":"replace status of the specified ServiceCA","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1ServiceCAStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"patch":{"description":"partially update status of the specified ServiceCA","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1ServiceCAStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ServiceCA","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/storages":{"get":{"description":"list objects of kind Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"listOperatorOpenshiftIoV1Storage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.StorageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"post":{"description":"create a Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"createOperatorOpenshiftIoV1Storage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"delete":{"description":"delete collection of Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1CollectionStorage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/storages/{name}":{"get":{"description":"read the specified Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1Storage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"put":{"description":"replace the specified Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1Storage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"delete":{"description":"delete a Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"deleteOperatorOpenshiftIoV1Storage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"patch":{"description":"partially update the specified Storage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1Storage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Storage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1/storages/{name}/status":{"get":{"description":"read status of the specified Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"readOperatorOpenshiftIoV1StorageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"put":{"description":"replace status of the specified Storage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"replaceOperatorOpenshiftIoV1StorageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"patch":{"description":"partially update status of the specified Storage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1"],"operationId":"patchOperatorOpenshiftIoV1StorageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"Storage","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Storage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/certmanagers":{"get":{"description":"list objects of kind CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"listOperatorOpenshiftIoV1alpha1CertManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"post":{"description":"create a CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"createOperatorOpenshiftIoV1alpha1CertManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"delete":{"description":"delete collection of CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1CollectionCertManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/certmanagers/{name}":{"get":{"description":"read the specified CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1CertManager","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"put":{"description":"replace the specified CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1CertManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"delete":{"description":"delete a CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1CertManager","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"patch":{"description":"partially update the specified CertManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1CertManager","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CertManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/certmanagers/{name}/status":{"get":{"description":"read status of the specified CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1CertManagerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"put":{"description":"replace status of the specified CertManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1CertManagerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified CertManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1CertManagerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CertManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/imagecontentsourcepolicies":{"get":{"description":"list objects of kind ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"listOperatorOpenshiftIoV1alpha1ImageContentSourcePolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"post":{"description":"create an ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"createOperatorOpenshiftIoV1alpha1ImageContentSourcePolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1CollectionImageContentSourcePolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/imagecontentsourcepolicies/{name}":{"get":{"description":"read the specified ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1ImageContentSourcePolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"put":{"description":"replace the specified ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1ImageContentSourcePolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"delete":{"description":"delete an ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1ImageContentSourcePolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified ImageContentSourcePolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1ImageContentSourcePolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageContentSourcePolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/imagecontentsourcepolicies/{name}/status":{"get":{"description":"read status of the specified ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1ImageContentSourcePolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified ImageContentSourcePolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1ImageContentSourcePolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ImageContentSourcePolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1ImageContentSourcePolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageContentSourcePolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/istiocsrs":{"get":{"description":"list objects of kind IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"listOperatorOpenshiftIoV1alpha1IstioCSRForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSRList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operator.openshift.io/v1alpha1/namespaces/{namespace}/istiocsrs":{"get":{"description":"list objects of kind IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"listOperatorOpenshiftIoV1alpha1NamespacedIstioCSR","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSRList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"post":{"description":"create an IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"createOperatorOpenshiftIoV1alpha1NamespacedIstioCSR","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"delete":{"description":"delete collection of IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1CollectionNamespacedIstioCSR","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/namespaces/{namespace}/istiocsrs/{name}":{"get":{"description":"read the specified IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1NamespacedIstioCSR","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"put":{"description":"replace the specified IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1NamespacedIstioCSR","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"delete":{"description":"delete an IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1NamespacedIstioCSR","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"patch":{"description":"partially update the specified IstioCSR","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1NamespacedIstioCSR","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IstioCSR","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/namespaces/{namespace}/istiocsrs/{name}/status":{"get":{"description":"read status of the specified IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1NamespacedIstioCSRStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"put":{"description":"replace status of the specified IstioCSR","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1NamespacedIstioCSRStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified IstioCSR","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1NamespacedIstioCSRStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IstioCSR","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/trustmanagers":{"get":{"description":"list objects of kind TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"listOperatorOpenshiftIoV1alpha1TrustManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManagerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"post":{"description":"create a TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"createOperatorOpenshiftIoV1alpha1TrustManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"delete":{"description":"delete collection of TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1CollectionTrustManager","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/trustmanagers/{name}":{"get":{"description":"read the specified TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1TrustManager","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"put":{"description":"replace the specified TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1TrustManager","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"delete":{"description":"delete a TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"deleteOperatorOpenshiftIoV1alpha1TrustManager","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"patch":{"description":"partially update the specified TrustManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1TrustManager","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TrustManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.openshift.io/v1alpha1/trustmanagers/{name}/status":{"get":{"description":"read status of the specified TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"readOperatorOpenshiftIoV1alpha1TrustManagerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"put":{"description":"replace status of the specified TrustManager","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"replaceOperatorOpenshiftIoV1alpha1TrustManagerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TrustManager","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorOpenshiftIo_v1alpha1"],"operationId":"patchOperatorOpenshiftIoV1alpha1TrustManagerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TrustManager","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/manualapprovalgates":{"get":{"description":"list objects of kind ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1ManualApprovalGate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"post":{"description":"create a ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1ManualApprovalGate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"delete":{"description":"delete collection of ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionManualApprovalGate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/manualapprovalgates/{name}":{"get":{"description":"read the specified ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1ManualApprovalGate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"put":{"description":"replace the specified ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1ManualApprovalGate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"delete":{"description":"delete a ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1ManualApprovalGate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"patch":{"description":"partially update the specified ManualApprovalGate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1ManualApprovalGate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ManualApprovalGate","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/manualapprovalgates/{name}/status":{"get":{"description":"read status of the specified ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1ManualApprovalGateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"put":{"description":"replace status of the specified ManualApprovalGate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1ManualApprovalGateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ManualApprovalGate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1ManualApprovalGateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ManualApprovalGate","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/openshiftpipelinesascodes":{"get":{"description":"list objects of kind OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1OpenShiftPipelinesAsCode","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCodeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"post":{"description":"create an OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1OpenShiftPipelinesAsCode","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"delete":{"description":"delete collection of OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionOpenShiftPipelinesAsCode","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/openshiftpipelinesascodes/{name}":{"get":{"description":"read the specified OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1OpenShiftPipelinesAsCode","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"put":{"description":"replace the specified OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1OpenShiftPipelinesAsCode","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"delete":{"description":"delete an OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1OpenShiftPipelinesAsCode","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"patch":{"description":"partially update the specified OpenShiftPipelinesAsCode","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1OpenShiftPipelinesAsCode","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OpenShiftPipelinesAsCode","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/openshiftpipelinesascodes/{name}/status":{"get":{"description":"read status of the specified OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1OpenShiftPipelinesAsCodeStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"put":{"description":"replace status of the specified OpenShiftPipelinesAsCode","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1OpenShiftPipelinesAsCodeStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified OpenShiftPipelinesAsCode","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1OpenShiftPipelinesAsCodeStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OpenShiftPipelinesAsCode","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/syncerservices":{"get":{"description":"list objects of kind SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1SyncerService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerServiceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"post":{"description":"create a SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1SyncerService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"delete":{"description":"delete collection of SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionSyncerService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/syncerservices/{name}":{"get":{"description":"read the specified SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1SyncerService","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"put":{"description":"replace the specified SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1SyncerService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"delete":{"description":"delete a SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1SyncerService","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"patch":{"description":"partially update the specified SyncerService","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1SyncerService","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SyncerService","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/syncerservices/{name}/status":{"get":{"description":"read status of the specified SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1SyncerServiceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"put":{"description":"replace status of the specified SyncerService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1SyncerServiceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified SyncerService","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1SyncerServiceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SyncerService","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonaddons":{"get":{"description":"list objects of kind TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonAddon","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddonList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"post":{"description":"create a TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonAddon","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonAddon","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonaddons/{name}":{"get":{"description":"read the specified TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonAddon","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"put":{"description":"replace the specified TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonAddon","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"delete":{"description":"delete a TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonAddon","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonAddon","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonAddon","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonAddon","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonaddons/{name}/status":{"get":{"description":"read status of the specified TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonAddonStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonAddon","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonAddonStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonAddon","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonAddonStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonAddon","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonchains":{"get":{"description":"list objects of kind TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonChain","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChainList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"post":{"description":"create a TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonChain","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonChain","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonchains/{name}":{"get":{"description":"read the specified TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonChain","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"put":{"description":"replace the specified TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonChain","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"delete":{"description":"delete a TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonChain","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonChain","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonChain","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonChain","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonchains/{name}/status":{"get":{"description":"read status of the specified TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonChainStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonChain","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonChainStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonChain","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonChainStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonChain","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonconfigs":{"get":{"description":"list objects of kind TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"post":{"description":"create a TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonconfigs/{name}":{"get":{"description":"read the specified TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"put":{"description":"replace the specified TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"delete":{"description":"delete a TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonconfigs/{name}/status":{"get":{"description":"read status of the specified TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonhubs":{"get":{"description":"list objects of kind TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonHub","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHubList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"post":{"description":"create a TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonHub","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonHub","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonhubs/{name}":{"get":{"description":"read the specified TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonHub","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"put":{"description":"replace the specified TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonHub","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"delete":{"description":"delete a TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonHub","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonHub","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonHub","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonHub","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonhubs/{name}/status":{"get":{"description":"read status of the specified TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonHubStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonHub","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonHubStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonHub","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonHubStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonHub","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektoninstallersets":{"get":{"description":"list objects of kind TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonInstallerSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"post":{"description":"create a TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonInstallerSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonInstallerSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektoninstallersets/{name}":{"get":{"description":"read the specified TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonInstallerSet","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"put":{"description":"replace the specified TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonInstallerSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"delete":{"description":"delete a TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonInstallerSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonInstallerSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonInstallerSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonInstallerSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektoninstallersets/{name}/status":{"get":{"description":"read status of the specified TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonInstallerSetStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonInstallerSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonInstallerSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonInstallerSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonInstallerSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonInstallerSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonmulticlusterproxyaaes":{"get":{"description":"list objects of kind TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonMulticlusterProxyAAE","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAEList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"post":{"description":"create a TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonMulticlusterProxyAAE","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonMulticlusterProxyAAE","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonmulticlusterproxyaaes/{name}":{"get":{"description":"read the specified TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonMulticlusterProxyAAE","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"put":{"description":"replace the specified TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonMulticlusterProxyAAE","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"delete":{"description":"delete a TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonMulticlusterProxyAAE","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonMulticlusterProxyAAE","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonMulticlusterProxyAAE","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonMulticlusterProxyAAE","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonmulticlusterproxyaaes/{name}/status":{"get":{"description":"read status of the specified TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonMulticlusterProxyAAEStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonMulticlusterProxyAAE","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonMulticlusterProxyAAEStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonMulticlusterProxyAAE","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonMulticlusterProxyAAEStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonMulticlusterProxyAAE","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonpipelines":{"get":{"description":"list objects of kind TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonPipeline","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipelineList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"post":{"description":"create a TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonPipeline","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonPipeline","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonpipelines/{name}":{"get":{"description":"read the specified TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonPipeline","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"put":{"description":"replace the specified TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonPipeline","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"delete":{"description":"delete a TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonPipeline","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonPipeline","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonPipeline","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonPipeline","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonpipelines/{name}/status":{"get":{"description":"read status of the specified TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonPipelineStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonPipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonPipelineStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonPipeline","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonPipelineStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonPipeline","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonpruners":{"get":{"description":"list objects of kind TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonPruner","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPrunerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"post":{"description":"create a TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonPruner","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonPruner","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonpruners/{name}":{"get":{"description":"read the specified TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonPruner","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"put":{"description":"replace the specified TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonPruner","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"delete":{"description":"delete a TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonPruner","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonPruner","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonPruner","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonPruner","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonpruners/{name}/status":{"get":{"description":"read status of the specified TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonPrunerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonPruner","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonPrunerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonPruner","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonPrunerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonPruner","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonresults":{"get":{"description":"list objects of kind TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonResult","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResultList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"post":{"description":"create a TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonResult","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonResult","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonresults/{name}":{"get":{"description":"read the specified TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonResult","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"put":{"description":"replace the specified TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonResult","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"delete":{"description":"delete a TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonResult","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonResult","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonResult","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonResult","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonresults/{name}/status":{"get":{"description":"read status of the specified TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonResultStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonResult","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonResultStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonResult","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonResultStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonResult","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonschedulers":{"get":{"description":"list objects of kind TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonScheduler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonSchedulerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"post":{"description":"create a TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonScheduler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonScheduler","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonschedulers/{name}":{"get":{"description":"read the specified TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonScheduler","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"put":{"description":"replace the specified TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonScheduler","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"delete":{"description":"delete a TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonScheduler","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonScheduler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonScheduler","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonScheduler","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektonschedulers/{name}/status":{"get":{"description":"read status of the specified TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonSchedulerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonScheduler","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonSchedulerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonScheduler","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonSchedulerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonScheduler","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektontriggers":{"get":{"description":"list objects of kind TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"listOperatorTektonDevV1alpha1TektonTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTriggerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"post":{"description":"create a TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"createOperatorTektonDevV1alpha1TektonTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"delete":{"description":"delete collection of TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1CollectionTektonTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektontriggers/{name}":{"get":{"description":"read the specified TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonTrigger","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"put":{"description":"replace the specified TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"delete":{"description":"delete a TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"deleteOperatorTektonDevV1alpha1TektonTrigger","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"patch":{"description":"partially update the specified TektonTrigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonTrigger","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonTrigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operator.tekton.dev/v1alpha1/tektontriggers/{name}/status":{"get":{"description":"read status of the specified TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"readOperatorTektonDevV1alpha1TektonTriggerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"put":{"description":"replace status of the specified TektonTrigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"replaceOperatorTektonDevV1alpha1TektonTriggerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TektonTrigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorTektonDev_v1alpha1"],"operationId":"patchOperatorTektonDevV1alpha1TektonTriggerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TektonTrigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/namespaces/{namespace}/operatorconditions":{"get":{"description":"list objects of kind OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"listOperatorsCoreosComV1NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorConditionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"post":{"description":"create an OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"createOperatorsCoreosComV1NamespacedOperatorCondition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"delete":{"description":"delete collection of OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1CollectionNamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/namespaces/{namespace}/operatorconditions/{name}":{"get":{"description":"read the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"put":{"description":"replace the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1NamespacedOperatorCondition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"delete":{"description":"delete an OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"patch":{"description":"partially update the specified OperatorCondition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorCondition","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/namespaces/{namespace}/operatorconditions/{name}/status":{"get":{"description":"read status of the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1NamespacedOperatorConditionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"put":{"description":"replace status of the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1NamespacedOperatorConditionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"patch":{"description":"partially update status of the specified OperatorCondition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1NamespacedOperatorConditionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorCondition","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/namespaces/{namespace}/operatorgroups":{"get":{"description":"list objects of kind OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"listOperatorsCoreosComV1NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"post":{"description":"create an OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"createOperatorsCoreosComV1NamespacedOperatorGroup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"delete":{"description":"delete collection of OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1CollectionNamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/namespaces/{namespace}/operatorgroups/{name}":{"get":{"description":"read the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"put":{"description":"replace the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1NamespacedOperatorGroup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"delete":{"description":"delete an OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"patch":{"description":"partially update the specified OperatorGroup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorGroup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/namespaces/{namespace}/operatorgroups/{name}/status":{"get":{"description":"read status of the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1NamespacedOperatorGroupStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"put":{"description":"replace status of the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1NamespacedOperatorGroupStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"patch":{"description":"partially update status of the specified OperatorGroup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1NamespacedOperatorGroupStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorGroup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/olmconfigs":{"get":{"description":"list objects of kind OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"listOperatorsCoreosComV1OLMConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"post":{"description":"create an OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"createOperatorsCoreosComV1OLMConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"delete":{"description":"delete collection of OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1CollectionOLMConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/olmconfigs/{name}":{"get":{"description":"read the specified OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1OLMConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"put":{"description":"replace the specified OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1OLMConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"delete":{"description":"delete an OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1OLMConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"patch":{"description":"partially update the specified OLMConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1OLMConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OLMConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/olmconfigs/{name}/status":{"get":{"description":"read status of the specified OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1OLMConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"put":{"description":"replace status of the specified OLMConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1OLMConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"patch":{"description":"partially update status of the specified OLMConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1OLMConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OLMConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/operatorconditions":{"get":{"description":"list objects of kind OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"listOperatorsCoreosComV1OperatorConditionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorConditionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operators.coreos.com/v1/operatorgroups":{"get":{"description":"list objects of kind OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"listOperatorsCoreosComV1OperatorGroupForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operators.coreos.com/v1/operators":{"get":{"description":"list objects of kind Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"listOperatorsCoreosComV1Operator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"post":{"description":"create an Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"createOperatorsCoreosComV1Operator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"delete":{"description":"delete collection of Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1CollectionOperator","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/operators/{name}":{"get":{"description":"read the specified Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1Operator","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"put":{"description":"replace the specified Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1Operator","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"delete":{"description":"delete an Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"deleteOperatorsCoreosComV1Operator","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"patch":{"description":"partially update the specified Operator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1Operator","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Operator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1/operators/{name}/status":{"get":{"description":"read status of the specified Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"readOperatorsCoreosComV1OperatorStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"put":{"description":"replace status of the specified Operator","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"replaceOperatorsCoreosComV1OperatorStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"patch":{"description":"partially update status of the specified Operator","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1"],"operationId":"patchOperatorsCoreosComV1OperatorStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Operator","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Operator","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/catalogsources":{"get":{"description":"list objects of kind CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1CatalogSourceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operators.coreos.com/v1alpha1/clusterserviceversions":{"get":{"description":"list objects of kind ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1ClusterServiceVersionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operators.coreos.com/v1alpha1/installplans":{"get":{"description":"list objects of kind InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1InstallPlanForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlanList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/catalogsources":{"get":{"description":"list objects of kind CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1NamespacedCatalogSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"post":{"description":"create a CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"createOperatorsCoreosComV1alpha1NamespacedCatalogSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"delete":{"description":"delete collection of CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1CollectionNamespacedCatalogSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/catalogsources/{name}":{"get":{"description":"read the specified CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedCatalogSource","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"put":{"description":"replace the specified CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedCatalogSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"delete":{"description":"delete a CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1NamespacedCatalogSource","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"patch":{"description":"partially update the specified CatalogSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedCatalogSource","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CatalogSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/catalogsources/{name}/status":{"get":{"description":"read status of the specified CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedCatalogSourceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"put":{"description":"replace status of the specified CatalogSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedCatalogSourceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified CatalogSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedCatalogSourceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CatalogSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/clusterserviceversions":{"get":{"description":"list objects of kind ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1NamespacedClusterServiceVersion","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"post":{"description":"create a ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"createOperatorsCoreosComV1alpha1NamespacedClusterServiceVersion","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1CollectionNamespacedClusterServiceVersion","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/clusterserviceversions/{name}":{"get":{"description":"read the specified ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedClusterServiceVersion","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedClusterServiceVersion","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"delete":{"description":"delete a ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1NamespacedClusterServiceVersion","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterServiceVersion","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedClusterServiceVersion","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterServiceVersion","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/clusterserviceversions/{name}/status":{"get":{"description":"read status of the specified ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedClusterServiceVersionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterServiceVersion","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedClusterServiceVersionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterServiceVersion","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedClusterServiceVersionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterServiceVersion","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/installplans":{"get":{"description":"list objects of kind InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1NamespacedInstallPlan","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlanList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"post":{"description":"create an InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"createOperatorsCoreosComV1alpha1NamespacedInstallPlan","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"delete":{"description":"delete collection of InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1CollectionNamespacedInstallPlan","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/installplans/{name}":{"get":{"description":"read the specified InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedInstallPlan","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"put":{"description":"replace the specified InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedInstallPlan","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"delete":{"description":"delete an InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1NamespacedInstallPlan","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"patch":{"description":"partially update the specified InstallPlan","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedInstallPlan","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InstallPlan","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/installplans/{name}/status":{"get":{"description":"read status of the specified InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedInstallPlanStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"put":{"description":"replace status of the specified InstallPlan","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedInstallPlanStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified InstallPlan","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedInstallPlanStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the InstallPlan","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/subscriptions":{"get":{"description":"list objects of kind Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1NamespacedSubscription","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.SubscriptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"post":{"description":"create a Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"createOperatorsCoreosComV1alpha1NamespacedSubscription","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"delete":{"description":"delete collection of Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1CollectionNamespacedSubscription","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/subscriptions/{name}":{"get":{"description":"read the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedSubscription","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"put":{"description":"replace the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedSubscription","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"delete":{"description":"delete a Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"deleteOperatorsCoreosComV1alpha1NamespacedSubscription","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"patch":{"description":"partially update the specified Subscription","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedSubscription","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Subscription","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/namespaces/{namespace}/subscriptions/{name}/status":{"get":{"description":"read status of the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"readOperatorsCoreosComV1alpha1NamespacedSubscriptionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"put":{"description":"replace status of the specified Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"replaceOperatorsCoreosComV1alpha1NamespacedSubscriptionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Subscription","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"patchOperatorsCoreosComV1alpha1NamespacedSubscriptionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Subscription","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha1/subscriptions":{"get":{"description":"list objects of kind Subscription","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha1"],"operationId":"listOperatorsCoreosComV1alpha1SubscriptionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.SubscriptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operators.coreos.com/v1alpha2/namespaces/{namespace}/operatorgroups":{"get":{"description":"list objects of kind OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"listOperatorsCoreosComV1alpha2NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"post":{"description":"create an OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"createOperatorsCoreosComV1alpha2NamespacedOperatorGroup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"delete":{"description":"delete collection of OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"deleteOperatorsCoreosComV1alpha2CollectionNamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha2/namespaces/{namespace}/operatorgroups/{name}":{"get":{"description":"read the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"readOperatorsCoreosComV1alpha2NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"put":{"description":"replace the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"replaceOperatorsCoreosComV1alpha2NamespacedOperatorGroup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"delete":{"description":"delete an OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"deleteOperatorsCoreosComV1alpha2NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"patch":{"description":"partially update the specified OperatorGroup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"patchOperatorsCoreosComV1alpha2NamespacedOperatorGroup","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorGroup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha2/namespaces/{namespace}/operatorgroups/{name}/status":{"get":{"description":"read status of the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"readOperatorsCoreosComV1alpha2NamespacedOperatorGroupStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"put":{"description":"replace status of the specified OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"replaceOperatorsCoreosComV1alpha2NamespacedOperatorGroupStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"patch":{"description":"partially update status of the specified OperatorGroup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"patchOperatorsCoreosComV1alpha2NamespacedOperatorGroupStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorGroup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v1alpha2/operatorgroups":{"get":{"description":"list objects of kind OperatorGroup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v1alpha2"],"operationId":"listOperatorsCoreosComV1alpha2OperatorGroupForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/operators.coreos.com/v2/namespaces/{namespace}/operatorconditions":{"get":{"description":"list objects of kind OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"listOperatorsCoreosComV2NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorConditionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"post":{"description":"create an OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"createOperatorsCoreosComV2NamespacedOperatorCondition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"delete":{"description":"delete collection of OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"deleteOperatorsCoreosComV2CollectionNamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v2/namespaces/{namespace}/operatorconditions/{name}":{"get":{"description":"read the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"readOperatorsCoreosComV2NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"put":{"description":"replace the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"replaceOperatorsCoreosComV2NamespacedOperatorCondition","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"delete":{"description":"delete an OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"deleteOperatorsCoreosComV2NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"patch":{"description":"partially update the specified OperatorCondition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"patchOperatorsCoreosComV2NamespacedOperatorCondition","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorCondition","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v2/namespaces/{namespace}/operatorconditions/{name}/status":{"get":{"description":"read status of the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"readOperatorsCoreosComV2NamespacedOperatorConditionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"put":{"description":"replace status of the specified OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"replaceOperatorsCoreosComV2NamespacedOperatorConditionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"patch":{"description":"partially update status of the specified OperatorCondition","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"patchOperatorsCoreosComV2NamespacedOperatorConditionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OperatorCondition","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/operators.coreos.com/v2/operatorconditions":{"get":{"description":"list objects of kind OperatorCondition","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["operatorsCoreosCom_v2"],"operationId":"listOperatorsCoreosComV2OperatorConditionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorConditionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/ops.crossplane.io/v1alpha1/cronoperations":{"get":{"description":"list objects of kind CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"listOpsCrossplaneIoV1alpha1CronOperation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"post":{"description":"create a CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"createOpsCrossplaneIoV1alpha1CronOperation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"delete":{"description":"delete collection of CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"deleteOpsCrossplaneIoV1alpha1CollectionCronOperation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/cronoperations/{name}":{"get":{"description":"read the specified CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"readOpsCrossplaneIoV1alpha1CronOperation","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"put":{"description":"replace the specified CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"replaceOpsCrossplaneIoV1alpha1CronOperation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"delete":{"description":"delete a CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"deleteOpsCrossplaneIoV1alpha1CronOperation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"patch":{"description":"partially update the specified CronOperation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"patchOpsCrossplaneIoV1alpha1CronOperation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CronOperation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/cronoperations/{name}/status":{"get":{"description":"read status of the specified CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"readOpsCrossplaneIoV1alpha1CronOperationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"put":{"description":"replace status of the specified CronOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"replaceOpsCrossplaneIoV1alpha1CronOperationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified CronOperation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"patchOpsCrossplaneIoV1alpha1CronOperationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CronOperation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/operations":{"get":{"description":"list objects of kind Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"listOpsCrossplaneIoV1alpha1Operation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.OperationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"post":{"description":"create an Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"createOpsCrossplaneIoV1alpha1Operation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"delete":{"description":"delete collection of Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"deleteOpsCrossplaneIoV1alpha1CollectionOperation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/operations/{name}":{"get":{"description":"read the specified Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"readOpsCrossplaneIoV1alpha1Operation","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"put":{"description":"replace the specified Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"replaceOpsCrossplaneIoV1alpha1Operation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"delete":{"description":"delete an Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"deleteOpsCrossplaneIoV1alpha1Operation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"patch":{"description":"partially update the specified Operation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"patchOpsCrossplaneIoV1alpha1Operation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Operation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/operations/{name}/status":{"get":{"description":"read status of the specified Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"readOpsCrossplaneIoV1alpha1OperationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"put":{"description":"replace status of the specified Operation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"replaceOpsCrossplaneIoV1alpha1OperationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Operation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"patchOpsCrossplaneIoV1alpha1OperationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Operation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/watchoperations":{"get":{"description":"list objects of kind WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"listOpsCrossplaneIoV1alpha1WatchOperation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"post":{"description":"create a WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"createOpsCrossplaneIoV1alpha1WatchOperation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"delete":{"description":"delete collection of WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"deleteOpsCrossplaneIoV1alpha1CollectionWatchOperation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/watchoperations/{name}":{"get":{"description":"read the specified WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"readOpsCrossplaneIoV1alpha1WatchOperation","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"put":{"description":"replace the specified WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"replaceOpsCrossplaneIoV1alpha1WatchOperation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"delete":{"description":"delete a WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"deleteOpsCrossplaneIoV1alpha1WatchOperation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"patch":{"description":"partially update the specified WatchOperation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"patchOpsCrossplaneIoV1alpha1WatchOperation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the WatchOperation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/ops.crossplane.io/v1alpha1/watchoperations/{name}/status":{"get":{"description":"read status of the specified WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"readOpsCrossplaneIoV1alpha1WatchOperationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"put":{"description":"replace status of the specified WatchOperation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"replaceOpsCrossplaneIoV1alpha1WatchOperationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified WatchOperation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["opsCrossplaneIo_v1alpha1"],"operationId":"patchOpsCrossplaneIoV1alpha1WatchOperationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the WatchOperation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectdeployments":{"get":{"description":"list objects of kind ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ClusterObjectDeployment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeploymentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"post":{"description":"create a ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1ClusterObjectDeployment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionClusterObjectDeployment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectdeployments/{name}":{"get":{"description":"read the specified ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectDeployment","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectDeployment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"delete":{"description":"delete a ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1ClusterObjectDeployment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterObjectDeployment","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectDeployment","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectDeployment","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectdeployments/{name}/status":{"get":{"description":"read status of the specified ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectDeploymentStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectDeploymentStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterObjectDeployment","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectDeploymentStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectDeployment","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectsetphases":{"get":{"description":"list objects of kind ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ClusterObjectSetPhase","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhaseList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"post":{"description":"create a ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1ClusterObjectSetPhase","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionClusterObjectSetPhase","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectsetphases/{name}":{"get":{"description":"read the specified ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectSetPhase","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectSetPhase","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"delete":{"description":"delete a ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1ClusterObjectSetPhase","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterObjectSetPhase","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectSetPhase","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectSetPhase","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectsetphases/{name}/status":{"get":{"description":"read status of the specified ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectSetPhaseStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectSetPhaseStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterObjectSetPhase","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectSetPhaseStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectSetPhase","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectsets":{"get":{"description":"list objects of kind ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ClusterObjectSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"post":{"description":"create a ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1ClusterObjectSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionClusterObjectSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectsets/{name}":{"get":{"description":"read the specified ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectSet","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"delete":{"description":"delete a ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1ClusterObjectSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterObjectSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectsets/{name}/status":{"get":{"description":"read status of the specified ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectSetStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterObjectSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectslices":{"get":{"description":"list objects of kind ClusterObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ClusterObjectSlice","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSliceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}},"post":{"description":"create a ClusterObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1ClusterObjectSlice","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionClusterObjectSlice","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjectslices/{name}":{"get":{"description":"read the specified ClusterObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectSlice","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectSlice","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}},"delete":{"description":"delete a ClusterObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1ClusterObjectSlice","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterObjectSlice","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectSlice","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectSlice","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjecttemplates":{"get":{"description":"list objects of kind ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ClusterObjectTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"post":{"description":"create a ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1ClusterObjectTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionClusterObjectTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjecttemplates/{name}":{"get":{"description":"read the specified ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectTemplate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"delete":{"description":"delete a ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1ClusterObjectTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterObjectTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterobjecttemplates/{name}/status":{"get":{"description":"read status of the specified ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterObjectTemplateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterObjectTemplateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterObjectTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterObjectTemplateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterObjectTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterpackages":{"get":{"description":"list objects of kind ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ClusterPackage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"post":{"description":"create a ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1ClusterPackage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionClusterPackage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterpackages/{name}":{"get":{"description":"read the specified ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterPackage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterPackage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"delete":{"description":"delete a ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1ClusterPackage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterPackage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterPackage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterPackage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/clusterpackages/{name}/status":{"get":{"description":"read status of the specified ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1ClusterPackageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1ClusterPackageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterPackage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1ClusterPackageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterPackage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/hostedclusterpackages":{"get":{"description":"list objects of kind HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1HostedClusterPackage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"post":{"description":"create a HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1HostedClusterPackage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"delete":{"description":"delete collection of HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionHostedClusterPackage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/hostedclusterpackages/{name}":{"get":{"description":"read the specified HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1HostedClusterPackage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"put":{"description":"replace the specified HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1HostedClusterPackage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"delete":{"description":"delete a HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1HostedClusterPackage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"patch":{"description":"partially update the specified HostedClusterPackage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1HostedClusterPackage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HostedClusterPackage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/hostedclusterpackages/{name}/status":{"get":{"description":"read status of the specified HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1HostedClusterPackageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"put":{"description":"replace status of the specified HostedClusterPackage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1HostedClusterPackageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified HostedClusterPackage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1HostedClusterPackageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the HostedClusterPackage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectdeployments":{"get":{"description":"list objects of kind ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1NamespacedObjectDeployment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeploymentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"post":{"description":"create an ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1NamespacedObjectDeployment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"delete":{"description":"delete collection of ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionNamespacedObjectDeployment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectdeployments/{name}":{"get":{"description":"read the specified ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectDeployment","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"put":{"description":"replace the specified ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectDeployment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"delete":{"description":"delete an ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1NamespacedObjectDeployment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"patch":{"description":"partially update the specified ObjectDeployment","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectDeployment","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectDeployment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectdeployments/{name}/status":{"get":{"description":"read status of the specified ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectDeploymentStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"put":{"description":"replace status of the specified ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectDeploymentStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ObjectDeployment","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectDeploymentStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectDeployment","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectsetphases":{"get":{"description":"list objects of kind ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1NamespacedObjectSetPhase","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhaseList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"post":{"description":"create an ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1NamespacedObjectSetPhase","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"delete":{"description":"delete collection of ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionNamespacedObjectSetPhase","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectsetphases/{name}":{"get":{"description":"read the specified ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectSetPhase","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"put":{"description":"replace the specified ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectSetPhase","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"delete":{"description":"delete an ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1NamespacedObjectSetPhase","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"patch":{"description":"partially update the specified ObjectSetPhase","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectSetPhase","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectSetPhase","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectsetphases/{name}/status":{"get":{"description":"read status of the specified ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectSetPhaseStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"put":{"description":"replace status of the specified ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectSetPhaseStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ObjectSetPhase","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectSetPhaseStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectSetPhase","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectsets":{"get":{"description":"list objects of kind ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1NamespacedObjectSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"post":{"description":"create an ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1NamespacedObjectSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"delete":{"description":"delete collection of ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionNamespacedObjectSet","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectsets/{name}":{"get":{"description":"read the specified ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectSet","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"put":{"description":"replace the specified ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectSet","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"delete":{"description":"delete an ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1NamespacedObjectSet","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"patch":{"description":"partially update the specified ObjectSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectSet","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectsets/{name}/status":{"get":{"description":"read status of the specified ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectSetStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"put":{"description":"replace status of the specified ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectSetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ObjectSet","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectSetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectSet","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectslices":{"get":{"description":"list objects of kind ObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1NamespacedObjectSlice","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSliceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"post":{"description":"create an ObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1NamespacedObjectSlice","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"delete":{"description":"delete collection of ObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionNamespacedObjectSlice","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objectslices/{name}":{"get":{"description":"read the specified ObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectSlice","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"put":{"description":"replace the specified ObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectSlice","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"delete":{"description":"delete an ObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1NamespacedObjectSlice","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"patch":{"description":"partially update the specified ObjectSlice","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectSlice","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectSlice","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objecttemplates":{"get":{"description":"list objects of kind ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1NamespacedObjectTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"post":{"description":"create an ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1NamespacedObjectTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"delete":{"description":"delete collection of ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionNamespacedObjectTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objecttemplates/{name}":{"get":{"description":"read the specified ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectTemplate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"put":{"description":"replace the specified ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"delete":{"description":"delete an ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1NamespacedObjectTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"patch":{"description":"partially update the specified ObjectTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/objecttemplates/{name}/status":{"get":{"description":"read status of the specified ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedObjectTemplateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"put":{"description":"replace status of the specified ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedObjectTemplateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ObjectTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedObjectTemplateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ObjectTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/packages":{"get":{"description":"list objects of kind Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1NamespacedPackage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.PackageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"post":{"description":"create a Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"createPackageOperatorRunV1alpha1NamespacedPackage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"delete":{"description":"delete collection of Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1CollectionNamespacedPackage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/packages/{name}":{"get":{"description":"read the specified Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedPackage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"put":{"description":"replace the specified Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedPackage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"delete":{"description":"delete a Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"deletePackageOperatorRunV1alpha1NamespacedPackage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"patch":{"description":"partially update the specified Package","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedPackage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Package","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/namespaces/{namespace}/packages/{name}/status":{"get":{"description":"read status of the specified Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"readPackageOperatorRunV1alpha1NamespacedPackageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"put":{"description":"replace status of the specified Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"replacePackageOperatorRunV1alpha1NamespacedPackageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Package","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"patchPackageOperatorRunV1alpha1NamespacedPackageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Package","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/package-operator.run/v1alpha1/objectdeployments":{"get":{"description":"list objects of kind ObjectDeployment","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ObjectDeploymentForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeploymentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/package-operator.run/v1alpha1/objectsetphases":{"get":{"description":"list objects of kind ObjectSetPhase","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ObjectSetPhaseForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhaseList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/package-operator.run/v1alpha1/objectsets":{"get":{"description":"list objects of kind ObjectSet","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ObjectSetForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/package-operator.run/v1alpha1/objectslices":{"get":{"description":"list objects of kind ObjectSlice","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ObjectSliceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSliceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/package-operator.run/v1alpha1/objecttemplates":{"get":{"description":"list objects of kind ObjectTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1ObjectTemplateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/package-operator.run/v1alpha1/packages":{"get":{"description":"list objects of kind Package","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["packageOperatorRun_v1alpha1"],"operationId":"listPackageOperatorRunV1alpha1PackageForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/run.package-operator.v1alpha1.PackageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/packages.operators.coreos.com/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["packagesOperatorsCoreosCom_v1"],"operationId":"getPackagesOperatorsCoreosComV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}}}}},"/apis/packages.operators.coreos.com/v1/namespaces/{namespace}/packagemanifests":{"get":{"description":"list objects of kind PackageManifest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["packagesOperatorsCoreosCom_v1"],"operationId":"listPackagesOperatorsCoreosComV1NamespacedPackageManifest","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifestList"}}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"packages.operators.coreos.com","kind":"PackageManifest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/packages.operators.coreos.com/v1/namespaces/{namespace}/packagemanifests/{name}":{"get":{"description":"read the specified PackageManifest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["packagesOperatorsCoreosCom_v1"],"operationId":"readPackagesOperatorsCoreosComV1NamespacedPackageManifest","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifest"}}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"packages.operators.coreos.com","kind":"PackageManifest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PackageManifest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/packages.operators.coreos.com/v1/namespaces/{namespace}/packagemanifests/{name}/icon":{"get":{"description":"connect GET requests to icon of PackageManifest","consumes":["*/*"],"produces":["*/*"],"schemes":["https"],"tags":["packagesOperatorsCoreosCom_v1"],"operationId":"connectPackagesOperatorsCoreosComV1GetNamespacedPackageManifestIcon","responses":{"200":{"description":"OK","schema":{"type":"string"}}},"x-kubernetes-action":"connect","x-kubernetes-group-version-kind":{"group":"packages.operators.coreos.com","kind":"PackageManifest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PackageManifest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"}]},"/apis/packages.operators.coreos.com/v1/packagemanifests":{"get":{"description":"list objects of kind PackageManifest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["packagesOperatorsCoreosCom_v1"],"operationId":"listPackagesOperatorsCoreosComV1PackageManifestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifestList"}}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"packages.operators.coreos.com","kind":"PackageManifest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/pipelines.openshift.io/v1alpha1/gitopsservices":{"get":{"description":"list objects of kind GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"listPipelinesOpenshiftIoV1alpha1GitopsService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsServiceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"post":{"description":"create a GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"createPipelinesOpenshiftIoV1alpha1GitopsService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"delete":{"description":"delete collection of GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"deletePipelinesOpenshiftIoV1alpha1CollectionGitopsService","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pipelines.openshift.io/v1alpha1/gitopsservices/{name}":{"get":{"description":"read the specified GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"readPipelinesOpenshiftIoV1alpha1GitopsService","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"put":{"description":"replace the specified GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"replacePipelinesOpenshiftIoV1alpha1GitopsService","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"delete":{"description":"delete a GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"deletePipelinesOpenshiftIoV1alpha1GitopsService","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"patch":{"description":"partially update the specified GitopsService","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"patchPipelinesOpenshiftIoV1alpha1GitopsService","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the GitopsService","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pipelines.openshift.io/v1alpha1/gitopsservices/{name}/status":{"get":{"description":"read status of the specified GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"readPipelinesOpenshiftIoV1alpha1GitopsServiceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"put":{"description":"replace status of the specified GitopsService","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"replacePipelinesOpenshiftIoV1alpha1GitopsServiceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified GitopsService","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesOpenshiftIo_v1alpha1"],"operationId":"patchPipelinesOpenshiftIoV1alpha1GitopsServiceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the GitopsService","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pipelinesascode.tekton.dev/v1alpha1/namespaces/{namespace}/repositories":{"get":{"description":"list objects of kind Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"listPipelinesascodeTektonDevV1alpha1NamespacedRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.RepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"post":{"description":"create a Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"createPipelinesascodeTektonDevV1alpha1NamespacedRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"delete":{"description":"delete collection of Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"deletePipelinesascodeTektonDevV1alpha1CollectionNamespacedRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pipelinesascode.tekton.dev/v1alpha1/namespaces/{namespace}/repositories/{name}":{"get":{"description":"read the specified Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"readPipelinesascodeTektonDevV1alpha1NamespacedRepository","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"put":{"description":"replace the specified Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"replacePipelinesascodeTektonDevV1alpha1NamespacedRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"delete":{"description":"delete a Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"deletePipelinesascodeTektonDevV1alpha1NamespacedRepository","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"patch":{"description":"partially update the specified Repository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"patchPipelinesascodeTektonDevV1alpha1NamespacedRepository","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Repository","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pipelinesascode.tekton.dev/v1alpha1/namespaces/{namespace}/repositories/{name}/status":{"get":{"description":"read status of the specified Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"readPipelinesascodeTektonDevV1alpha1NamespacedRepositoryStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"put":{"description":"replace status of the specified Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"replacePipelinesascodeTektonDevV1alpha1NamespacedRepositoryStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Repository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"patchPipelinesascodeTektonDevV1alpha1NamespacedRepositoryStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Repository","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pipelinesascode.tekton.dev/v1alpha1/repositories":{"get":{"description":"list objects of kind Repository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pipelinesascodeTektonDev_v1alpha1"],"operationId":"listPipelinesascodeTektonDevV1alpha1RepositoryForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.RepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/pkg.crossplane.io/v1/configurationrevisions":{"get":{"description":"list objects of kind ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"listPkgCrossplaneIoV1ConfigurationRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevisionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"post":{"description":"create a ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"createPkgCrossplaneIoV1ConfigurationRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"delete":{"description":"delete collection of ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1CollectionConfigurationRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/configurationrevisions/{name}":{"get":{"description":"read the specified ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1ConfigurationRevision","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"put":{"description":"replace the specified ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1ConfigurationRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"delete":{"description":"delete a ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1ConfigurationRevision","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"patch":{"description":"partially update the specified ConfigurationRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1ConfigurationRevision","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConfigurationRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/configurationrevisions/{name}/status":{"get":{"description":"read status of the specified ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1ConfigurationRevisionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"put":{"description":"replace status of the specified ConfigurationRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1ConfigurationRevisionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"patch":{"description":"partially update status of the specified ConfigurationRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1ConfigurationRevisionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ConfigurationRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/configurations":{"get":{"description":"list objects of kind Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"listPkgCrossplaneIoV1Configuration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"post":{"description":"create a Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"createPkgCrossplaneIoV1Configuration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"delete":{"description":"delete collection of Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1CollectionConfiguration","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/configurations/{name}":{"get":{"description":"read the specified Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1Configuration","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"put":{"description":"replace the specified Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1Configuration","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"delete":{"description":"delete a Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1Configuration","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"patch":{"description":"partially update the specified Configuration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1Configuration","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Configuration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/configurations/{name}/status":{"get":{"description":"read status of the specified Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1ConfigurationStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"put":{"description":"replace status of the specified Configuration","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1ConfigurationStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"patch":{"description":"partially update status of the specified Configuration","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1ConfigurationStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Configuration","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/functionrevisions":{"get":{"description":"list objects of kind FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"listPkgCrossplaneIoV1FunctionRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevisionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"post":{"description":"create a FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"createPkgCrossplaneIoV1FunctionRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"delete":{"description":"delete collection of FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1CollectionFunctionRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/functionrevisions/{name}":{"get":{"description":"read the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1FunctionRevision","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"put":{"description":"replace the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1FunctionRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"delete":{"description":"delete a FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1FunctionRevision","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"patch":{"description":"partially update the specified FunctionRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1FunctionRevision","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FunctionRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/functionrevisions/{name}/status":{"get":{"description":"read status of the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1FunctionRevisionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"put":{"description":"replace status of the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1FunctionRevisionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"patch":{"description":"partially update status of the specified FunctionRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1FunctionRevisionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FunctionRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/functions":{"get":{"description":"list objects of kind Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"listPkgCrossplaneIoV1Function","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"post":{"description":"create a Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"createPkgCrossplaneIoV1Function","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"delete":{"description":"delete collection of Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1CollectionFunction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/functions/{name}":{"get":{"description":"read the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1Function","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"put":{"description":"replace the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1Function","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"delete":{"description":"delete a Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1Function","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"patch":{"description":"partially update the specified Function","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1Function","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Function","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/functions/{name}/status":{"get":{"description":"read status of the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1FunctionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"put":{"description":"replace status of the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1FunctionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"patch":{"description":"partially update status of the specified Function","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1FunctionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Function","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/providerrevisions":{"get":{"description":"list objects of kind ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"listPkgCrossplaneIoV1ProviderRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevisionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"post":{"description":"create a ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"createPkgCrossplaneIoV1ProviderRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"delete":{"description":"delete collection of ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1CollectionProviderRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/providerrevisions/{name}":{"get":{"description":"read the specified ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1ProviderRevision","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"put":{"description":"replace the specified ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1ProviderRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"delete":{"description":"delete a ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1ProviderRevision","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"patch":{"description":"partially update the specified ProviderRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1ProviderRevision","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/providerrevisions/{name}/status":{"get":{"description":"read status of the specified ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1ProviderRevisionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"put":{"description":"replace status of the specified ProviderRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1ProviderRevisionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"patch":{"description":"partially update status of the specified ProviderRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1ProviderRevisionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProviderRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/providers":{"get":{"description":"list objects of kind Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"listPkgCrossplaneIoV1Provider","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"post":{"description":"create a Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"createPkgCrossplaneIoV1Provider","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"delete":{"description":"delete collection of Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1CollectionProvider","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/providers/{name}":{"get":{"description":"read the specified Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1Provider","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"put":{"description":"replace the specified Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1Provider","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"delete":{"description":"delete a Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"deletePkgCrossplaneIoV1Provider","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"patch":{"description":"partially update the specified Provider","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1Provider","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Provider","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1/providers/{name}/status":{"get":{"description":"read status of the specified Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"readPkgCrossplaneIoV1ProviderStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"put":{"description":"replace status of the specified Provider","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"replacePkgCrossplaneIoV1ProviderStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"patch":{"description":"partially update status of the specified Provider","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1"],"operationId":"patchPkgCrossplaneIoV1ProviderStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Provider","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/deploymentruntimeconfigs":{"get":{"description":"list objects of kind DeploymentRuntimeConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"listPkgCrossplaneIoV1beta1DeploymentRuntimeConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}},"post":{"description":"create a DeploymentRuntimeConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"createPkgCrossplaneIoV1beta1DeploymentRuntimeConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}},"delete":{"description":"delete collection of DeploymentRuntimeConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1CollectionDeploymentRuntimeConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/deploymentruntimeconfigs/{name}":{"get":{"description":"read the specified DeploymentRuntimeConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1DeploymentRuntimeConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}},"put":{"description":"replace the specified DeploymentRuntimeConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1DeploymentRuntimeConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}},"delete":{"description":"delete a DeploymentRuntimeConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1DeploymentRuntimeConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}},"patch":{"description":"partially update the specified DeploymentRuntimeConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1DeploymentRuntimeConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeploymentRuntimeConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/functionrevisions":{"get":{"description":"list objects of kind FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"listPkgCrossplaneIoV1beta1FunctionRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevisionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"post":{"description":"create a FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"createPkgCrossplaneIoV1beta1FunctionRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"delete":{"description":"delete collection of FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1CollectionFunctionRevision","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/functionrevisions/{name}":{"get":{"description":"read the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1FunctionRevision","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"put":{"description":"replace the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1FunctionRevision","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"delete":{"description":"delete a FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1FunctionRevision","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"patch":{"description":"partially update the specified FunctionRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1FunctionRevision","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FunctionRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/functionrevisions/{name}/status":{"get":{"description":"read status of the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1FunctionRevisionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"put":{"description":"replace status of the specified FunctionRevision","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1FunctionRevisionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"patch":{"description":"partially update status of the specified FunctionRevision","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1FunctionRevisionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the FunctionRevision","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/functions":{"get":{"description":"list objects of kind Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"listPkgCrossplaneIoV1beta1Function","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"post":{"description":"create a Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"createPkgCrossplaneIoV1beta1Function","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"delete":{"description":"delete collection of Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1CollectionFunction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/functions/{name}":{"get":{"description":"read the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1Function","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"put":{"description":"replace the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1Function","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"delete":{"description":"delete a Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1Function","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"patch":{"description":"partially update the specified Function","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1Function","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Function","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/functions/{name}/status":{"get":{"description":"read status of the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1FunctionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"put":{"description":"replace status of the specified Function","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1FunctionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Function","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1FunctionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Function","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/imageconfigs":{"get":{"description":"list objects of kind ImageConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"listPkgCrossplaneIoV1beta1ImageConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}},"post":{"description":"create an ImageConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"createPkgCrossplaneIoV1beta1ImageConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}},"delete":{"description":"delete collection of ImageConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1CollectionImageConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/imageconfigs/{name}":{"get":{"description":"read the specified ImageConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1ImageConfig","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}},"put":{"description":"replace the specified ImageConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1ImageConfig","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}},"delete":{"description":"delete an ImageConfig","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1ImageConfig","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}},"patch":{"description":"partially update the specified ImageConfig","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1ImageConfig","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageConfig","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/locks":{"get":{"description":"list objects of kind Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"listPkgCrossplaneIoV1beta1Lock","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.LockList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"post":{"description":"create a Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"createPkgCrossplaneIoV1beta1Lock","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"delete":{"description":"delete collection of Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1CollectionLock","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/locks/{name}":{"get":{"description":"read the specified Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1Lock","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"put":{"description":"replace the specified Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1Lock","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"delete":{"description":"delete a Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"deletePkgCrossplaneIoV1beta1Lock","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"patch":{"description":"partially update the specified Lock","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1Lock","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Lock","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/pkg.crossplane.io/v1beta1/locks/{name}/status":{"get":{"description":"read status of the specified Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"readPkgCrossplaneIoV1beta1LockStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"put":{"description":"replace status of the specified Lock","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"replacePkgCrossplaneIoV1beta1LockStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Lock","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["pkgCrossplaneIo_v1beta1"],"operationId":"patchPkgCrossplaneIoV1beta1LockStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Lock","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/deletingpolicies":{"get":{"description":"list objects of kind DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"listPoliciesKyvernoIoV1alpha1DeletingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"post":{"description":"create a DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"createPoliciesKyvernoIoV1alpha1DeletingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1CollectionDeletingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/deletingpolicies/{name}":{"get":{"description":"read the specified DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1DeletingPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1DeletingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"delete":{"description":"delete a DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1DeletingPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified DeletingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1DeletingPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeletingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/deletingpolicies/{name}/status":{"get":{"description":"read status of the specified DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1DeletingPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified DeletingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1DeletingPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified DeletingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1DeletingPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeletingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/generatingpolicies":{"get":{"description":"list objects of kind GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"listPoliciesKyvernoIoV1alpha1GeneratingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"post":{"description":"create a GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"createPoliciesKyvernoIoV1alpha1GeneratingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1CollectionGeneratingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/generatingpolicies/{name}":{"get":{"description":"read the specified GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1GeneratingPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1GeneratingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"delete":{"description":"delete a GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1GeneratingPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified GeneratingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1GeneratingPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the GeneratingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/generatingpolicies/{name}/status":{"get":{"description":"read status of the specified GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1GeneratingPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified GeneratingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1GeneratingPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified GeneratingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1GeneratingPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the GeneratingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/imagevalidatingpolicies":{"get":{"description":"list objects of kind ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"listPoliciesKyvernoIoV1alpha1ImageValidatingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"post":{"description":"create an ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"createPoliciesKyvernoIoV1alpha1ImageValidatingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1CollectionImageValidatingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/imagevalidatingpolicies/{name}":{"get":{"description":"read the specified ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1ImageValidatingPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1ImageValidatingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"delete":{"description":"delete an ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1ImageValidatingPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified ImageValidatingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1ImageValidatingPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageValidatingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/imagevalidatingpolicies/{name}/status":{"get":{"description":"read status of the specified ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1ImageValidatingPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified ImageValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1ImageValidatingPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ImageValidatingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1ImageValidatingPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ImageValidatingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/mutatingpolicies":{"get":{"description":"list objects of kind MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"listPoliciesKyvernoIoV1alpha1MutatingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"post":{"description":"create a MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"createPoliciesKyvernoIoV1alpha1MutatingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1CollectionMutatingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/mutatingpolicies/{name}":{"get":{"description":"read the specified MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1MutatingPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1MutatingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"delete":{"description":"delete a MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1MutatingPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified MutatingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1MutatingPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MutatingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/mutatingpolicies/{name}/status":{"get":{"description":"read status of the specified MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1MutatingPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified MutatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1MutatingPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified MutatingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1MutatingPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the MutatingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/namespaces/{namespace}/policyexceptions":{"get":{"description":"list objects of kind PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"listPoliciesKyvernoIoV1alpha1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyExceptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"post":{"description":"create a PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"createPoliciesKyvernoIoV1alpha1NamespacedPolicyException","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"delete":{"description":"delete collection of PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1CollectionNamespacedPolicyException","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/namespaces/{namespace}/policyexceptions/{name}":{"get":{"description":"read the specified PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"put":{"description":"replace the specified PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1NamespacedPolicyException","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"delete":{"description":"delete a PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"patch":{"description":"partially update the specified PolicyException","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1NamespacedPolicyException","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PolicyException","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/policyexceptions":{"get":{"description":"list objects of kind PolicyException","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"listPoliciesKyvernoIoV1alpha1PolicyExceptionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyExceptionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/policies.kyverno.io/v1alpha1/validatingpolicies":{"get":{"description":"list objects of kind ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"listPoliciesKyvernoIoV1alpha1ValidatingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"post":{"description":"create a ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"createPoliciesKyvernoIoV1alpha1ValidatingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1CollectionValidatingPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/validatingpolicies/{name}":{"get":{"description":"read the specified ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1ValidatingPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1ValidatingPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"delete":{"description":"delete a ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"deletePoliciesKyvernoIoV1alpha1ValidatingPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified ValidatingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1ValidatingPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policies.kyverno.io/v1alpha1/validatingpolicies/{name}/status":{"get":{"description":"read status of the specified ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"readPoliciesKyvernoIoV1alpha1ValidatingPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified ValidatingPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"replacePoliciesKyvernoIoV1alpha1ValidatingPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ValidatingPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policiesKyvernoIo_v1alpha1"],"operationId":"patchPoliciesKyvernoIoV1alpha1ValidatingPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ValidatingPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy.networking.k8s.io/v1alpha1/adminnetworkpolicies":{"get":{"description":"list objects of kind AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"listPolicyNetworkingV1alpha1AdminNetworkPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"post":{"description":"create an AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"createPolicyNetworkingV1alpha1AdminNetworkPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"deletePolicyNetworkingV1alpha1CollectionAdminNetworkPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy.networking.k8s.io/v1alpha1/adminnetworkpolicies/{name}":{"get":{"description":"read the specified AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"readPolicyNetworkingV1alpha1AdminNetworkPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"replacePolicyNetworkingV1alpha1AdminNetworkPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"delete":{"description":"delete an AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"deletePolicyNetworkingV1alpha1AdminNetworkPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified AdminNetworkPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"patchPolicyNetworkingV1alpha1AdminNetworkPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdminNetworkPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy.networking.k8s.io/v1alpha1/adminnetworkpolicies/{name}/status":{"get":{"description":"read status of the specified AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"readPolicyNetworkingV1alpha1AdminNetworkPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified AdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"replacePolicyNetworkingV1alpha1AdminNetworkPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified AdminNetworkPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"patchPolicyNetworkingV1alpha1AdminNetworkPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AdminNetworkPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy.networking.k8s.io/v1alpha1/baselineadminnetworkpolicies":{"get":{"description":"list objects of kind BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"listPolicyNetworkingV1alpha1BaselineAdminNetworkPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"post":{"description":"create a BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"createPolicyNetworkingV1alpha1BaselineAdminNetworkPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"deletePolicyNetworkingV1alpha1CollectionBaselineAdminNetworkPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy.networking.k8s.io/v1alpha1/baselineadminnetworkpolicies/{name}":{"get":{"description":"read the specified BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"readPolicyNetworkingV1alpha1BaselineAdminNetworkPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"replacePolicyNetworkingV1alpha1BaselineAdminNetworkPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"delete":{"description":"delete a BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"deletePolicyNetworkingV1alpha1BaselineAdminNetworkPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified BaselineAdminNetworkPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"patchPolicyNetworkingV1alpha1BaselineAdminNetworkPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the BaselineAdminNetworkPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy.networking.k8s.io/v1alpha1/baselineadminnetworkpolicies/{name}/status":{"get":{"description":"read status of the specified BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"readPolicyNetworkingV1alpha1BaselineAdminNetworkPolicyStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"put":{"description":"replace status of the specified BaselineAdminNetworkPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"replacePolicyNetworkingV1alpha1BaselineAdminNetworkPolicyStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified BaselineAdminNetworkPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["policyNetworking_v1alpha1"],"operationId":"patchPolicyNetworkingV1alpha1BaselineAdminNetworkPolicyStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the BaselineAdminNetworkPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy"],"operationId":"getPolicyAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/policy/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"getPolicyV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets":{"get":{"description":"list or watch objects of kind PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["policy_v1"],"operationId":"listPolicyV1NamespacedPodDisruptionBudget","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudgetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"post":{"description":"create a PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"createPolicyV1NamespacedPodDisruptionBudget","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"delete":{"description":"delete collection of PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"deletePolicyV1CollectionNamespacedPodDisruptionBudget","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}":{"get":{"description":"read the specified PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"readPolicyV1NamespacedPodDisruptionBudget","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"put":{"description":"replace the specified PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"replacePolicyV1NamespacedPodDisruptionBudget","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"delete":{"description":"delete a PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"deletePolicyV1NamespacedPodDisruptionBudget","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"patch":{"description":"partially update the specified PodDisruptionBudget","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"patchPolicyV1NamespacedPodDisruptionBudget","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodDisruptionBudget","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy/v1/namespaces/{namespace}/poddisruptionbudgets/{name}/status":{"get":{"description":"read status of the specified PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"readPolicyV1NamespacedPodDisruptionBudgetStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"put":{"description":"replace status of the specified PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"replacePolicyV1NamespacedPodDisruptionBudgetStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"patch":{"description":"partially update status of the specified PodDisruptionBudget","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["policy_v1"],"operationId":"patchPolicyV1NamespacedPodDisruptionBudgetStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodDisruptionBudget","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/policy/v1/poddisruptionbudgets":{"get":{"description":"list or watch objects of kind PodDisruptionBudget","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["policy_v1"],"operationId":"listPolicyV1PodDisruptionBudgetForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudgetList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/policy/v1/watch/namespaces/{namespace}/poddisruptionbudgets":{"get":{"description":"watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["policy_v1"],"operationId":"watchPolicyV1NamespacedPodDisruptionBudgetList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/policy/v1/watch/namespaces/{namespace}/poddisruptionbudgets/{name}":{"get":{"description":"watch changes to an object of kind PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["policy_v1"],"operationId":"watchPolicyV1NamespacedPodDisruptionBudget","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the PodDisruptionBudget","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/policy/v1/watch/poddisruptionbudgets":{"get":{"description":"watch individual changes to a list of PodDisruptionBudget. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["policy_v1"],"operationId":"watchPolicyV1PodDisruptionBudgetListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projectdevelopmentstreams":{"get":{"description":"list objects of kind ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"listProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStream","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"post":{"description":"create a ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"createProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStream","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"delete":{"description":"delete collection of ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"deleteProjctlKonfluxDevV1beta1CollectionNamespacedProjectDevelopmentStream","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projectdevelopmentstreams/{name}":{"get":{"description":"read the specified ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"readProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStream","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"put":{"description":"replace the specified ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"replaceProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStream","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"delete":{"description":"delete a ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"deleteProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStream","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"patch":{"description":"partially update the specified ProjectDevelopmentStream","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"patchProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStream","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProjectDevelopmentStream","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projectdevelopmentstreams/{name}/status":{"get":{"description":"read status of the specified ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"readProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"put":{"description":"replace status of the specified ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"replaceProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ProjectDevelopmentStream","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"patchProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProjectDevelopmentStream","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projectdevelopmentstreamtemplates":{"get":{"description":"list objects of kind ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"listProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"post":{"description":"create a ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"createProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"delete":{"description":"delete collection of ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"deleteProjctlKonfluxDevV1beta1CollectionNamespacedProjectDevelopmentStreamTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projectdevelopmentstreamtemplates/{name}":{"get":{"description":"read the specified ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"readProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"put":{"description":"replace the specified ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"replaceProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"delete":{"description":"delete a ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"deleteProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"patch":{"description":"partially update the specified ProjectDevelopmentStreamTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"patchProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProjectDevelopmentStreamTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projectdevelopmentstreamtemplates/{name}/status":{"get":{"description":"read status of the specified ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"readProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"put":{"description":"replace status of the specified ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"replaceProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ProjectDevelopmentStreamTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"patchProjctlKonfluxDevV1beta1NamespacedProjectDevelopmentStreamTemplateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ProjectDevelopmentStreamTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projects":{"get":{"description":"list objects of kind Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"listProjctlKonfluxDevV1beta1NamespacedProject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"post":{"description":"create a Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"createProjctlKonfluxDevV1beta1NamespacedProject","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"delete":{"description":"delete collection of Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"deleteProjctlKonfluxDevV1beta1CollectionNamespacedProject","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/namespaces/{namespace}/projects/{name}":{"get":{"description":"read the specified Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"readProjctlKonfluxDevV1beta1NamespacedProject","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"put":{"description":"replace the specified Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"replaceProjctlKonfluxDevV1beta1NamespacedProject","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"delete":{"description":"delete a Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"deleteProjctlKonfluxDevV1beta1NamespacedProject","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"patch":{"description":"partially update the specified Project","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"patchProjctlKonfluxDevV1beta1NamespacedProject","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Project","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/projctl.konflux.dev/v1beta1/projectdevelopmentstreams":{"get":{"description":"list objects of kind ProjectDevelopmentStream","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"listProjctlKonfluxDevV1beta1ProjectDevelopmentStreamForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/projctl.konflux.dev/v1beta1/projectdevelopmentstreamtemplates":{"get":{"description":"list objects of kind ProjectDevelopmentStreamTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"listProjctlKonfluxDevV1beta1ProjectDevelopmentStreamTemplateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/projctl.konflux.dev/v1beta1/projects":{"get":{"description":"list objects of kind Project","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["projctlKonfluxDev_v1beta1"],"operationId":"listProjctlKonfluxDevV1beta1ProjectForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/project.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"getProjectOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v6"}},"401":{"description":"Unauthorized"}}}},"/apis/project.openshift.io/v1/projectrequests":{"get":{"description":"list objects of kind ProjectRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"listProjectOpenshiftIoV1ProjectRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v6"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"ProjectRequest","version":"v1"}},"post":{"description":"create a ProjectRequest","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"createProjectOpenshiftIoV1ProjectRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.ProjectRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.ProjectRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.ProjectRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.ProjectRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"ProjectRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/project.openshift.io/v1/projects":{"get":{"description":"list or watch objects of kind Project","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"listProjectOpenshiftIoV1Project","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.ProjectList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"post":{"description":"create a Project","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"createProjectOpenshiftIoV1Project","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/project.openshift.io/v1/projects/{name}":{"get":{"description":"read the specified Project","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"readProjectOpenshiftIoV1Project","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"put":{"description":"replace the specified Project","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"replaceProjectOpenshiftIoV1Project","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"delete":{"description":"delete a Project","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"deleteProjectOpenshiftIoV1Project","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v6"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v6"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"patch":{"description":"partially update the specified Project","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"patchProjectOpenshiftIoV1Project","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Project","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/project.openshift.io/v1/watch/projects":{"get":{"description":"watch individual changes to a list of Project. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"watchProjectOpenshiftIoV1ProjectList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/project.openshift.io/v1/watch/projects/{name}":{"get":{"description":"watch changes to an object of kind Project. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["projectOpenshiftIo_v1"],"operationId":"watchProjectOpenshiftIoV1Project","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"project.openshift.io","kind":"Project","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Project","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/protection.crossplane.io/v1beta1/clusterusages":{"get":{"description":"list objects of kind ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"listProtectionCrossplaneIoV1beta1ClusterUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"post":{"description":"create a ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"createProtectionCrossplaneIoV1beta1ClusterUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"delete":{"description":"delete collection of ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"deleteProtectionCrossplaneIoV1beta1CollectionClusterUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/protection.crossplane.io/v1beta1/clusterusages/{name}":{"get":{"description":"read the specified ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"readProtectionCrossplaneIoV1beta1ClusterUsage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"put":{"description":"replace the specified ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"replaceProtectionCrossplaneIoV1beta1ClusterUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"delete":{"description":"delete a ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"deleteProtectionCrossplaneIoV1beta1ClusterUsage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"patch":{"description":"partially update the specified ClusterUsage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"patchProtectionCrossplaneIoV1beta1ClusterUsage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterUsage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/protection.crossplane.io/v1beta1/clusterusages/{name}/status":{"get":{"description":"read status of the specified ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"readProtectionCrossplaneIoV1beta1ClusterUsageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"put":{"description":"replace status of the specified ClusterUsage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"replaceProtectionCrossplaneIoV1beta1ClusterUsageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ClusterUsage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"patchProtectionCrossplaneIoV1beta1ClusterUsageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterUsage","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/protection.crossplane.io/v1beta1/namespaces/{namespace}/usages":{"get":{"description":"list objects of kind Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"listProtectionCrossplaneIoV1beta1NamespacedUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.UsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"post":{"description":"create an Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"createProtectionCrossplaneIoV1beta1NamespacedUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"delete":{"description":"delete collection of Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"deleteProtectionCrossplaneIoV1beta1CollectionNamespacedUsage","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/protection.crossplane.io/v1beta1/namespaces/{namespace}/usages/{name}":{"get":{"description":"read the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"readProtectionCrossplaneIoV1beta1NamespacedUsage","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"put":{"description":"replace the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"replaceProtectionCrossplaneIoV1beta1NamespacedUsage","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"delete":{"description":"delete an Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"deleteProtectionCrossplaneIoV1beta1NamespacedUsage","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"patch":{"description":"partially update the specified Usage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"patchProtectionCrossplaneIoV1beta1NamespacedUsage","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Usage","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/protection.crossplane.io/v1beta1/namespaces/{namespace}/usages/{name}/status":{"get":{"description":"read status of the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"readProtectionCrossplaneIoV1beta1NamespacedUsageStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"put":{"description":"replace status of the specified Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"replaceProtectionCrossplaneIoV1beta1NamespacedUsageStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Usage","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"patchProtectionCrossplaneIoV1beta1NamespacedUsageStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Usage","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/protection.crossplane.io/v1beta1/usages":{"get":{"description":"list objects of kind Usage","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["protectionCrossplaneIo_v1beta1"],"operationId":"listProtectionCrossplaneIoV1beta1UsageForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.UsageList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/quota.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"getQuotaOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v7"}},"401":{"description":"Unauthorized"}}}},"/apis/quota.openshift.io/v1/appliedclusterresourcequotas":{"get":{"description":"list objects of kind AppliedClusterResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"listQuotaOpenshiftIoV1AppliedClusterResourceQuotaForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.quota.v1.AppliedClusterResourceQuotaList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"AppliedClusterResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/quota.openshift.io/v1/clusterresourcequotas":{"get":{"description":"list objects of kind ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"listQuotaOpenshiftIoV1ClusterResourceQuota","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuotaList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"post":{"description":"create a ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"createQuotaOpenshiftIoV1ClusterResourceQuota","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"delete":{"description":"delete collection of ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"deleteQuotaOpenshiftIoV1CollectionClusterResourceQuota","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/quota.openshift.io/v1/clusterresourcequotas/{name}":{"get":{"description":"read the specified ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"readQuotaOpenshiftIoV1ClusterResourceQuota","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"put":{"description":"replace the specified ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"replaceQuotaOpenshiftIoV1ClusterResourceQuota","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"delete":{"description":"delete a ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"deleteQuotaOpenshiftIoV1ClusterResourceQuota","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"patch":{"description":"partially update the specified ClusterResourceQuota","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"patchQuotaOpenshiftIoV1ClusterResourceQuota","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterResourceQuota","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/quota.openshift.io/v1/clusterresourcequotas/{name}/status":{"get":{"description":"read status of the specified ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"readQuotaOpenshiftIoV1ClusterResourceQuotaStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"put":{"description":"replace status of the specified ClusterResourceQuota","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"replaceQuotaOpenshiftIoV1ClusterResourceQuotaStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"patch":{"description":"partially update status of the specified ClusterResourceQuota","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"patchQuotaOpenshiftIoV1ClusterResourceQuotaStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterResourceQuota","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/quota.openshift.io/v1/namespaces/{namespace}/appliedclusterresourcequotas":{"get":{"description":"list objects of kind AppliedClusterResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"listQuotaOpenshiftIoV1NamespacedAppliedClusterResourceQuota","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.quota.v1.AppliedClusterResourceQuotaList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"AppliedClusterResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/quota.openshift.io/v1/namespaces/{namespace}/appliedclusterresourcequotas/{name}":{"get":{"description":"read the specified AppliedClusterResourceQuota","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"readQuotaOpenshiftIoV1NamespacedAppliedClusterResourceQuota","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.quota.v1.AppliedClusterResourceQuota"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"AppliedClusterResourceQuota","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AppliedClusterResourceQuota","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/quota.openshift.io/v1/watch/clusterresourcequotas":{"get":{"description":"watch individual changes to a list of ClusterResourceQuota. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"watchQuotaOpenshiftIoV1ClusterResourceQuotaList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/quota.openshift.io/v1/watch/clusterresourcequotas/{name}":{"get":{"description":"watch changes to an object of kind ClusterResourceQuota. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["quotaOpenshiftIo_v1"],"operationId":"watchQuotaOpenshiftIoV1ClusterResourceQuota","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ClusterResourceQuota","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization"],"operationId":"getRbacAuthorizationAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/rbac.authorization.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"getRbacAuthorizationV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/rbac.authorization.k8s.io/v1/clusterrolebindings":{"get":{"description":"list or watch objects of kind ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"listRbacAuthorizationV1ClusterRoleBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"post":{"description":"create a ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"createRbacAuthorizationV1ClusterRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"delete":{"description":"delete collection of ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1CollectionClusterRoleBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/clusterrolebindings/{name}":{"get":{"description":"read the specified ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"readRbacAuthorizationV1ClusterRoleBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"put":{"description":"replace the specified ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"replaceRbacAuthorizationV1ClusterRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"delete":{"description":"delete a ClusterRoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1ClusterRoleBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"patch":{"description":"partially update the specified ClusterRoleBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"patchRbacAuthorizationV1ClusterRoleBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterRoleBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/clusterroles":{"get":{"description":"list or watch objects of kind ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"listRbacAuthorizationV1ClusterRole","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"post":{"description":"create a ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"createRbacAuthorizationV1ClusterRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"delete":{"description":"delete collection of ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1CollectionClusterRole","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/clusterroles/{name}":{"get":{"description":"read the specified ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"readRbacAuthorizationV1ClusterRole","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"put":{"description":"replace the specified ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"replaceRbacAuthorizationV1ClusterRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"delete":{"description":"delete a ClusterRole","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1ClusterRole","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"patch":{"description":"partially update the specified ClusterRole","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"patchRbacAuthorizationV1ClusterRole","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterRole","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings":{"get":{"description":"list or watch objects of kind RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"listRbacAuthorizationV1NamespacedRoleBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"post":{"description":"create a RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"createRbacAuthorizationV1NamespacedRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"delete":{"description":"delete collection of RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1CollectionNamespacedRoleBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/rolebindings/{name}":{"get":{"description":"read the specified RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"readRbacAuthorizationV1NamespacedRoleBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"put":{"description":"replace the specified RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"replaceRbacAuthorizationV1NamespacedRoleBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"delete":{"description":"delete a RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1NamespacedRoleBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"patch":{"description":"partially update the specified RoleBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"patchRbacAuthorizationV1NamespacedRoleBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RoleBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles":{"get":{"description":"list or watch objects of kind Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"listRbacAuthorizationV1NamespacedRole","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"post":{"description":"create a Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"createRbacAuthorizationV1NamespacedRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"delete":{"description":"delete collection of Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1CollectionNamespacedRole","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/namespaces/{namespace}/roles/{name}":{"get":{"description":"read the specified Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"readRbacAuthorizationV1NamespacedRole","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"put":{"description":"replace the specified Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"replaceRbacAuthorizationV1NamespacedRole","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"delete":{"description":"delete a Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"deleteRbacAuthorizationV1NamespacedRole","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"patch":{"description":"partially update the specified Role","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"patchRbacAuthorizationV1NamespacedRole","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Role","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/rbac.authorization.k8s.io/v1/rolebindings":{"get":{"description":"list or watch objects of kind RoleBinding","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"listRbacAuthorizationV1RoleBindingForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/roles":{"get":{"description":"list or watch objects of kind Role","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"listRbacAuthorizationV1RoleForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/clusterrolebindings":{"get":{"description":"watch individual changes to a list of ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1ClusterRoleBindingList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/clusterrolebindings/{name}":{"get":{"description":"watch changes to an object of kind ClusterRoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1ClusterRoleBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ClusterRoleBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/clusterroles":{"get":{"description":"watch individual changes to a list of ClusterRole. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1ClusterRoleList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/clusterroles/{name}":{"get":{"description":"watch changes to an object of kind ClusterRole. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1ClusterRole","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the ClusterRole","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/rolebindings":{"get":{"description":"watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1NamespacedRoleBindingList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/rolebindings/{name}":{"get":{"description":"watch changes to an object of kind RoleBinding. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1NamespacedRoleBinding","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the RoleBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/roles":{"get":{"description":"watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1NamespacedRoleList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/namespaces/{namespace}/roles/{name}":{"get":{"description":"watch changes to an object of kind Role. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1NamespacedRole","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Role","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/rolebindings":{"get":{"description":"watch individual changes to a list of RoleBinding. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1RoleBindingListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/rbac.authorization.k8s.io/v1/watch/roles":{"get":{"description":"watch individual changes to a list of Role. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["rbacAuthorization_v1"],"operationId":"watchRbacAuthorizationV1RoleListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/reports.kyverno.io/v1/clusterephemeralreports":{"get":{"description":"list objects of kind ClusterEphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"listReportsKyvernoIoV1ClusterEphemeralReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReportList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}},"post":{"description":"create a ClusterEphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"createReportsKyvernoIoV1ClusterEphemeralReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}},"delete":{"description":"delete collection of ClusterEphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"deleteReportsKyvernoIoV1CollectionClusterEphemeralReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/reports.kyverno.io/v1/clusterephemeralreports/{name}":{"get":{"description":"read the specified ClusterEphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"readReportsKyvernoIoV1ClusterEphemeralReport","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}},"put":{"description":"replace the specified ClusterEphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"replaceReportsKyvernoIoV1ClusterEphemeralReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}},"delete":{"description":"delete a ClusterEphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"deleteReportsKyvernoIoV1ClusterEphemeralReport","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}},"patch":{"description":"partially update the specified ClusterEphemeralReport","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"patchReportsKyvernoIoV1ClusterEphemeralReport","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterEphemeralReport","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/reports.kyverno.io/v1/ephemeralreports":{"get":{"description":"list objects of kind EphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"listReportsKyvernoIoV1EphemeralReportForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReportList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/reports.kyverno.io/v1/namespaces/{namespace}/ephemeralreports":{"get":{"description":"list objects of kind EphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"listReportsKyvernoIoV1NamespacedEphemeralReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReportList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"post":{"description":"create an EphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"createReportsKyvernoIoV1NamespacedEphemeralReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"delete":{"description":"delete collection of EphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"deleteReportsKyvernoIoV1CollectionNamespacedEphemeralReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/reports.kyverno.io/v1/namespaces/{namespace}/ephemeralreports/{name}":{"get":{"description":"read the specified EphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"readReportsKyvernoIoV1NamespacedEphemeralReport","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"put":{"description":"replace the specified EphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"replaceReportsKyvernoIoV1NamespacedEphemeralReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"delete":{"description":"delete an EphemeralReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"deleteReportsKyvernoIoV1NamespacedEphemeralReport","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"patch":{"description":"partially update the specified EphemeralReport","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["reportsKyvernoIo_v1"],"operationId":"patchReportsKyvernoIoV1NamespacedEphemeralReport","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EphemeralReport","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/resolution.tekton.dev/v1alpha1/namespaces/{namespace}/resolutionrequests":{"get":{"description":"list objects of kind ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"listResolutionTektonDevV1alpha1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"post":{"description":"create a ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"createResolutionTektonDevV1alpha1NamespacedResolutionRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"delete":{"description":"delete collection of ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"deleteResolutionTektonDevV1alpha1CollectionNamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/resolution.tekton.dev/v1alpha1/namespaces/{namespace}/resolutionrequests/{name}":{"get":{"description":"read the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"readResolutionTektonDevV1alpha1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"put":{"description":"replace the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"replaceResolutionTektonDevV1alpha1NamespacedResolutionRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"delete":{"description":"delete a ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"deleteResolutionTektonDevV1alpha1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"patch":{"description":"partially update the specified ResolutionRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"patchResolutionTektonDevV1alpha1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResolutionRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/resolution.tekton.dev/v1alpha1/namespaces/{namespace}/resolutionrequests/{name}/status":{"get":{"description":"read status of the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"readResolutionTektonDevV1alpha1NamespacedResolutionRequestStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"put":{"description":"replace status of the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"replaceResolutionTektonDevV1alpha1NamespacedResolutionRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ResolutionRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"patchResolutionTektonDevV1alpha1NamespacedResolutionRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResolutionRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/resolution.tekton.dev/v1alpha1/resolutionrequests":{"get":{"description":"list objects of kind ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1alpha1"],"operationId":"listResolutionTektonDevV1alpha1ResolutionRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/resolution.tekton.dev/v1beta1/namespaces/{namespace}/resolutionrequests":{"get":{"description":"list objects of kind ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"listResolutionTektonDevV1beta1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"post":{"description":"create a ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"createResolutionTektonDevV1beta1NamespacedResolutionRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"delete":{"description":"delete collection of ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"deleteResolutionTektonDevV1beta1CollectionNamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/resolution.tekton.dev/v1beta1/namespaces/{namespace}/resolutionrequests/{name}":{"get":{"description":"read the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"readResolutionTektonDevV1beta1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"put":{"description":"replace the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"replaceResolutionTektonDevV1beta1NamespacedResolutionRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"delete":{"description":"delete a ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"deleteResolutionTektonDevV1beta1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"patch":{"description":"partially update the specified ResolutionRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"patchResolutionTektonDevV1beta1NamespacedResolutionRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResolutionRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/resolution.tekton.dev/v1beta1/namespaces/{namespace}/resolutionrequests/{name}/status":{"get":{"description":"read status of the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"readResolutionTektonDevV1beta1NamespacedResolutionRequestStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"put":{"description":"replace status of the specified ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"replaceResolutionTektonDevV1beta1NamespacedResolutionRequestStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ResolutionRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"patchResolutionTektonDevV1beta1NamespacedResolutionRequestStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ResolutionRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/resolution.tekton.dev/v1beta1/resolutionrequests":{"get":{"description":"list objects of kind ResolutionRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["resolutionTektonDev_v1beta1"],"operationId":"listResolutionTektonDevV1beta1ResolutionRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/route.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"getRouteOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v8"}},"401":{"description":"Unauthorized"}}}},"/apis/route.openshift.io/v1/namespaces/{namespace}/routes":{"get":{"description":"list or watch objects of kind Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"listRouteOpenshiftIoV1NamespacedRoute","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.RouteList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"post":{"description":"create a Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"createRouteOpenshiftIoV1NamespacedRoute","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"delete":{"description":"delete collection of Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"deleteRouteOpenshiftIoV1CollectionNamespacedRoute","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v7"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/route.openshift.io/v1/namespaces/{namespace}/routes/{name}":{"get":{"description":"read the specified Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"readRouteOpenshiftIoV1NamespacedRoute","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"put":{"description":"replace the specified Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"replaceRouteOpenshiftIoV1NamespacedRoute","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"delete":{"description":"delete a Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"deleteRouteOpenshiftIoV1NamespacedRoute","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v7"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v7"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"patch":{"description":"partially update the specified Route","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"patchRouteOpenshiftIoV1NamespacedRoute","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Route","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/route.openshift.io/v1/namespaces/{namespace}/routes/{name}/status":{"get":{"description":"read status of the specified Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"readRouteOpenshiftIoV1NamespacedRouteStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"put":{"description":"replace status of the specified Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"replaceRouteOpenshiftIoV1NamespacedRouteStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"patch":{"description":"partially update status of the specified Route","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"patchRouteOpenshiftIoV1NamespacedRouteStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Route","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/route.openshift.io/v1/routes":{"get":{"description":"list or watch objects of kind Route","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"listRouteOpenshiftIoV1RouteForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.route.v1.RouteList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/route.openshift.io/v1/watch/namespaces/{namespace}/routes":{"get":{"description":"watch individual changes to a list of Route. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"watchRouteOpenshiftIoV1NamespacedRouteList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/route.openshift.io/v1/watch/namespaces/{namespace}/routes/{name}":{"get":{"description":"watch changes to an object of kind Route. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"watchRouteOpenshiftIoV1NamespacedRoute","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Route","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/route.openshift.io/v1/watch/routes":{"get":{"description":"watch individual changes to a list of Route. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["routeOpenshiftIo_v1"],"operationId":"watchRouteOpenshiftIoV1RouteListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"route.openshift.io","kind":"Route","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/samples.operator.openshift.io/v1/configs":{"get":{"description":"list objects of kind Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"listSamplesOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.ConfigList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"post":{"description":"create a Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"createSamplesOperatorOpenshiftIoV1Config","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"delete":{"description":"delete collection of Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"deleteSamplesOperatorOpenshiftIoV1CollectionConfig","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/samples.operator.openshift.io/v1/configs/{name}":{"get":{"description":"read the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"readSamplesOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"put":{"description":"replace the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"replaceSamplesOperatorOpenshiftIoV1Config","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"delete":{"description":"delete a Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"deleteSamplesOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"patch":{"description":"partially update the specified Config","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"patchSamplesOperatorOpenshiftIoV1Config","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Config","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/samples.operator.openshift.io/v1/configs/{name}/status":{"get":{"description":"read status of the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"readSamplesOperatorOpenshiftIoV1ConfigStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"put":{"description":"replace status of the specified Config","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"replaceSamplesOperatorOpenshiftIoV1ConfigStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"patch":{"description":"partially update status of the specified Config","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["samplesOperatorOpenshiftIo_v1"],"operationId":"patchSamplesOperatorOpenshiftIoV1ConfigStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Config","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/scheduling.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling"],"operationId":"getSchedulingAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/scheduling.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"getSchedulingV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/scheduling.k8s.io/v1/priorityclasses":{"get":{"description":"list or watch objects of kind PriorityClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"listSchedulingV1PriorityClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"post":{"description":"create a PriorityClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"createSchedulingV1PriorityClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"delete":{"description":"delete collection of PriorityClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"deleteSchedulingV1CollectionPriorityClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/scheduling.k8s.io/v1/priorityclasses/{name}":{"get":{"description":"read the specified PriorityClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"readSchedulingV1PriorityClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"put":{"description":"replace the specified PriorityClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"replaceSchedulingV1PriorityClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"delete":{"description":"delete a PriorityClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"deleteSchedulingV1PriorityClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"patch":{"description":"partially update the specified PriorityClass","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"patchSchedulingV1PriorityClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PriorityClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/scheduling.k8s.io/v1/watch/priorityclasses":{"get":{"description":"watch individual changes to a list of PriorityClass. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"watchSchedulingV1PriorityClassList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/scheduling.k8s.io/v1/watch/priorityclasses/{name}":{"get":{"description":"watch changes to an object of kind PriorityClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["scheduling_v1"],"operationId":"watchSchedulingV1PriorityClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the PriorityClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/security.internal.openshift.io/v1/rangeallocations":{"get":{"description":"list objects of kind RangeAllocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityInternalOpenshiftIo_v1"],"operationId":"listSecurityInternalOpenshiftIoV1RangeAllocation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}},"post":{"description":"create a RangeAllocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityInternalOpenshiftIo_v1"],"operationId":"createSecurityInternalOpenshiftIoV1RangeAllocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}},"delete":{"description":"delete collection of RangeAllocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityInternalOpenshiftIo_v1"],"operationId":"deleteSecurityInternalOpenshiftIoV1CollectionRangeAllocation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.internal.openshift.io/v1/rangeallocations/{name}":{"get":{"description":"read the specified RangeAllocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityInternalOpenshiftIo_v1"],"operationId":"readSecurityInternalOpenshiftIoV1RangeAllocation","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}},"put":{"description":"replace the specified RangeAllocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityInternalOpenshiftIo_v1"],"operationId":"replaceSecurityInternalOpenshiftIoV1RangeAllocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}},"delete":{"description":"delete a RangeAllocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityInternalOpenshiftIo_v1"],"operationId":"deleteSecurityInternalOpenshiftIoV1RangeAllocation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}},"patch":{"description":"partially update the specified RangeAllocation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityInternalOpenshiftIo_v1"],"operationId":"patchSecurityInternalOpenshiftIoV1RangeAllocation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RangeAllocation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"getSecurityOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v9"}},"401":{"description":"Unauthorized"}}}},"/apis/security.openshift.io/v1/namespaces/{namespace}/podsecuritypolicyreviews":{"post":{"description":"create a PodSecurityPolicyReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"createSecurityOpenshiftIoV1NamespacedPodSecurityPolicyReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicyReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicyReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicyReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicyReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"PodSecurityPolicyReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/namespaces/{namespace}/podsecuritypolicyselfsubjectreviews":{"post":{"description":"create a PodSecurityPolicySelfSubjectReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"createSecurityOpenshiftIoV1NamespacedPodSecurityPolicySelfSubjectReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySelfSubjectReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySelfSubjectReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySelfSubjectReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySelfSubjectReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"PodSecurityPolicySelfSubjectReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/namespaces/{namespace}/podsecuritypolicysubjectreviews":{"post":{"description":"create a PodSecurityPolicySubjectReview","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"createSecurityOpenshiftIoV1NamespacedPodSecurityPolicySubjectReview","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySubjectReview"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySubjectReview"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySubjectReview"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySubjectReview"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"PodSecurityPolicySubjectReview","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/rangeallocations":{"get":{"description":"list or watch objects of kind RangeAllocation","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"listSecurityOpenshiftIoV1RangeAllocation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"post":{"description":"create a RangeAllocation","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"createSecurityOpenshiftIoV1RangeAllocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"delete":{"description":"delete collection of RangeAllocation","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"deleteSecurityOpenshiftIoV1CollectionRangeAllocation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v8"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/rangeallocations/{name}":{"get":{"description":"read the specified RangeAllocation","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"readSecurityOpenshiftIoV1RangeAllocation","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"put":{"description":"replace the specified RangeAllocation","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"replaceSecurityOpenshiftIoV1RangeAllocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"delete":{"description":"delete a RangeAllocation","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"deleteSecurityOpenshiftIoV1RangeAllocation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v8"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v8"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"patch":{"description":"partially update the specified RangeAllocation","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"patchSecurityOpenshiftIoV1RangeAllocation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the RangeAllocation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/securitycontextconstraints":{"get":{"description":"list objects of kind SecurityContextConstraints","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"listSecurityOpenshiftIoV1SecurityContextConstraints","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraintsList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"post":{"description":"create SecurityContextConstraints","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"createSecurityOpenshiftIoV1SecurityContextConstraints","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"delete":{"description":"delete collection of SecurityContextConstraints","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"deleteSecurityOpenshiftIoV1CollectionSecurityContextConstraints","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/securitycontextconstraints/{name}":{"get":{"description":"read the specified SecurityContextConstraints","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"readSecurityOpenshiftIoV1SecurityContextConstraints","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"put":{"description":"replace the specified SecurityContextConstraints","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"replaceSecurityOpenshiftIoV1SecurityContextConstraints","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"delete":{"description":"delete SecurityContextConstraints","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"deleteSecurityOpenshiftIoV1SecurityContextConstraints","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"patch":{"description":"partially update the specified SecurityContextConstraints","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"patchSecurityOpenshiftIoV1SecurityContextConstraints","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SecurityContextConstraints","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/security.openshift.io/v1/watch/rangeallocations":{"get":{"description":"watch individual changes to a list of RangeAllocation. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"watchSecurityOpenshiftIoV1RangeAllocationList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/security.openshift.io/v1/watch/rangeallocations/{name}":{"get":{"description":"watch changes to an object of kind RangeAllocation. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"watchSecurityOpenshiftIoV1RangeAllocation","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the RangeAllocation","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/security.openshift.io/v1/watch/securitycontextconstraints":{"get":{"description":"watch individual changes to a list of SecurityContextConstraints. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"watchSecurityOpenshiftIoV1SecurityContextConstraintsList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/security.openshift.io/v1/watch/securitycontextconstraints/{name}":{"get":{"description":"watch changes to an object of kind SecurityContextConstraints. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["securityOpenshiftIo_v1"],"operationId":"watchSecurityOpenshiftIoV1SecurityContextConstraints","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the SecurityContextConstraints","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sinks.knative.dev/v1alpha1/jobsinks":{"get":{"description":"list objects of kind JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"listSinksKnativeDevV1alpha1JobSinkForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSinkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sinks.knative.dev/v1alpha1/namespaces/{namespace}/jobsinks":{"get":{"description":"list objects of kind JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"listSinksKnativeDevV1alpha1NamespacedJobSink","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSinkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"post":{"description":"create a JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"createSinksKnativeDevV1alpha1NamespacedJobSink","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"delete":{"description":"delete collection of JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"deleteSinksKnativeDevV1alpha1CollectionNamespacedJobSink","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sinks.knative.dev/v1alpha1/namespaces/{namespace}/jobsinks/{name}":{"get":{"description":"read the specified JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"readSinksKnativeDevV1alpha1NamespacedJobSink","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"put":{"description":"replace the specified JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"replaceSinksKnativeDevV1alpha1NamespacedJobSink","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"delete":{"description":"delete a JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"deleteSinksKnativeDevV1alpha1NamespacedJobSink","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"patch":{"description":"partially update the specified JobSink","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"patchSinksKnativeDevV1alpha1NamespacedJobSink","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the JobSink","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sinks.knative.dev/v1alpha1/namespaces/{namespace}/jobsinks/{name}/status":{"get":{"description":"read status of the specified JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"readSinksKnativeDevV1alpha1NamespacedJobSinkStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"put":{"description":"replace status of the specified JobSink","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"replaceSinksKnativeDevV1alpha1NamespacedJobSinkStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified JobSink","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sinksKnativeDev_v1alpha1"],"operationId":"patchSinksKnativeDevV1alpha1NamespacedJobSinkStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the JobSink","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/namespaces/{namespace}/volumesnapshots":{"get":{"description":"list objects of kind VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"listSnapshotStorageV1NamespacedVolumeSnapshot","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"post":{"description":"create a VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"createSnapshotStorageV1NamespacedVolumeSnapshot","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"delete":{"description":"delete collection of VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"deleteSnapshotStorageV1CollectionNamespacedVolumeSnapshot","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/namespaces/{namespace}/volumesnapshots/{name}":{"get":{"description":"read the specified VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"readSnapshotStorageV1NamespacedVolumeSnapshot","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"put":{"description":"replace the specified VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"replaceSnapshotStorageV1NamespacedVolumeSnapshot","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"delete":{"description":"delete a VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"deleteSnapshotStorageV1NamespacedVolumeSnapshot","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"patch":{"description":"partially update the specified VolumeSnapshot","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"patchSnapshotStorageV1NamespacedVolumeSnapshot","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeSnapshot","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/namespaces/{namespace}/volumesnapshots/{name}/status":{"get":{"description":"read status of the specified VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"readSnapshotStorageV1NamespacedVolumeSnapshotStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"put":{"description":"replace status of the specified VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"replaceSnapshotStorageV1NamespacedVolumeSnapshotStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"patch":{"description":"partially update status of the specified VolumeSnapshot","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"patchSnapshotStorageV1NamespacedVolumeSnapshotStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeSnapshot","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/volumesnapshotclasses":{"get":{"description":"list objects of kind VolumeSnapshotClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"listSnapshotStorageV1VolumeSnapshotClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}},"post":{"description":"create a VolumeSnapshotClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"createSnapshotStorageV1VolumeSnapshotClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}},"delete":{"description":"delete collection of VolumeSnapshotClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"deleteSnapshotStorageV1CollectionVolumeSnapshotClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/volumesnapshotclasses/{name}":{"get":{"description":"read the specified VolumeSnapshotClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"readSnapshotStorageV1VolumeSnapshotClass","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}},"put":{"description":"replace the specified VolumeSnapshotClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"replaceSnapshotStorageV1VolumeSnapshotClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}},"delete":{"description":"delete a VolumeSnapshotClass","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"deleteSnapshotStorageV1VolumeSnapshotClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}},"patch":{"description":"partially update the specified VolumeSnapshotClass","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"patchSnapshotStorageV1VolumeSnapshotClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeSnapshotClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/volumesnapshotcontents":{"get":{"description":"list objects of kind VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"listSnapshotStorageV1VolumeSnapshotContent","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"post":{"description":"create a VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"createSnapshotStorageV1VolumeSnapshotContent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"delete":{"description":"delete collection of VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"deleteSnapshotStorageV1CollectionVolumeSnapshotContent","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/volumesnapshotcontents/{name}":{"get":{"description":"read the specified VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"readSnapshotStorageV1VolumeSnapshotContent","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"put":{"description":"replace the specified VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"replaceSnapshotStorageV1VolumeSnapshotContent","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"delete":{"description":"delete a VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"deleteSnapshotStorageV1VolumeSnapshotContent","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"patch":{"description":"partially update the specified VolumeSnapshotContent","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"patchSnapshotStorageV1VolumeSnapshotContent","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeSnapshotContent","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/volumesnapshotcontents/{name}/status":{"get":{"description":"read status of the specified VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"readSnapshotStorageV1VolumeSnapshotContentStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"put":{"description":"replace status of the specified VolumeSnapshotContent","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"replaceSnapshotStorageV1VolumeSnapshotContentStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"patch":{"description":"partially update status of the specified VolumeSnapshotContent","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"patchSnapshotStorageV1VolumeSnapshotContentStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeSnapshotContent","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/snapshot.storage.k8s.io/v1/volumesnapshots":{"get":{"description":"list objects of kind VolumeSnapshot","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["snapshotStorage_v1"],"operationId":"listSnapshotStorageV1VolumeSnapshotForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sources.knative.dev/v1/apiserversources":{"get":{"description":"list objects of kind ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1ApiServerSourceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sources.knative.dev/v1/containersources":{"get":{"description":"list objects of kind ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1ContainerSourceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/apiserversources":{"get":{"description":"list objects of kind ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1NamespacedApiServerSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"post":{"description":"create an ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"createSourcesKnativeDevV1NamespacedApiServerSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"delete":{"description":"delete collection of ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1CollectionNamespacedApiServerSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/apiserversources/{name}":{"get":{"description":"read the specified ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedApiServerSource","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"put":{"description":"replace the specified ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedApiServerSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"delete":{"description":"delete an ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1NamespacedApiServerSource","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"patch":{"description":"partially update the specified ApiServerSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedApiServerSource","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ApiServerSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/apiserversources/{name}/status":{"get":{"description":"read status of the specified ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedApiServerSourceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"put":{"description":"replace status of the specified ApiServerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedApiServerSourceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"patch":{"description":"partially update status of the specified ApiServerSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedApiServerSourceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ApiServerSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/containersources":{"get":{"description":"list objects of kind ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1NamespacedContainerSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"post":{"description":"create a ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"createSourcesKnativeDevV1NamespacedContainerSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"delete":{"description":"delete collection of ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1CollectionNamespacedContainerSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/containersources/{name}":{"get":{"description":"read the specified ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedContainerSource","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"put":{"description":"replace the specified ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedContainerSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"delete":{"description":"delete a ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1NamespacedContainerSource","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"patch":{"description":"partially update the specified ContainerSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedContainerSource","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ContainerSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/containersources/{name}/status":{"get":{"description":"read status of the specified ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedContainerSourceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"put":{"description":"replace status of the specified ContainerSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedContainerSourceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"patch":{"description":"partially update status of the specified ContainerSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedContainerSourceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ContainerSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/pingsources":{"get":{"description":"list objects of kind PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1NamespacedPingSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"post":{"description":"create a PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"createSourcesKnativeDevV1NamespacedPingSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"delete":{"description":"delete collection of PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1CollectionNamespacedPingSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/pingsources/{name}":{"get":{"description":"read the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedPingSource","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"put":{"description":"replace the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedPingSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"delete":{"description":"delete a PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1NamespacedPingSource","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"patch":{"description":"partially update the specified PingSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedPingSource","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PingSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/pingsources/{name}/status":{"get":{"description":"read status of the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedPingSourceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"put":{"description":"replace status of the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedPingSourceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"patch":{"description":"partially update status of the specified PingSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedPingSourceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PingSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/sinkbindings":{"get":{"description":"list objects of kind SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1NamespacedSinkBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"post":{"description":"create a SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"createSourcesKnativeDevV1NamespacedSinkBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"delete":{"description":"delete collection of SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1CollectionNamespacedSinkBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/sinkbindings/{name}":{"get":{"description":"read the specified SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedSinkBinding","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"put":{"description":"replace the specified SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedSinkBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"delete":{"description":"delete a SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"deleteSourcesKnativeDevV1NamespacedSinkBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"patch":{"description":"partially update the specified SinkBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedSinkBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SinkBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/namespaces/{namespace}/sinkbindings/{name}/status":{"get":{"description":"read status of the specified SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"readSourcesKnativeDevV1NamespacedSinkBindingStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"put":{"description":"replace status of the specified SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"replaceSourcesKnativeDevV1NamespacedSinkBindingStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"patch":{"description":"partially update status of the specified SinkBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"patchSourcesKnativeDevV1NamespacedSinkBindingStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the SinkBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1/pingsources":{"get":{"description":"list objects of kind PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1PingSourceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.PingSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sources.knative.dev/v1/sinkbindings":{"get":{"description":"list objects of kind SinkBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1"],"operationId":"listSourcesKnativeDevV1SinkBindingForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sources.knative.dev/v1beta2/namespaces/{namespace}/pingsources":{"get":{"description":"list objects of kind PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"listSourcesKnativeDevV1beta2NamespacedPingSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"post":{"description":"create a PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"createSourcesKnativeDevV1beta2NamespacedPingSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"delete":{"description":"delete collection of PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"deleteSourcesKnativeDevV1beta2CollectionNamespacedPingSource","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1beta2/namespaces/{namespace}/pingsources/{name}":{"get":{"description":"read the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"readSourcesKnativeDevV1beta2NamespacedPingSource","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"put":{"description":"replace the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"replaceSourcesKnativeDevV1beta2NamespacedPingSource","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"delete":{"description":"delete a PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"deleteSourcesKnativeDevV1beta2NamespacedPingSource","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"patch":{"description":"partially update the specified PingSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"patchSourcesKnativeDevV1beta2NamespacedPingSource","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PingSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1beta2/namespaces/{namespace}/pingsources/{name}/status":{"get":{"description":"read status of the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"readSourcesKnativeDevV1beta2NamespacedPingSourceStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"put":{"description":"replace status of the specified PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"replaceSourcesKnativeDevV1beta2NamespacedPingSourceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"patch":{"description":"partially update status of the specified PingSource","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"patchSourcesKnativeDevV1beta2NamespacedPingSourceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PingSource","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sources.knative.dev/v1beta2/pingsources":{"get":{"description":"list objects of kind PingSource","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["sourcesKnativeDev_v1beta2"],"operationId":"listSourcesKnativeDevV1beta2PingSourceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSourceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/":{"get":{"description":"get information of a group","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage"],"operationId":"getStorageAPIGroup","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"}},"401":{"description":"Unauthorized"}}}},"/apis/storage.k8s.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"getStorageV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/storage.k8s.io/v1/csidrivers":{"get":{"description":"list or watch objects of kind CSIDriver","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"listStorageV1CSIDriver","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriverList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"post":{"description":"create a CSIDriver","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"createStorageV1CSIDriver","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"delete":{"description":"delete collection of CSIDriver","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1CollectionCSIDriver","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/csidrivers/{name}":{"get":{"description":"read the specified CSIDriver","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"readStorageV1CSIDriver","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"put":{"description":"replace the specified CSIDriver","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"replaceStorageV1CSIDriver","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"delete":{"description":"delete a CSIDriver","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1CSIDriver","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"patch":{"description":"partially update the specified CSIDriver","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"patchStorageV1CSIDriver","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CSIDriver","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/csinodes":{"get":{"description":"list or watch objects of kind CSINode","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"listStorageV1CSINode","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINodeList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"post":{"description":"create a CSINode","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"createStorageV1CSINode","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"delete":{"description":"delete collection of CSINode","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1CollectionCSINode","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/csinodes/{name}":{"get":{"description":"read the specified CSINode","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"readStorageV1CSINode","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"put":{"description":"replace the specified CSINode","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"replaceStorageV1CSINode","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"delete":{"description":"delete a CSINode","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1CSINode","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"patch":{"description":"partially update the specified CSINode","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"patchStorageV1CSINode","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CSINode","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/csistoragecapacities":{"get":{"description":"list or watch objects of kind CSIStorageCapacity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"listStorageV1CSIStorageCapacityForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacityList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities":{"get":{"description":"list or watch objects of kind CSIStorageCapacity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"listStorageV1NamespacedCSIStorageCapacity","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacityList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"post":{"description":"create a CSIStorageCapacity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"createStorageV1NamespacedCSIStorageCapacity","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"delete":{"description":"delete collection of CSIStorageCapacity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1CollectionNamespacedCSIStorageCapacity","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/namespaces/{namespace}/csistoragecapacities/{name}":{"get":{"description":"read the specified CSIStorageCapacity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"readStorageV1NamespacedCSIStorageCapacity","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"put":{"description":"replace the specified CSIStorageCapacity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"replaceStorageV1NamespacedCSIStorageCapacity","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"delete":{"description":"delete a CSIStorageCapacity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1NamespacedCSIStorageCapacity","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"patch":{"description":"partially update the specified CSIStorageCapacity","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"patchStorageV1NamespacedCSIStorageCapacity","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CSIStorageCapacity","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/storageclasses":{"get":{"description":"list or watch objects of kind StorageClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"listStorageV1StorageClass","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClassList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"post":{"description":"create a StorageClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"createStorageV1StorageClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"delete":{"description":"delete collection of StorageClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1CollectionStorageClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/storageclasses/{name}":{"get":{"description":"read the specified StorageClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"readStorageV1StorageClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"put":{"description":"replace the specified StorageClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"replaceStorageV1StorageClass","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"delete":{"description":"delete a StorageClass","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1StorageClass","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"patch":{"description":"partially update the specified StorageClass","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"patchStorageV1StorageClass","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StorageClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/volumeattachments":{"get":{"description":"list or watch objects of kind VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"listStorageV1VolumeAttachment","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachmentList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"post":{"description":"create a VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"createStorageV1VolumeAttachment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"delete":{"description":"delete collection of VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1CollectionVolumeAttachment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/volumeattachments/{name}":{"get":{"description":"read the specified VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"readStorageV1VolumeAttachment","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"put":{"description":"replace the specified VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"replaceStorageV1VolumeAttachment","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"delete":{"description":"delete a VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"deleteStorageV1VolumeAttachment","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"patch":{"description":"partially update the specified VolumeAttachment","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"patchStorageV1VolumeAttachment","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeAttachment","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/volumeattachments/{name}/status":{"get":{"description":"read status of the specified VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"readStorageV1VolumeAttachmentStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"put":{"description":"replace status of the specified VolumeAttachment","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"replaceStorageV1VolumeAttachmentStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"patch":{"description":"partially update status of the specified VolumeAttachment","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["storage_v1"],"operationId":"patchStorageV1VolumeAttachmentStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeAttachment","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/storage.k8s.io/v1/watch/csidrivers":{"get":{"description":"watch individual changes to a list of CSIDriver. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1CSIDriverList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/csidrivers/{name}":{"get":{"description":"watch changes to an object of kind CSIDriver. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1CSIDriver","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the CSIDriver","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/csinodes":{"get":{"description":"watch individual changes to a list of CSINode. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1CSINodeList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/csinodes/{name}":{"get":{"description":"watch changes to an object of kind CSINode. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1CSINode","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the CSINode","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/csistoragecapacities":{"get":{"description":"watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1CSIStorageCapacityListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/namespaces/{namespace}/csistoragecapacities":{"get":{"description":"watch individual changes to a list of CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1NamespacedCSIStorageCapacityList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/namespaces/{namespace}/csistoragecapacities/{name}":{"get":{"description":"watch changes to an object of kind CSIStorageCapacity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1NamespacedCSIStorageCapacity","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the CSIStorageCapacity","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/storageclasses":{"get":{"description":"watch individual changes to a list of StorageClass. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1StorageClassList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/storageclasses/{name}":{"get":{"description":"watch changes to an object of kind StorageClass. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1StorageClass","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the StorageClass","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/volumeattachments":{"get":{"description":"watch individual changes to a list of VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1VolumeAttachmentList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/storage.k8s.io/v1/watch/volumeattachments/{name}":{"get":{"description":"watch changes to an object of kind VolumeAttachment. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["storage_v1"],"operationId":"watchStorageV1VolumeAttachment","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the VolumeAttachment","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/sts.min.io/v1alpha1/namespaces/{namespace}/policybindings":{"get":{"description":"list objects of kind PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"listStsMinIoV1alpha1NamespacedPolicyBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"post":{"description":"create a PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"createStsMinIoV1alpha1NamespacedPolicyBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"delete":{"description":"delete collection of PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"deleteStsMinIoV1alpha1CollectionNamespacedPolicyBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sts.min.io/v1alpha1/namespaces/{namespace}/policybindings/{name}":{"get":{"description":"read the specified PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"readStsMinIoV1alpha1NamespacedPolicyBinding","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"put":{"description":"replace the specified PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"replaceStsMinIoV1alpha1NamespacedPolicyBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"delete":{"description":"delete a PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"deleteStsMinIoV1alpha1NamespacedPolicyBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"patch":{"description":"partially update the specified PolicyBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"patchStsMinIoV1alpha1NamespacedPolicyBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PolicyBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sts.min.io/v1alpha1/namespaces/{namespace}/policybindings/{name}/status":{"get":{"description":"read status of the specified PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"readStsMinIoV1alpha1NamespacedPolicyBindingStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"put":{"description":"replace status of the specified PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"replaceStsMinIoV1alpha1NamespacedPolicyBindingStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified PolicyBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"patchStsMinIoV1alpha1NamespacedPolicyBindingStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PolicyBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/sts.min.io/v1alpha1/policybindings":{"get":{"description":"list objects of kind PolicyBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["stsMinIo_v1alpha1"],"operationId":"listStsMinIoV1alpha1PolicyBindingForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/pipelineruns":{"get":{"description":"list objects of kind PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"post":{"description":"create a PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"createTektonDevV1NamespacedPipelineRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"delete":{"description":"delete collection of PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1CollectionNamespacedPipelineRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/pipelineruns/{name}":{"get":{"description":"read the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"put":{"description":"replace the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedPipelineRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"delete":{"description":"delete a PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"patch":{"description":"partially update the specified PipelineRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PipelineRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/pipelineruns/{name}/status":{"get":{"description":"read status of the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedPipelineRunStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"put":{"description":"replace status of the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedPipelineRunStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"patch":{"description":"partially update status of the specified PipelineRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedPipelineRunStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PipelineRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/pipelines":{"get":{"description":"list objects of kind Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1NamespacedPipeline","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"post":{"description":"create a Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"createTektonDevV1NamespacedPipeline","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"delete":{"description":"delete collection of Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1CollectionNamespacedPipeline","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/pipelines/{name}":{"get":{"description":"read the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedPipeline","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"put":{"description":"replace the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedPipeline","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"delete":{"description":"delete a Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1NamespacedPipeline","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"patch":{"description":"partially update the specified Pipeline","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedPipeline","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Pipeline","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/pipelines/{name}/status":{"get":{"description":"read status of the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedPipelineStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"put":{"description":"replace status of the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedPipelineStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"patch":{"description":"partially update status of the specified Pipeline","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedPipelineStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Pipeline","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/taskruns":{"get":{"description":"list objects of kind TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"post":{"description":"create a TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"createTektonDevV1NamespacedTaskRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"delete":{"description":"delete collection of TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1CollectionNamespacedTaskRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/taskruns/{name}":{"get":{"description":"read the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"put":{"description":"replace the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedTaskRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"delete":{"description":"delete a TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"patch":{"description":"partially update the specified TaskRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TaskRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/taskruns/{name}/status":{"get":{"description":"read status of the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedTaskRunStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"put":{"description":"replace status of the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedTaskRunStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"patch":{"description":"partially update status of the specified TaskRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedTaskRunStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TaskRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/tasks":{"get":{"description":"list objects of kind Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1NamespacedTask","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"post":{"description":"create a Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"createTektonDevV1NamespacedTask","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"delete":{"description":"delete collection of Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1CollectionNamespacedTask","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/tasks/{name}":{"get":{"description":"read the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedTask","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"put":{"description":"replace the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedTask","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"delete":{"description":"delete a Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"deleteTektonDevV1NamespacedTask","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"patch":{"description":"partially update the specified Task","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedTask","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Task","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/namespaces/{namespace}/tasks/{name}/status":{"get":{"description":"read status of the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"readTektonDevV1NamespacedTaskStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"put":{"description":"replace status of the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"replaceTektonDevV1NamespacedTaskStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"patch":{"description":"partially update status of the specified Task","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"patchTektonDevV1NamespacedTaskStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Task","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1/pipelineruns":{"get":{"description":"list objects of kind PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1PipelineRunForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1/pipelines":{"get":{"description":"list objects of kind Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1PipelineForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.PipelineList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1/taskruns":{"get":{"description":"list objects of kind TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1TaskRunForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1/tasks":{"get":{"description":"list objects of kind Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1"],"operationId":"listTektonDevV1TaskForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1.TaskList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1alpha1/namespaces/{namespace}/stepactions":{"get":{"description":"list objects of kind StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"listTektonDevV1alpha1NamespacedStepAction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepActionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"post":{"description":"create a StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"createTektonDevV1alpha1NamespacedStepAction","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"delete":{"description":"delete collection of StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"deleteTektonDevV1alpha1CollectionNamespacedStepAction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1alpha1/namespaces/{namespace}/stepactions/{name}":{"get":{"description":"read the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"readTektonDevV1alpha1NamespacedStepAction","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"put":{"description":"replace the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"replaceTektonDevV1alpha1NamespacedStepAction","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"delete":{"description":"delete a StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"deleteTektonDevV1alpha1NamespacedStepAction","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"patch":{"description":"partially update the specified StepAction","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"patchTektonDevV1alpha1NamespacedStepAction","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StepAction","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1alpha1/namespaces/{namespace}/stepactions/{name}/status":{"get":{"description":"read status of the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"readTektonDevV1alpha1NamespacedStepActionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"put":{"description":"replace status of the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"replaceTektonDevV1alpha1NamespacedStepActionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified StepAction","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"patchTektonDevV1alpha1NamespacedStepActionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StepAction","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1alpha1/namespaces/{namespace}/verificationpolicies":{"get":{"description":"list objects of kind VerificationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"listTektonDevV1alpha1NamespacedVerificationPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"post":{"description":"create a VerificationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"createTektonDevV1alpha1NamespacedVerificationPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"delete":{"description":"delete collection of VerificationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"deleteTektonDevV1alpha1CollectionNamespacedVerificationPolicy","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1alpha1/namespaces/{namespace}/verificationpolicies/{name}":{"get":{"description":"read the specified VerificationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"readTektonDevV1alpha1NamespacedVerificationPolicy","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"put":{"description":"replace the specified VerificationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"replaceTektonDevV1alpha1NamespacedVerificationPolicy","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"delete":{"description":"delete a VerificationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"deleteTektonDevV1alpha1NamespacedVerificationPolicy","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"patch":{"description":"partially update the specified VerificationPolicy","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"patchTektonDevV1alpha1NamespacedVerificationPolicy","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VerificationPolicy","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1alpha1/stepactions":{"get":{"description":"list objects of kind StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"listTektonDevV1alpha1StepActionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepActionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1alpha1/verificationpolicies":{"get":{"description":"list objects of kind VerificationPolicy","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1alpha1"],"operationId":"listTektonDevV1alpha1VerificationPolicyForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicyList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1beta1/customruns":{"get":{"description":"list objects of kind CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1CustomRunForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/customruns":{"get":{"description":"list objects of kind CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1NamespacedCustomRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"post":{"description":"create a CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"createTektonDevV1beta1NamespacedCustomRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"delete":{"description":"delete collection of CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1CollectionNamespacedCustomRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/customruns/{name}":{"get":{"description":"read the specified CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedCustomRun","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"put":{"description":"replace the specified CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedCustomRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"delete":{"description":"delete a CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1NamespacedCustomRun","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"patch":{"description":"partially update the specified CustomRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedCustomRun","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CustomRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/customruns/{name}/status":{"get":{"description":"read status of the specified CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedCustomRunStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"put":{"description":"replace status of the specified CustomRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedCustomRunStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"patch":{"description":"partially update status of the specified CustomRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedCustomRunStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the CustomRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/pipelineruns":{"get":{"description":"list objects of kind PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"post":{"description":"create a PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"createTektonDevV1beta1NamespacedPipelineRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"delete":{"description":"delete collection of PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1CollectionNamespacedPipelineRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/pipelineruns/{name}":{"get":{"description":"read the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"put":{"description":"replace the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedPipelineRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"delete":{"description":"delete a PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"patch":{"description":"partially update the specified PipelineRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedPipelineRun","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PipelineRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/pipelineruns/{name}/status":{"get":{"description":"read status of the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedPipelineRunStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"put":{"description":"replace status of the specified PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedPipelineRunStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"patch":{"description":"partially update status of the specified PipelineRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedPipelineRunStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PipelineRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/pipelines":{"get":{"description":"list objects of kind Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1NamespacedPipeline","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"post":{"description":"create a Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"createTektonDevV1beta1NamespacedPipeline","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"delete":{"description":"delete collection of Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1CollectionNamespacedPipeline","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/pipelines/{name}":{"get":{"description":"read the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedPipeline","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"put":{"description":"replace the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedPipeline","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"delete":{"description":"delete a Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1NamespacedPipeline","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"patch":{"description":"partially update the specified Pipeline","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedPipeline","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Pipeline","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/pipelines/{name}/status":{"get":{"description":"read status of the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedPipelineStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"put":{"description":"replace status of the specified Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedPipelineStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Pipeline","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedPipelineStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Pipeline","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/stepactions":{"get":{"description":"list objects of kind StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1NamespacedStepAction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepActionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"post":{"description":"create a StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"createTektonDevV1beta1NamespacedStepAction","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"delete":{"description":"delete collection of StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1CollectionNamespacedStepAction","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/stepactions/{name}":{"get":{"description":"read the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedStepAction","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"put":{"description":"replace the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedStepAction","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"delete":{"description":"delete a StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1NamespacedStepAction","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"patch":{"description":"partially update the specified StepAction","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedStepAction","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StepAction","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/stepactions/{name}/status":{"get":{"description":"read status of the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedStepActionStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"put":{"description":"replace status of the specified StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedStepActionStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"patch":{"description":"partially update status of the specified StepAction","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedStepActionStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the StepAction","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/taskruns":{"get":{"description":"list objects of kind TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"post":{"description":"create a TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"createTektonDevV1beta1NamespacedTaskRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"delete":{"description":"delete collection of TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1CollectionNamespacedTaskRun","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/taskruns/{name}":{"get":{"description":"read the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"put":{"description":"replace the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedTaskRun","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"delete":{"description":"delete a TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"patch":{"description":"partially update the specified TaskRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedTaskRun","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TaskRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/taskruns/{name}/status":{"get":{"description":"read status of the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedTaskRunStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"put":{"description":"replace status of the specified TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedTaskRunStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"patch":{"description":"partially update status of the specified TaskRun","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedTaskRunStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TaskRun","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/tasks":{"get":{"description":"list objects of kind Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1NamespacedTask","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"post":{"description":"create a Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"createTektonDevV1beta1NamespacedTask","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"delete":{"description":"delete collection of Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1CollectionNamespacedTask","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/tasks/{name}":{"get":{"description":"read the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedTask","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"put":{"description":"replace the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedTask","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"delete":{"description":"delete a Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"deleteTektonDevV1beta1NamespacedTask","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"patch":{"description":"partially update the specified Task","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedTask","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Task","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/namespaces/{namespace}/tasks/{name}/status":{"get":{"description":"read status of the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"readTektonDevV1beta1NamespacedTaskStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"put":{"description":"replace status of the specified Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"replaceTektonDevV1beta1NamespacedTaskStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Task","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"patchTektonDevV1beta1NamespacedTaskStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Task","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tekton.dev/v1beta1/pipelineruns":{"get":{"description":"list objects of kind PipelineRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1PipelineRunForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1beta1/pipelines":{"get":{"description":"list objects of kind Pipeline","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1PipelineForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1beta1/stepactions":{"get":{"description":"list objects of kind StepAction","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1StepActionForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.StepActionList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1beta1/taskruns":{"get":{"description":"list objects of kind TaskRun","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1TaskRunForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRunList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tekton.dev/v1beta1/tasks":{"get":{"description":"list objects of kind Task","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tektonDev_v1beta1"],"operationId":"listTektonDevV1beta1TaskForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tekton.dev","kind":"Task","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"getTemplateOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v10"}},"401":{"description":"Unauthorized"}}}},"/apis/template.openshift.io/v1/brokertemplateinstances":{"get":{"description":"list or watch objects of kind BrokerTemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"listTemplateOpenshiftIoV1BrokerTemplateInstance","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstanceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"post":{"description":"create a BrokerTemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"createTemplateOpenshiftIoV1BrokerTemplateInstance","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"delete":{"description":"delete collection of BrokerTemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"deleteTemplateOpenshiftIoV1CollectionBrokerTemplateInstance","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/brokertemplateinstances/{name}":{"get":{"description":"read the specified BrokerTemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"readTemplateOpenshiftIoV1BrokerTemplateInstance","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"put":{"description":"replace the specified BrokerTemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"replaceTemplateOpenshiftIoV1BrokerTemplateInstance","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"delete":{"description":"delete a BrokerTemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"deleteTemplateOpenshiftIoV1BrokerTemplateInstance","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"patch":{"description":"partially update the specified BrokerTemplateInstance","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"patchTemplateOpenshiftIoV1BrokerTemplateInstance","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the BrokerTemplateInstance","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/namespaces/{namespace}/processedtemplates":{"post":{"description":"create a Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"operationId":"createNamespacedProcessedTemplateV1","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/namespaces/{namespace}/templateinstances":{"get":{"description":"list or watch objects of kind TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"listTemplateOpenshiftIoV1NamespacedTemplateInstance","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstanceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"post":{"description":"create a TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"createTemplateOpenshiftIoV1NamespacedTemplateInstance","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"delete":{"description":"delete collection of TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"deleteTemplateOpenshiftIoV1CollectionNamespacedTemplateInstance","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/namespaces/{namespace}/templateinstances/{name}":{"get":{"description":"read the specified TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"readTemplateOpenshiftIoV1NamespacedTemplateInstance","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"put":{"description":"replace the specified TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"replaceTemplateOpenshiftIoV1NamespacedTemplateInstance","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"delete":{"description":"delete a TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"deleteTemplateOpenshiftIoV1NamespacedTemplateInstance","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"patch":{"description":"partially update the specified TemplateInstance","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"patchTemplateOpenshiftIoV1NamespacedTemplateInstance","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TemplateInstance","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/namespaces/{namespace}/templateinstances/{name}/status":{"get":{"description":"read status of the specified TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"readTemplateOpenshiftIoV1NamespacedTemplateInstanceStatus","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"put":{"description":"replace status of the specified TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"replaceTemplateOpenshiftIoV1NamespacedTemplateInstanceStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"patch":{"description":"partially update status of the specified TemplateInstance","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"patchTemplateOpenshiftIoV1NamespacedTemplateInstanceStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TemplateInstance","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/namespaces/{namespace}/templates":{"get":{"description":"list or watch objects of kind Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"listTemplateOpenshiftIoV1NamespacedTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"post":{"description":"create a Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"createTemplateOpenshiftIoV1NamespacedTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"delete":{"description":"delete collection of Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"deleteTemplateOpenshiftIoV1CollectionNamespacedTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/namespaces/{namespace}/templates/{name}":{"get":{"description":"read the specified Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"readTemplateOpenshiftIoV1NamespacedTemplate","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"put":{"description":"replace the specified Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"replaceTemplateOpenshiftIoV1NamespacedTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"delete":{"description":"delete a Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"deleteTemplateOpenshiftIoV1NamespacedTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ_v2"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"patch":{"description":"partially update the specified Template","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"patchTemplateOpenshiftIoV1NamespacedTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Template","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/template.openshift.io/v1/templateinstances":{"get":{"description":"list or watch objects of kind TemplateInstance","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"listTemplateOpenshiftIoV1TemplateInstanceForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstanceList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/templates":{"get":{"description":"list or watch objects of kind Template","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"listTemplateOpenshiftIoV1TemplateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/brokertemplateinstances":{"get":{"description":"watch individual changes to a list of BrokerTemplateInstance. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1BrokerTemplateInstanceList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/brokertemplateinstances/{name}":{"get":{"description":"watch changes to an object of kind BrokerTemplateInstance. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1BrokerTemplateInstance","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the BrokerTemplateInstance","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/namespaces/{namespace}/templateinstances":{"get":{"description":"watch individual changes to a list of TemplateInstance. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1NamespacedTemplateInstanceList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/namespaces/{namespace}/templateinstances/{name}":{"get":{"description":"watch changes to an object of kind TemplateInstance. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1NamespacedTemplateInstance","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the TemplateInstance","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/namespaces/{namespace}/templates":{"get":{"description":"watch individual changes to a list of Template. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1NamespacedTemplateList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/namespaces/{namespace}/templates/{name}":{"get":{"description":"watch changes to an object of kind Template. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1NamespacedTemplate","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Template","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/templateinstances":{"get":{"description":"watch individual changes to a list of TemplateInstance. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1TemplateInstanceListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/template.openshift.io/v1/watch/templates":{"get":{"description":"watch individual changes to a list of Template. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["templateOpenshiftIo_v1"],"operationId":"watchTemplateOpenshiftIoV1TemplateListForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"template.openshift.io","kind":"Template","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tempo.grafana.com/v1alpha1/namespaces/{namespace}/tempomonolithics":{"get":{"description":"list objects of kind TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"listTempoGrafanaComV1alpha1NamespacedTempoMonolithic","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithicList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"post":{"description":"create a TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"createTempoGrafanaComV1alpha1NamespacedTempoMonolithic","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"delete":{"description":"delete collection of TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"deleteTempoGrafanaComV1alpha1CollectionNamespacedTempoMonolithic","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tempo.grafana.com/v1alpha1/namespaces/{namespace}/tempomonolithics/{name}":{"get":{"description":"read the specified TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"readTempoGrafanaComV1alpha1NamespacedTempoMonolithic","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"put":{"description":"replace the specified TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"replaceTempoGrafanaComV1alpha1NamespacedTempoMonolithic","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"delete":{"description":"delete a TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"deleteTempoGrafanaComV1alpha1NamespacedTempoMonolithic","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"patch":{"description":"partially update the specified TempoMonolithic","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"patchTempoGrafanaComV1alpha1NamespacedTempoMonolithic","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TempoMonolithic","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tempo.grafana.com/v1alpha1/namespaces/{namespace}/tempomonolithics/{name}/status":{"get":{"description":"read status of the specified TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"readTempoGrafanaComV1alpha1NamespacedTempoMonolithicStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"put":{"description":"replace status of the specified TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"replaceTempoGrafanaComV1alpha1NamespacedTempoMonolithicStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TempoMonolithic","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"patchTempoGrafanaComV1alpha1NamespacedTempoMonolithicStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TempoMonolithic","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tempo.grafana.com/v1alpha1/namespaces/{namespace}/tempostacks":{"get":{"description":"list objects of kind TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"listTempoGrafanaComV1alpha1NamespacedTempoStack","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStackList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"post":{"description":"create a TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"createTempoGrafanaComV1alpha1NamespacedTempoStack","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"delete":{"description":"delete collection of TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"deleteTempoGrafanaComV1alpha1CollectionNamespacedTempoStack","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tempo.grafana.com/v1alpha1/namespaces/{namespace}/tempostacks/{name}":{"get":{"description":"read the specified TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"readTempoGrafanaComV1alpha1NamespacedTempoStack","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"put":{"description":"replace the specified TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"replaceTempoGrafanaComV1alpha1NamespacedTempoStack","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"delete":{"description":"delete a TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"deleteTempoGrafanaComV1alpha1NamespacedTempoStack","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"patch":{"description":"partially update the specified TempoStack","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"patchTempoGrafanaComV1alpha1NamespacedTempoStack","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TempoStack","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tempo.grafana.com/v1alpha1/namespaces/{namespace}/tempostacks/{name}/status":{"get":{"description":"read status of the specified TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"readTempoGrafanaComV1alpha1NamespacedTempoStackStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"put":{"description":"replace status of the specified TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"replaceTempoGrafanaComV1alpha1NamespacedTempoStackStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TempoStack","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"patchTempoGrafanaComV1alpha1NamespacedTempoStackStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TempoStack","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tempo.grafana.com/v1alpha1/tempomonolithics":{"get":{"description":"list objects of kind TempoMonolithic","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"listTempoGrafanaComV1alpha1TempoMonolithicForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithicList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tempo.grafana.com/v1alpha1/tempostacks":{"get":{"description":"list objects of kind TempoStack","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tempoGrafanaCom_v1alpha1"],"operationId":"listTempoGrafanaComV1alpha1TempoStackForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStackList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1alpha1/clusterinterceptors":{"get":{"description":"list objects of kind ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1ClusterInterceptor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"post":{"description":"create a ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"createTriggersTektonDevV1alpha1ClusterInterceptor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1CollectionClusterInterceptor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/clusterinterceptors/{name}":{"get":{"description":"read the specified ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1ClusterInterceptor","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1ClusterInterceptor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"delete":{"description":"delete a ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1ClusterInterceptor","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterInterceptor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1ClusterInterceptor","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterInterceptor","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/clusterinterceptors/{name}/status":{"get":{"description":"read status of the specified ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1ClusterInterceptorStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterInterceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1ClusterInterceptorStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterInterceptor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1ClusterInterceptorStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterInterceptor","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/clustertriggerbindings":{"get":{"description":"list objects of kind ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"post":{"description":"create a ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"createTriggersTektonDevV1alpha1ClusterTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"delete":{"description":"delete collection of ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1CollectionClusterTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/clustertriggerbindings/{name}":{"get":{"description":"read the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"put":{"description":"replace the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1ClusterTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"delete":{"description":"delete a ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"patch":{"description":"partially update the specified ClusterTriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterTriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/clustertriggerbindings/{name}/status":{"get":{"description":"read status of the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1ClusterTriggerBindingStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"put":{"description":"replace status of the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1ClusterTriggerBindingStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified ClusterTriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1ClusterTriggerBindingStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterTriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/eventlisteners":{"get":{"description":"list objects of kind EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1EventListenerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListenerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1alpha1/interceptors":{"get":{"description":"list objects of kind Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1InterceptorForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.InterceptorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/eventlisteners":{"get":{"description":"list objects of kind EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1NamespacedEventListener","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListenerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"post":{"description":"create an EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"createTriggersTektonDevV1alpha1NamespacedEventListener","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"delete":{"description":"delete collection of EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1CollectionNamespacedEventListener","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/eventlisteners/{name}":{"get":{"description":"read the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedEventListener","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"put":{"description":"replace the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedEventListener","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"delete":{"description":"delete an EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1NamespacedEventListener","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"patch":{"description":"partially update the specified EventListener","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedEventListener","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventListener","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/eventlisteners/{name}/status":{"get":{"description":"read status of the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedEventListenerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"put":{"description":"replace status of the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedEventListenerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified EventListener","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedEventListenerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventListener","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/interceptors":{"get":{"description":"list objects of kind Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1NamespacedInterceptor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.InterceptorList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"post":{"description":"create an Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"createTriggersTektonDevV1alpha1NamespacedInterceptor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"delete":{"description":"delete collection of Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1CollectionNamespacedInterceptor","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/interceptors/{name}":{"get":{"description":"read the specified Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedInterceptor","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"put":{"description":"replace the specified Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedInterceptor","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"delete":{"description":"delete an Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1NamespacedInterceptor","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"patch":{"description":"partially update the specified Interceptor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedInterceptor","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Interceptor","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/interceptors/{name}/status":{"get":{"description":"read status of the specified Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedInterceptorStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"put":{"description":"replace status of the specified Interceptor","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedInterceptorStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Interceptor","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedInterceptorStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Interceptor","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggerbindings":{"get":{"description":"list objects of kind TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"post":{"description":"create a TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"createTriggersTektonDevV1alpha1NamespacedTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"delete":{"description":"delete collection of TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1CollectionNamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggerbindings/{name}":{"get":{"description":"read the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"put":{"description":"replace the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"delete":{"description":"delete a TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"patch":{"description":"partially update the specified TriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggerbindings/{name}/status":{"get":{"description":"read status of the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedTriggerBindingStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"put":{"description":"replace status of the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedTriggerBindingStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedTriggerBindingStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggers":{"get":{"description":"list objects of kind Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1NamespacedTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"post":{"description":"create a Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"createTriggersTektonDevV1alpha1NamespacedTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"delete":{"description":"delete collection of Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1CollectionNamespacedTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggers/{name}":{"get":{"description":"read the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedTrigger","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"put":{"description":"replace the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"delete":{"description":"delete a Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1NamespacedTrigger","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"patch":{"description":"partially update the specified Trigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedTrigger","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Trigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggers/{name}/status":{"get":{"description":"read status of the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedTriggerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"put":{"description":"replace status of the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedTriggerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Trigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedTriggerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Trigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggertemplates":{"get":{"description":"list objects of kind TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"post":{"description":"create a TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"createTriggersTektonDevV1alpha1NamespacedTriggerTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"delete":{"description":"delete collection of TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1CollectionNamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggertemplates/{name}":{"get":{"description":"read the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"put":{"description":"replace the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedTriggerTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"delete":{"description":"delete a TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"deleteTriggersTektonDevV1alpha1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"patch":{"description":"partially update the specified TriggerTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/namespaces/{namespace}/triggertemplates/{name}/status":{"get":{"description":"read status of the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"readTriggersTektonDevV1alpha1NamespacedTriggerTemplateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"put":{"description":"replace status of the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"replaceTriggersTektonDevV1alpha1NamespacedTriggerTemplateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified TriggerTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"patchTriggersTektonDevV1alpha1NamespacedTriggerTemplateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1alpha1/triggerbindings":{"get":{"description":"list objects of kind TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1TriggerBindingForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1alpha1/triggers":{"get":{"description":"list objects of kind Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1TriggerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1alpha1/triggertemplates":{"get":{"description":"list objects of kind TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1alpha1"],"operationId":"listTriggersTektonDevV1alpha1TriggerTemplateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1beta1/clustertriggerbindings":{"get":{"description":"list objects of kind ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"post":{"description":"create a ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"createTriggersTektonDevV1beta1ClusterTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"delete":{"description":"delete collection of ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1CollectionClusterTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/clustertriggerbindings/{name}":{"get":{"description":"read the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"put":{"description":"replace the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1ClusterTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"delete":{"description":"delete a ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"patch":{"description":"partially update the specified ClusterTriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1ClusterTriggerBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterTriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/clustertriggerbindings/{name}/status":{"get":{"description":"read status of the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1ClusterTriggerBindingStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"put":{"description":"replace status of the specified ClusterTriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1ClusterTriggerBindingStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"patch":{"description":"partially update status of the specified ClusterTriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1ClusterTriggerBindingStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterTriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/eventlisteners":{"get":{"description":"list objects of kind EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1EventListenerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListenerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/eventlisteners":{"get":{"description":"list objects of kind EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1NamespacedEventListener","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListenerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"post":{"description":"create an EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"createTriggersTektonDevV1beta1NamespacedEventListener","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"delete":{"description":"delete collection of EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1CollectionNamespacedEventListener","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/eventlisteners/{name}":{"get":{"description":"read the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedEventListener","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"put":{"description":"replace the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedEventListener","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"delete":{"description":"delete an EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1NamespacedEventListener","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"patch":{"description":"partially update the specified EventListener","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedEventListener","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventListener","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/eventlisteners/{name}/status":{"get":{"description":"read status of the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedEventListenerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"put":{"description":"replace status of the specified EventListener","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedEventListenerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"patch":{"description":"partially update status of the specified EventListener","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedEventListenerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the EventListener","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggerbindings":{"get":{"description":"list objects of kind TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"post":{"description":"create a TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"createTriggersTektonDevV1beta1NamespacedTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"delete":{"description":"delete collection of TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1CollectionNamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggerbindings/{name}":{"get":{"description":"read the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"put":{"description":"replace the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedTriggerBinding","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"delete":{"description":"delete a TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"patch":{"description":"partially update the specified TriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedTriggerBinding","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggerbindings/{name}/status":{"get":{"description":"read status of the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedTriggerBindingStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"put":{"description":"replace status of the specified TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedTriggerBindingStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"patch":{"description":"partially update status of the specified TriggerBinding","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedTriggerBindingStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerBinding","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggers":{"get":{"description":"list objects of kind Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1NamespacedTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"post":{"description":"create a Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"createTriggersTektonDevV1beta1NamespacedTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"delete":{"description":"delete collection of Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1CollectionNamespacedTrigger","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggers/{name}":{"get":{"description":"read the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedTrigger","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"put":{"description":"replace the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedTrigger","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"delete":{"description":"delete a Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1NamespacedTrigger","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"patch":{"description":"partially update the specified Trigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedTrigger","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Trigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggers/{name}/status":{"get":{"description":"read status of the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedTriggerStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"put":{"description":"replace status of the specified Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedTriggerStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"patch":{"description":"partially update status of the specified Trigger","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedTriggerStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Trigger","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggertemplates":{"get":{"description":"list objects of kind TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"post":{"description":"create a TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"createTriggersTektonDevV1beta1NamespacedTriggerTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"delete":{"description":"delete collection of TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1CollectionNamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggertemplates/{name}":{"get":{"description":"read the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"put":{"description":"replace the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedTriggerTemplate","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"delete":{"description":"delete a TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"deleteTriggersTektonDevV1beta1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"patch":{"description":"partially update the specified TriggerTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedTriggerTemplate","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/namespaces/{namespace}/triggertemplates/{name}/status":{"get":{"description":"read status of the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"readTriggersTektonDevV1beta1NamespacedTriggerTemplateStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"put":{"description":"replace status of the specified TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"replaceTriggersTektonDevV1beta1NamespacedTriggerTemplateStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"patch":{"description":"partially update status of the specified TriggerTemplate","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"patchTriggersTektonDevV1beta1NamespacedTriggerTemplateStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the TriggerTemplate","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/triggers.tekton.dev/v1beta1/triggerbindings":{"get":{"description":"list objects of kind TriggerBinding","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1TriggerBindingForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBindingList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1beta1/triggers":{"get":{"description":"list objects of kind Trigger","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1TriggerForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/triggers.tekton.dev/v1beta1/triggertemplates":{"get":{"description":"list objects of kind TriggerTemplate","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["triggersTektonDev_v1beta1"],"operationId":"listTriggersTektonDevV1beta1TriggerTemplateForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplateList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/trust.cert-manager.io/v1alpha1/bundles":{"get":{"description":"list objects of kind Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"listTrustCertManagerIoV1alpha1Bundle","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.BundleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"post":{"description":"create a Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"createTrustCertManagerIoV1alpha1Bundle","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"delete":{"description":"delete collection of Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"deleteTrustCertManagerIoV1alpha1CollectionBundle","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/trust.cert-manager.io/v1alpha1/bundles/{name}":{"get":{"description":"read the specified Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"readTrustCertManagerIoV1alpha1Bundle","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"put":{"description":"replace the specified Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"replaceTrustCertManagerIoV1alpha1Bundle","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"delete":{"description":"delete a Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"deleteTrustCertManagerIoV1alpha1Bundle","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"patch":{"description":"partially update the specified Bundle","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"patchTrustCertManagerIoV1alpha1Bundle","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Bundle","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/trust.cert-manager.io/v1alpha1/bundles/{name}/status":{"get":{"description":"read status of the specified Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"readTrustCertManagerIoV1alpha1BundleStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"put":{"description":"replace status of the specified Bundle","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"replaceTrustCertManagerIoV1alpha1BundleStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"patch":{"description":"partially update status of the specified Bundle","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["trustCertManagerIo_v1alpha1"],"operationId":"patchTrustCertManagerIoV1alpha1BundleStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Bundle","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tuned.openshift.io/v1/namespaces/{namespace}/profiles":{"get":{"description":"list objects of kind Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"listTunedOpenshiftIoV1NamespacedProfile","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.ProfileList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"post":{"description":"create a Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"createTunedOpenshiftIoV1NamespacedProfile","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"delete":{"description":"delete collection of Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"deleteTunedOpenshiftIoV1CollectionNamespacedProfile","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tuned.openshift.io/v1/namespaces/{namespace}/profiles/{name}":{"get":{"description":"read the specified Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"readTunedOpenshiftIoV1NamespacedProfile","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"put":{"description":"replace the specified Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"replaceTunedOpenshiftIoV1NamespacedProfile","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"delete":{"description":"delete a Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"deleteTunedOpenshiftIoV1NamespacedProfile","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"patch":{"description":"partially update the specified Profile","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"patchTunedOpenshiftIoV1NamespacedProfile","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Profile","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tuned.openshift.io/v1/namespaces/{namespace}/profiles/{name}/status":{"get":{"description":"read status of the specified Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"readTunedOpenshiftIoV1NamespacedProfileStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"put":{"description":"replace status of the specified Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"replaceTunedOpenshiftIoV1NamespacedProfileStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"patch":{"description":"partially update status of the specified Profile","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"patchTunedOpenshiftIoV1NamespacedProfileStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Profile","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tuned.openshift.io/v1/namespaces/{namespace}/tuneds":{"get":{"description":"list objects of kind Tuned","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"listTunedOpenshiftIoV1NamespacedTuned","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.TunedList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"post":{"description":"create a Tuned","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"createTunedOpenshiftIoV1NamespacedTuned","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"delete":{"description":"delete collection of Tuned","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"deleteTunedOpenshiftIoV1CollectionNamespacedTuned","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tuned.openshift.io/v1/namespaces/{namespace}/tuneds/{name}":{"get":{"description":"read the specified Tuned","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"readTunedOpenshiftIoV1NamespacedTuned","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"put":{"description":"replace the specified Tuned","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"replaceTunedOpenshiftIoV1NamespacedTuned","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"delete":{"description":"delete a Tuned","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"deleteTunedOpenshiftIoV1NamespacedTuned","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"patch":{"description":"partially update the specified Tuned","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"patchTunedOpenshiftIoV1NamespacedTuned","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Tuned","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/tuned.openshift.io/v1/profiles":{"get":{"description":"list objects of kind Profile","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"listTunedOpenshiftIoV1ProfileForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.ProfileList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/tuned.openshift.io/v1/tuneds":{"get":{"description":"list objects of kind Tuned","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["tunedOpenshiftIo_v1"],"operationId":"listTunedOpenshiftIoV1TunedForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.openshift.tuned.v1.TunedList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/user.openshift.io/v1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"getUserOpenshiftIoV1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/user.openshift.io/v1/groups":{"get":{"description":"list or watch objects of kind Group","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"listUserOpenshiftIoV1Group","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.GroupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"post":{"description":"create a Group","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"createUserOpenshiftIoV1Group","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"delete":{"description":"delete collection of Group","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"deleteUserOpenshiftIoV1CollectionGroup","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/groups/{name}":{"get":{"description":"read the specified Group","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"readUserOpenshiftIoV1Group","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"put":{"description":"replace the specified Group","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"replaceUserOpenshiftIoV1Group","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"delete":{"description":"delete a Group","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"deleteUserOpenshiftIoV1Group","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"patch":{"description":"partially update the specified Group","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"patchUserOpenshiftIoV1Group","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Group","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/identities":{"get":{"description":"list or watch objects of kind Identity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"listUserOpenshiftIoV1Identity","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.IdentityList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"post":{"description":"create an Identity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"createUserOpenshiftIoV1Identity","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"delete":{"description":"delete collection of Identity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"deleteUserOpenshiftIoV1CollectionIdentity","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/identities/{name}":{"get":{"description":"read the specified Identity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"readUserOpenshiftIoV1Identity","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"put":{"description":"replace the specified Identity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"replaceUserOpenshiftIoV1Identity","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"delete":{"description":"delete an Identity","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"deleteUserOpenshiftIoV1Identity","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"patch":{"description":"partially update the specified Identity","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"patchUserOpenshiftIoV1Identity","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Identity","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/useridentitymappings":{"post":{"description":"create an UserIdentityMapping","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"createUserOpenshiftIoV1UserIdentityMapping","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"UserIdentityMapping","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/useridentitymappings/{name}":{"get":{"description":"read the specified UserIdentityMapping","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"readUserOpenshiftIoV1UserIdentityMapping","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"UserIdentityMapping","version":"v1"}},"put":{"description":"replace the specified UserIdentityMapping","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"replaceUserOpenshiftIoV1UserIdentityMapping","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"UserIdentityMapping","version":"v1"}},"delete":{"description":"delete an UserIdentityMapping","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"deleteUserOpenshiftIoV1UserIdentityMapping","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"UserIdentityMapping","version":"v1"}},"patch":{"description":"partially update the specified UserIdentityMapping","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"patchUserOpenshiftIoV1UserIdentityMapping","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserIdentityMapping"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"UserIdentityMapping","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the UserIdentityMapping","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/users":{"get":{"description":"list or watch objects of kind User","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"listUserOpenshiftIoV1User","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.UserList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"post":{"description":"create an User","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"createUserOpenshiftIoV1User","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"delete":{"description":"delete collection of User","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"deleteUserOpenshiftIoV1CollectionUser","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"$ref":"#/parameters/continue-QfD61s0i"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/users/{name}":{"get":{"description":"read the specified User","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"readUserOpenshiftIoV1User","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"put":{"description":"replace the specified User","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"replaceUserOpenshiftIoV1User","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"delete":{"description":"delete an User","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"deleteUserOpenshiftIoV1User","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"patch":{"description":"partially update the specified User","consumes":["application/json-patch+json","application/merge-patch+json","application/strategic-merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"patchUserOpenshiftIoV1User","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the User","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/user.openshift.io/v1/watch/groups":{"get":{"description":"watch individual changes to a list of Group. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"watchUserOpenshiftIoV1GroupList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/user.openshift.io/v1/watch/groups/{name}":{"get":{"description":"watch changes to an object of kind Group. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"watchUserOpenshiftIoV1Group","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Group","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Group","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/user.openshift.io/v1/watch/identities":{"get":{"description":"watch individual changes to a list of Identity. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"watchUserOpenshiftIoV1IdentityList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/user.openshift.io/v1/watch/identities/{name}":{"get":{"description":"watch changes to an object of kind Identity. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"watchUserOpenshiftIoV1Identity","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"Identity","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the Identity","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/user.openshift.io/v1/watch/users":{"get":{"description":"watch individual changes to a list of User. deprecated: use the 'watch' parameter with a list operation instead.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"watchUserOpenshiftIoV1UserList","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watchlist","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/user.openshift.io/v1/watch/users/{name}":{"get":{"description":"watch changes to an object of kind User. deprecated: use the 'watch' parameter with a list operation instead, filtered to a single item with the 'fieldSelector' parameter.","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf","application/json;stream=watch","application/vnd.kubernetes.protobuf;stream=watch"],"schemes":["https"],"tags":["userOpenshiftIo_v1"],"operationId":"watchUserOpenshiftIoV1User","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"watch","x-kubernetes-group-version-kind":{"group":"user.openshift.io","kind":"User","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"uniqueItems":true,"type":"string","description":"name of the User","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/backuprepositories":{"get":{"description":"list objects of kind BackupRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1BackupRepositoryForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/backups":{"get":{"description":"list objects of kind Backup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1BackupForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/backupstoragelocations":{"get":{"description":"list objects of kind BackupStorageLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1BackupStorageLocationForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/deletebackuprequests":{"get":{"description":"list objects of kind DeleteBackupRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1DeleteBackupRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/downloadrequests":{"get":{"description":"list objects of kind DownloadRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1DownloadRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/namespaces/{namespace}/backuprepositories":{"get":{"description":"list objects of kind BackupRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedBackupRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepositoryList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"post":{"description":"create a BackupRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedBackupRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"delete":{"description":"delete collection of BackupRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedBackupRepository","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/backuprepositories/{name}":{"get":{"description":"read the specified BackupRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedBackupRepository","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"put":{"description":"replace the specified BackupRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedBackupRepository","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"delete":{"description":"delete a BackupRepository","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedBackupRepository","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"patch":{"description":"partially update the specified BackupRepository","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedBackupRepository","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupRepository","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the BackupRepository","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/backups":{"get":{"description":"list objects of kind Backup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedBackup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"post":{"description":"create a Backup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedBackup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"delete":{"description":"delete collection of Backup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedBackup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/backups/{name}":{"get":{"description":"read the specified Backup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedBackup","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"put":{"description":"replace the specified Backup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedBackup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"delete":{"description":"delete a Backup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedBackup","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"patch":{"description":"partially update the specified Backup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedBackup","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Backup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Backup","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Backup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/backupstoragelocations":{"get":{"description":"list objects of kind BackupStorageLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedBackupStorageLocation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"post":{"description":"create a BackupStorageLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedBackupStorageLocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"delete":{"description":"delete collection of BackupStorageLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedBackupStorageLocation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/backupstoragelocations/{name}":{"get":{"description":"read the specified BackupStorageLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedBackupStorageLocation","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"put":{"description":"replace the specified BackupStorageLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedBackupStorageLocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"delete":{"description":"delete a BackupStorageLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedBackupStorageLocation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"patch":{"description":"partially update the specified BackupStorageLocation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedBackupStorageLocation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the BackupStorageLocation","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/deletebackuprequests":{"get":{"description":"list objects of kind DeleteBackupRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedDeleteBackupRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"post":{"description":"create a DeleteBackupRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedDeleteBackupRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"delete":{"description":"delete collection of DeleteBackupRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedDeleteBackupRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/deletebackuprequests/{name}":{"get":{"description":"read the specified DeleteBackupRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedDeleteBackupRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"put":{"description":"replace the specified DeleteBackupRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedDeleteBackupRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"delete":{"description":"delete a DeleteBackupRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedDeleteBackupRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"patch":{"description":"partially update the specified DeleteBackupRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedDeleteBackupRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DeleteBackupRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/downloadrequests":{"get":{"description":"list objects of kind DownloadRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedDownloadRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"post":{"description":"create a DownloadRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedDownloadRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"delete":{"description":"delete collection of DownloadRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedDownloadRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/downloadrequests/{name}":{"get":{"description":"read the specified DownloadRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedDownloadRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"put":{"description":"replace the specified DownloadRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedDownloadRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"delete":{"description":"delete a DownloadRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedDownloadRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"patch":{"description":"partially update the specified DownloadRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedDownloadRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DownloadRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DownloadRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/podvolumebackups":{"get":{"description":"list objects of kind PodVolumeBackup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedPodVolumeBackup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"post":{"description":"create a PodVolumeBackup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedPodVolumeBackup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"delete":{"description":"delete collection of PodVolumeBackup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedPodVolumeBackup","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/podvolumebackups/{name}":{"get":{"description":"read the specified PodVolumeBackup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedPodVolumeBackup","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"put":{"description":"replace the specified PodVolumeBackup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedPodVolumeBackup","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"delete":{"description":"delete a PodVolumeBackup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedPodVolumeBackup","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"patch":{"description":"partially update the specified PodVolumeBackup","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedPodVolumeBackup","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodVolumeBackup","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/podvolumerestores":{"get":{"description":"list objects of kind PodVolumeRestore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedPodVolumeRestore","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestoreList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"post":{"description":"create a PodVolumeRestore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedPodVolumeRestore","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"delete":{"description":"delete collection of PodVolumeRestore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedPodVolumeRestore","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/podvolumerestores/{name}":{"get":{"description":"read the specified PodVolumeRestore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedPodVolumeRestore","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"put":{"description":"replace the specified PodVolumeRestore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedPodVolumeRestore","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"delete":{"description":"delete a PodVolumeRestore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedPodVolumeRestore","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"patch":{"description":"partially update the specified PodVolumeRestore","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedPodVolumeRestore","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PodVolumeRestore","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/restores":{"get":{"description":"list objects of kind Restore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedRestore","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.RestoreList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"post":{"description":"create a Restore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedRestore","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"delete":{"description":"delete collection of Restore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedRestore","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/restores/{name}":{"get":{"description":"read the specified Restore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedRestore","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"put":{"description":"replace the specified Restore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedRestore","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"delete":{"description":"delete a Restore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedRestore","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"patch":{"description":"partially update the specified Restore","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedRestore","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Restore"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Restore","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/schedules":{"get":{"description":"list objects of kind Schedule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedSchedule","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ScheduleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"post":{"description":"create a Schedule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedSchedule","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"delete":{"description":"delete collection of Schedule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedSchedule","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/schedules/{name}":{"get":{"description":"read the specified Schedule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedSchedule","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"put":{"description":"replace the specified Schedule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedSchedule","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"delete":{"description":"delete a Schedule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedSchedule","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"patch":{"description":"partially update the specified Schedule","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedSchedule","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the Schedule","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/serverstatusrequests":{"get":{"description":"list objects of kind ServerStatusRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedServerStatusRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"post":{"description":"create a ServerStatusRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedServerStatusRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"delete":{"description":"delete collection of ServerStatusRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedServerStatusRequest","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/serverstatusrequests/{name}":{"get":{"description":"read the specified ServerStatusRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedServerStatusRequest","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"put":{"description":"replace the specified ServerStatusRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedServerStatusRequest","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"delete":{"description":"delete a ServerStatusRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedServerStatusRequest","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"patch":{"description":"partially update the specified ServerStatusRequest","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedServerStatusRequest","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ServerStatusRequest","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/volumesnapshotlocations":{"get":{"description":"list objects of kind VolumeSnapshotLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1NamespacedVolumeSnapshotLocation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"post":{"description":"create a VolumeSnapshotLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"createVeleroIoV1NamespacedVolumeSnapshotLocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"delete":{"description":"delete collection of VolumeSnapshotLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1CollectionNamespacedVolumeSnapshotLocation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/namespaces/{namespace}/volumesnapshotlocations/{name}":{"get":{"description":"read the specified VolumeSnapshotLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"readVeleroIoV1NamespacedVolumeSnapshotLocation","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"put":{"description":"replace the specified VolumeSnapshotLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"replaceVeleroIoV1NamespacedVolumeSnapshotLocation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"delete":{"description":"delete a VolumeSnapshotLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"deleteVeleroIoV1NamespacedVolumeSnapshotLocation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"patch":{"description":"partially update the specified VolumeSnapshotLocation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"patchVeleroIoV1NamespacedVolumeSnapshotLocation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the VolumeSnapshotLocation","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v1/podvolumebackups":{"get":{"description":"list objects of kind PodVolumeBackup","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1PodVolumeBackupForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackupList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/podvolumerestores":{"get":{"description":"list objects of kind PodVolumeRestore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1PodVolumeRestoreForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestoreList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/restores":{"get":{"description":"list objects of kind Restore","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1RestoreForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.RestoreList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Restore","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/schedules":{"get":{"description":"list objects of kind Schedule","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1ScheduleForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ScheduleList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"Schedule","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/serverstatusrequests":{"get":{"description":"list objects of kind ServerStatusRequest","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1ServerStatusRequestForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequestList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v1/volumesnapshotlocations":{"get":{"description":"list objects of kind VolumeSnapshotLocation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v1"],"operationId":"listVeleroIoV1VolumeSnapshotLocationForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v2alpha1/datadownloads":{"get":{"description":"list objects of kind DataDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"listVeleroIoV2alpha1DataDownloadForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownloadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v2alpha1/datauploads":{"get":{"description":"list objects of kind DataUpload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"listVeleroIoV2alpha1DataUploadForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUploadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/velero.io/v2alpha1/namespaces/{namespace}/datadownloads":{"get":{"description":"list objects of kind DataDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"listVeleroIoV2alpha1NamespacedDataDownload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownloadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"post":{"description":"create a DataDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"createVeleroIoV2alpha1NamespacedDataDownload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"delete":{"description":"delete collection of DataDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"deleteVeleroIoV2alpha1CollectionNamespacedDataDownload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v2alpha1/namespaces/{namespace}/datadownloads/{name}":{"get":{"description":"read the specified DataDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"readVeleroIoV2alpha1NamespacedDataDownload","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"put":{"description":"replace the specified DataDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"replaceVeleroIoV2alpha1NamespacedDataDownload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"delete":{"description":"delete a DataDownload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"deleteVeleroIoV2alpha1NamespacedDataDownload","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"patch":{"description":"partially update the specified DataDownload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"patchVeleroIoV2alpha1NamespacedDataDownload","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DataDownload","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v2alpha1/namespaces/{namespace}/datauploads":{"get":{"description":"list objects of kind DataUpload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"listVeleroIoV2alpha1NamespacedDataUpload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUploadList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"post":{"description":"create a DataUpload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"createVeleroIoV2alpha1NamespacedDataUpload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"delete":{"description":"delete collection of DataUpload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"deleteVeleroIoV2alpha1CollectionNamespacedDataUpload","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/velero.io/v2alpha1/namespaces/{namespace}/datauploads/{name}":{"get":{"description":"read the specified DataUpload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"readVeleroIoV2alpha1NamespacedDataUpload","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"put":{"description":"replace the specified DataUpload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"replaceVeleroIoV2alpha1NamespacedDataUpload","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"delete":{"description":"delete a DataUpload","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"deleteVeleroIoV2alpha1NamespacedDataUpload","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"patch":{"description":"partially update the specified DataUpload","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["veleroIo_v2alpha1"],"operationId":"patchVeleroIoV2alpha1NamespacedDataUpload","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the DataUpload","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/visibility.kueue.x-k8s.io/v1beta1/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["visibilityKueueXK8sIo_v1beta1"],"operationId":"getVisibilityKueueXK8sIoV1beta1APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/visibility.kueue.x-k8s.io/v1beta1/clusterqueues/{name}/pendingworkloads":{"get":{"description":"read pendingworkloads of the specified PendingWorkloadsSummary","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["visibilityKueueXK8sIo_v1beta1"],"operationId":"readVisibilityKueueXK8sIoV1beta1PendingWorkloadsSummaryPendingworkloads","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kueue.visibility.v1beta1.PendingWorkloadsSummary"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"visibility.kueue.x-k8s.io","kind":"PendingWorkloadsSummary","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/limit-WCjOkj21"},{"uniqueItems":true,"type":"string","description":"name of the PendingWorkloadsSummary","name":"name","in":"path","required":true},{"$ref":"#/parameters/offset-wREk4EKc"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/visibility.kueue.x-k8s.io/v1beta1/namespaces/{namespace}/localqueues/{name}/pendingworkloads":{"get":{"description":"read pendingworkloads of the specified PendingWorkloadsSummary","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["visibilityKueueXK8sIo_v1beta1"],"operationId":"readVisibilityKueueXK8sIoV1beta1NamespacedPendingWorkloadsSummaryPendingworkloads","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kueue.visibility.v1beta1.PendingWorkloadsSummary"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"visibility.kueue.x-k8s.io","kind":"PendingWorkloadsSummary","version":"v1beta1"}},"parameters":[{"$ref":"#/parameters/limit-WCjOkj21"},{"uniqueItems":true,"type":"string","description":"name of the PendingWorkloadsSummary","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/offset-wREk4EKc"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/visibility.kueue.x-k8s.io/v1beta2/":{"get":{"description":"get available resources","consumes":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["visibilityKueueXK8sIo_v1beta2"],"operationId":"getVisibilityKueueXK8sIoV1beta2APIResources","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList"}},"401":{"description":"Unauthorized"}}}},"/apis/visibility.kueue.x-k8s.io/v1beta2/clusterqueues/{name}/pendingworkloads":{"get":{"description":"read pendingworkloads of the specified PendingWorkloadsSummary","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["visibilityKueueXK8sIo_v1beta2"],"operationId":"readVisibilityKueueXK8sIoV1beta2PendingWorkloadsSummaryPendingworkloads","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kueue.visibility.v1beta2.PendingWorkloadsSummary"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"visibility.kueue.x-k8s.io","kind":"PendingWorkloadsSummary","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/limit-WCjOkj21"},{"uniqueItems":true,"type":"string","description":"name of the PendingWorkloadsSummary","name":"name","in":"path","required":true},{"$ref":"#/parameters/offset-wREk4EKc"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/visibility.kueue.x-k8s.io/v1beta2/namespaces/{namespace}/localqueues/{name}/pendingworkloads":{"get":{"description":"read pendingworkloads of the specified PendingWorkloadsSummary","consumes":["*/*"],"produces":["application/json","application/yaml","application/vnd.kubernetes.protobuf"],"schemes":["https"],"tags":["visibilityKueueXK8sIo_v1beta2"],"operationId":"readVisibilityKueueXK8sIoV1beta2NamespacedPendingWorkloadsSummaryPendingworkloads","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.kueue.visibility.v1beta2.PendingWorkloadsSummary"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"visibility.kueue.x-k8s.io","kind":"PendingWorkloadsSummary","version":"v1beta2"}},"parameters":[{"$ref":"#/parameters/limit-WCjOkj21"},{"uniqueItems":true,"type":"string","description":"name of the PendingWorkloadsSummary","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/offset-wREk4EKc"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/wgpolicyk8s.io/v1alpha2/clusterpolicyreports":{"get":{"description":"list objects of kind ClusterPolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"listWgpolicyk8sIoV1alpha2ClusterPolicyReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReportList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}},"post":{"description":"create a ClusterPolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"createWgpolicyk8sIoV1alpha2ClusterPolicyReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}},"delete":{"description":"delete collection of ClusterPolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"deleteWgpolicyk8sIoV1alpha2CollectionClusterPolicyReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/wgpolicyk8s.io/v1alpha2/clusterpolicyreports/{name}":{"get":{"description":"read the specified ClusterPolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"readWgpolicyk8sIoV1alpha2ClusterPolicyReport","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}},"put":{"description":"replace the specified ClusterPolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"replaceWgpolicyk8sIoV1alpha2ClusterPolicyReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}},"delete":{"description":"delete a ClusterPolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"deleteWgpolicyk8sIoV1alpha2ClusterPolicyReport","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}},"patch":{"description":"partially update the specified ClusterPolicyReport","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"patchWgpolicyk8sIoV1alpha2ClusterPolicyReport","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the ClusterPolicyReport","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/wgpolicyk8s.io/v1alpha2/namespaces/{namespace}/policyreports":{"get":{"description":"list objects of kind PolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"listWgpolicyk8sIoV1alpha2NamespacedPolicyReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReportList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"post":{"description":"create a PolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"createWgpolicyk8sIoV1alpha2NamespacedPolicyReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"delete":{"description":"delete collection of PolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"deleteWgpolicyk8sIoV1alpha2CollectionNamespacedPolicyReport","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/wgpolicyk8s.io/v1alpha2/namespaces/{namespace}/policyreports/{name}":{"get":{"description":"read the specified PolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"readWgpolicyk8sIoV1alpha2NamespacedPolicyReport","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"put":{"description":"replace the specified PolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"replaceWgpolicyk8sIoV1alpha2NamespacedPolicyReport","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"delete":{"description":"delete a PolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"deleteWgpolicyk8sIoV1alpha2NamespacedPolicyReport","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"patch":{"description":"partially update the specified PolicyReport","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"patchWgpolicyk8sIoV1alpha2NamespacedPolicyReport","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the PolicyReport","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/wgpolicyk8s.io/v1alpha2/policyreports":{"get":{"description":"list objects of kind PolicyReport","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["wgpolicyk8sIo_v1alpha2"],"operationId":"listWgpolicyk8sIoV1alpha2PolicyReportForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReportList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/ippools":{"get":{"description":"list objects of kind IPPool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"listWhereaboutsCniCncfIoV1alpha1IPPoolForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPoolList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/namespaces/{namespace}/ippools":{"get":{"description":"list objects of kind IPPool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"listWhereaboutsCniCncfIoV1alpha1NamespacedIPPool","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPoolList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"post":{"description":"create an IPPool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"createWhereaboutsCniCncfIoV1alpha1NamespacedIPPool","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"delete":{"description":"delete collection of IPPool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"deleteWhereaboutsCniCncfIoV1alpha1CollectionNamespacedIPPool","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/namespaces/{namespace}/ippools/{name}":{"get":{"description":"read the specified IPPool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"readWhereaboutsCniCncfIoV1alpha1NamespacedIPPool","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"put":{"description":"replace the specified IPPool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"replaceWhereaboutsCniCncfIoV1alpha1NamespacedIPPool","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"delete":{"description":"delete an IPPool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"deleteWhereaboutsCniCncfIoV1alpha1NamespacedIPPool","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"patch":{"description":"partially update the specified IPPool","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"patchWhereaboutsCniCncfIoV1alpha1NamespacedIPPool","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the IPPool","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/namespaces/{namespace}/nodeslicepools":{"get":{"description":"list objects of kind NodeSlicePool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"listWhereaboutsCniCncfIoV1alpha1NamespacedNodeSlicePool","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePoolList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"post":{"description":"create a NodeSlicePool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"createWhereaboutsCniCncfIoV1alpha1NamespacedNodeSlicePool","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"delete":{"description":"delete collection of NodeSlicePool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"deleteWhereaboutsCniCncfIoV1alpha1CollectionNamespacedNodeSlicePool","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/namespaces/{namespace}/nodeslicepools/{name}":{"get":{"description":"read the specified NodeSlicePool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"readWhereaboutsCniCncfIoV1alpha1NamespacedNodeSlicePool","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"put":{"description":"replace the specified NodeSlicePool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"replaceWhereaboutsCniCncfIoV1alpha1NamespacedNodeSlicePool","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"delete":{"description":"delete a NodeSlicePool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"deleteWhereaboutsCniCncfIoV1alpha1NamespacedNodeSlicePool","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"patch":{"description":"partially update the specified NodeSlicePool","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"patchWhereaboutsCniCncfIoV1alpha1NamespacedNodeSlicePool","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the NodeSlicePool","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/namespaces/{namespace}/overlappingrangeipreservations":{"get":{"description":"list objects of kind OverlappingRangeIPReservation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"listWhereaboutsCniCncfIoV1alpha1NamespacedOverlappingRangeIPReservation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"post":{"description":"create an OverlappingRangeIPReservation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"createWhereaboutsCniCncfIoV1alpha1NamespacedOverlappingRangeIPReservation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"delete":{"description":"delete collection of OverlappingRangeIPReservation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"deleteWhereaboutsCniCncfIoV1alpha1CollectionNamespacedOverlappingRangeIPReservation","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/namespaces/{namespace}/overlappingrangeipreservations/{name}":{"get":{"description":"read the specified OverlappingRangeIPReservation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"readWhereaboutsCniCncfIoV1alpha1NamespacedOverlappingRangeIPReservation","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"put":{"description":"replace the specified OverlappingRangeIPReservation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"replaceWhereaboutsCniCncfIoV1alpha1NamespacedOverlappingRangeIPReservation","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"delete":{"description":"delete an OverlappingRangeIPReservation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"deleteWhereaboutsCniCncfIoV1alpha1NamespacedOverlappingRangeIPReservation","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"patch":{"description":"partially update the specified OverlappingRangeIPReservation","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"patchWhereaboutsCniCncfIoV1alpha1NamespacedOverlappingRangeIPReservation","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the OverlappingRangeIPReservation","name":"name","in":"path","required":true},{"$ref":"#/parameters/namespace-vgWSWtn3"},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/nodeslicepools":{"get":{"description":"list objects of kind NodeSlicePool","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"listWhereaboutsCniCncfIoV1alpha1NodeSlicePoolForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePoolList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/whereabouts.cni.cncf.io/v1alpha1/overlappingrangeipreservations":{"get":{"description":"list objects of kind OverlappingRangeIPReservation","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["whereaboutsCniCncfIo_v1alpha1"],"operationId":"listWhereaboutsCniCncfIoV1alpha1OverlappingRangeIPReservationForAllNamespaces","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservationList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}},"parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/pretty-tJGM1-ng"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}]},"/apis/work.open-cluster-management.io/v1/appliedmanifestworks":{"get":{"description":"list objects of kind AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"listWorkOpenClusterManagementIoV1AppliedManifestWork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWorkList"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"list","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"post":{"description":"create an AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"createWorkOpenClusterManagementIoV1AppliedManifestWork","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"post","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"delete":{"description":"delete collection of AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"deleteWorkOpenClusterManagementIoV1CollectionAppliedManifestWork","parameters":[{"$ref":"#/parameters/allowWatchBookmarks-HC2hJt-J"},{"$ref":"#/parameters/continue-QfD61s0i"},{"$ref":"#/parameters/fieldSelector-xIcQKXFG"},{"$ref":"#/parameters/labelSelector-5Zw57w4C"},{"$ref":"#/parameters/limit-1NfNmdNH"},{"$ref":"#/parameters/resourceVersion-5WAnf1kx"},{"$ref":"#/parameters/resourceVersionMatch-t8XhRHeC"},{"$ref":"#/parameters/sendInitialEvents-rLXlEK_k"},{"$ref":"#/parameters/timeoutSeconds-yvYezaOC"},{"$ref":"#/parameters/watch-XNNPZGbK"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"deletecollection","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"parameters":[{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/work.open-cluster-management.io/v1/appliedmanifestworks/{name}":{"get":{"description":"read the specified AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"readWorkOpenClusterManagementIoV1AppliedManifestWork","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"put":{"description":"replace the specified AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"replaceWorkOpenClusterManagementIoV1AppliedManifestWork","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"delete":{"description":"delete an AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"deleteWorkOpenClusterManagementIoV1AppliedManifestWork","parameters":[{"$ref":"#/parameters/body-2Y1dVQaQ"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/gracePeriodSeconds--K5HaBOS"},{"$ref":"#/parameters/orphanDependents-uRB25kX5"},{"$ref":"#/parameters/propagationPolicy-6jk3prlO"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"202":{"description":"Accepted","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"delete","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"patch":{"description":"partially update the specified AppliedManifestWork","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"patchWorkOpenClusterManagementIoV1AppliedManifestWork","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AppliedManifestWork","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/apis/work.open-cluster-management.io/v1/appliedmanifestworks/{name}/status":{"get":{"description":"read status of the specified AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"readWorkOpenClusterManagementIoV1AppliedManifestWorkStatus","parameters":[{"$ref":"#/parameters/resourceVersion-5WAnf1kx"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"get","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"put":{"description":"replace status of the specified AppliedManifestWork","consumes":["application/json","application/yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"replaceWorkOpenClusterManagementIoV1AppliedManifestWorkStatus","parameters":[{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-Qy4HdaTW"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"201":{"description":"Created","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"put","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"patch":{"description":"partially update status of the specified AppliedManifestWork","consumes":["application/json-patch+json","application/merge-patch+json","application/apply-patch+yaml"],"produces":["application/json","application/yaml"],"schemes":["https"],"tags":["workOpenClusterManagementIo_v1"],"operationId":"patchWorkOpenClusterManagementIoV1AppliedManifestWorkStatus","parameters":[{"$ref":"#/parameters/body-78PwaGsr"},{"uniqueItems":true,"type":"string","description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","name":"dryRun","in":"query"},{"$ref":"#/parameters/fieldManager-7c6nTn1T"},{"uniqueItems":true,"type":"string","description":"fieldValidation instructs the server on how to handle objects in the request (POST/PUT/PATCH) containing unknown or duplicate fields. Valid values are: - Ignore: This will ignore any unknown fields that are silently dropped from the object, and will ignore all but the last duplicate field that the decoder encounters. This is the default behavior prior to v1.23. - Warn: This will send a warning via the standard warning response header for each unknown field that is dropped from the object, and for each duplicate field that is encountered. The request will still succeed if there are no other errors, and will only persist the last of any duplicate fields. This is the default in v1.23+ - Strict: This will fail the request with a BadRequest error if any unknown fields would be dropped from the object, or if any duplicate fields are present. The error returned from the server will contain all unknown and duplicate fields encountered.","name":"fieldValidation","in":"query"},{"$ref":"#/parameters/force-tOGGb0Yi"}],"responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"401":{"description":"Unauthorized"}},"x-kubernetes-action":"patch","x-kubernetes-group-version-kind":{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}},"parameters":[{"uniqueItems":true,"type":"string","description":"name of the AppliedManifestWork","name":"name","in":"path","required":true},{"$ref":"#/parameters/pretty-tJGM1-ng"}]},"/openid/v1/jwks/":{"get":{"description":"get service account issuer OpenID JSON Web Key Set (contains public token verification keys)","produces":["application/jwk-set+json"],"schemes":["https"],"tags":["openid"],"operationId":"getServiceAccountIssuerOpenIDKeyset","responses":{"200":{"description":"OK","schema":{"type":"string"}},"401":{"description":"Unauthorized"}}}},"/version/":{"get":{"description":"get the code version","consumes":["application/json"],"produces":["application/json"],"schemes":["https"],"tags":["version"],"operationId":"getCodeVersion","responses":{"200":{"description":"OK","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.version.Info"}},"401":{"description":"Unauthorized"}}}}},"definitions":{"com.coreos.dex.v1.AuthCode":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"AuthCode","version":"v1"}]},"com.coreos.dex.v1.AuthCodeList":{"description":"AuthCodeList is a list of AuthCode","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of authcodes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.AuthCode"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"AuthCodeList","version":"v1"}]},"com.coreos.dex.v1.AuthRequest":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"AuthRequest","version":"v1"}]},"com.coreos.dex.v1.AuthRequestList":{"description":"AuthRequestList is a list of AuthRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of authrequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.AuthRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"AuthRequestList","version":"v1"}]},"com.coreos.dex.v1.Connector":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"Connector","version":"v1"}]},"com.coreos.dex.v1.ConnectorList":{"description":"ConnectorList is a list of Connector","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of connectors. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.Connector"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"ConnectorList","version":"v1"}]},"com.coreos.dex.v1.DeviceRequest":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"DeviceRequest","version":"v1"}]},"com.coreos.dex.v1.DeviceRequestList":{"description":"DeviceRequestList is a list of DeviceRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of devicerequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"DeviceRequestList","version":"v1"}]},"com.coreos.dex.v1.DeviceToken":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"DeviceToken","version":"v1"}]},"com.coreos.dex.v1.DeviceTokenList":{"description":"DeviceTokenList is a list of DeviceToken","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of devicetokens. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.DeviceToken"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"DeviceTokenList","version":"v1"}]},"com.coreos.dex.v1.OAuth2Client":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"OAuth2Client","version":"v1"}]},"com.coreos.dex.v1.OAuth2ClientList":{"description":"OAuth2ClientList is a list of OAuth2Client","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of oauth2clients. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.OAuth2Client"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"OAuth2ClientList","version":"v1"}]},"com.coreos.dex.v1.OfflineSessions":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"OfflineSessions","version":"v1"}]},"com.coreos.dex.v1.OfflineSessionsList":{"description":"OfflineSessionsList is a list of OfflineSessions","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of offlinesessionses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.OfflineSessions"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"OfflineSessionsList","version":"v1"}]},"com.coreos.dex.v1.Password":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"Password","version":"v1"}]},"com.coreos.dex.v1.PasswordList":{"description":"PasswordList is a list of Password","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of passwords. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.Password"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"PasswordList","version":"v1"}]},"com.coreos.dex.v1.RefreshToken":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"RefreshToken","version":"v1"}]},"com.coreos.dex.v1.RefreshTokenList":{"description":"RefreshTokenList is a list of RefreshToken","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of refreshtokens. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.RefreshToken"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"RefreshTokenList","version":"v1"}]},"com.coreos.dex.v1.SigningKey":{"type":"object","x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"SigningKey","version":"v1"}]},"com.coreos.dex.v1.SigningKeyList":{"description":"SigningKeyList is a list of SigningKey","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of signingkeies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.dex.v1.SigningKey"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"dex.coreos.com","kind":"SigningKeyList","version":"v1"}]},"com.coreos.monitoring.v1.Alertmanager":{"description":"The `Alertmanager` custom resource definition (CRD) defines a desired [Alertmanager](https://prometheus.io/docs/alerting) setup to run in a Kubernetes cluster. It allows to specify many options such as the number of replicas, persistent storage and many more.\n\nFor each `Alertmanager` resource, the Operator deploys a `StatefulSet` in the same namespace. When there are two or more configured replicas, the Operator runs the Alertmanager instances in high-availability mode.\n\nThe resource defines via label and namespace selectors which `AlertmanagerConfig` objects should be associated to the deployed Alertmanager instances.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the Alertmanager cluster. More info:\nhttps://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","properties":{"additionalPeers":{"description":"AdditionalPeers allows injecting a set of additional Alertmanagers to peer with to form a highly available cluster.","type":"array","items":{"type":"string"}},"affinity":{"description":"If specified, the pod's scheduling constraints.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"alertmanagerConfigMatcherStrategy":{"description":"AlertmanagerConfigMatcherStrategy defines how AlertmanagerConfig objects\nprocess incoming alerts.","type":"object","properties":{"type":{"description":"AlertmanagerConfigMatcherStrategyType defines the strategy used by\nAlertmanagerConfig objects to match alerts in the routes and inhibition\nrules.\n\nThe default value is `OnNamespace`.","type":"string","enum":["OnNamespace","None"]}}},"alertmanagerConfigNamespaceSelector":{"description":"Namespaces to be selected for AlertmanagerConfig discovery. If nil, only\ncheck own namespace.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"alertmanagerConfigSelector":{"description":"AlertmanagerConfigs to be selected for to merge and configure Alertmanager with.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"alertmanagerConfiguration":{"description":"alertmanagerConfiguration specifies the configuration of Alertmanager.\n\nIf defined, it takes precedence over the `configSecret` field.\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"object","properties":{"global":{"description":"Defines the global parameters of the Alertmanager configuration.","type":"object","properties":{"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the Alertmanager\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"opsGenieApiKey":{"description":"The default OpsGenie API Key.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"opsGenieApiUrl":{"description":"The default OpsGenie API URL.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"pagerdutyUrl":{"description":"The default Pagerduty URL.","type":"string"},"resolveTimeout":{"description":"ResolveTimeout is the default value used by alertmanager if the alert does\nnot include EndsAt, after this time passes it can declare the alert as resolved if it has not been updated.\nThis has no impact on alerts from Prometheus, as they always include EndsAt.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"slackApiUrl":{"description":"The default Slack API URL.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"smtp":{"description":"Configures global SMTP parameters.","type":"object","properties":{"authIdentity":{"description":"SMTP Auth using PLAIN","type":"string"},"authPassword":{"description":"SMTP Auth using LOGIN and PLAIN.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"authSecret":{"description":"SMTP Auth using CRAM-MD5.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"authUsername":{"description":"SMTP Auth using CRAM-MD5, LOGIN and PLAIN. If empty, Alertmanager doesn't authenticate to the SMTP server.","type":"string"},"from":{"description":"The default SMTP From header field.","type":"string"},"hello":{"description":"The default hostname to identify to the SMTP server.","type":"string"},"requireTLS":{"description":"The default SMTP TLS requirement.\nNote that Go does not support unencrypted connections to remote SMTP endpoints.","type":"boolean"},"smartHost":{"description":"The default SMTP smarthost used for sending emails.","type":"object","required":["host","port"],"properties":{"host":{"description":"Defines the host's address, it can be a DNS name or a literal IP address.","type":"string","minLength":1},"port":{"description":"Defines the host's port, it can be a literal port number or a port name.","type":"string","minLength":1}}}}}}},"name":{"description":"The name of the AlertmanagerConfig resource which is used to generate the Alertmanager configuration.\nIt must be defined in the same namespace as the Alertmanager object.\nThe operator will not enforce a `namespace` label for routes and inhibition rules.","type":"string","minLength":1},"templates":{"description":"Custom notification templates.","type":"array","items":{"description":"SecretOrConfigMap allows to specify data as a Secret or ConfigMap. Fields are mutually exclusive.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted in the pod.\nIf the service account has `automountServiceAccountToken: true`, set the field to `false` to opt out of automounting API credentials.","type":"boolean"},"baseImage":{"description":"Base image that is used to deploy pods, without tag.\nDeprecated: use 'image' instead.","type":"string"},"clusterAdvertiseAddress":{"description":"ClusterAdvertiseAddress is the explicit address to advertise in cluster.\nNeeds to be provided for non RFC1918 [1] (public) addresses.\n[1] RFC1918: https://tools.ietf.org/html/rfc1918","type":"string"},"clusterGossipInterval":{"description":"Interval between gossip attempts.","type":"string","pattern":"^(0|(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"clusterLabel":{"description":"Defines the identifier that uniquely identifies the Alertmanager cluster.\nYou should only set it when the Alertmanager cluster includes Alertmanager instances which are external to this Alertmanager resource. In practice, the addresses of the external instances are provided via the `.spec.additionalPeers` field.","type":"string"},"clusterPeerTimeout":{"description":"Timeout for cluster peering.","type":"string","pattern":"^(0|(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"clusterPushpullInterval":{"description":"Interval between pushpull attempts.","type":"string","pattern":"^(0|(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"configMaps":{"description":"ConfigMaps is a list of ConfigMaps in the same namespace as the Alertmanager\nobject, which shall be mounted into the Alertmanager Pods.\nEach ConfigMap is added to the StatefulSet definition as a volume named `configmap-<configmap-name>`.\nThe ConfigMaps are mounted into `/etc/alertmanager/configmaps/<configmap-name>` in the 'alertmanager' container.","type":"array","items":{"type":"string"}},"configSecret":{"description":"ConfigSecret is the name of a Kubernetes Secret in the same namespace as the\nAlertmanager object, which contains the configuration for this Alertmanager\ninstance. If empty, it defaults to `alertmanager-<alertmanager-name>`.\n\nThe Alertmanager configuration should be available under the\n`alertmanager.yaml` key. Additional keys from the original secret are\ncopied to the generated secret and mounted into the\n`/etc/alertmanager/config` directory in the `alertmanager` container.\n\nIf either the secret or the `alertmanager.yaml` key is missing, the\noperator provisions a minimal Alertmanager configuration with one empty\nreceiver (effectively dropping alert notifications).","type":"string"},"containers":{"description":"Containers allows injecting additional containers. This is meant to\nallow adding an authentication proxy to an Alertmanager pod.\nContainers described here modify an operator generated container if they\nshare the same name and modifications are done via a strategic merge\npatch. The current container names are: `alertmanager` and\n`config-reloader`. Overriding containers is entirely outside the scope\nof what the maintainers will support and by doing so, you accept that\nthis behaviour may break at any time without notice.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"dnsConfig":{"description":"Defines the DNS configuration for the pods.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nResolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","required":["name"],"properties":{"name":{"description":"Name is required and must be unique.","type":"string","minLength":1},"value":{"description":"Value is optional.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"}}},"dnsPolicy":{"description":"Defines the DNS policy for the pods.","type":"string","enum":["ClusterFirstWithHostNet","ClusterFirst","Default","None"]},"enableFeatures":{"description":"Enable access to Alertmanager feature flags. By default, no features are enabled.\nEnabling features which are disabled by default is entirely outside the\nscope of what the maintainers will support and by doing so, you accept\nthat this behaviour may break at any time without notice.\n\nIt requires Alertmanager >= 0.27.0.","type":"array","items":{"type":"string"}},"externalUrl":{"description":"The external URL the Alertmanager instances will be available under. This is\nnecessary to generate correct URLs. This is necessary if Alertmanager is not\nserved from root of a DNS name.","type":"string"},"forceEnableClusterMode":{"description":"ForceEnableClusterMode ensures Alertmanager does not deactivate the cluster mode when running with a single replica.\nUse case is e.g. spanning an Alertmanager cluster across Kubernetes clusters with a single replica in each.","type":"boolean"},"hostAliases":{"description":"Pods' hostAliases configuration","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["hostnames","ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"}},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map"},"image":{"description":"Image if specified has precedence over baseImage, tag and sha\ncombinations. Specifying the version is still necessary to ensure the\nPrometheus Operator knows what version of Alertmanager is being\nconfigured.","type":"string"},"imagePullPolicy":{"description":"Image pull policy for the 'alertmanager', 'init-config-reloader' and 'config-reloader' containers.\nSee https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy for more details.","type":"string","enum":["","Always","Never","IfNotPresent"]},"imagePullSecrets":{"description":"An optional list of references to secrets in the same namespace\nto use for pulling prometheus and alertmanager images from registries\nsee http://kubernetes.io/docs/user-guide/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"description":"InitContainers allows adding initContainers to the pod definition. Those can be used to e.g.\nfetch secrets for injection into the Alertmanager configuration from external sources. Any\nerrors during the execution of an initContainer will lead to a restart of the Pod. More info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/\nInitContainers described here modify an operator\ngenerated init containers if they share the same name and modifications are\ndone via a strategic merge patch. The current init container name is:\n`init-config-reloader`. Overriding init containers is entirely outside the\nscope of what the maintainers will support and by doing so, you accept that\nthis behaviour may break at any time without notice.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"listenLocal":{"description":"ListenLocal makes the Alertmanager server listen on loopback, so that it\ndoes not bind against the Pod IP. Note this is only for the Alertmanager\nUI, not the gossip communication.","type":"boolean"},"logFormat":{"description":"Log format for Alertmanager to be configured with.","type":"string","enum":["","logfmt","json"]},"logLevel":{"description":"Log level for Alertmanager to be configured with.","type":"string","enum":["","debug","info","warn","error"]},"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready\nwithout any of its container crashing for it to be considered available.\nDefaults to 0 (pod will be considered available as soon as it is ready)\nThis is an alpha field from kubernetes 1.22 until 1.24 which requires enabling the StatefulSetMinReadySeconds feature gate.","type":"integer","format":"int32"},"nodeSelector":{"description":"Define which Nodes the Pods are scheduled on.","type":"object","additionalProperties":{"type":"string"}},"paused":{"description":"If set to true all actions on the underlying managed objects are not\ngoint to be performed, except for delete actions.","type":"boolean"},"podMetadata":{"description":"PodMetadata configures labels and annotations which are propagated to the Alertmanager pods.\n\nThe following items are reserved and cannot be overridden:\n* \"alertmanager\" label, set to the name of the Alertmanager instance.\n* \"app.kubernetes.io/instance\" label, set to the name of the Alertmanager instance.\n* \"app.kubernetes.io/managed-by\" label, set to \"prometheus-operator\".\n* \"app.kubernetes.io/name\" label, set to \"alertmanager\".\n* \"app.kubernetes.io/version\" label, set to the Alertmanager version.\n* \"kubectl.kubernetes.io/default-container\" annotation, set to \"alertmanager\".","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: http://kubernetes.io/docs/user-guide/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: http://kubernetes.io/docs/user-guide/labels","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although\nsome resources may allow a client to request the generation of an appropriate name\nautomatically. Name is primarily intended for creation idempotence and configuration\ndefinition.\nCannot be updated.\nMore info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"}}},"portName":{"description":"Port name used for the pods and governing service.\nDefaults to `web`.","type":"string"},"priorityClassName":{"description":"Priority class assigned to the Pods","type":"string"},"replicas":{"description":"Size is the expected size of the alertmanager cluster. The controller will\neventually make the size of the running cluster equal to the expected\nsize.","type":"integer","format":"int32"},"resources":{"description":"Define resources requests and limits for single Pods.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"retention":{"description":"Time duration Alertmanager shall retain data for. Default is '120h',\nand must match the regular expression `[0-9]+(ms|s|m|h)` (milliseconds seconds minutes hours).","type":"string","pattern":"^(0|(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"routePrefix":{"description":"The route prefix Alertmanager registers HTTP handlers for. This is useful,\nif using ExternalURL and a proxy is rewriting HTTP routes of a request,\nand the actual ExternalURL is still true, but the server serves requests\nunder a different route prefix. For example for use with `kubectl proxy`.","type":"string"},"secrets":{"description":"Secrets is a list of Secrets in the same namespace as the Alertmanager\nobject, which shall be mounted into the Alertmanager Pods.\nEach Secret is added to the StatefulSet definition as a volume named `secret-<secret-name>`.\nThe Secrets are mounted into `/etc/alertmanager/secrets/<secret-name>` in the 'alertmanager' container.","type":"array","items":{"type":"string"}},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nThis defaults to the default PodSecurityContext.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run the\nPrometheus Pods.","type":"string"},"sha":{"description":"SHA of Alertmanager container image to be deployed. Defaults to the value of `version`.\nSimilar to a tag, but the SHA explicitly deploys an immutable container image.\nVersion and Tag are ignored if SHA is set.\nDeprecated: use 'image' instead. The image digest can be specified as part of the image URL.","type":"string"},"storage":{"description":"Storage is the definition of how storage will be used by the Alertmanager\ninstances.","type":"object","properties":{"disableMountSubPath":{"description":"Deprecated: subPath usage will be removed in a future release.","type":"boolean"},"emptyDir":{"description":"EmptyDirVolumeSource to be used by the StatefulSet.\nIf specified, it takes precedence over `ephemeral` and `volumeClaimTemplate`.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes/#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"EphemeralVolumeSource to be used by the StatefulSet.\nThis is a beta field in k8s 1.21 and GA in 1.15.\nFor lower versions, starting with k8s 1.19, it requires enabling the GenericEphemeralVolume feature gate.\nMore info: https://kubernetes.io/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volumes","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"volumeClaimTemplate":{"description":"Defines the PVC spec to be used by the Prometheus StatefulSets.\nThe easiest way to use a volume that cannot be automatically provisioned\nis to use a label selector alongside manually created PersistentVolumes.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object.\nServers should convert recognized schemas to the latest internal value, and\nmay reject unrecognized values.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents.\nServers may infer this from the endpoint the client submits requests to.\nCannot be updated.\nIn CamelCase.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"EmbeddedMetadata contains metadata relevant to an EmbeddedResource.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: http://kubernetes.io/docs/user-guide/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: http://kubernetes.io/docs/user-guide/labels","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although\nsome resources may allow a client to request the generation of an appropriate name\nautomatically. Name is primarily intended for creation idempotence and configuration\ndefinition.\nCannot be updated.\nMore info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"}}},"spec":{"description":"Defines the desired characteristics of a volume requested by a pod author.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}},"status":{"description":"Deprecated: this field is never set.","type":"object","properties":{"accessModes":{"description":"accessModes contains the actual access modes the volume backing the PVC has.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"allocatedResourceStatuses":{"description":"allocatedResourceStatuses stores status of resource being resized for the given PVC.\nKey names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered\nreserved and hence may not be used.\n\nClaimResourceStatus can be in any of following states:\n\t- ControllerResizeInProgress:\n\t\tState set when resize controller starts resizing the volume in control-plane.\n\t- ControllerResizeFailed:\n\t\tState set when resize has failed in resize controller with a terminal error.\n\t- NodeResizePending:\n\t\tState set when resize controller has finished resizing the volume but further resizing of\n\t\tvolume is needed on the node.\n\t- NodeResizeInProgress:\n\t\tState set when kubelet starts resizing the volume.\n\t- NodeResizeFailed:\n\t\tState set when resizing has failed in kubelet with a terminal error. Transient errors don't set\n\t\tNodeResizeFailed.\nFor example: if expanding a PVC for more capacity - this field can be one of the following states:\n\t- pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeFailed\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizePending\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeFailed\"\nWhen this field is not set, it means that no resize operation is in progress for the given PVC.\n\nA controller that receives PVC update with previously unknown resourceName or ClaimResourceStatus\nshould ignore the update for the purpose it was designed. For example - a controller that\nonly is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid\nresources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"description":"When a controller receives persistentvolume claim update with ClaimResourceStatus for a resource\nthat it does not recognizes, then it should ignore that update and let other controllers\nhandle it.","type":"string"},"x-kubernetes-map-type":"granular"},"allocatedResources":{"description":"allocatedResources tracks the resources allocated to a PVC including its capacity.\nKey names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered\nreserved and hence may not be used.\n\nCapacity reported here may be larger than the actual capacity when a volume expansion operation\nis requested.\nFor storage quota, the larger value from allocatedResources and PVC.spec.resources is used.\nIf allocatedResources is not set, PVC.spec.resources alone is used for quota calculation.\nIf a volume expansion capacity request is lowered, allocatedResources is only\nlowered if there are no expansion operations in progress and if the actual volume capacity\nis equal or lower than the requested capacity.\n\nA controller that receives PVC update with previously unknown resourceName\nshould ignore the update for the purpose it was designed. For example - a controller that\nonly is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid\nresources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"capacity":{"description":"capacity represents the actual resources of the underlying volume.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"conditions":{"description":"conditions is the current Condition of persistent volume claim. If underlying persistent volume is being\nresized then the Condition will be set to 'Resizing'.","type":"array","items":{"description":"PersistentVolumeClaimCondition contains details about state of pvc","type":"object","required":["status","type"],"properties":{"lastProbeTime":{"description":"lastProbeTime is the time we probed the condition.","type":"string","format":"date-time"},"lastTransitionTime":{"description":"lastTransitionTime is the time the condition transitioned from one status to another.","type":"string","format":"date-time"},"message":{"description":"message is the human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"reason is a unique, this should be a short, machine understandable string that gives the reason\nfor condition's last transition. If it reports \"Resizing\" that means the underlying\npersistent volume is being resized.","type":"string"},"status":{"type":"string"},"type":{"description":"PersistentVolumeClaimConditionType defines the condition of PV claim.\nValid values are:\n  - \"Resizing\", \"FileSystemResizePending\"\n\nIf RecoverVolumeExpansionFailure feature gate is enabled, then following additional values can be expected:\n  - \"ControllerResizeError\", \"NodeResizeError\"\n\nIf VolumeAttributesClass feature gate is enabled, then following additional values can be expected:\n  - \"ModifyVolumeError\", \"ModifyingVolume\"","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"currentVolumeAttributesClassName":{"description":"currentVolumeAttributesClassName is the current name of the VolumeAttributesClass the PVC is using.\nWhen unset, there is no VolumeAttributeClass applied to this PersistentVolumeClaim\nThis is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"string"},"modifyVolumeStatus":{"description":"ModifyVolumeStatus represents the status object of ControllerModifyVolume operation.\nWhen this is unset, there is no ModifyVolume operation being attempted.\nThis is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"object","required":["status"],"properties":{"status":{"description":"status is the status of the ControllerModifyVolume operation. It can be in any of following states:\n - Pending\n   Pending indicates that the PersistentVolumeClaim cannot be modified due to unmet requirements, such as\n   the specified VolumeAttributesClass not existing.\n - InProgress\n   InProgress indicates that the volume is being modified.\n - Infeasible\n  Infeasible indicates that the request has been rejected as invalid by the CSI driver. To\n\t  resolve the error, a valid VolumeAttributesClass needs to be specified.\nNote: New statuses can be added in the future. Consumers should check for unknown statuses and fail appropriately.","type":"string"},"targetVolumeAttributesClassName":{"description":"targetVolumeAttributesClassName is the name of the VolumeAttributesClass the PVC currently being reconciled","type":"string"}}},"phase":{"description":"phase represents the current phase of PersistentVolumeClaim.","type":"string"}}}}}}},"tag":{"description":"Tag of Alertmanager container image to be deployed. Defaults to the value of `version`.\nVersion is ignored if Tag is set.\nDeprecated: use 'image' instead. The image tag can be specified as part of the image URL.","type":"string"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}},"topologySpreadConstraints":{"description":"If specified, the pod's topology spread constraints.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}}},"version":{"description":"Version the cluster should be on.","type":"string"},"volumeMounts":{"description":"VolumeMounts allows configuration of additional VolumeMounts on the output StatefulSet definition.\nVolumeMounts specified will be appended to other VolumeMounts in the alertmanager container,\nthat are generated as a result of StorageSpec objects.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes allows configuration of additional volumes on the output StatefulSet definition.\nVolumes specified will be appended to other volumes that are generated as a result of\nStorageSpec objects.","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath).\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}},"web":{"description":"Defines the web command line flags when starting Alertmanager.","type":"object","properties":{"getConcurrency":{"description":"Maximum number of GET requests processed concurrently. This corresponds to the\nAlertmanager's `--web.get-concurrency` flag.","type":"integer","format":"int32"},"httpConfig":{"description":"Defines HTTP parameters for web server.","type":"object","properties":{"headers":{"description":"List of headers that can be added to HTTP responses.","type":"object","properties":{"contentSecurityPolicy":{"description":"Set the Content-Security-Policy header to HTTP responses.\nUnset if blank.","type":"string"},"strictTransportSecurity":{"description":"Set the Strict-Transport-Security header to HTTP responses.\nUnset if blank.\nPlease make sure that you use this with care as this header might force\nbrowsers to load Prometheus and the other applications hosted on the same\ndomain and subdomains over HTTPS.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security","type":"string"},"xContentTypeOptions":{"description":"Set the X-Content-Type-Options header to HTTP responses.\nUnset if blank. Accepted value is nosniff.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options","type":"string","enum":["","NoSniff"]},"xFrameOptions":{"description":"Set the X-Frame-Options header to HTTP responses.\nUnset if blank. Accepted values are deny and sameorigin.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options","type":"string","enum":["","Deny","SameOrigin"]},"xXSSProtection":{"description":"Set the X-XSS-Protection header to all responses.\nUnset if blank.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection","type":"string"}}},"http2":{"description":"Enable HTTP/2 support. Note that HTTP/2 is only supported with TLS.\nWhen TLSConfig is not configured, HTTP/2 will be disabled.\nWhenever the value of the field changes, a rolling update will be triggered.","type":"boolean"}}},"timeout":{"description":"Timeout for HTTP requests. This corresponds to the Alertmanager's\n`--web.timeout` flag.","type":"integer","format":"int32"},"tlsConfig":{"description":"Defines the TLS parameters for HTTPS.","type":"object","properties":{"cert":{"description":"Contains the TLS certificate for the server.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the TLS certificate file in the Prometheus container for the server.\nMutually exclusive with `cert`.","type":"string"},"cipherSuites":{"description":"List of supported cipher suites for TLS versions up to TLS 1.2. If empty,\nGo default cipher suites are used. Available cipher suites are documented\nin the go documentation: https://golang.org/pkg/crypto/tls/#pkg-constants","type":"array","items":{"type":"string"}},"clientAuthType":{"description":"Server policy for client authentication. Maps to ClientAuth Policies.\nFor more detail on clientAuth options:\nhttps://golang.org/pkg/crypto/tls/#ClientAuthType","type":"string"},"clientCAFile":{"description":"Path to the CA certificate file for client certificate authentication to the server.\nMutually exclusive with `client_ca`.","type":"string"},"client_ca":{"description":"Contains the CA certificate for client certificate authentication to the server.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"curvePreferences":{"description":"Elliptic curves that will be used in an ECDHE handshake, in preference\norder. Available curves are documented in the go documentation:\nhttps://golang.org/pkg/crypto/tls/#CurveID","type":"array","items":{"type":"string"}},"keyFile":{"description":"Path to the TLS key file in the Prometheus container for the server.\nMutually exclusive with `keySecret`.","type":"string"},"keySecret":{"description":"Secret containing the TLS key for the server.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum TLS version that is acceptable. Defaults to TLS13.","type":"string"},"minVersion":{"description":"Minimum TLS version that is acceptable. Defaults to TLS12.","type":"string"},"preferServerCipherSuites":{"description":"Controls whether the server selects the\nclient's most preferred cipher suite, or the server's most preferred\ncipher suite. If true then the server's preference, as expressed in\nthe order of elements in cipherSuites, is used.","type":"boolean"}}}}}}},"status":{"description":"Most recent observed status of the Alertmanager cluster. Read-only.\nMore info:\nhttps://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["availableReplicas","paused","replicas","unavailableReplicas","updatedReplicas"],"properties":{"availableReplicas":{"description":"Total number of available pods (ready for at least minReadySeconds)\ntargeted by this Alertmanager cluster.","type":"integer","format":"int32"},"conditions":{"description":"The current state of the Alertmanager object.","type":"array","items":{"description":"Condition represents the state of the resources associated with the\nPrometheus, Alertmanager or ThanosRuler resource.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time of the last update to the current status property.","type":"string","format":"date-time"},"message":{"description":"Human-readable message indicating details for the condition's last transition.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the\ncondition was set based upon. For instance, if `.metadata.generation` is\ncurrently 12, but the `.status.conditions[].observedGeneration` is 9, the\ncondition is out of date with respect to the current state of the\ninstance.","type":"integer","format":"int64"},"reason":{"description":"Reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition.","type":"string"},"type":{"description":"Type of the condition being reported.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"paused":{"description":"Represents whether any actions on the underlying managed objects are\nbeing performed. Only delete actions will be performed.","type":"boolean"},"replicas":{"description":"Total number of non-terminated pods targeted by this Alertmanager\nobject (their labels match the selector).","type":"integer","format":"int32"},"selector":{"description":"The selector used to match the pods targeted by this Alertmanager object.","type":"string"},"unavailableReplicas":{"description":"Total number of unavailable pods targeted by this Alertmanager object.","type":"integer","format":"int32"},"updatedReplicas":{"description":"Total number of non-terminated pods targeted by this Alertmanager\nobject that have the desired version spec.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"Alertmanager","version":"v1"}]},"com.coreos.monitoring.v1.AlertmanagerList":{"description":"AlertmanagerList is a list of Alertmanager","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of alertmanagers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1.Alertmanager"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"AlertmanagerList","version":"v1"}]},"com.coreos.monitoring.v1.PodMonitor":{"description":"The `PodMonitor` custom resource definition (CRD) defines how `Prometheus` and `PrometheusAgent` can scrape metrics from a group of pods.\nAmong other things, it allows to specify:\n* The pods to scrape via label selectors.\n* The container ports to scrape.\n* Authentication credentials to use.\n* Target and metric relabeling.\n\n`Prometheus` and `PrometheusAgent` objects select `PodMonitor` objects using label and namespace selectors.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of desired Pod selection for target discovery by Prometheus.","type":"object","required":["selector"],"properties":{"attachMetadata":{"description":"`attachMetadata` defines additional metadata which is added to the\ndiscovered targets.\n\nIt requires Prometheus >= v2.35.0.","type":"object","properties":{"node":{"description":"When set to true, Prometheus attaches node metadata to the discovered\ntargets.\n\nThe Prometheus service account must have the `list` and `watch`\npermissions on the `Nodes` objects.","type":"boolean"}}},"bodySizeLimit":{"description":"When defined, bodySizeLimit specifies a job level limit on the size\nof uncompressed response body that will be accepted by Prometheus.\n\nIt requires Prometheus >= v2.28.0.","type":"string","pattern":"(^0|([0-9]*[.])?[0-9]+((K|M|G|T|E|P)i?)?B)$"},"jobLabel":{"description":"The label to use to retrieve the job name from.\n`jobLabel` selects the label from the associated Kubernetes `Pod`\nobject which will be used as the `job` label for all metrics.\n\nFor example if `jobLabel` is set to `foo` and the Kubernetes `Pod`\nobject is labeled with `foo: bar`, then Prometheus adds the `job=\"bar\"`\nlabel to all ingested metrics.\n\nIf the value of this field is empty, the `job` label of the metrics\ndefaults to the namespace and name of the PodMonitor object (e.g. `<namespace>/<name>`).","type":"string"},"keepDroppedTargets":{"description":"Per-scrape limit on the number of targets dropped by relabeling\nthat will be kept in memory. 0 means no limit.\n\nIt requires Prometheus >= v2.47.0.","type":"integer","format":"int64"},"labelLimit":{"description":"Per-scrape limit on number of labels that will be accepted for a sample.\n\nIt requires Prometheus >= v2.27.0.","type":"integer","format":"int64"},"labelNameLengthLimit":{"description":"Per-scrape limit on length of labels name that will be accepted for a sample.\n\nIt requires Prometheus >= v2.27.0.","type":"integer","format":"int64"},"labelValueLengthLimit":{"description":"Per-scrape limit on length of labels value that will be accepted for a sample.\n\nIt requires Prometheus >= v2.27.0.","type":"integer","format":"int64"},"namespaceSelector":{"description":"`namespaceSelector` defines in which namespace(s) Prometheus should discover the pods.\nBy default, the pods are discovered in the same namespace as the `PodMonitor` object but it is possible to select pods across different/all namespaces.","type":"object","properties":{"any":{"description":"Boolean describing whether all namespaces are selected in contrast to a\nlist restricting them.","type":"boolean"},"matchNames":{"description":"List of namespace names to select from.","type":"array","items":{"type":"string"}}}},"nativeHistogramBucketLimit":{"description":"If there are more than this many buckets in a native histogram,\nbuckets will be merged to stay within the limit.\nIt requires Prometheus >= v2.45.0.","type":"integer","format":"int64"},"nativeHistogramMinBucketFactor":{"description":"If the growth factor of one bucket to the next is smaller than this,\nbuckets will be merged to increase the factor sufficiently.\nIt requires Prometheus >= v2.50.0.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"podMetricsEndpoints":{"description":"Defines how to scrape metrics from the selected pods.","type":"array","items":{"description":"PodMetricsEndpoint defines an endpoint serving Prometheus metrics to be scraped by\nPrometheus.","type":"object","properties":{"authorization":{"description":"`authorization` configures the Authorization header credentials to use when\nscraping the target.\n\nCannot be set at the same time as `basicAuth`, or `oauth2`.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"`basicAuth` configures the Basic Authentication credentials to use when\nscraping the target.\n\nCannot be set at the same time as `authorization`, or `oauth2`.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"`bearerTokenSecret` specifies a key of a Secret containing the bearer\ntoken for scraping targets. The secret needs to be in the same namespace\nas the PodMonitor object and readable by the Prometheus Operator.\n\nDeprecated: use `authorization` instead.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"enableHttp2":{"description":"`enableHttp2` can be used to disable HTTP2 when scraping the target.","type":"boolean"},"filterRunning":{"description":"When true, the pods which are not running (e.g. either in Failed or\nSucceeded state) are dropped during the target discovery.\n\nIf unset, the filtering is enabled.\n\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase","type":"boolean"},"followRedirects":{"description":"`followRedirects` defines whether the scrape requests should follow HTTP\n3xx redirects.","type":"boolean"},"honorLabels":{"description":"When true, `honorLabels` preserves the metric's labels when they collide\nwith the target's labels.","type":"boolean"},"honorTimestamps":{"description":"`honorTimestamps` controls whether Prometheus preserves the timestamps\nwhen exposed by the target.","type":"boolean"},"interval":{"description":"Interval at which Prometheus scrapes the metrics from the target.\n\nIf empty, Prometheus uses the global scrape interval.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"metricRelabelings":{"description":"`metricRelabelings` configures the relabeling rules to apply to the\nsamples before ingestion.","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"oauth2":{"description":"`oauth2` configures the OAuth2 settings to use when scraping the target.\n\nIt requires Prometheus >= 2.27.0.\n\nCannot be set at the same time as `authorization`, or `basicAuth`.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"params":{"description":"`params` define optional HTTP URL parameters.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"path":{"description":"HTTP path from which to scrape for metrics.\n\nIf empty, Prometheus uses the default value (e.g. `/metrics`).","type":"string"},"port":{"description":"Name of the Pod port which this endpoint refers to.\n\nIt takes precedence over `targetPort`.","type":"string"},"proxyUrl":{"description":"`proxyURL` configures the HTTP Proxy URL (e.g.\n\"http://proxyserver:2195\") to go through when scraping the target.","type":"string"},"relabelings":{"description":"`relabelings` configures the relabeling rules to apply the target's\nmetadata labels.\n\nThe Operator automatically adds relabelings for a few standard Kubernetes fields.\n\nThe original scrape job's name is available via the `__tmp_prometheus_job_name` label.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"scheme":{"description":"HTTP scheme to use for scraping.\n\n`http` and `https` are the expected values unless you rewrite the\n`__scheme__` label via relabeling.\n\nIf empty, Prometheus uses the default value `http`.","type":"string","enum":["http","https"]},"scrapeTimeout":{"description":"Timeout after which Prometheus considers the scrape to be failed.\n\nIf empty, Prometheus uses the global scrape timeout unless it is less\nthan the target's scrape interval value in which the latter is used.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"targetPort":{"description":"Name or number of the target port of the `Pod` object behind the Service, the\nport must be specified with container port property.\n\nDeprecated: use 'port' instead.","x-kubernetes-int-or-string":true},"tlsConfig":{"description":"TLS configuration to use when scraping the target.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"trackTimestampsStaleness":{"description":"`trackTimestampsStaleness` defines whether Prometheus tracks staleness of\nthe metrics that have an explicit timestamp present in scraped data.\nHas no effect if `honorTimestamps` is false.\n\nIt requires Prometheus >= v2.48.0.","type":"boolean"}}}},"podTargetLabels":{"description":"`podTargetLabels` defines the labels which are transferred from the\nassociated Kubernetes `Pod` object onto the ingested metrics.","type":"array","items":{"type":"string"}},"sampleLimit":{"description":"`sampleLimit` defines a per-scrape limit on the number of scraped samples\nthat will be accepted.","type":"integer","format":"int64"},"scrapeClass":{"description":"The scrape class to apply.","type":"string","minLength":1},"scrapeClassicHistograms":{"description":"Whether to scrape a classic histogram that is also exposed as a native histogram.\nIt requires Prometheus >= v2.45.0.","type":"boolean"},"scrapeProtocols":{"description":"`scrapeProtocols` defines the protocols to negotiate during a scrape. It tells clients the\nprotocols supported by Prometheus in order of preference (from most to least preferred).\n\nIf unset, Prometheus uses its default value.\n\nIt requires Prometheus >= v2.49.0.","type":"array","items":{"description":"ScrapeProtocol represents a protocol used by Prometheus for scraping metrics.\nSupported values are:\n* `OpenMetricsText0.0.1`\n* `OpenMetricsText1.0.0`\n* `PrometheusProto`\n* `PrometheusText0.0.4`","type":"string","enum":["PrometheusProto","OpenMetricsText0.0.1","OpenMetricsText1.0.0","PrometheusText0.0.4"]},"x-kubernetes-list-type":"set"},"selector":{"description":"Label selector to select the Kubernetes `Pod` objects to scrape metrics from.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"targetLimit":{"description":"`targetLimit` defines a limit on the number of scraped targets that will\nbe accepted.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"PodMonitor","version":"v1"}]},"com.coreos.monitoring.v1.PodMonitorList":{"description":"PodMonitorList is a list of PodMonitor","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of podmonitors. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1.PodMonitor"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"PodMonitorList","version":"v1"}]},"com.coreos.monitoring.v1.Probe":{"description":"The `Probe` custom resource definition (CRD) defines how to scrape metrics from prober exporters such as the [blackbox exporter](https://github.com/prometheus/blackbox_exporter).\n\nThe `Probe` resource needs 2 pieces of information:\n* The list of probed addresses which can be defined statically or by discovering Kubernetes Ingress objects.\n* The prober which exposes the availability of probed endpoints (over various protocols such HTTP, TCP, ICMP, ...) as Prometheus metrics.\n\n`Prometheus` and `PrometheusAgent` objects select `Probe` objects using label and namespace selectors.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of desired Ingress selection for target discovery by Prometheus.","type":"object","properties":{"authorization":{"description":"Authorization section for this endpoint","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth allow an endpoint to authenticate over basic authentication.\nMore info: https://prometheus.io/docs/operating/configuration/#endpoint","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"Secret to mount to read bearer token for scraping targets. The secret\nneeds to be in the same namespace as the probe and accessible by\nthe Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"interval":{"description":"Interval at which targets are probed using the configured prober.\nIf not specified Prometheus' global scrape interval is used.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"jobName":{"description":"The job name assigned to scraped metrics by default.","type":"string"},"keepDroppedTargets":{"description":"Per-scrape limit on the number of targets dropped by relabeling\nthat will be kept in memory. 0 means no limit.\n\nIt requires Prometheus >= v2.47.0.","type":"integer","format":"int64"},"labelLimit":{"description":"Per-scrape limit on number of labels that will be accepted for a sample.\nOnly valid in Prometheus versions 2.27.0 and newer.","type":"integer","format":"int64"},"labelNameLengthLimit":{"description":"Per-scrape limit on length of labels name that will be accepted for a sample.\nOnly valid in Prometheus versions 2.27.0 and newer.","type":"integer","format":"int64"},"labelValueLengthLimit":{"description":"Per-scrape limit on length of labels value that will be accepted for a sample.\nOnly valid in Prometheus versions 2.27.0 and newer.","type":"integer","format":"int64"},"metricRelabelings":{"description":"MetricRelabelConfigs to apply to samples before ingestion.","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"module":{"description":"The module to use for probing specifying how to probe the target.\nExample module configuring in the blackbox exporter:\nhttps://github.com/prometheus/blackbox_exporter/blob/master/example.yml","type":"string"},"nativeHistogramBucketLimit":{"description":"If there are more than this many buckets in a native histogram,\nbuckets will be merged to stay within the limit.\nIt requires Prometheus >= v2.45.0.","type":"integer","format":"int64"},"nativeHistogramMinBucketFactor":{"description":"If the growth factor of one bucket to the next is smaller than this,\nbuckets will be merged to increase the factor sufficiently.\nIt requires Prometheus >= v2.50.0.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"oauth2":{"description":"OAuth2 for the URL. Only valid in Prometheus versions 2.27.0 and newer.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"prober":{"description":"Specification for the prober to use for probing targets.\nThe prober.URL parameter is required. Targets cannot be probed if left empty.","type":"object","required":["url"],"properties":{"path":{"description":"Path to collect metrics from.\nDefaults to `/probe`.","type":"string"},"proxyUrl":{"description":"Optional ProxyURL.","type":"string"},"scheme":{"description":"HTTP scheme to use for scraping.\n`http` and `https` are the expected values unless you rewrite the `__scheme__` label via relabeling.\nIf empty, Prometheus uses the default value `http`.","type":"string","enum":["http","https"]},"url":{"description":"Mandatory URL of the prober.","type":"string"}}},"sampleLimit":{"description":"SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.","type":"integer","format":"int64"},"scrapeClass":{"description":"The scrape class to apply.","type":"string","minLength":1},"scrapeClassicHistograms":{"description":"Whether to scrape a classic histogram that is also exposed as a native histogram.\nIt requires Prometheus >= v2.45.0.","type":"boolean"},"scrapeProtocols":{"description":"`scrapeProtocols` defines the protocols to negotiate during a scrape. It tells clients the\nprotocols supported by Prometheus in order of preference (from most to least preferred).\n\nIf unset, Prometheus uses its default value.\n\nIt requires Prometheus >= v2.49.0.","type":"array","items":{"description":"ScrapeProtocol represents a protocol used by Prometheus for scraping metrics.\nSupported values are:\n* `OpenMetricsText0.0.1`\n* `OpenMetricsText1.0.0`\n* `PrometheusProto`\n* `PrometheusText0.0.4`","type":"string","enum":["PrometheusProto","OpenMetricsText0.0.1","OpenMetricsText1.0.0","PrometheusText0.0.4"]},"x-kubernetes-list-type":"set"},"scrapeTimeout":{"description":"Timeout for scraping metrics from the Prometheus exporter.\nIf not specified, the Prometheus global scrape timeout is used.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"targetLimit":{"description":"TargetLimit defines a limit on the number of scraped targets that will be accepted.","type":"integer","format":"int64"},"targets":{"description":"Targets defines a set of static or dynamically discovered targets to probe.","type":"object","properties":{"ingress":{"description":"ingress defines the Ingress objects to probe and the relabeling\nconfiguration.\nIf `staticConfig` is also defined, `staticConfig` takes precedence.","type":"object","properties":{"namespaceSelector":{"description":"From which namespaces to select Ingress objects.","type":"object","properties":{"any":{"description":"Boolean describing whether all namespaces are selected in contrast to a\nlist restricting them.","type":"boolean"},"matchNames":{"description":"List of namespace names to select from.","type":"array","items":{"type":"string"}}}},"relabelingConfigs":{"description":"RelabelConfigs to apply to the label set of the target before it gets\nscraped.\nThe original ingress address is available via the\n`__tmp_prometheus_ingress_address` label. It can be used to customize the\nprobed URL.\nThe original scrape job's name is available via the `__tmp_prometheus_job_name` label.\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"selector":{"description":"Selector to select the Ingress objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"staticConfig":{"description":"staticConfig defines the static list of targets to probe and the\nrelabeling configuration.\nIf `ingress` is also defined, `staticConfig` takes precedence.\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#static_config.","type":"object","properties":{"labels":{"description":"Labels assigned to all metrics scraped from the targets.","type":"object","additionalProperties":{"type":"string"}},"relabelingConfigs":{"description":"RelabelConfigs to apply to the label set of the targets before it gets\nscraped.\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"static":{"description":"The list of hosts to probe.","type":"array","items":{"type":"string"}}}}}},"tlsConfig":{"description":"TLS configuration to use when scraping the endpoint.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"Probe","version":"v1"}]},"com.coreos.monitoring.v1.ProbeList":{"description":"ProbeList is a list of Probe","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of probes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1.Probe"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"ProbeList","version":"v1"}]},"com.coreos.monitoring.v1.Prometheus":{"description":"The `Prometheus` custom resource definition (CRD) defines a desired [Prometheus](https://prometheus.io/docs/prometheus) setup to run in a Kubernetes cluster. It allows to specify many options such as the number of replicas, persistent storage, and Alertmanagers where firing alerts should be sent and many more.\n\nFor each `Prometheus` resource, the Operator deploys one or several `StatefulSet` objects in the same namespace. The number of StatefulSets is equal to the number of shards which is 1 by default.\n\nThe resource defines via label and namespace selectors which `ServiceMonitor`, `PodMonitor`, `Probe` and `PrometheusRule` objects should be associated to the deployed Prometheus instances.\n\nThe Operator continuously reconciles the scrape and rules configuration and a sidecar container running in the Prometheus pods triggers a reload of the configuration when needed.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the Prometheus cluster. More info:\nhttps://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","properties":{"additionalAlertManagerConfigs":{"description":"AdditionalAlertManagerConfigs specifies a key of a Secret containing\nadditional Prometheus Alertmanager configurations. The Alertmanager\nconfigurations are appended to the configuration generated by the\nPrometheus Operator. They must be formatted according to the official\nPrometheus documentation:\n\nhttps://prometheus.io/docs/prometheus/latest/configuration/configuration/#alertmanager_config\n\nThe user is responsible for making sure that the configurations are valid\n\nNote that using this feature may expose the possibility to break\nupgrades of Prometheus. It is advised to review Prometheus release notes\nto ensure that no incompatible AlertManager configs are going to break\nPrometheus after the upgrade.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"additionalAlertRelabelConfigs":{"description":"AdditionalAlertRelabelConfigs specifies a key of a Secret containing\nadditional Prometheus alert relabel configurations. The alert relabel\nconfigurations are appended to the configuration generated by the\nPrometheus Operator. They must be formatted according to the official\nPrometheus documentation:\n\nhttps://prometheus.io/docs/prometheus/latest/configuration/configuration/#alert_relabel_configs\n\nThe user is responsible for making sure that the configurations are valid\n\nNote that using this feature may expose the possibility to break\nupgrades of Prometheus. It is advised to review Prometheus release notes\nto ensure that no incompatible alert relabel configs are going to break\nPrometheus after the upgrade.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"additionalArgs":{"description":"AdditionalArgs allows setting additional arguments for the 'prometheus' container.\n\nIt is intended for e.g. activating hidden flags which are not supported by\nthe dedicated configuration options yet. The arguments are passed as-is to the\nPrometheus container which may cause issues if they are invalid or not supported\nby the given Prometheus version.\n\nIn case of an argument conflict (e.g. an argument which is already set by the\noperator itself) or when providing an invalid argument, the reconciliation will\nfail and an error will be logged.","type":"array","items":{"description":"Argument as part of the AdditionalArgs list.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the argument, e.g. \"scrape.discovery-reload-interval\".","type":"string","minLength":1},"value":{"description":"Argument value, e.g. 30s. Can be empty for name-only arguments (e.g. --storage.tsdb.no-lockfile)","type":"string"}}}},"additionalScrapeConfigs":{"description":"AdditionalScrapeConfigs allows specifying a key of a Secret containing\nadditional Prometheus scrape configurations. Scrape configurations\nspecified are appended to the configurations generated by the Prometheus\nOperator. Job configurations specified must have the form as specified\nin the official Prometheus documentation:\nhttps://prometheus.io/docs/prometheus/latest/configuration/configuration/#scrape_config.\nAs scrape configs are appended, the user is responsible to make sure it\nis valid. Note that using this feature may expose the possibility to\nbreak upgrades of Prometheus. It is advised to review Prometheus release\nnotes to ensure that no incompatible scrape configs are going to break\nPrometheus after the upgrade.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"affinity":{"description":"Defines the Pods' affinity scheduling rules if specified.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"alerting":{"description":"Defines the settings related to Alertmanager.","type":"object","required":["alertmanagers"],"properties":{"alertmanagers":{"description":"Alertmanager endpoints where Prometheus should send alerts to.","type":"array","items":{"description":"AlertmanagerEndpoints defines a selection of a single Endpoints object\ncontaining Alertmanager IPs to fire alerts against.","type":"object","required":["name","port"],"properties":{"alertRelabelings":{"description":"Relabeling configs applied before sending alerts to a specific Alertmanager.\nIt requires Prometheus >= v2.51.0.","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"apiVersion":{"description":"Version of the Alertmanager API that Prometheus uses to send alerts.\nIt can be \"v1\" or \"v2\".","type":"string"},"authorization":{"description":"Authorization section for Alertmanager.\n\nCannot be set at the same time as `basicAuth`, `bearerTokenFile` or `sigv4`.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth configuration for Alertmanager.\n\nCannot be set at the same time as `bearerTokenFile`, `authorization` or `sigv4`.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenFile":{"description":"File to read bearer token for Alertmanager.\n\nCannot be set at the same time as `basicAuth`, `authorization`, or `sigv4`.\n\nDeprecated: this will be removed in a future release. Prefer using `authorization`.","type":"string"},"enableHttp2":{"description":"Whether to enable HTTP2.","type":"boolean"},"name":{"description":"Name of the Endpoints object in the namespace.","type":"string","minLength":1},"namespace":{"description":"Namespace of the Endpoints object.\n\nIf not set, the object will be discovered in the namespace of the\nPrometheus object.","type":"string","minLength":1},"pathPrefix":{"description":"Prefix for the HTTP path alerts are pushed to.","type":"string"},"port":{"description":"Port on which the Alertmanager API is exposed.","x-kubernetes-int-or-string":true},"relabelings":{"description":"Relabel configuration applied to the discovered Alertmanagers.","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"scheme":{"description":"Scheme to use when firing alerts.","type":"string"},"sigv4":{"description":"Sigv4 allows to configures AWS's Signature Verification 4 for the URL.\n\nIt requires Prometheus >= v2.48.0.\n\nCannot be set at the same time as `basicAuth`, `bearerTokenFile` or `authorization`.","type":"object","properties":{"accessKey":{"description":"AccessKey is the AWS API key. If not specified, the environment variable\n`AWS_ACCESS_KEY_ID` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"profile":{"description":"Profile is the named AWS profile used to authenticate.","type":"string"},"region":{"description":"Region is the AWS region. If blank, the region from the default credentials chain used.","type":"string"},"roleArn":{"description":"RoleArn is the named AWS profile used to authenticate.","type":"string"},"secretKey":{"description":"SecretKey is the AWS API secret. If not specified, the environment\nvariable `AWS_SECRET_ACCESS_KEY` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"timeout":{"description":"Timeout is a per-target Alertmanager timeout when pushing alerts.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"tlsConfig":{"description":"TLS Config to use for Alertmanager.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}}}}},"allowOverlappingBlocks":{"description":"AllowOverlappingBlocks enables vertical compaction and vertical query\nmerge in Prometheus.\n\nDeprecated: this flag has no effect for Prometheus >= 2.39.0 where overlapping blocks are enabled by default.","type":"boolean"},"apiserverConfig":{"description":"APIServerConfig allows specifying a host and auth methods to access the\nKuberntees API server.\nIf null, Prometheus is assumed to run inside of the cluster: it will\ndiscover the API servers automatically and use the Pod's CA certificate\nand bearer token file at /var/run/secrets/kubernetes.io/serviceaccount/.","type":"object","required":["host"],"properties":{"authorization":{"description":"Authorization section for the API server.\n\nCannot be set at the same time as `basicAuth`, `bearerToken`, or\n`bearerTokenFile`.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"credentialsFile":{"description":"File to read a secret from, mutually exclusive with `credentials`.","type":"string"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth configuration for the API server.\n\nCannot be set at the same time as `authorization`, `bearerToken`, or\n`bearerTokenFile`.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerToken":{"description":"*Warning: this field shouldn't be used because the token value appears\nin clear-text. Prefer using `authorization`.*\n\nDeprecated: this will be removed in a future release.","type":"string"},"bearerTokenFile":{"description":"File to read bearer token for accessing apiserver.\n\nCannot be set at the same time as `basicAuth`, `authorization`, or `bearerToken`.\n\nDeprecated: this will be removed in a future release. Prefer using `authorization`.","type":"string"},"host":{"description":"Kubernetes API address consisting of a hostname or IP address followed\nby an optional port number.","type":"string"},"tlsConfig":{"description":"TLS Config to use for the API server.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"arbitraryFSAccessThroughSMs":{"description":"When true, ServiceMonitor, PodMonitor and Probe object are forbidden to\nreference arbitrary files on the file system of the 'prometheus'\ncontainer.\nWhen a ServiceMonitor's endpoint specifies a `bearerTokenFile` value\n(e.g.  '/var/run/secrets/kubernetes.io/serviceaccount/token'), a\nmalicious target can get access to the Prometheus service account's\ntoken in the Prometheus' scrape request. Setting\n`spec.arbitraryFSAccessThroughSM` to 'true' would prevent the attack.\nUsers should instead provide the credentials using the\n`spec.bearerTokenSecret` field.","type":"object","properties":{"deny":{"type":"boolean"}}},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted in the pod.\nIf the field isn't set, the operator mounts the service account token by default.\n\n**Warning:** be aware that by default, Prometheus requires the service account token for Kubernetes service discovery.\nIt is possible to use strategic merge patch to project the service account token into the 'prometheus' container.","type":"boolean"},"baseImage":{"description":"Deprecated: use 'spec.image' instead.","type":"string"},"bodySizeLimit":{"description":"BodySizeLimit defines per-scrape on response body size.\nOnly valid in Prometheus versions 2.45.0 and newer.\n\nNote that the global limit only applies to scrape objects that don't specify an explicit limit value.\nIf you want to enforce a maximum limit for all scrape objects, refer to enforcedBodySizeLimit.","type":"string","pattern":"(^0|([0-9]*[.])?[0-9]+((K|M|G|T|E|P)i?)?B)$"},"configMaps":{"description":"ConfigMaps is a list of ConfigMaps in the same namespace as the Prometheus\nobject, which shall be mounted into the Prometheus Pods.\nEach ConfigMap is added to the StatefulSet definition as a volume named `configmap-<configmap-name>`.\nThe ConfigMaps are mounted into /etc/prometheus/configmaps/<configmap-name> in the 'prometheus' container.","type":"array","items":{"type":"string"}},"containers":{"description":"Containers allows injecting additional containers or modifying operator\ngenerated containers. This can be used to allow adding an authentication\nproxy to the Pods or to change the behavior of an operator generated\ncontainer. Containers described here modify an operator generated\ncontainer if they share the same name and modifications are done via a\nstrategic merge patch.\n\nThe names of containers managed by the operator are:\n* `prometheus`\n* `config-reloader`\n* `thanos-sidecar`\n\nOverriding containers is entirely outside the scope of what the\nmaintainers will support and by doing so, you accept that this behaviour\nmay break at any time without notice.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"disableCompaction":{"description":"When true, the Prometheus compaction is disabled.","type":"boolean"},"dnsConfig":{"description":"Defines the DNS configuration for the pods.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nResolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","required":["name"],"properties":{"name":{"description":"Name is required and must be unique.","type":"string","minLength":1},"value":{"description":"Value is optional.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"}}},"dnsPolicy":{"description":"Defines the DNS policy for the pods.","type":"string","enum":["ClusterFirstWithHostNet","ClusterFirst","Default","None"]},"enableAdminAPI":{"description":"Enables access to the Prometheus web admin API.\n\nWARNING: Enabling the admin APIs enables mutating endpoints, to delete data,\nshutdown Prometheus, and more. Enabling this should be done with care and the\nuser is advised to add additional authentication authorization via a proxy to\nensure only clients authorized to perform these actions can do so.\n\nFor more information:\nhttps://prometheus.io/docs/prometheus/latest/querying/api/#tsdb-admin-apis","type":"boolean"},"enableFeatures":{"description":"Enable access to Prometheus feature flags. By default, no features are enabled.\n\nEnabling features which are disabled by default is entirely outside the\nscope of what the maintainers will support and by doing so, you accept\nthat this behaviour may break at any time without notice.\n\nFor more information see https://prometheus.io/docs/prometheus/latest/feature_flags/","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"enableRemoteWriteReceiver":{"description":"Enable Prometheus to be used as a receiver for the Prometheus remote\nwrite protocol.\n\nWARNING: This is not considered an efficient way of ingesting samples.\nUse it with caution for specific low-volume use cases.\nIt is not suitable for replacing the ingestion via scraping and turning\nPrometheus into a push-based metrics collection system.\nFor more information see https://prometheus.io/docs/prometheus/latest/querying/api/#remote-write-receiver\n\nIt requires Prometheus >= v2.33.0.","type":"boolean"},"enforcedBodySizeLimit":{"description":"When defined, enforcedBodySizeLimit specifies a global limit on the size\nof uncompressed response body that will be accepted by Prometheus.\nTargets responding with a body larger than this many bytes will cause\nthe scrape to fail.\n\nIt requires Prometheus >= v2.28.0.\n\nWhen both `enforcedBodySizeLimit` and `bodySizeLimit` are defined and greater than zero, the following rules apply:\n* Scrape objects without a defined bodySizeLimit value will inherit the global bodySizeLimit value (Prometheus >= 2.45.0) or the enforcedBodySizeLimit value (Prometheus < v2.45.0).\n  If Prometheus version is >= 2.45.0 and the `enforcedBodySizeLimit` is greater than the `bodySizeLimit`, the `bodySizeLimit` will be set to `enforcedBodySizeLimit`.\n* Scrape objects with a bodySizeLimit value less than or equal to enforcedBodySizeLimit keep their specific value.\n* Scrape objects with a bodySizeLimit value greater than enforcedBodySizeLimit are set to enforcedBodySizeLimit.","type":"string","pattern":"(^0|([0-9]*[.])?[0-9]+((K|M|G|T|E|P)i?)?B)$"},"enforcedKeepDroppedTargets":{"description":"When defined, enforcedKeepDroppedTargets specifies a global limit on the number of targets\ndropped by relabeling that will be kept in memory. The value overrides\nany `spec.keepDroppedTargets` set by\nServiceMonitor, PodMonitor, Probe objects unless `spec.keepDroppedTargets` is\ngreater than zero and less than `spec.enforcedKeepDroppedTargets`.\n\nIt requires Prometheus >= v2.47.0.\n\nWhen both `enforcedKeepDroppedTargets` and `keepDroppedTargets` are defined and greater than zero, the following rules apply:\n* Scrape objects without a defined keepDroppedTargets value will inherit the global keepDroppedTargets value (Prometheus >= 2.45.0) or the enforcedKeepDroppedTargets value (Prometheus < v2.45.0).\n  If Prometheus version is >= 2.45.0 and the `enforcedKeepDroppedTargets` is greater than the `keepDroppedTargets`, the `keepDroppedTargets` will be set to `enforcedKeepDroppedTargets`.\n* Scrape objects with a keepDroppedTargets value less than or equal to enforcedKeepDroppedTargets keep their specific value.\n* Scrape objects with a keepDroppedTargets value greater than enforcedKeepDroppedTargets are set to enforcedKeepDroppedTargets.","type":"integer","format":"int64"},"enforcedLabelLimit":{"description":"When defined, enforcedLabelLimit specifies a global limit on the number\nof labels per sample. The value overrides any `spec.labelLimit` set by\nServiceMonitor, PodMonitor, Probe objects unless `spec.labelLimit` is\ngreater than zero and less than `spec.enforcedLabelLimit`.\n\nIt requires Prometheus >= v2.27.0.\n\nWhen both `enforcedLabelLimit` and `labelLimit` are defined and greater than zero, the following rules apply:\n* Scrape objects without a defined labelLimit value will inherit the global labelLimit value (Prometheus >= 2.45.0) or the enforcedLabelLimit value (Prometheus < v2.45.0).\n  If Prometheus version is >= 2.45.0 and the `enforcedLabelLimit` is greater than the `labelLimit`, the `labelLimit` will be set to `enforcedLabelLimit`.\n* Scrape objects with a labelLimit value less than or equal to enforcedLabelLimit keep their specific value.\n* Scrape objects with a labelLimit value greater than enforcedLabelLimit are set to enforcedLabelLimit.","type":"integer","format":"int64"},"enforcedLabelNameLengthLimit":{"description":"When defined, enforcedLabelNameLengthLimit specifies a global limit on the length\nof labels name per sample. The value overrides any `spec.labelNameLengthLimit` set by\nServiceMonitor, PodMonitor, Probe objects unless `spec.labelNameLengthLimit` is\ngreater than zero and less than `spec.enforcedLabelNameLengthLimit`.\n\nIt requires Prometheus >= v2.27.0.\n\nWhen both `enforcedLabelNameLengthLimit` and `labelNameLengthLimit` are defined and greater than zero, the following rules apply:\n* Scrape objects without a defined labelNameLengthLimit value will inherit the global labelNameLengthLimit value (Prometheus >= 2.45.0) or the enforcedLabelNameLengthLimit value (Prometheus < v2.45.0).\n  If Prometheus version is >= 2.45.0 and the `enforcedLabelNameLengthLimit` is greater than the `labelNameLengthLimit`, the `labelNameLengthLimit` will be set to `enforcedLabelNameLengthLimit`.\n* Scrape objects with a labelNameLengthLimit value less than or equal to enforcedLabelNameLengthLimit keep their specific value.\n* Scrape objects with a labelNameLengthLimit value greater than enforcedLabelNameLengthLimit are set to enforcedLabelNameLengthLimit.","type":"integer","format":"int64"},"enforcedLabelValueLengthLimit":{"description":"When not null, enforcedLabelValueLengthLimit defines a global limit on the length\nof labels value per sample. The value overrides any `spec.labelValueLengthLimit` set by\nServiceMonitor, PodMonitor, Probe objects unless `spec.labelValueLengthLimit` is\ngreater than zero and less than `spec.enforcedLabelValueLengthLimit`.\n\nIt requires Prometheus >= v2.27.0.\n\nWhen both `enforcedLabelValueLengthLimit` and `labelValueLengthLimit` are defined and greater than zero, the following rules apply:\n* Scrape objects without a defined labelValueLengthLimit value will inherit the global labelValueLengthLimit value (Prometheus >= 2.45.0) or the enforcedLabelValueLengthLimit value (Prometheus < v2.45.0).\n  If Prometheus version is >= 2.45.0 and the `enforcedLabelValueLengthLimit` is greater than the `labelValueLengthLimit`, the `labelValueLengthLimit` will be set to `enforcedLabelValueLengthLimit`.\n* Scrape objects with a labelValueLengthLimit value less than or equal to enforcedLabelValueLengthLimit keep their specific value.\n* Scrape objects with a labelValueLengthLimit value greater than enforcedLabelValueLengthLimit are set to enforcedLabelValueLengthLimit.","type":"integer","format":"int64"},"enforcedNamespaceLabel":{"description":"When not empty, a label will be added to:\n\n1. All metrics scraped from `ServiceMonitor`, `PodMonitor`, `Probe` and `ScrapeConfig` objects.\n2. All metrics generated from recording rules defined in `PrometheusRule` objects.\n3. All alerts generated from alerting rules defined in `PrometheusRule` objects.\n4. All vector selectors of PromQL expressions defined in `PrometheusRule` objects.\n\nThe label will not added for objects referenced in `spec.excludedFromEnforcement`.\n\nThe label's name is this field's value.\nThe label's value is the namespace of the `ServiceMonitor`,\n`PodMonitor`, `Probe`, `PrometheusRule` or `ScrapeConfig` object.","type":"string"},"enforcedSampleLimit":{"description":"When defined, enforcedSampleLimit specifies a global limit on the number\nof scraped samples that will be accepted. This overrides any\n`spec.sampleLimit` set by ServiceMonitor, PodMonitor, Probe objects\nunless `spec.sampleLimit` is greater than zero and less than\n`spec.enforcedSampleLimit`.\n\nIt is meant to be used by admins to keep the overall number of\nsamples/series under a desired limit.\n\nWhen both `enforcedSampleLimit` and `sampleLimit` are defined and greater than zero, the following rules apply:\n* Scrape objects without a defined sampleLimit value will inherit the global sampleLimit value (Prometheus >= 2.45.0) or the enforcedSampleLimit value (Prometheus < v2.45.0).\n  If Prometheus version is >= 2.45.0 and the `enforcedSampleLimit` is greater than the `sampleLimit`, the `sampleLimit` will be set to `enforcedSampleLimit`.\n* Scrape objects with a sampleLimit value less than or equal to enforcedSampleLimit keep their specific value.\n* Scrape objects with a sampleLimit value greater than enforcedSampleLimit are set to enforcedSampleLimit.","type":"integer","format":"int64"},"enforcedTargetLimit":{"description":"When defined, enforcedTargetLimit specifies a global limit on the number\nof scraped targets. The value overrides any `spec.targetLimit` set by\nServiceMonitor, PodMonitor, Probe objects unless `spec.targetLimit` is\ngreater than zero and less than `spec.enforcedTargetLimit`.\n\nIt is meant to be used by admins to to keep the overall number of\ntargets under a desired limit.\n\nWhen both `enforcedTargetLimit` and `targetLimit` are defined and greater than zero, the following rules apply:\n* Scrape objects without a defined targetLimit value will inherit the global targetLimit value (Prometheus >= 2.45.0) or the enforcedTargetLimit value (Prometheus < v2.45.0).\n  If Prometheus version is >= 2.45.0 and the `enforcedTargetLimit` is greater than the `targetLimit`, the `targetLimit` will be set to `enforcedTargetLimit`.\n* Scrape objects with a targetLimit value less than or equal to enforcedTargetLimit keep their specific value.\n* Scrape objects with a targetLimit value greater than enforcedTargetLimit are set to enforcedTargetLimit.","type":"integer","format":"int64"},"evaluationInterval":{"description":"Interval between rule evaluations.\nDefault: \"30s\"","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"excludedFromEnforcement":{"description":"List of references to PodMonitor, ServiceMonitor, Probe and PrometheusRule objects\nto be excluded from enforcing a namespace label of origin.\n\nIt is only applicable if `spec.enforcedNamespaceLabel` set to true.","type":"array","items":{"description":"ObjectReference references a PodMonitor, ServiceMonitor, Probe or PrometheusRule object.","type":"object","required":["namespace","resource"],"properties":{"group":{"description":"Group of the referent. When not specified, it defaults to `monitoring.coreos.com`","type":"string","enum":["monitoring.coreos.com"]},"name":{"description":"Name of the referent. When not set, all resources in the namespace are matched.","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string","minLength":1},"resource":{"description":"Resource of the referent.","type":"string","enum":["prometheusrules","servicemonitors","podmonitors","probes","scrapeconfigs"]}}}},"exemplars":{"description":"Exemplars related settings that are runtime reloadable.\nIt requires to enable the `exemplar-storage` feature flag to be effective.","type":"object","properties":{"maxSize":{"description":"Maximum number of exemplars stored in memory for all series.\n\nexemplar-storage itself must be enabled using the `spec.enableFeature`\noption for exemplars to be scraped in the first place.\n\nIf not set, Prometheus uses its default value. A value of zero or less\nthan zero disables the storage.","type":"integer","format":"int64"}}},"externalLabels":{"description":"The labels to add to any time series or alerts when communicating with\nexternal systems (federation, remote storage, Alertmanager).\nLabels defined by `spec.replicaExternalLabelName` and\n`spec.prometheusExternalLabelName` take precedence over this list.","type":"object","additionalProperties":{"type":"string"}},"externalUrl":{"description":"The external URL under which the Prometheus service is externally\navailable. This is necessary to generate correct URLs (for instance if\nPrometheus is accessible behind an Ingress resource).","type":"string"},"hostAliases":{"description":"Optional list of hosts and IPs that will be injected into the Pod's\nhosts file if specified.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["hostnames","ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"}},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map"},"hostNetwork":{"description":"Use the host's network namespace if true.\n\nMake sure to understand the security implications if you want to enable\nit (https://kubernetes.io/docs/concepts/configuration/overview/).\n\nWhen hostNetwork is enabled, this will set the DNS policy to\n`ClusterFirstWithHostNet` automatically (unless `.spec.DNSPolicy` is set\nto a different value).","type":"boolean"},"ignoreNamespaceSelectors":{"description":"When true, `spec.namespaceSelector` from all PodMonitor, ServiceMonitor\nand Probe objects will be ignored. They will only discover targets\nwithin the namespace of the PodMonitor, ServiceMonitor and Probe\nobject.","type":"boolean"},"image":{"description":"Container image name for Prometheus. If specified, it takes precedence\nover the `spec.baseImage`, `spec.tag` and `spec.sha` fields.\n\nSpecifying `spec.version` is still necessary to ensure the Prometheus\nOperator knows which version of Prometheus is being configured.\n\nIf neither `spec.image` nor `spec.baseImage` are defined, the operator\nwill use the latest upstream version of Prometheus available at the time\nwhen the operator was released.","type":"string"},"imagePullPolicy":{"description":"Image pull policy for the 'prometheus', 'init-config-reloader' and 'config-reloader' containers.\nSee https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy for more details.","type":"string","enum":["","Always","Never","IfNotPresent"]},"imagePullSecrets":{"description":"An optional list of references to Secrets in the same namespace\nto use for pulling images from registries.\nSee http://kubernetes.io/docs/user-guide/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"description":"InitContainers allows injecting initContainers to the Pod definition. Those\ncan be used to e.g.  fetch secrets for injection into the Prometheus\nconfiguration from external sources. Any errors during the execution of\nan initContainer will lead to a restart of the Pod. More info:\nhttps://kubernetes.io/docs/concepts/workloads/pods/init-containers/\nInitContainers described here modify an operator generated init\ncontainers if they share the same name and modifications are done via a\nstrategic merge patch.\n\nThe names of init container name managed by the operator are:\n* `init-config-reloader`.\n\nOverriding init containers is entirely outside the scope of what the\nmaintainers will support and by doing so, you accept that this behaviour\nmay break at any time without notice.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"keepDroppedTargets":{"description":"Per-scrape limit on the number of targets dropped by relabeling\nthat will be kept in memory. 0 means no limit.\n\nIt requires Prometheus >= v2.47.0.\n\nNote that the global limit only applies to scrape objects that don't specify an explicit limit value.\nIf you want to enforce a maximum limit for all scrape objects, refer to enforcedKeepDroppedTargets.","type":"integer","format":"int64"},"labelLimit":{"description":"Per-scrape limit on number of labels that will be accepted for a sample.\nOnly valid in Prometheus versions 2.45.0 and newer.\n\nNote that the global limit only applies to scrape objects that don't specify an explicit limit value.\nIf you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelLimit.","type":"integer","format":"int64"},"labelNameLengthLimit":{"description":"Per-scrape limit on length of labels name that will be accepted for a sample.\nOnly valid in Prometheus versions 2.45.0 and newer.\n\nNote that the global limit only applies to scrape objects that don't specify an explicit limit value.\nIf you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelNameLengthLimit.","type":"integer","format":"int64"},"labelValueLengthLimit":{"description":"Per-scrape limit on length of labels value that will be accepted for a sample.\nOnly valid in Prometheus versions 2.45.0 and newer.\n\nNote that the global limit only applies to scrape objects that don't specify an explicit limit value.\nIf you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelValueLengthLimit.","type":"integer","format":"int64"},"listenLocal":{"description":"When true, the Prometheus server listens on the loopback address\ninstead of the Pod IP's address.","type":"boolean"},"logFormat":{"description":"Log format for Log level for Prometheus and the config-reloader sidecar.","type":"string","enum":["","logfmt","json"]},"logLevel":{"description":"Log level for Prometheus and the config-reloader sidecar.","type":"string","enum":["","debug","info","warn","error"]},"maximumStartupDurationSeconds":{"description":"Defines the maximum time that the `prometheus` container's startup probe will wait before being considered failed. The startup probe will return success after the WAL replay is complete.\nIf set, the value should be greater than 60 (seconds). Otherwise it will be equal to 600 seconds (15 minutes).","type":"integer","format":"int32","minimum":60},"minReadySeconds":{"description":"Minimum number of seconds for which a newly created Pod should be ready\nwithout any of its container crashing for it to be considered available.\nDefaults to 0 (pod will be considered available as soon as it is ready)\n\nThis is an alpha field from kubernetes 1.22 until 1.24 which requires\nenabling the StatefulSetMinReadySeconds feature gate.","type":"integer","format":"int32"},"nodeSelector":{"description":"Defines on which Nodes the Pods are scheduled.","type":"object","additionalProperties":{"type":"string"}},"otlp":{"description":"Settings related to the OTLP receiver feature.\nIt requires Prometheus >= v2.55.0.","type":"object","properties":{"promoteResourceAttributes":{"description":"List of OpenTelemetry Attributes that should be promoted to metric labels, defaults to none.","type":"array","minItems":1,"items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"}}},"overrideHonorLabels":{"description":"When true, Prometheus resolves label conflicts by renaming the labels in the scraped data\n to “exported_” for all targets created from ServiceMonitor, PodMonitor and\nScrapeConfig objects. Otherwise the HonorLabels field of the service or pod monitor applies.\nIn practice,`overrideHonorLaels:true` enforces `honorLabels:false`\nfor all ServiceMonitor, PodMonitor and ScrapeConfig objects.","type":"boolean"},"overrideHonorTimestamps":{"description":"When true, Prometheus ignores the timestamps for all the targets created\nfrom service and pod monitors.\nOtherwise the HonorTimestamps field of the service or pod monitor applies.","type":"boolean"},"paused":{"description":"When a Prometheus deployment is paused, no actions except for deletion\nwill be performed on the underlying objects.","type":"boolean"},"persistentVolumeClaimRetentionPolicy":{"description":"The field controls if and how PVCs are deleted during the lifecycle of a StatefulSet.\nThe default behavior is all PVCs are retained.\nThis is an alpha field from kubernetes 1.23 until 1.26 and a beta field from 1.26.\nIt requires enabling the StatefulSetAutoDeletePVC feature gate.","type":"object","properties":{"whenDeleted":{"description":"WhenDeleted specifies what happens to PVCs created from StatefulSet\nVolumeClaimTemplates when the StatefulSet is deleted. The default policy\nof `Retain` causes PVCs to not be affected by StatefulSet deletion. The\n`Delete` policy causes those PVCs to be deleted.","type":"string"},"whenScaled":{"description":"WhenScaled specifies what happens to PVCs created from StatefulSet\nVolumeClaimTemplates when the StatefulSet is scaled down. The default\npolicy of `Retain` causes PVCs to not be affected by a scaledown. The\n`Delete` policy causes the associated PVCs for any excess pods above\nthe replica count to be deleted.","type":"string"}}},"podMetadata":{"description":"PodMetadata configures labels and annotations which are propagated to the Prometheus pods.\n\nThe following items are reserved and cannot be overridden:\n* \"prometheus\" label, set to the name of the Prometheus object.\n* \"app.kubernetes.io/instance\" label, set to the name of the Prometheus object.\n* \"app.kubernetes.io/managed-by\" label, set to \"prometheus-operator\".\n* \"app.kubernetes.io/name\" label, set to \"prometheus\".\n* \"app.kubernetes.io/version\" label, set to the Prometheus version.\n* \"operator.prometheus.io/name\" label, set to the name of the Prometheus object.\n* \"operator.prometheus.io/shard\" label, set to the shard number of the Prometheus object.\n* \"kubectl.kubernetes.io/default-container\" annotation, set to \"prometheus\".","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: http://kubernetes.io/docs/user-guide/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: http://kubernetes.io/docs/user-guide/labels","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although\nsome resources may allow a client to request the generation of an appropriate name\nautomatically. Name is primarily intended for creation idempotence and configuration\ndefinition.\nCannot be updated.\nMore info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"}}},"podMonitorNamespaceSelector":{"description":"Namespaces to match for PodMonitors discovery. An empty label selector\nmatches all namespaces. A null label selector (default value) matches the current\nnamespace only.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podMonitorSelector":{"description":"PodMonitors to be selected for target discovery. An empty label selector\nmatches all objects. A null label selector matches no objects.\n\nIf `spec.serviceMonitorSelector`, `spec.podMonitorSelector`, `spec.probeSelector`\nand `spec.scrapeConfigSelector` are null, the Prometheus configuration is unmanaged.\nThe Prometheus operator will ensure that the Prometheus configuration's\nSecret exists, but it is the responsibility of the user to provide the raw\ngzipped Prometheus configuration under the `prometheus.yaml.gz` key.\nThis behavior is *deprecated* and will be removed in the next major version\nof the custom resource definition. It is recommended to use\n`spec.additionalScrapeConfigs` instead.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podTargetLabels":{"description":"PodTargetLabels are appended to the `spec.podTargetLabels` field of all\nPodMonitor and ServiceMonitor objects.","type":"array","items":{"type":"string"}},"portName":{"description":"Port name used for the pods and governing service.\nDefault: \"web\"","type":"string"},"priorityClassName":{"description":"Priority class assigned to the Pods.","type":"string"},"probeNamespaceSelector":{"description":"Namespaces to match for Probe discovery. An empty label\nselector matches all namespaces. A null label selector matches the\ncurrent namespace only.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"probeSelector":{"description":"Probes to be selected for target discovery. An empty label selector\nmatches all objects. A null label selector matches no objects.\n\nIf `spec.serviceMonitorSelector`, `spec.podMonitorSelector`, `spec.probeSelector`\nand `spec.scrapeConfigSelector` are null, the Prometheus configuration is unmanaged.\nThe Prometheus operator will ensure that the Prometheus configuration's\nSecret exists, but it is the responsibility of the user to provide the raw\ngzipped Prometheus configuration under the `prometheus.yaml.gz` key.\nThis behavior is *deprecated* and will be removed in the next major version\nof the custom resource definition. It is recommended to use\n`spec.additionalScrapeConfigs` instead.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"prometheusExternalLabelName":{"description":"Name of Prometheus external label used to denote the Prometheus instance\nname. The external label will _not_ be added when the field is set to\nthe empty string (`\"\"`).\n\nDefault: \"prometheus\"","type":"string"},"prometheusRulesExcludedFromEnforce":{"description":"Defines the list of PrometheusRule objects to which the namespace label\nenforcement doesn't apply.\nThis is only relevant when `spec.enforcedNamespaceLabel` is set to true.\nDeprecated: use `spec.excludedFromEnforcement` instead.","type":"array","items":{"description":"PrometheusRuleExcludeConfig enables users to configure excluded\nPrometheusRule names and their namespaces to be ignored while enforcing\nnamespace label for alerts and metrics.","type":"object","required":["ruleName","ruleNamespace"],"properties":{"ruleName":{"description":"Name of the excluded PrometheusRule object.","type":"string"},"ruleNamespace":{"description":"Namespace of the excluded PrometheusRule object.","type":"string"}}}},"query":{"description":"QuerySpec defines the configuration of the Promethus query service.","type":"object","properties":{"lookbackDelta":{"description":"The delta difference allowed for retrieving metrics during expression evaluations.","type":"string"},"maxConcurrency":{"description":"Number of concurrent queries that can be run at once.","type":"integer","format":"int32","minimum":1},"maxSamples":{"description":"Maximum number of samples a single query can load into memory. Note that\nqueries will fail if they would load more samples than this into memory,\nso this also limits the number of samples a query can return.","type":"integer","format":"int32"},"timeout":{"description":"Maximum time a query may take before being aborted.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"}}},"queryLogFile":{"description":"queryLogFile specifies where the file to which PromQL queries are logged.\n\nIf the filename has an empty path, e.g. 'query.log', The Prometheus Pods\nwill mount the file into an emptyDir volume at `/var/log/prometheus`.\nIf a full path is provided, e.g. '/var/log/prometheus/query.log', you\nmust mount a volume in the specified directory and it must be writable.\nThis is because the prometheus container runs with a read-only root\nfilesystem for security reasons.\nAlternatively, the location can be set to a standard I/O stream, e.g.\n`/dev/stdout`, to log query information to the default Prometheus log\nstream.","type":"string"},"reloadStrategy":{"description":"Defines the strategy used to reload the Prometheus configuration.\nIf not specified, the configuration is reloaded using the /-/reload HTTP endpoint.","type":"string","enum":["HTTP","ProcessSignal"]},"remoteRead":{"description":"Defines the list of remote read configurations.","type":"array","items":{"description":"RemoteReadSpec defines the configuration for Prometheus to read back samples\nfrom a remote endpoint.","type":"object","required":["url"],"properties":{"authorization":{"description":"Authorization section for the URL.\n\nIt requires Prometheus >= v2.26.0.\n\nCannot be set at the same time as `basicAuth`, or `oauth2`.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"credentialsFile":{"description":"File to read a secret from, mutually exclusive with `credentials`.","type":"string"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth configuration for the URL.\n\nCannot be set at the same time as `authorization`, or `oauth2`.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerToken":{"description":"*Warning: this field shouldn't be used because the token value appears\nin clear-text. Prefer using `authorization`.*\n\nDeprecated: this will be removed in a future release.","type":"string"},"bearerTokenFile":{"description":"File from which to read the bearer token for the URL.\n\nDeprecated: this will be removed in a future release. Prefer using `authorization`.","type":"string"},"filterExternalLabels":{"description":"Whether to use the external labels as selectors for the remote read endpoint.\n\nIt requires Prometheus >= v2.34.0.","type":"boolean"},"followRedirects":{"description":"Configure whether HTTP requests follow HTTP 3xx redirects.\n\nIt requires Prometheus >= v2.26.0.","type":"boolean"},"headers":{"description":"Custom HTTP headers to be sent along with each remote read request.\nBe aware that headers that are set by Prometheus itself can't be overwritten.\nOnly valid in Prometheus versions 2.26.0 and newer.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"The name of the remote read queue, it must be unique if specified. The\nname is used in metrics and logging in order to differentiate read\nconfigurations.\n\nIt requires Prometheus >= v2.15.0.","type":"string"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 configuration for the URL.\n\nIt requires Prometheus >= v2.27.0.\n\nCannot be set at the same time as `authorization`, or `basicAuth`.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"readRecent":{"description":"Whether reads should be made for queries for time ranges that\nthe local storage should have complete data for.","type":"boolean"},"remoteTimeout":{"description":"Timeout for requests to the remote read endpoint.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"requiredMatchers":{"description":"An optional list of equality matchers which have to be present\nin a selector to query the remote read endpoint.","type":"object","additionalProperties":{"type":"string"}},"tlsConfig":{"description":"TLS Config to use for the URL.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"url":{"description":"The URL of the endpoint to query from.","type":"string"}}}},"remoteWrite":{"description":"Defines the list of remote write configurations.","type":"array","items":{"description":"RemoteWriteSpec defines the configuration to write samples from Prometheus\nto a remote endpoint.","type":"object","required":["url"],"properties":{"authorization":{"description":"Authorization section for the URL.\n\nIt requires Prometheus >= v2.26.0.\n\nCannot be set at the same time as `sigv4`, `basicAuth`, `oauth2`, or `azureAd`.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"credentialsFile":{"description":"File to read a secret from, mutually exclusive with `credentials`.","type":"string"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"azureAd":{"description":"AzureAD for the URL.\n\nIt requires Prometheus >= v2.45.0.\n\nCannot be set at the same time as `authorization`, `basicAuth`, `oauth2`, or `sigv4`.","type":"object","properties":{"cloud":{"description":"The Azure Cloud. Options are 'AzurePublic', 'AzureChina', or 'AzureGovernment'.","type":"string","enum":["AzureChina","AzureGovernment","AzurePublic"]},"managedIdentity":{"description":"ManagedIdentity defines the Azure User-assigned Managed identity.\nCannot be set at the same time as `oauth` or `sdk`.","type":"object","required":["clientId"],"properties":{"clientId":{"description":"The client id","type":"string"}}},"oauth":{"description":"OAuth defines the oauth config that is being used to authenticate.\nCannot be set at the same time as `managedIdentity` or `sdk`.\n\nIt requires Prometheus >= v2.48.0.","type":"object","required":["clientId","clientSecret","tenantId"],"properties":{"clientId":{"description":"`clientID` is the clientId of the Azure Active Directory application that is being used to authenticate.","type":"string","minLength":1},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the client secret of the Azure Active Directory application that is being used to authenticate.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"tenantId":{"description":"`tenantId` is the tenant ID of the Azure Active Directory application that is being used to authenticate.","type":"string","minLength":1,"pattern":"^[0-9a-zA-Z-.]+$"}}},"sdk":{"description":"SDK defines the Azure SDK config that is being used to authenticate.\nSee https://learn.microsoft.com/en-us/azure/developer/go/azure-sdk-authentication\nCannot be set at the same time as `oauth` or `managedIdentity`.\n\nIt requires Prometheus >= 2.52.0.","type":"object","properties":{"tenantId":{"description":"`tenantId` is the tenant ID of the azure active directory application that is being used to authenticate.","type":"string","pattern":"^[0-9a-zA-Z-.]+$"}}}}},"basicAuth":{"description":"BasicAuth configuration for the URL.\n\nCannot be set at the same time as `sigv4`, `authorization`, `oauth2`, or `azureAd`.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerToken":{"description":"*Warning: this field shouldn't be used because the token value appears\nin clear-text. Prefer using `authorization`.*\n\nDeprecated: this will be removed in a future release.","type":"string"},"bearerTokenFile":{"description":"File from which to read bearer token for the URL.\n\nDeprecated: this will be removed in a future release. Prefer using `authorization`.","type":"string"},"enableHTTP2":{"description":"Whether to enable HTTP2.","type":"boolean"},"followRedirects":{"description":"Configure whether HTTP requests follow HTTP 3xx redirects.\n\nIt requires Prometheus >= v2.26.0.","type":"boolean"},"headers":{"description":"Custom HTTP headers to be sent along with each remote write request.\nBe aware that headers that are set by Prometheus itself can't be overwritten.\n\nIt requires Prometheus >= v2.25.0.","type":"object","additionalProperties":{"type":"string"}},"messageVersion":{"description":"The Remote Write message's version to use when writing to the endpoint.\n\n`Version1.0` corresponds to the `prometheus.WriteRequest` protobuf message introduced in Remote Write 1.0.\n`Version2.0` corresponds to the `io.prometheus.write.v2.Request` protobuf message introduced in Remote Write 2.0.\n\nWhen `Version2.0` is selected, Prometheus will automatically be\nconfigured to append the metadata of scraped metrics to the WAL.\n\nBefore setting this field, consult with your remote storage provider\nwhat message version it supports.\n\nIt requires Prometheus >= v2.54.0.","type":"string","enum":["V1.0","V2.0"]},"metadataConfig":{"description":"MetadataConfig configures the sending of series metadata to the remote storage.","type":"object","properties":{"send":{"description":"Defines whether metric metadata is sent to the remote storage or not.","type":"boolean"},"sendInterval":{"description":"Defines how frequently metric metadata is sent to the remote storage.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"}}},"name":{"description":"The name of the remote write queue, it must be unique if specified. The\nname is used in metrics and logging in order to differentiate queues.\n\nIt requires Prometheus >= v2.15.0.","type":"string"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 configuration for the URL.\n\nIt requires Prometheus >= v2.27.0.\n\nCannot be set at the same time as `sigv4`, `authorization`, `basicAuth`, or `azureAd`.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"queueConfig":{"description":"QueueConfig allows tuning of the remote write queue parameters.","type":"object","properties":{"batchSendDeadline":{"description":"BatchSendDeadline is the maximum time a sample will wait in buffer.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"capacity":{"description":"Capacity is the number of samples to buffer per shard before we start\ndropping them.","type":"integer"},"maxBackoff":{"description":"MaxBackoff is the maximum retry delay.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"maxRetries":{"description":"MaxRetries is the maximum number of times to retry a batch on recoverable errors.","type":"integer"},"maxSamplesPerSend":{"description":"MaxSamplesPerSend is the maximum number of samples per send.","type":"integer"},"maxShards":{"description":"MaxShards is the maximum number of shards, i.e. amount of concurrency.","type":"integer"},"minBackoff":{"description":"MinBackoff is the initial retry delay. Gets doubled for every retry.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"minShards":{"description":"MinShards is the minimum number of shards, i.e. amount of concurrency.","type":"integer"},"retryOnRateLimit":{"description":"Retry upon receiving a 429 status code from the remote-write storage.\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"boolean"},"sampleAgeLimit":{"description":"SampleAgeLimit drops samples older than the limit.\nIt requires Prometheus >= v2.50.0.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"}}},"remoteTimeout":{"description":"Timeout for requests to the remote write endpoint.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"sendExemplars":{"description":"Enables sending of exemplars over remote write. Note that\nexemplar-storage itself must be enabled using the `spec.enableFeatures`\noption for exemplars to be scraped in the first place.\n\nIt requires Prometheus >= v2.27.0.","type":"boolean"},"sendNativeHistograms":{"description":"Enables sending of native histograms, also known as sparse histograms\nover remote write.\n\nIt requires Prometheus >= v2.40.0.","type":"boolean"},"sigv4":{"description":"Sigv4 allows to configures AWS's Signature Verification 4 for the URL.\n\nIt requires Prometheus >= v2.26.0.\n\nCannot be set at the same time as `authorization`, `basicAuth`, `oauth2`, or `azureAd`.","type":"object","properties":{"accessKey":{"description":"AccessKey is the AWS API key. If not specified, the environment variable\n`AWS_ACCESS_KEY_ID` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"profile":{"description":"Profile is the named AWS profile used to authenticate.","type":"string"},"region":{"description":"Region is the AWS region. If blank, the region from the default credentials chain used.","type":"string"},"roleArn":{"description":"RoleArn is the named AWS profile used to authenticate.","type":"string"},"secretKey":{"description":"SecretKey is the AWS API secret. If not specified, the environment\nvariable `AWS_SECRET_ACCESS_KEY` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"tlsConfig":{"description":"TLS Config to use for the URL.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"url":{"description":"The URL of the endpoint to send samples to.","type":"string","minLength":1},"writeRelabelConfigs":{"description":"The list of remote write relabel configurations.","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}}}}},"remoteWriteReceiverMessageVersions":{"description":"List of the protobuf message versions to accept when receiving the\nremote writes.\n\nIt requires Prometheus >= v2.54.0.","type":"array","minItems":1,"items":{"type":"string","enum":["V1.0","V2.0"]},"x-kubernetes-list-type":"set"},"replicaExternalLabelName":{"description":"Name of Prometheus external label used to denote the replica name.\nThe external label will _not_ be added when the field is set to the\nempty string (`\"\"`).\n\nDefault: \"prometheus_replica\"","type":"string"},"replicas":{"description":"Number of replicas of each shard to deploy for a Prometheus deployment.\n`spec.replicas` multiplied by `spec.shards` is the total number of Pods\ncreated.\n\nDefault: 1","type":"integer","format":"int32"},"resources":{"description":"Defines the resources requests and limits of the 'prometheus' container.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"retention":{"description":"How long to retain the Prometheus data.\n\nDefault: \"24h\" if `spec.retention` and `spec.retentionSize` are empty.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"retentionSize":{"description":"Maximum number of bytes used by the Prometheus data.","type":"string","pattern":"(^0|([0-9]*[.])?[0-9]+((K|M|G|T|E|P)i?)?B)$"},"routePrefix":{"description":"The route prefix Prometheus registers HTTP handlers for.\n\nThis is useful when using `spec.externalURL`, and a proxy is rewriting\nHTTP routes of a request, and the actual ExternalURL is still true, but\nthe server serves requests under a different route prefix. For example\nfor use with `kubectl proxy`.","type":"string"},"ruleNamespaceSelector":{"description":"Namespaces to match for PrometheusRule discovery. An empty label selector\nmatches all namespaces. A null label selector matches the current\nnamespace only.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"ruleQueryOffset":{"description":"Defines the offset the rule evaluation timestamp of this particular group by the specified duration into the past.\nIt requires Prometheus >= v2.53.0.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"ruleSelector":{"description":"PrometheusRule objects to be selected for rule evaluation. An empty\nlabel selector matches all objects. A null label selector matches no\nobjects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"rules":{"description":"Defines the configuration of the Prometheus rules' engine.","type":"object","properties":{"alert":{"description":"Defines the parameters of the Prometheus rules' engine.\n\nAny update to these parameters trigger a restart of the pods.","type":"object","properties":{"forGracePeriod":{"description":"Minimum duration between alert and restored 'for' state.\n\nThis is maintained only for alerts with a configured 'for' time greater\nthan the grace period.","type":"string"},"forOutageTolerance":{"description":"Max time to tolerate prometheus outage for restoring 'for' state of\nalert.","type":"string"},"resendDelay":{"description":"Minimum amount of time to wait before resending an alert to\nAlertmanager.","type":"string"}}}}},"runtime":{"description":"RuntimeConfig configures the values for the Prometheus process behavior","type":"object","properties":{"goGC":{"description":"The Go garbage collection target percentage. Lowering this number may increase the CPU usage.\nSee: https://tip.golang.org/doc/gc-guide#GOGC","type":"integer","format":"int32","minimum":-1}}},"sampleLimit":{"description":"SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.\nOnly valid in Prometheus versions 2.45.0 and newer.\n\nNote that the global limit only applies to scrape objects that don't specify an explicit limit value.\nIf you want to enforce a maximum limit for all scrape objects, refer to enforcedSampleLimit.","type":"integer","format":"int64"},"scrapeClasses":{"description":"List of scrape classes to expose to scraping objects such as\nPodMonitors, ServiceMonitors, Probes and ScrapeConfigs.\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"array","items":{"type":"object","required":["name"],"properties":{"attachMetadata":{"description":"AttachMetadata configures additional metadata to the discovered targets.\nWhen the scrape object defines its own configuration, it takes\nprecedence over the scrape class configuration.","type":"object","properties":{"node":{"description":"When set to true, Prometheus attaches node metadata to the discovered\ntargets.\n\nThe Prometheus service account must have the `list` and `watch`\npermissions on the `Nodes` objects.","type":"boolean"}}},"default":{"description":"Default indicates that the scrape applies to all scrape objects that\ndon't configure an explicit scrape class name.\n\nOnly one scrape class can be set as the default.","type":"boolean"},"metricRelabelings":{"description":"MetricRelabelings configures the relabeling rules to apply to all samples before ingestion.\n\nThe Operator adds the scrape class metric relabelings defined here.\nThen the Operator adds the target-specific metric relabelings defined in ServiceMonitors, PodMonitors, Probes and ScrapeConfigs.\nThen the Operator adds namespace enforcement relabeling rule, specified in '.spec.enforcedNamespaceLabel'.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#metric_relabel_configs","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"name":{"description":"Name of the scrape class.","type":"string","minLength":1},"relabelings":{"description":"Relabelings configures the relabeling rules to apply to all scrape targets.\n\nThe Operator automatically adds relabelings for a few standard Kubernetes fields\nlike `__meta_kubernetes_namespace` and `__meta_kubernetes_service_name`.\nThen the Operator adds the scrape class relabelings defined here.\nThen the Operator adds the target-specific relabelings defined in the scrape object.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"tlsConfig":{"description":"TLSConfig defines the TLS settings to use for the scrape. When the\nscrape objects define their own CA, certificate and/or key, they take\nprecedence over the corresponding scrape class fields.\n\nFor now only the `caFile`, `certFile` and `keyFile` fields are supported.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"scrapeConfigNamespaceSelector":{"description":"Namespaces to match for ScrapeConfig discovery. An empty label selector\nmatches all namespaces. A null label selector matches the current\nnamespace only.\n\nNote that the ScrapeConfig custom resource definition is currently at Alpha level.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"scrapeConfigSelector":{"description":"ScrapeConfigs to be selected for target discovery. An empty label\nselector matches all objects. A null label selector matches no objects.\n\nIf `spec.serviceMonitorSelector`, `spec.podMonitorSelector`, `spec.probeSelector`\nand `spec.scrapeConfigSelector` are null, the Prometheus configuration is unmanaged.\nThe Prometheus operator will ensure that the Prometheus configuration's\nSecret exists, but it is the responsibility of the user to provide the raw\ngzipped Prometheus configuration under the `prometheus.yaml.gz` key.\nThis behavior is *deprecated* and will be removed in the next major version\nof the custom resource definition. It is recommended to use\n`spec.additionalScrapeConfigs` instead.\n\nNote that the ScrapeConfig custom resource definition is currently at Alpha level.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"scrapeInterval":{"description":"Interval between consecutive scrapes.\n\nDefault: \"30s\"","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"scrapeProtocols":{"description":"The protocols to negotiate during a scrape. It tells clients the\nprotocols supported by Prometheus in order of preference (from most to least preferred).\n\nIf unset, Prometheus uses its default value.\n\nIt requires Prometheus >= v2.49.0.","type":"array","items":{"description":"ScrapeProtocol represents a protocol used by Prometheus for scraping metrics.\nSupported values are:\n* `OpenMetricsText0.0.1`\n* `OpenMetricsText1.0.0`\n* `PrometheusProto`\n* `PrometheusText0.0.4`","type":"string","enum":["PrometheusProto","OpenMetricsText0.0.1","OpenMetricsText1.0.0","PrometheusText0.0.4"]},"x-kubernetes-list-type":"set"},"scrapeTimeout":{"description":"Number of seconds to wait until a scrape request times out.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"secrets":{"description":"Secrets is a list of Secrets in the same namespace as the Prometheus\nobject, which shall be mounted into the Prometheus Pods.\nEach Secret is added to the StatefulSet definition as a volume named `secret-<secret-name>`.\nThe Secrets are mounted into /etc/prometheus/secrets/<secret-name> in the 'prometheus' container.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nThis defaults to the default PodSecurityContext.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run the\nPrometheus Pods.","type":"string"},"serviceDiscoveryRole":{"description":"Defines the service discovery role used to discover targets from\n`ServiceMonitor` objects and Alertmanager endpoints.\n\nIf set, the value should be either \"Endpoints\" or \"EndpointSlice\".\nIf unset, the operator assumes the \"Endpoints\" role.","type":"string","enum":["Endpoints","EndpointSlice"]},"serviceMonitorNamespaceSelector":{"description":"Namespaces to match for ServicedMonitors discovery. An empty label selector\nmatches all namespaces. A null label selector (default value) matches the current\nnamespace only.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"serviceMonitorSelector":{"description":"ServiceMonitors to be selected for target discovery. An empty label\nselector matches all objects. A null label selector matches no objects.\n\nIf `spec.serviceMonitorSelector`, `spec.podMonitorSelector`, `spec.probeSelector`\nand `spec.scrapeConfigSelector` are null, the Prometheus configuration is unmanaged.\nThe Prometheus operator will ensure that the Prometheus configuration's\nSecret exists, but it is the responsibility of the user to provide the raw\ngzipped Prometheus configuration under the `prometheus.yaml.gz` key.\nThis behavior is *deprecated* and will be removed in the next major version\nof the custom resource definition. It is recommended to use\n`spec.additionalScrapeConfigs` instead.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"sha":{"description":"Deprecated: use 'spec.image' instead. The image's digest can be specified as part of the image name.","type":"string"},"shards":{"description":"Number of shards to distribute targets onto. `spec.replicas`\nmultiplied by `spec.shards` is the total number of Pods created.\n\nNote that scaling down shards will not reshard data onto remaining\ninstances, it must be manually moved. Increasing shards will not reshard\ndata either but it will continue to be available from the same\ninstances. To query globally, use Thanos sidecar and Thanos querier or\nremote write data to a central location.\n\nSharding is performed on the content of the `__address__` target meta-label\nfor PodMonitors and ServiceMonitors and `__param_target__` for Probes.\n\nDefault: 1","type":"integer","format":"int32"},"storage":{"description":"Storage defines the storage used by Prometheus.","type":"object","properties":{"disableMountSubPath":{"description":"Deprecated: subPath usage will be removed in a future release.","type":"boolean"},"emptyDir":{"description":"EmptyDirVolumeSource to be used by the StatefulSet.\nIf specified, it takes precedence over `ephemeral` and `volumeClaimTemplate`.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes/#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"EphemeralVolumeSource to be used by the StatefulSet.\nThis is a beta field in k8s 1.21 and GA in 1.15.\nFor lower versions, starting with k8s 1.19, it requires enabling the GenericEphemeralVolume feature gate.\nMore info: https://kubernetes.io/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volumes","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"volumeClaimTemplate":{"description":"Defines the PVC spec to be used by the Prometheus StatefulSets.\nThe easiest way to use a volume that cannot be automatically provisioned\nis to use a label selector alongside manually created PersistentVolumes.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object.\nServers should convert recognized schemas to the latest internal value, and\nmay reject unrecognized values.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents.\nServers may infer this from the endpoint the client submits requests to.\nCannot be updated.\nIn CamelCase.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"EmbeddedMetadata contains metadata relevant to an EmbeddedResource.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: http://kubernetes.io/docs/user-guide/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: http://kubernetes.io/docs/user-guide/labels","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although\nsome resources may allow a client to request the generation of an appropriate name\nautomatically. Name is primarily intended for creation idempotence and configuration\ndefinition.\nCannot be updated.\nMore info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"}}},"spec":{"description":"Defines the desired characteristics of a volume requested by a pod author.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}},"status":{"description":"Deprecated: this field is never set.","type":"object","properties":{"accessModes":{"description":"accessModes contains the actual access modes the volume backing the PVC has.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"allocatedResourceStatuses":{"description":"allocatedResourceStatuses stores status of resource being resized for the given PVC.\nKey names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered\nreserved and hence may not be used.\n\nClaimResourceStatus can be in any of following states:\n\t- ControllerResizeInProgress:\n\t\tState set when resize controller starts resizing the volume in control-plane.\n\t- ControllerResizeFailed:\n\t\tState set when resize has failed in resize controller with a terminal error.\n\t- NodeResizePending:\n\t\tState set when resize controller has finished resizing the volume but further resizing of\n\t\tvolume is needed on the node.\n\t- NodeResizeInProgress:\n\t\tState set when kubelet starts resizing the volume.\n\t- NodeResizeFailed:\n\t\tState set when resizing has failed in kubelet with a terminal error. Transient errors don't set\n\t\tNodeResizeFailed.\nFor example: if expanding a PVC for more capacity - this field can be one of the following states:\n\t- pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeFailed\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizePending\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeFailed\"\nWhen this field is not set, it means that no resize operation is in progress for the given PVC.\n\nA controller that receives PVC update with previously unknown resourceName or ClaimResourceStatus\nshould ignore the update for the purpose it was designed. For example - a controller that\nonly is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid\nresources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"description":"When a controller receives persistentvolume claim update with ClaimResourceStatus for a resource\nthat it does not recognizes, then it should ignore that update and let other controllers\nhandle it.","type":"string"},"x-kubernetes-map-type":"granular"},"allocatedResources":{"description":"allocatedResources tracks the resources allocated to a PVC including its capacity.\nKey names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered\nreserved and hence may not be used.\n\nCapacity reported here may be larger than the actual capacity when a volume expansion operation\nis requested.\nFor storage quota, the larger value from allocatedResources and PVC.spec.resources is used.\nIf allocatedResources is not set, PVC.spec.resources alone is used for quota calculation.\nIf a volume expansion capacity request is lowered, allocatedResources is only\nlowered if there are no expansion operations in progress and if the actual volume capacity\nis equal or lower than the requested capacity.\n\nA controller that receives PVC update with previously unknown resourceName\nshould ignore the update for the purpose it was designed. For example - a controller that\nonly is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid\nresources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"capacity":{"description":"capacity represents the actual resources of the underlying volume.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"conditions":{"description":"conditions is the current Condition of persistent volume claim. If underlying persistent volume is being\nresized then the Condition will be set to 'Resizing'.","type":"array","items":{"description":"PersistentVolumeClaimCondition contains details about state of pvc","type":"object","required":["status","type"],"properties":{"lastProbeTime":{"description":"lastProbeTime is the time we probed the condition.","type":"string","format":"date-time"},"lastTransitionTime":{"description":"lastTransitionTime is the time the condition transitioned from one status to another.","type":"string","format":"date-time"},"message":{"description":"message is the human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"reason is a unique, this should be a short, machine understandable string that gives the reason\nfor condition's last transition. If it reports \"Resizing\" that means the underlying\npersistent volume is being resized.","type":"string"},"status":{"type":"string"},"type":{"description":"PersistentVolumeClaimConditionType defines the condition of PV claim.\nValid values are:\n  - \"Resizing\", \"FileSystemResizePending\"\n\nIf RecoverVolumeExpansionFailure feature gate is enabled, then following additional values can be expected:\n  - \"ControllerResizeError\", \"NodeResizeError\"\n\nIf VolumeAttributesClass feature gate is enabled, then following additional values can be expected:\n  - \"ModifyVolumeError\", \"ModifyingVolume\"","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"currentVolumeAttributesClassName":{"description":"currentVolumeAttributesClassName is the current name of the VolumeAttributesClass the PVC is using.\nWhen unset, there is no VolumeAttributeClass applied to this PersistentVolumeClaim\nThis is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"string"},"modifyVolumeStatus":{"description":"ModifyVolumeStatus represents the status object of ControllerModifyVolume operation.\nWhen this is unset, there is no ModifyVolume operation being attempted.\nThis is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"object","required":["status"],"properties":{"status":{"description":"status is the status of the ControllerModifyVolume operation. It can be in any of following states:\n - Pending\n   Pending indicates that the PersistentVolumeClaim cannot be modified due to unmet requirements, such as\n   the specified VolumeAttributesClass not existing.\n - InProgress\n   InProgress indicates that the volume is being modified.\n - Infeasible\n  Infeasible indicates that the request has been rejected as invalid by the CSI driver. To\n\t  resolve the error, a valid VolumeAttributesClass needs to be specified.\nNote: New statuses can be added in the future. Consumers should check for unknown statuses and fail appropriately.","type":"string"},"targetVolumeAttributesClassName":{"description":"targetVolumeAttributesClassName is the name of the VolumeAttributesClass the PVC currently being reconciled","type":"string"}}},"phase":{"description":"phase represents the current phase of PersistentVolumeClaim.","type":"string"}}}}}}},"tag":{"description":"Deprecated: use 'spec.image' instead. The image's tag can be specified as part of the image name.","type":"string"},"targetLimit":{"description":"TargetLimit defines a limit on the number of scraped targets that will be accepted.\nOnly valid in Prometheus versions 2.45.0 and newer.\n\nNote that the global limit only applies to scrape objects that don't specify an explicit limit value.\nIf you want to enforce a maximum limit for all scrape objects, refer to enforcedTargetLimit.","type":"integer","format":"int64"},"thanos":{"description":"Defines the configuration of the optional Thanos sidecar.","type":"object","properties":{"additionalArgs":{"description":"AdditionalArgs allows setting additional arguments for the Thanos container.\nThe arguments are passed as-is to the Thanos container which may cause issues\nif they are invalid or not supported the given Thanos version.\nIn case of an argument conflict (e.g. an argument which is already set by the\noperator itself) or when providing an invalid argument, the reconciliation will\nfail and an error will be logged.","type":"array","items":{"description":"Argument as part of the AdditionalArgs list.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the argument, e.g. \"scrape.discovery-reload-interval\".","type":"string","minLength":1},"value":{"description":"Argument value, e.g. 30s. Can be empty for name-only arguments (e.g. --storage.tsdb.no-lockfile)","type":"string"}}}},"baseImage":{"description":"Deprecated: use 'image' instead.","type":"string"},"blockSize":{"description":"BlockDuration controls the size of TSDB blocks produced by Prometheus.\nThe default value is 2h to match the upstream Prometheus defaults.\n\nWARNING: Changing the block duration can impact the performance and\nefficiency of the entire Prometheus/Thanos stack due to how it interacts\nwith memory and Thanos compactors. It is recommended to keep this value\nset to a multiple of 120 times your longest scrape or rule interval. For\nexample, 30s * 120 = 1h.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"getConfigInterval":{"description":"How often to retrieve the Prometheus configuration.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"getConfigTimeout":{"description":"Maximum time to wait when retrieving the Prometheus configuration.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"grpcListenLocal":{"description":"When true, the Thanos sidecar listens on the loopback interface instead\nof the Pod IP's address for the gRPC endpoints.\n\nIt has no effect if `listenLocal` is true.","type":"boolean"},"grpcServerTlsConfig":{"description":"Configures the TLS parameters for the gRPC server providing the StoreAPI.\n\nNote: Currently only the `caFile`, `certFile`, and `keyFile` fields are supported.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"httpListenLocal":{"description":"When true, the Thanos sidecar listens on the loopback interface instead\nof the Pod IP's address for the HTTP endpoints.\n\nIt has no effect if `listenLocal` is true.","type":"boolean"},"image":{"description":"Container image name for Thanos. If specified, it takes precedence over\nthe `spec.thanos.baseImage`, `spec.thanos.tag` and `spec.thanos.sha`\nfields.\n\nSpecifying `spec.thanos.version` is still necessary to ensure the\nPrometheus Operator knows which version of Thanos is being configured.\n\nIf neither `spec.thanos.image` nor `spec.thanos.baseImage` are defined,\nthe operator will use the latest upstream version of Thanos available at\nthe time when the operator was released.","type":"string"},"listenLocal":{"description":"Deprecated: use `grpcListenLocal` and `httpListenLocal` instead.","type":"boolean"},"logFormat":{"description":"Log format for the Thanos sidecar.","type":"string","enum":["","logfmt","json"]},"logLevel":{"description":"Log level for the Thanos sidecar.","type":"string","enum":["","debug","info","warn","error"]},"minTime":{"description":"Defines the start of time range limit served by the Thanos sidecar's StoreAPI.\nThe field's value should be a constant time in RFC3339 format or a time\nduration relative to current time, such as -1d or 2h45m. Valid duration\nunits are ms, s, m, h, d, w, y.","type":"string"},"objectStorageConfig":{"description":"Defines the Thanos sidecar's configuration to upload TSDB blocks to object storage.\n\nMore info: https://thanos.io/tip/thanos/storage.md/\n\nobjectStorageConfigFile takes precedence over this field.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"objectStorageConfigFile":{"description":"Defines the Thanos sidecar's configuration file to upload TSDB blocks to object storage.\n\nMore info: https://thanos.io/tip/thanos/storage.md/\n\nThis field takes precedence over objectStorageConfig.","type":"string"},"readyTimeout":{"description":"ReadyTimeout is the maximum time that the Thanos sidecar will wait for\nPrometheus to start.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"resources":{"description":"Defines the resources requests and limits of the Thanos sidecar.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"sha":{"description":"Deprecated: use 'image' instead.  The image digest can be specified as part of the image name.","type":"string"},"tag":{"description":"Deprecated: use 'image' instead. The image's tag can be specified as as part of the image name.","type":"string"},"tracingConfig":{"description":"Defines the tracing configuration for the Thanos sidecar.\n\n`tracingConfigFile` takes precedence over this field.\n\nMore info: https://thanos.io/tip/thanos/tracing.md/\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"tracingConfigFile":{"description":"Defines the tracing configuration file for the Thanos sidecar.\n\nThis field takes precedence over `tracingConfig`.\n\nMore info: https://thanos.io/tip/thanos/tracing.md/\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"string"},"version":{"description":"Version of Thanos being deployed. The operator uses this information\nto generate the Prometheus StatefulSet + configuration files.\n\nIf not specified, the operator assumes the latest upstream release of\nThanos available at the time when the version of the operator was\nreleased.","type":"string"},"volumeMounts":{"description":"VolumeMounts allows configuration of additional VolumeMounts for Thanos.\nVolumeMounts specified will be appended to other VolumeMounts in the\n'thanos-sidecar' container.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}}}},"tolerations":{"description":"Defines the Pods' tolerations if specified.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}},"topologySpreadConstraints":{"description":"Defines the pod's topology spread constraints if specified.","type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"additionalLabelSelectors":{"description":"Defines what Prometheus Operator managed labels should be added to labelSelector on the topologySpreadConstraint.","type":"string","enum":["OnResource","OnShard"]},"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}}},"tracingConfig":{"description":"TracingConfig configures tracing in Prometheus.\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"object","required":["endpoint"],"properties":{"clientType":{"description":"Client used to export the traces. Supported values are `http` or `grpc`.","type":"string","enum":["http","grpc"]},"compression":{"description":"Compression key for supported compression types. The only supported value is `gzip`.","type":"string","enum":["gzip"]},"endpoint":{"description":"Endpoint to send the traces to. Should be provided in format <host>:<port>.","type":"string","minLength":1},"headers":{"description":"Key-value pairs to be used as headers associated with gRPC or HTTP requests.","type":"object","additionalProperties":{"type":"string"}},"insecure":{"description":"If disabled, the client will use a secure connection.","type":"boolean"},"samplingFraction":{"description":"Sets the probability a given trace will be sampled. Must be a float from 0 through 1.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"timeout":{"description":"Maximum time the exporter will wait for each batch export.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"tlsConfig":{"description":"TLS Config to use when sending traces.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"tsdb":{"description":"Defines the runtime reloadable configuration of the timeseries database(TSDB).\nIt requires Prometheus >= v2.39.0 or PrometheusAgent >= v2.54.0.","type":"object","properties":{"outOfOrderTimeWindow":{"description":"Configures how old an out-of-order/out-of-bounds sample can be with\nrespect to the TSDB max time.\n\nAn out-of-order/out-of-bounds sample is ingested into the TSDB as long as\nthe timestamp of the sample is >= (TSDB.MaxTime - outOfOrderTimeWindow).\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.\n\nIt requires Prometheus >= v2.39.0 or PrometheusAgent >= v2.54.0.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"}}},"version":{"description":"Version of Prometheus being deployed. The operator uses this information\nto generate the Prometheus StatefulSet + configuration files.\n\nIf not specified, the operator assumes the latest upstream version of\nPrometheus available at the time when the version of the operator was\nreleased.","type":"string"},"volumeMounts":{"description":"VolumeMounts allows the configuration of additional VolumeMounts.\n\nVolumeMounts will be appended to other VolumeMounts in the 'prometheus'\ncontainer, that are generated as a result of StorageSpec objects.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes allows the configuration of additional volumes on the output\nStatefulSet definition. Volumes specified will be appended to other\nvolumes that are generated as a result of StorageSpec objects.","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath).\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}},"walCompression":{"description":"Configures compression of the write-ahead log (WAL) using Snappy.\n\nWAL compression is enabled by default for Prometheus >= 2.20.0\n\nRequires Prometheus v2.11.0 and above.","type":"boolean"},"web":{"description":"Defines the configuration of the Prometheus web server.","type":"object","properties":{"httpConfig":{"description":"Defines HTTP parameters for web server.","type":"object","properties":{"headers":{"description":"List of headers that can be added to HTTP responses.","type":"object","properties":{"contentSecurityPolicy":{"description":"Set the Content-Security-Policy header to HTTP responses.\nUnset if blank.","type":"string"},"strictTransportSecurity":{"description":"Set the Strict-Transport-Security header to HTTP responses.\nUnset if blank.\nPlease make sure that you use this with care as this header might force\nbrowsers to load Prometheus and the other applications hosted on the same\ndomain and subdomains over HTTPS.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security","type":"string"},"xContentTypeOptions":{"description":"Set the X-Content-Type-Options header to HTTP responses.\nUnset if blank. Accepted value is nosniff.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options","type":"string","enum":["","NoSniff"]},"xFrameOptions":{"description":"Set the X-Frame-Options header to HTTP responses.\nUnset if blank. Accepted values are deny and sameorigin.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options","type":"string","enum":["","Deny","SameOrigin"]},"xXSSProtection":{"description":"Set the X-XSS-Protection header to all responses.\nUnset if blank.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection","type":"string"}}},"http2":{"description":"Enable HTTP/2 support. Note that HTTP/2 is only supported with TLS.\nWhen TLSConfig is not configured, HTTP/2 will be disabled.\nWhenever the value of the field changes, a rolling update will be triggered.","type":"boolean"}}},"maxConnections":{"description":"Defines the maximum number of simultaneous connections\nA zero value means that Prometheus doesn't accept any incoming connection.","type":"integer","format":"int32","minimum":0},"pageTitle":{"description":"The prometheus web page title.","type":"string"},"tlsConfig":{"description":"Defines the TLS parameters for HTTPS.","type":"object","properties":{"cert":{"description":"Contains the TLS certificate for the server.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the TLS certificate file in the Prometheus container for the server.\nMutually exclusive with `cert`.","type":"string"},"cipherSuites":{"description":"List of supported cipher suites for TLS versions up to TLS 1.2. If empty,\nGo default cipher suites are used. Available cipher suites are documented\nin the go documentation: https://golang.org/pkg/crypto/tls/#pkg-constants","type":"array","items":{"type":"string"}},"clientAuthType":{"description":"Server policy for client authentication. Maps to ClientAuth Policies.\nFor more detail on clientAuth options:\nhttps://golang.org/pkg/crypto/tls/#ClientAuthType","type":"string"},"clientCAFile":{"description":"Path to the CA certificate file for client certificate authentication to the server.\nMutually exclusive with `client_ca`.","type":"string"},"client_ca":{"description":"Contains the CA certificate for client certificate authentication to the server.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"curvePreferences":{"description":"Elliptic curves that will be used in an ECDHE handshake, in preference\norder. Available curves are documented in the go documentation:\nhttps://golang.org/pkg/crypto/tls/#CurveID","type":"array","items":{"type":"string"}},"keyFile":{"description":"Path to the TLS key file in the Prometheus container for the server.\nMutually exclusive with `keySecret`.","type":"string"},"keySecret":{"description":"Secret containing the TLS key for the server.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum TLS version that is acceptable. Defaults to TLS13.","type":"string"},"minVersion":{"description":"Minimum TLS version that is acceptable. Defaults to TLS12.","type":"string"},"preferServerCipherSuites":{"description":"Controls whether the server selects the\nclient's most preferred cipher suite, or the server's most preferred\ncipher suite. If true then the server's preference, as expressed in\nthe order of elements in cipherSuites, is used.","type":"boolean"}}}}}}},"status":{"description":"Most recent observed status of the Prometheus cluster. Read-only.\nMore info:\nhttps://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["availableReplicas","paused","replicas","unavailableReplicas","updatedReplicas"],"properties":{"availableReplicas":{"description":"Total number of available pods (ready for at least minReadySeconds)\ntargeted by this Prometheus deployment.","type":"integer","format":"int32"},"conditions":{"description":"The current state of the Prometheus deployment.","type":"array","items":{"description":"Condition represents the state of the resources associated with the\nPrometheus, Alertmanager or ThanosRuler resource.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time of the last update to the current status property.","type":"string","format":"date-time"},"message":{"description":"Human-readable message indicating details for the condition's last transition.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the\ncondition was set based upon. For instance, if `.metadata.generation` is\ncurrently 12, but the `.status.conditions[].observedGeneration` is 9, the\ncondition is out of date with respect to the current state of the\ninstance.","type":"integer","format":"int64"},"reason":{"description":"Reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition.","type":"string"},"type":{"description":"Type of the condition being reported.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"paused":{"description":"Represents whether any actions on the underlying managed objects are\nbeing performed. Only delete actions will be performed.","type":"boolean"},"replicas":{"description":"Total number of non-terminated pods targeted by this Prometheus deployment\n(their labels match the selector).","type":"integer","format":"int32"},"selector":{"description":"The selector used to match the pods targeted by this Prometheus resource.","type":"string"},"shardStatuses":{"description":"The list has one entry per shard. Each entry provides a summary of the shard status.","type":"array","items":{"type":"object","required":["availableReplicas","replicas","shardID","unavailableReplicas","updatedReplicas"],"properties":{"availableReplicas":{"description":"Total number of available pods (ready for at least minReadySeconds)\ntargeted by this shard.","type":"integer","format":"int32"},"replicas":{"description":"Total number of pods targeted by this shard.","type":"integer","format":"int32"},"shardID":{"description":"Identifier of the shard.","type":"string"},"unavailableReplicas":{"description":"Total number of unavailable pods targeted by this shard.","type":"integer","format":"int32"},"updatedReplicas":{"description":"Total number of non-terminated pods targeted by this shard\nthat have the desired spec.","type":"integer","format":"int32"}}},"x-kubernetes-list-map-keys":["shardID"],"x-kubernetes-list-type":"map"},"shards":{"description":"Shards is the most recently observed number of shards.","type":"integer","format":"int32"},"unavailableReplicas":{"description":"Total number of unavailable pods targeted by this Prometheus deployment.","type":"integer","format":"int32"},"updatedReplicas":{"description":"Total number of non-terminated pods targeted by this Prometheus deployment\nthat have the desired version spec.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"Prometheus","version":"v1"}]},"com.coreos.monitoring.v1.PrometheusList":{"description":"PrometheusList is a list of Prometheus","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of prometheuses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1.Prometheus"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"PrometheusList","version":"v1"}]},"com.coreos.monitoring.v1.PrometheusRule":{"description":"The `PrometheusRule` custom resource definition (CRD) defines [alerting](https://prometheus.io/docs/prometheus/latest/configuration/alerting_rules/) and [recording](https://prometheus.io/docs/prometheus/latest/configuration/recording_rules/) rules to be evaluated by `Prometheus` or `ThanosRuler` objects.\n\n`Prometheus` and `ThanosRuler` objects select `PrometheusRule` objects using label and namespace selectors.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of desired alerting rule definitions for Prometheus.","type":"object","properties":{"groups":{"description":"Content of Prometheus rule file","type":"array","items":{"description":"RuleGroup is a list of sequentially evaluated recording and alerting rules.","type":"object","required":["name"],"properties":{"interval":{"description":"Interval determines how often rules in the group are evaluated.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"limit":{"description":"Limit the number of alerts an alerting rule and series a recording\nrule can produce.\nLimit is supported starting with Prometheus >= 2.31 and Thanos Ruler >= 0.24.","type":"integer"},"name":{"description":"Name of the rule group.","type":"string","minLength":1},"partial_response_strategy":{"description":"PartialResponseStrategy is only used by ThanosRuler and will\nbe ignored by Prometheus instances.\nMore info: https://github.com/thanos-io/thanos/blob/main/docs/components/rule.md#partial-response","type":"string","pattern":"^(?i)(abort|warn)?$"},"query_offset":{"description":"Defines the offset the rule evaluation timestamp of this particular group by the specified duration into the past.\n\nIt requires Prometheus >= v2.53.0.\nIt is not supported for ThanosRuler.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"rules":{"description":"List of alerting and recording rules.","type":"array","items":{"description":"Rule describes an alerting or recording rule\nSee Prometheus documentation: [alerting](https://www.prometheus.io/docs/prometheus/latest/configuration/alerting_rules/) or [recording](https://www.prometheus.io/docs/prometheus/latest/configuration/recording_rules/#recording-rules) rule","type":"object","required":["expr"],"properties":{"alert":{"description":"Name of the alert. Must be a valid label value.\nOnly one of `record` and `alert` must be set.","type":"string"},"annotations":{"description":"Annotations to add to each alert.\nOnly valid for alerting rules.","type":"object","additionalProperties":{"type":"string"}},"expr":{"description":"PromQL expression to evaluate.","x-kubernetes-int-or-string":true},"for":{"description":"Alerts are considered firing once they have been returned for this long.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"keep_firing_for":{"description":"KeepFiringFor defines how long an alert will continue firing after the condition that triggered it has cleared.","type":"string","minLength":1,"pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"labels":{"description":"Labels to add or overwrite.","type":"object","additionalProperties":{"type":"string"}},"record":{"description":"Name of the time series to output to. Must be a valid metric name.\nOnly one of `record` and `alert` must be set.","type":"string"}}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"PrometheusRule","version":"v1"}]},"com.coreos.monitoring.v1.PrometheusRuleList":{"description":"PrometheusRuleList is a list of PrometheusRule","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of prometheusrules. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1.PrometheusRule"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"PrometheusRuleList","version":"v1"}]},"com.coreos.monitoring.v1.ServiceMonitor":{"description":"The `ServiceMonitor` custom resource definition (CRD) defines how `Prometheus` and `PrometheusAgent` can scrape metrics from a group of services.\nAmong other things, it allows to specify:\n* The services to scrape via label selectors.\n* The container ports to scrape.\n* Authentication credentials to use.\n* Target and metric relabeling.\n\n`Prometheus` and `PrometheusAgent` objects select `ServiceMonitor` objects using label and namespace selectors.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of desired Service selection for target discovery by\nPrometheus.","type":"object","required":["endpoints","selector"],"properties":{"attachMetadata":{"description":"`attachMetadata` defines additional metadata which is added to the\ndiscovered targets.\n\nIt requires Prometheus >= v2.37.0.","type":"object","properties":{"node":{"description":"When set to true, Prometheus attaches node metadata to the discovered\ntargets.\n\nThe Prometheus service account must have the `list` and `watch`\npermissions on the `Nodes` objects.","type":"boolean"}}},"bodySizeLimit":{"description":"When defined, bodySizeLimit specifies a job level limit on the size\nof uncompressed response body that will be accepted by Prometheus.\n\nIt requires Prometheus >= v2.28.0.","type":"string","pattern":"(^0|([0-9]*[.])?[0-9]+((K|M|G|T|E|P)i?)?B)$"},"endpoints":{"description":"List of endpoints part of this ServiceMonitor.\nDefines how to scrape metrics from Kubernetes [Endpoints](https://kubernetes.io/docs/concepts/services-networking/service/#endpoints) objects.\nIn most cases, an Endpoints object is backed by a Kubernetes [Service](https://kubernetes.io/docs/concepts/services-networking/service/) object with the same name and labels.","type":"array","items":{"description":"Endpoint defines an endpoint serving Prometheus metrics to be scraped by\nPrometheus.","type":"object","properties":{"authorization":{"description":"`authorization` configures the Authorization header credentials to use when\nscraping the target.\n\nCannot be set at the same time as `basicAuth`, or `oauth2`.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"`basicAuth` configures the Basic Authentication credentials to use when\nscraping the target.\n\nCannot be set at the same time as `authorization`, or `oauth2`.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenFile":{"description":"File to read bearer token for scraping the target.\n\nDeprecated: use `authorization` instead.","type":"string"},"bearerTokenSecret":{"description":"`bearerTokenSecret` specifies a key of a Secret containing the bearer\ntoken for scraping targets. The secret needs to be in the same namespace\nas the ServiceMonitor object and readable by the Prometheus Operator.\n\nDeprecated: use `authorization` instead.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"enableHttp2":{"description":"`enableHttp2` can be used to disable HTTP2 when scraping the target.","type":"boolean"},"filterRunning":{"description":"When true, the pods which are not running (e.g. either in Failed or\nSucceeded state) are dropped during the target discovery.\n\nIf unset, the filtering is enabled.\n\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase","type":"boolean"},"followRedirects":{"description":"`followRedirects` defines whether the scrape requests should follow HTTP\n3xx redirects.","type":"boolean"},"honorLabels":{"description":"When true, `honorLabels` preserves the metric's labels when they collide\nwith the target's labels.","type":"boolean"},"honorTimestamps":{"description":"`honorTimestamps` controls whether Prometheus preserves the timestamps\nwhen exposed by the target.","type":"boolean"},"interval":{"description":"Interval at which Prometheus scrapes the metrics from the target.\n\nIf empty, Prometheus uses the global scrape interval.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"metricRelabelings":{"description":"`metricRelabelings` configures the relabeling rules to apply to the\nsamples before ingestion.","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"oauth2":{"description":"`oauth2` configures the OAuth2 settings to use when scraping the target.\n\nIt requires Prometheus >= 2.27.0.\n\nCannot be set at the same time as `authorization`, or `basicAuth`.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"params":{"description":"params define optional HTTP URL parameters.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"path":{"description":"HTTP path from which to scrape for metrics.\n\nIf empty, Prometheus uses the default value (e.g. `/metrics`).","type":"string"},"port":{"description":"Name of the Service port which this endpoint refers to.\n\nIt takes precedence over `targetPort`.","type":"string"},"proxyUrl":{"description":"`proxyURL` configures the HTTP Proxy URL (e.g.\n\"http://proxyserver:2195\") to go through when scraping the target.","type":"string"},"relabelings":{"description":"`relabelings` configures the relabeling rules to apply the target's\nmetadata labels.\n\nThe Operator automatically adds relabelings for a few standard Kubernetes fields.\n\nThe original scrape job's name is available via the `__tmp_prometheus_job_name` label.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"array","items":{"description":"RelabelConfig allows dynamic rewriting of the label set for targets, alerts,\nscraped samples and remote write samples.\n\nMore info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"Action to perform based on the regex matching.\n\n`Uppercase` and `Lowercase` actions require Prometheus >= v2.36.0.\n`DropEqual` and `KeepEqual` actions require Prometheus >= v2.41.0.\n\nDefault: \"Replace\"","type":"string","enum":["replace","Replace","keep","Keep","drop","Drop","hashmod","HashMod","labelmap","LabelMap","labeldrop","LabelDrop","labelkeep","LabelKeep","lowercase","Lowercase","uppercase","Uppercase","keepequal","KeepEqual","dropequal","DropEqual"]},"modulus":{"description":"Modulus to take of the hash of the source label values.\n\nOnly applicable when the action is `HashMod`.","type":"integer","format":"int64"},"regex":{"description":"Regular expression against which the extracted value is matched.","type":"string"},"replacement":{"description":"Replacement value against which a Replace action is performed if the\nregular expression matches.\n\nRegex capture groups are available.","type":"string"},"separator":{"description":"Separator is the string between concatenated SourceLabels.","type":"string"},"sourceLabels":{"description":"The source labels select values from existing labels. Their content is\nconcatenated using the configured Separator and matched against the\nconfigured regular expression.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, as well as underscores.","type":"string","pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"Label to which the resulting string is written in a replacement.\n\nIt is mandatory for `Replace`, `HashMod`, `Lowercase`, `Uppercase`,\n`KeepEqual` and `DropEqual` actions.\n\nRegex capture groups are available.","type":"string"}}}},"scheme":{"description":"HTTP scheme to use for scraping.\n\n`http` and `https` are the expected values unless you rewrite the\n`__scheme__` label via relabeling.\n\nIf empty, Prometheus uses the default value `http`.","type":"string","enum":["http","https"]},"scrapeTimeout":{"description":"Timeout after which Prometheus considers the scrape to be failed.\n\nIf empty, Prometheus uses the global scrape timeout unless it is less\nthan the target's scrape interval value in which the latter is used.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"targetPort":{"description":"Name or number of the target port of the `Pod` object behind the\nService. The port must be specified with the container's port property.","x-kubernetes-int-or-string":true},"tlsConfig":{"description":"TLS configuration to use when scraping the target.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"trackTimestampsStaleness":{"description":"`trackTimestampsStaleness` defines whether Prometheus tracks staleness of\nthe metrics that have an explicit timestamp present in scraped data.\nHas no effect if `honorTimestamps` is false.\n\nIt requires Prometheus >= v2.48.0.","type":"boolean"}}}},"jobLabel":{"description":"`jobLabel` selects the label from the associated Kubernetes `Service`\nobject which will be used as the `job` label for all metrics.\n\nFor example if `jobLabel` is set to `foo` and the Kubernetes `Service`\nobject is labeled with `foo: bar`, then Prometheus adds the `job=\"bar\"`\nlabel to all ingested metrics.\n\nIf the value of this field is empty or if the label doesn't exist for\nthe given Service, the `job` label of the metrics defaults to the name\nof the associated Kubernetes `Service`.","type":"string"},"keepDroppedTargets":{"description":"Per-scrape limit on the number of targets dropped by relabeling\nthat will be kept in memory. 0 means no limit.\n\nIt requires Prometheus >= v2.47.0.","type":"integer","format":"int64"},"labelLimit":{"description":"Per-scrape limit on number of labels that will be accepted for a sample.\n\nIt requires Prometheus >= v2.27.0.","type":"integer","format":"int64"},"labelNameLengthLimit":{"description":"Per-scrape limit on length of labels name that will be accepted for a sample.\n\nIt requires Prometheus >= v2.27.0.","type":"integer","format":"int64"},"labelValueLengthLimit":{"description":"Per-scrape limit on length of labels value that will be accepted for a sample.\n\nIt requires Prometheus >= v2.27.0.","type":"integer","format":"int64"},"namespaceSelector":{"description":"`namespaceSelector` defines in which namespace(s) Prometheus should discover the services.\nBy default, the services are discovered in the same namespace as the `ServiceMonitor` object but it is possible to select pods across different/all namespaces.","type":"object","properties":{"any":{"description":"Boolean describing whether all namespaces are selected in contrast to a\nlist restricting them.","type":"boolean"},"matchNames":{"description":"List of namespace names to select from.","type":"array","items":{"type":"string"}}}},"nativeHistogramBucketLimit":{"description":"If there are more than this many buckets in a native histogram,\nbuckets will be merged to stay within the limit.\nIt requires Prometheus >= v2.45.0.","type":"integer","format":"int64"},"nativeHistogramMinBucketFactor":{"description":"If the growth factor of one bucket to the next is smaller than this,\nbuckets will be merged to increase the factor sufficiently.\nIt requires Prometheus >= v2.50.0.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"podTargetLabels":{"description":"`podTargetLabels` defines the labels which are transferred from the\nassociated Kubernetes `Pod` object onto the ingested metrics.","type":"array","items":{"type":"string"}},"sampleLimit":{"description":"`sampleLimit` defines a per-scrape limit on the number of scraped samples\nthat will be accepted.","type":"integer","format":"int64"},"scrapeClass":{"description":"The scrape class to apply.","type":"string","minLength":1},"scrapeClassicHistograms":{"description":"Whether to scrape a classic histogram that is also exposed as a native histogram.\nIt requires Prometheus >= v2.45.0.","type":"boolean"},"scrapeProtocols":{"description":"`scrapeProtocols` defines the protocols to negotiate during a scrape. It tells clients the\nprotocols supported by Prometheus in order of preference (from most to least preferred).\n\nIf unset, Prometheus uses its default value.\n\nIt requires Prometheus >= v2.49.0.","type":"array","items":{"description":"ScrapeProtocol represents a protocol used by Prometheus for scraping metrics.\nSupported values are:\n* `OpenMetricsText0.0.1`\n* `OpenMetricsText1.0.0`\n* `PrometheusProto`\n* `PrometheusText0.0.4`","type":"string","enum":["PrometheusProto","OpenMetricsText0.0.1","OpenMetricsText1.0.0","PrometheusText0.0.4"]},"x-kubernetes-list-type":"set"},"selector":{"description":"Label selector to select the Kubernetes `Endpoints` objects to scrape metrics from.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"targetLabels":{"description":"`targetLabels` defines the labels which are transferred from the\nassociated Kubernetes `Service` object onto the ingested metrics.","type":"array","items":{"type":"string"}},"targetLimit":{"description":"`targetLimit` defines a limit on the number of scraped targets that will\nbe accepted.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"ServiceMonitor","version":"v1"}]},"com.coreos.monitoring.v1.ServiceMonitorList":{"description":"ServiceMonitorList is a list of ServiceMonitor","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of servicemonitors. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1.ServiceMonitor"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"ServiceMonitorList","version":"v1"}]},"com.coreos.monitoring.v1.ThanosRuler":{"description":"The `ThanosRuler` custom resource definition (CRD) defines a desired [Thanos Ruler](https://github.com/thanos-io/thanos/blob/main/docs/components/rule.md) setup to run in a Kubernetes cluster.\n\nA `ThanosRuler` instance requires at least one compatible Prometheus API endpoint (either Thanos Querier or Prometheus services).\n\nThe resource defines via label and namespace selectors which `PrometheusRule` objects should be associated to the deployed Thanos Ruler instances.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the ThanosRuler cluster. More info:\nhttps://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","properties":{"additionalArgs":{"description":"AdditionalArgs allows setting additional arguments for the ThanosRuler container.\nIt is intended for e.g. activating hidden flags which are not supported by\nthe dedicated configuration options yet. The arguments are passed as-is to the\nThanosRuler container which may cause issues if they are invalid or not supported\nby the given ThanosRuler version.\nIn case of an argument conflict (e.g. an argument which is already set by the\noperator itself) or when providing an invalid argument the reconciliation will\nfail and an error will be logged.","type":"array","items":{"description":"Argument as part of the AdditionalArgs list.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the argument, e.g. \"scrape.discovery-reload-interval\".","type":"string","minLength":1},"value":{"description":"Argument value, e.g. 30s. Can be empty for name-only arguments (e.g. --storage.tsdb.no-lockfile)","type":"string"}}}},"affinity":{"description":"If specified, the pod's scheduling constraints.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"alertDropLabels":{"description":"AlertDropLabels configure the label names which should be dropped in ThanosRuler alerts.\nThe replica label `thanos_ruler_replica` will always be dropped in alerts.","type":"array","items":{"type":"string"}},"alertQueryUrl":{"description":"The external Query URL the Thanos Ruler will set in the 'Source' field\nof all alerts.\nMaps to the '--alert.query-url' CLI arg.","type":"string"},"alertRelabelConfigFile":{"description":"AlertRelabelConfigFile specifies the path of the alert relabeling configuration file.\nWhen used alongside with AlertRelabelConfigs, alertRelabelConfigFile takes precedence.","type":"string"},"alertRelabelConfigs":{"description":"AlertRelabelConfigs configures alert relabeling in ThanosRuler.\nAlert relabel configurations must have the form as specified in the official Prometheus documentation:\nhttps://prometheus.io/docs/prometheus/latest/configuration/configuration/#alert_relabel_configs\nAlternative to AlertRelabelConfigFile, and lower order priority.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"alertmanagersConfig":{"description":"Define configuration for connecting to alertmanager.  Only available with thanos v0.10.0\nand higher.  Maps to the `alertmanagers.config` arg.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"alertmanagersUrl":{"description":"Define URLs to send alerts to Alertmanager.  For Thanos v0.10.0 and higher,\nAlertManagersConfig should be used instead.  Note: this field will be ignored\nif AlertManagersConfig is specified.\nMaps to the `alertmanagers.url` arg.","type":"array","items":{"type":"string"}},"containers":{"description":"Containers allows injecting additional containers or modifying operator generated\ncontainers. This can be used to allow adding an authentication proxy to a ThanosRuler pod or\nto change the behavior of an operator generated container. Containers described here modify\nan operator generated container if they share the same name and modifications are done via a\nstrategic merge patch. The current container names are: `thanos-ruler` and `config-reloader`.\nOverriding containers is entirely outside the scope of what the maintainers will support and by doing\nso, you accept that this behaviour may break at any time without notice.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"dnsConfig":{"description":"Defines the DNS configuration for the pods.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nResolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","required":["name"],"properties":{"name":{"description":"Name is required and must be unique.","type":"string","minLength":1},"value":{"description":"Value is optional.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"}}},"dnsPolicy":{"description":"Defines the DNS policy for the pods.","type":"string","enum":["ClusterFirstWithHostNet","ClusterFirst","Default","None"]},"enforcedNamespaceLabel":{"description":"EnforcedNamespaceLabel enforces adding a namespace label of origin for each alert\nand metric that is user created. The label value will always be the namespace of the object that is\nbeing created.","type":"string"},"evaluationInterval":{"description":"Interval between consecutive evaluations.","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"excludedFromEnforcement":{"description":"List of references to PrometheusRule objects\nto be excluded from enforcing a namespace label of origin.\nApplies only if enforcedNamespaceLabel set to true.","type":"array","items":{"description":"ObjectReference references a PodMonitor, ServiceMonitor, Probe or PrometheusRule object.","type":"object","required":["namespace","resource"],"properties":{"group":{"description":"Group of the referent. When not specified, it defaults to `monitoring.coreos.com`","type":"string","enum":["monitoring.coreos.com"]},"name":{"description":"Name of the referent. When not set, all resources in the namespace are matched.","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string","minLength":1},"resource":{"description":"Resource of the referent.","type":"string","enum":["prometheusrules","servicemonitors","podmonitors","probes","scrapeconfigs"]}}}},"externalPrefix":{"description":"The external URL the Thanos Ruler instances will be available under. This is\nnecessary to generate correct URLs. This is necessary if Thanos Ruler is not\nserved from root of a DNS name.","type":"string"},"grpcServerTlsConfig":{"description":"GRPCServerTLSConfig configures the gRPC server from which Thanos Querier reads\nrecorded rule data.\nNote: Currently only the CAFile, CertFile, and KeyFile fields are supported.\nMaps to the '--grpc-server-tls-*' CLI args.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"caFile":{"description":"Path to the CA cert in the Prometheus container to use for the targets.","type":"string"},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the client cert file in the Prometheus container for the targets.","type":"string"},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keyFile":{"description":"Path to the client key file in the Prometheus container for the targets.","type":"string"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"hostAliases":{"description":"Pods' hostAliases configuration","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["hostnames","ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"}},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map"},"image":{"description":"Thanos container image URL.","type":"string"},"imagePullPolicy":{"description":"Image pull policy for the 'thanos', 'init-config-reloader' and 'config-reloader' containers.\nSee https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy for more details.","type":"string","enum":["","Always","Never","IfNotPresent"]},"imagePullSecrets":{"description":"An optional list of references to secrets in the same namespace\nto use for pulling thanos images from registries\nsee http://kubernetes.io/docs/user-guide/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"description":"InitContainers allows adding initContainers to the pod definition. Those can be used to e.g.\nfetch secrets for injection into the ThanosRuler configuration from external sources. Any\nerrors during the execution of an initContainer will lead to a restart of the Pod.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/\nUsing initContainers for any use case other then secret fetching is entirely outside the scope\nof what the maintainers will support and by doing so, you accept that this behaviour may break\nat any time without notice.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"labels":{"description":"Labels configure the external label pairs to ThanosRuler. A default replica label\n`thanos_ruler_replica` will be always added  as a label with the value of the pod's name and it will be dropped in the alerts.","type":"object","additionalProperties":{"type":"string"}},"listenLocal":{"description":"ListenLocal makes the Thanos ruler listen on loopback, so that it\ndoes not bind against the Pod IP.","type":"boolean"},"logFormat":{"description":"Log format for ThanosRuler to be configured with.","type":"string","enum":["","logfmt","json"]},"logLevel":{"description":"Log level for ThanosRuler to be configured with.","type":"string","enum":["","debug","info","warn","error"]},"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready\nwithout any of its container crashing for it to be considered available.\nDefaults to 0 (pod will be considered available as soon as it is ready)\nThis is an alpha field from kubernetes 1.22 until 1.24 which requires enabling the StatefulSetMinReadySeconds feature gate.","type":"integer","format":"int32"},"nodeSelector":{"description":"Define which Nodes the Pods are scheduled on.","type":"object","additionalProperties":{"type":"string"}},"objectStorageConfig":{"description":"ObjectStorageConfig configures object storage in Thanos.\nAlternative to ObjectStorageConfigFile, and lower order priority.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"objectStorageConfigFile":{"description":"ObjectStorageConfigFile specifies the path of the object storage configuration file.\nWhen used alongside with ObjectStorageConfig, ObjectStorageConfigFile takes precedence.","type":"string"},"paused":{"description":"When a ThanosRuler deployment is paused, no actions except for deletion\nwill be performed on the underlying objects.","type":"boolean"},"podMetadata":{"description":"PodMetadata configures labels and annotations which are propagated to the ThanosRuler pods.\n\nThe following items are reserved and cannot be overridden:\n* \"app.kubernetes.io/name\" label, set to \"thanos-ruler\".\n* \"app.kubernetes.io/managed-by\" label, set to \"prometheus-operator\".\n* \"app.kubernetes.io/instance\" label, set to the name of the ThanosRuler instance.\n* \"thanos-ruler\" label, set to the name of the ThanosRuler instance.\n* \"kubectl.kubernetes.io/default-container\" annotation, set to \"thanos-ruler\".","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: http://kubernetes.io/docs/user-guide/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: http://kubernetes.io/docs/user-guide/labels","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although\nsome resources may allow a client to request the generation of an appropriate name\nautomatically. Name is primarily intended for creation idempotence and configuration\ndefinition.\nCannot be updated.\nMore info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"}}},"portName":{"description":"Port name used for the pods and governing service.\nDefaults to `web`.","type":"string"},"priorityClassName":{"description":"Priority class assigned to the Pods","type":"string"},"prometheusRulesExcludedFromEnforce":{"description":"PrometheusRulesExcludedFromEnforce - list of Prometheus rules to be excluded from enforcing\nof adding namespace labels. Works only if enforcedNamespaceLabel set to true.\nMake sure both ruleNamespace and ruleName are set for each pair\nDeprecated: use excludedFromEnforcement instead.","type":"array","items":{"description":"PrometheusRuleExcludeConfig enables users to configure excluded\nPrometheusRule names and their namespaces to be ignored while enforcing\nnamespace label for alerts and metrics.","type":"object","required":["ruleName","ruleNamespace"],"properties":{"ruleName":{"description":"Name of the excluded PrometheusRule object.","type":"string"},"ruleNamespace":{"description":"Namespace of the excluded PrometheusRule object.","type":"string"}}}},"queryConfig":{"description":"Define configuration for connecting to thanos query instances.\nIf this is defined, the QueryEndpoints field will be ignored.\nMaps to the `query.config` CLI argument.\nOnly available with thanos v0.11.0 and higher.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"queryEndpoints":{"description":"QueryEndpoints defines Thanos querier endpoints from which to query metrics.\nMaps to the --query flag of thanos ruler.","type":"array","items":{"type":"string"}},"replicas":{"description":"Number of thanos ruler instances to deploy.","type":"integer","format":"int32"},"resources":{"description":"Resources defines the resource requirements for single Pods.\nIf not provided, no requests/limits will be set","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"retention":{"description":"Time duration ThanosRuler shall retain data for. Default is '24h',\nand must match the regular expression `[0-9]+(ms|s|m|h|d|w|y)` (milliseconds seconds minutes hours days weeks years).","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"routePrefix":{"description":"The route prefix ThanosRuler registers HTTP handlers for. This allows thanos UI to be served on a sub-path.","type":"string"},"ruleNamespaceSelector":{"description":"Namespaces to be selected for Rules discovery. If unspecified, only\nthe same namespace as the ThanosRuler object is in is used.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"ruleSelector":{"description":"A label selector to select which PrometheusRules to mount for alerting and\nrecording.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nThis defaults to the default PodSecurityContext.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run the\nThanos Ruler Pods.","type":"string"},"storage":{"description":"Storage spec to specify how storage shall be used.","type":"object","properties":{"disableMountSubPath":{"description":"Deprecated: subPath usage will be removed in a future release.","type":"boolean"},"emptyDir":{"description":"EmptyDirVolumeSource to be used by the StatefulSet.\nIf specified, it takes precedence over `ephemeral` and `volumeClaimTemplate`.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes/#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"EphemeralVolumeSource to be used by the StatefulSet.\nThis is a beta field in k8s 1.21 and GA in 1.15.\nFor lower versions, starting with k8s 1.19, it requires enabling the GenericEphemeralVolume feature gate.\nMore info: https://kubernetes.io/docs/concepts/storage/ephemeral-volumes/#generic-ephemeral-volumes","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"volumeClaimTemplate":{"description":"Defines the PVC spec to be used by the Prometheus StatefulSets.\nThe easiest way to use a volume that cannot be automatically provisioned\nis to use a label selector alongside manually created PersistentVolumes.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object.\nServers should convert recognized schemas to the latest internal value, and\nmay reject unrecognized values.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents.\nServers may infer this from the endpoint the client submits requests to.\nCannot be updated.\nIn CamelCase.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"EmbeddedMetadata contains metadata relevant to an EmbeddedResource.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: http://kubernetes.io/docs/user-guide/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: http://kubernetes.io/docs/user-guide/labels","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although\nsome resources may allow a client to request the generation of an appropriate name\nautomatically. Name is primarily intended for creation idempotence and configuration\ndefinition.\nCannot be updated.\nMore info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"}}},"spec":{"description":"Defines the desired characteristics of a volume requested by a pod author.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}},"status":{"description":"Deprecated: this field is never set.","type":"object","properties":{"accessModes":{"description":"accessModes contains the actual access modes the volume backing the PVC has.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"allocatedResourceStatuses":{"description":"allocatedResourceStatuses stores status of resource being resized for the given PVC.\nKey names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered\nreserved and hence may not be used.\n\nClaimResourceStatus can be in any of following states:\n\t- ControllerResizeInProgress:\n\t\tState set when resize controller starts resizing the volume in control-plane.\n\t- ControllerResizeFailed:\n\t\tState set when resize has failed in resize controller with a terminal error.\n\t- NodeResizePending:\n\t\tState set when resize controller has finished resizing the volume but further resizing of\n\t\tvolume is needed on the node.\n\t- NodeResizeInProgress:\n\t\tState set when kubelet starts resizing the volume.\n\t- NodeResizeFailed:\n\t\tState set when resizing has failed in kubelet with a terminal error. Transient errors don't set\n\t\tNodeResizeFailed.\nFor example: if expanding a PVC for more capacity - this field can be one of the following states:\n\t- pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeFailed\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizePending\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeFailed\"\nWhen this field is not set, it means that no resize operation is in progress for the given PVC.\n\nA controller that receives PVC update with previously unknown resourceName or ClaimResourceStatus\nshould ignore the update for the purpose it was designed. For example - a controller that\nonly is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid\nresources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"description":"When a controller receives persistentvolume claim update with ClaimResourceStatus for a resource\nthat it does not recognizes, then it should ignore that update and let other controllers\nhandle it.","type":"string"},"x-kubernetes-map-type":"granular"},"allocatedResources":{"description":"allocatedResources tracks the resources allocated to a PVC including its capacity.\nKey names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered\nreserved and hence may not be used.\n\nCapacity reported here may be larger than the actual capacity when a volume expansion operation\nis requested.\nFor storage quota, the larger value from allocatedResources and PVC.spec.resources is used.\nIf allocatedResources is not set, PVC.spec.resources alone is used for quota calculation.\nIf a volume expansion capacity request is lowered, allocatedResources is only\nlowered if there are no expansion operations in progress and if the actual volume capacity\nis equal or lower than the requested capacity.\n\nA controller that receives PVC update with previously unknown resourceName\nshould ignore the update for the purpose it was designed. For example - a controller that\nonly is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid\nresources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"capacity":{"description":"capacity represents the actual resources of the underlying volume.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"conditions":{"description":"conditions is the current Condition of persistent volume claim. If underlying persistent volume is being\nresized then the Condition will be set to 'Resizing'.","type":"array","items":{"description":"PersistentVolumeClaimCondition contains details about state of pvc","type":"object","required":["status","type"],"properties":{"lastProbeTime":{"description":"lastProbeTime is the time we probed the condition.","type":"string","format":"date-time"},"lastTransitionTime":{"description":"lastTransitionTime is the time the condition transitioned from one status to another.","type":"string","format":"date-time"},"message":{"description":"message is the human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"reason is a unique, this should be a short, machine understandable string that gives the reason\nfor condition's last transition. If it reports \"Resizing\" that means the underlying\npersistent volume is being resized.","type":"string"},"status":{"type":"string"},"type":{"description":"PersistentVolumeClaimConditionType defines the condition of PV claim.\nValid values are:\n  - \"Resizing\", \"FileSystemResizePending\"\n\nIf RecoverVolumeExpansionFailure feature gate is enabled, then following additional values can be expected:\n  - \"ControllerResizeError\", \"NodeResizeError\"\n\nIf VolumeAttributesClass feature gate is enabled, then following additional values can be expected:\n  - \"ModifyVolumeError\", \"ModifyingVolume\"","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"currentVolumeAttributesClassName":{"description":"currentVolumeAttributesClassName is the current name of the VolumeAttributesClass the PVC is using.\nWhen unset, there is no VolumeAttributeClass applied to this PersistentVolumeClaim\nThis is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"string"},"modifyVolumeStatus":{"description":"ModifyVolumeStatus represents the status object of ControllerModifyVolume operation.\nWhen this is unset, there is no ModifyVolume operation being attempted.\nThis is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"object","required":["status"],"properties":{"status":{"description":"status is the status of the ControllerModifyVolume operation. It can be in any of following states:\n - Pending\n   Pending indicates that the PersistentVolumeClaim cannot be modified due to unmet requirements, such as\n   the specified VolumeAttributesClass not existing.\n - InProgress\n   InProgress indicates that the volume is being modified.\n - Infeasible\n  Infeasible indicates that the request has been rejected as invalid by the CSI driver. To\n\t  resolve the error, a valid VolumeAttributesClass needs to be specified.\nNote: New statuses can be added in the future. Consumers should check for unknown statuses and fail appropriately.","type":"string"},"targetVolumeAttributesClassName":{"description":"targetVolumeAttributesClassName is the name of the VolumeAttributesClass the PVC currently being reconciled","type":"string"}}},"phase":{"description":"phase represents the current phase of PersistentVolumeClaim.","type":"string"}}}}}}},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}},"topologySpreadConstraints":{"description":"If specified, the pod's topology spread constraints.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}}},"tracingConfig":{"description":"TracingConfig configures tracing in Thanos.\n\n`tracingConfigFile` takes precedence over this field.\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"tracingConfigFile":{"description":"TracingConfig specifies the path of the tracing configuration file.\n\nThis field takes precedence over `tracingConfig`.\n\nThis is an *experimental feature*, it may change in any upcoming release\nin a breaking way.","type":"string"},"version":{"description":"Version of Thanos to be deployed.","type":"string"},"volumeMounts":{"description":"VolumeMounts allows configuration of additional VolumeMounts on the output StatefulSet definition.\nVolumeMounts specified will be appended to other VolumeMounts in the ruler container,\nthat are generated as a result of StorageSpec objects.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes allows configuration of additional volumes on the output StatefulSet definition. Volumes specified will\nbe appended to other volumes that are generated as a result of StorageSpec objects.","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath).\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}},"web":{"description":"Defines the configuration of the ThanosRuler web server.","type":"object","properties":{"httpConfig":{"description":"Defines HTTP parameters for web server.","type":"object","properties":{"headers":{"description":"List of headers that can be added to HTTP responses.","type":"object","properties":{"contentSecurityPolicy":{"description":"Set the Content-Security-Policy header to HTTP responses.\nUnset if blank.","type":"string"},"strictTransportSecurity":{"description":"Set the Strict-Transport-Security header to HTTP responses.\nUnset if blank.\nPlease make sure that you use this with care as this header might force\nbrowsers to load Prometheus and the other applications hosted on the same\ndomain and subdomains over HTTPS.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security","type":"string"},"xContentTypeOptions":{"description":"Set the X-Content-Type-Options header to HTTP responses.\nUnset if blank. Accepted value is nosniff.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options","type":"string","enum":["","NoSniff"]},"xFrameOptions":{"description":"Set the X-Frame-Options header to HTTP responses.\nUnset if blank. Accepted values are deny and sameorigin.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options","type":"string","enum":["","Deny","SameOrigin"]},"xXSSProtection":{"description":"Set the X-XSS-Protection header to all responses.\nUnset if blank.\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection","type":"string"}}},"http2":{"description":"Enable HTTP/2 support. Note that HTTP/2 is only supported with TLS.\nWhen TLSConfig is not configured, HTTP/2 will be disabled.\nWhenever the value of the field changes, a rolling update will be triggered.","type":"boolean"}}},"tlsConfig":{"description":"Defines the TLS parameters for HTTPS.","type":"object","properties":{"cert":{"description":"Contains the TLS certificate for the server.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"certFile":{"description":"Path to the TLS certificate file in the Prometheus container for the server.\nMutually exclusive with `cert`.","type":"string"},"cipherSuites":{"description":"List of supported cipher suites for TLS versions up to TLS 1.2. If empty,\nGo default cipher suites are used. Available cipher suites are documented\nin the go documentation: https://golang.org/pkg/crypto/tls/#pkg-constants","type":"array","items":{"type":"string"}},"clientAuthType":{"description":"Server policy for client authentication. Maps to ClientAuth Policies.\nFor more detail on clientAuth options:\nhttps://golang.org/pkg/crypto/tls/#ClientAuthType","type":"string"},"clientCAFile":{"description":"Path to the CA certificate file for client certificate authentication to the server.\nMutually exclusive with `client_ca`.","type":"string"},"client_ca":{"description":"Contains the CA certificate for client certificate authentication to the server.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"curvePreferences":{"description":"Elliptic curves that will be used in an ECDHE handshake, in preference\norder. Available curves are documented in the go documentation:\nhttps://golang.org/pkg/crypto/tls/#CurveID","type":"array","items":{"type":"string"}},"keyFile":{"description":"Path to the TLS key file in the Prometheus container for the server.\nMutually exclusive with `keySecret`.","type":"string"},"keySecret":{"description":"Secret containing the TLS key for the server.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum TLS version that is acceptable. Defaults to TLS13.","type":"string"},"minVersion":{"description":"Minimum TLS version that is acceptable. Defaults to TLS12.","type":"string"},"preferServerCipherSuites":{"description":"Controls whether the server selects the\nclient's most preferred cipher suite, or the server's most preferred\ncipher suite. If true then the server's preference, as expressed in\nthe order of elements in cipherSuites, is used.","type":"boolean"}}}}}}},"status":{"description":"Most recent observed status of the ThanosRuler cluster. Read-only.\nMore info:\nhttps://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["availableReplicas","paused","replicas","unavailableReplicas","updatedReplicas"],"properties":{"availableReplicas":{"description":"Total number of available pods (ready for at least minReadySeconds)\ntargeted by this ThanosRuler deployment.","type":"integer","format":"int32"},"conditions":{"description":"The current state of the ThanosRuler object.","type":"array","items":{"description":"Condition represents the state of the resources associated with the\nPrometheus, Alertmanager or ThanosRuler resource.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time of the last update to the current status property.","type":"string","format":"date-time"},"message":{"description":"Human-readable message indicating details for the condition's last transition.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the\ncondition was set based upon. For instance, if `.metadata.generation` is\ncurrently 12, but the `.status.conditions[].observedGeneration` is 9, the\ncondition is out of date with respect to the current state of the\ninstance.","type":"integer","format":"int64"},"reason":{"description":"Reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition.","type":"string"},"type":{"description":"Type of the condition being reported.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"paused":{"description":"Represents whether any actions on the underlying managed objects are\nbeing performed. Only delete actions will be performed.","type":"boolean"},"replicas":{"description":"Total number of non-terminated pods targeted by this ThanosRuler deployment\n(their labels match the selector).","type":"integer","format":"int32"},"unavailableReplicas":{"description":"Total number of unavailable pods targeted by this ThanosRuler deployment.","type":"integer","format":"int32"},"updatedReplicas":{"description":"Total number of non-terminated pods targeted by this ThanosRuler deployment\nthat have the desired version spec.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"ThanosRuler","version":"v1"}]},"com.coreos.monitoring.v1.ThanosRulerList":{"description":"ThanosRulerList is a list of ThanosRuler","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of thanosrulers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1.ThanosRuler"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"ThanosRulerList","version":"v1"}]},"com.coreos.monitoring.v1alpha1.AlertmanagerConfig":{"description":"AlertmanagerConfig configures the Prometheus Alertmanager,\nspecifying how alerts should be grouped, inhibited and notified to external systems.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"AlertmanagerConfigSpec is a specification of the desired behavior of the\nAlertmanager configuration.\nBy default, the Alertmanager configuration only applies to alerts for which\nthe `namespace` label is equal to the namespace of the AlertmanagerConfig\nresource (see the `.spec.alertmanagerConfigMatcherStrategy` field of the\nAlertmanager CRD).","type":"object","properties":{"inhibitRules":{"description":"List of inhibition rules. The rules will only apply to alerts matching\nthe resource's namespace.","type":"array","items":{"description":"InhibitRule defines an inhibition rule that allows to mute alerts when other\nalerts are already firing.\nSee https://prometheus.io/docs/alerting/latest/configuration/#inhibit_rule","type":"object","properties":{"equal":{"description":"Labels that must have an equal value in the source and target alert for\nthe inhibition to take effect.","type":"array","items":{"type":"string"}},"sourceMatch":{"description":"Matchers for which one or more alerts have to exist for the inhibition\nto take effect. The operator enforces that the alert matches the\nresource's namespace.","type":"array","items":{"description":"Matcher defines how to match on alert's labels.","type":"object","required":["name"],"properties":{"matchType":{"description":"Match operation available with AlertManager >= v0.22.0 and\ntakes precedence over Regex (deprecated) if non-empty.","type":"string","enum":["!=","=","=~","!~"]},"name":{"description":"Label to match.","type":"string","minLength":1},"regex":{"description":"Whether to match on equality (false) or regular-expression (true).\nDeprecated: for AlertManager >= v0.22.0, `matchType` should be used instead.","type":"boolean"},"value":{"description":"Label value to match.","type":"string"}}}},"targetMatch":{"description":"Matchers that have to be fulfilled in the alerts to be muted. The\noperator enforces that the alert matches the resource's namespace.","type":"array","items":{"description":"Matcher defines how to match on alert's labels.","type":"object","required":["name"],"properties":{"matchType":{"description":"Match operation available with AlertManager >= v0.22.0 and\ntakes precedence over Regex (deprecated) if non-empty.","type":"string","enum":["!=","=","=~","!~"]},"name":{"description":"Label to match.","type":"string","minLength":1},"regex":{"description":"Whether to match on equality (false) or regular-expression (true).\nDeprecated: for AlertManager >= v0.22.0, `matchType` should be used instead.","type":"boolean"},"value":{"description":"Label value to match.","type":"string"}}}}}}},"muteTimeIntervals":{"description":"List of MuteTimeInterval specifying when the routes should be muted.","type":"array","items":{"description":"MuteTimeInterval specifies the periods in time when notifications will be muted","type":"object","required":["name"],"properties":{"name":{"description":"Name of the time interval","type":"string"},"timeIntervals":{"description":"TimeIntervals is a list of TimeInterval","type":"array","items":{"description":"TimeInterval describes intervals of time","type":"object","properties":{"daysOfMonth":{"description":"DaysOfMonth is a list of DayOfMonthRange","type":"array","items":{"description":"DayOfMonthRange is an inclusive range of days of the month beginning at 1","type":"object","properties":{"end":{"description":"End of the inclusive range","type":"integer","maximum":31,"minimum":-31},"start":{"description":"Start of the inclusive range","type":"integer","maximum":31,"minimum":-31}}}},"months":{"description":"Months is a list of MonthRange","type":"array","items":{"description":"MonthRange is an inclusive range of months of the year beginning in January\nMonths can be specified by name (e.g 'January') by numerical month (e.g '1') or as an inclusive range (e.g 'January:March', '1:3', '1:March')","type":"string","pattern":"^((?i)january|february|march|april|may|june|july|august|september|october|november|december|1[0-2]|[1-9])(?:((:((?i)january|february|march|april|may|june|july|august|september|october|november|december|1[0-2]|[1-9]))$)|$)"}},"times":{"description":"Times is a list of TimeRange","type":"array","items":{"description":"TimeRange defines a start and end time in 24hr format","type":"object","properties":{"endTime":{"description":"EndTime is the end time in 24hr format.","type":"string","pattern":"^((([01][0-9])|(2[0-3])):[0-5][0-9])$|(^24:00$)"},"startTime":{"description":"StartTime is the start time in 24hr format.","type":"string","pattern":"^((([01][0-9])|(2[0-3])):[0-5][0-9])$|(^24:00$)"}}}},"weekdays":{"description":"Weekdays is a list of WeekdayRange","type":"array","items":{"description":"WeekdayRange is an inclusive range of days of the week beginning on Sunday\nDays can be specified by name (e.g 'Sunday') or as an inclusive range (e.g 'Monday:Friday')","type":"string","pattern":"^((?i)sun|mon|tues|wednes|thurs|fri|satur)day(?:((:(sun|mon|tues|wednes|thurs|fri|satur)day)$)|$)"}},"years":{"description":"Years is a list of YearRange","type":"array","items":{"description":"YearRange is an inclusive range of years","type":"string","pattern":"^2\\d{3}(?::2\\d{3}|$)"}}}}}}}},"receivers":{"description":"List of receivers.","type":"array","items":{"description":"Receiver defines one or more notification integrations.","type":"object","required":["name"],"properties":{"discordConfigs":{"description":"List of Discord configurations.","type":"array","items":{"description":"DiscordConfig configures notifications via Discord.\nSee https://prometheus.io/docs/alerting/latest/configuration/#discord_config","type":"object","required":["apiURL"],"properties":{"apiURL":{"description":"The secret's key that contains the Discord webhook URL.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"The template of the message's body.","type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"title":{"description":"The template of the message's title.","type":"string"}}}},"emailConfigs":{"description":"List of Email configurations.","type":"array","items":{"description":"EmailConfig configures notifications via Email.","type":"object","properties":{"authIdentity":{"description":"The identity to use for authentication.","type":"string"},"authPassword":{"description":"The secret's key that contains the password to use for authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"authSecret":{"description":"The secret's key that contains the CRAM-MD5 secret.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"authUsername":{"description":"The username to use for authentication.","type":"string"},"from":{"description":"The sender address.","type":"string"},"headers":{"description":"Further headers email header key/value pairs. Overrides any headers\npreviously set by the notification implementation.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"hello":{"description":"The hostname to identify to the SMTP server.","type":"string"},"html":{"description":"The HTML body of the email notification.","type":"string"},"requireTLS":{"description":"The SMTP TLS requirement.\nNote that Go does not support unencrypted connections to remote SMTP endpoints.","type":"boolean"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"smarthost":{"description":"The SMTP host and port through which emails are sent. E.g. example.com:25","type":"string"},"text":{"description":"The text body of the email notification.","type":"string"},"tlsConfig":{"description":"TLS configuration","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"to":{"description":"The email address to send notifications to.","type":"string"}}}},"msteamsConfigs":{"description":"List of MSTeams configurations.\nIt requires Alertmanager >= 0.26.0.","type":"array","items":{"description":"MSTeamsConfig configures notifications via Microsoft Teams.\nIt requires Alertmanager >= 0.26.0.","type":"object","required":["webhookUrl"],"properties":{"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"sendResolved":{"description":"Whether to notify about resolved alerts.","type":"boolean"},"summary":{"description":"Message summary template.\nIt requires Alertmanager >= 0.27.0.","type":"string"},"text":{"description":"Message body template.","type":"string"},"title":{"description":"Message title template.","type":"string"},"webhookUrl":{"description":"MSTeams webhook URL.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"name":{"description":"Name of the receiver. Must be unique across all items from the list.","type":"string","minLength":1},"opsgenieConfigs":{"description":"List of OpsGenie configurations.","type":"array","items":{"description":"OpsGenieConfig configures notifications via OpsGenie.\nSee https://prometheus.io/docs/alerting/latest/configuration/#opsgenie_config","type":"object","properties":{"actions":{"description":"Comma separated list of actions that will be available for the alert.","type":"string"},"apiKey":{"description":"The secret's key that contains the OpsGenie API key.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"apiURL":{"description":"The URL to send OpsGenie API requests to.","type":"string"},"description":{"description":"Description of the incident.","type":"string"},"details":{"description":"A set of arbitrary key/value pairs that provide further detail about the incident.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"entity":{"description":"Optional field that can be used to specify which domain alert is related to.","type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Alert text limited to 130 characters.","type":"string"},"note":{"description":"Additional alert note.","type":"string"},"priority":{"description":"Priority level of alert. Possible values are P1, P2, P3, P4, and P5.","type":"string"},"responders":{"description":"List of responders responsible for notifications.","type":"array","items":{"description":"OpsGenieConfigResponder defines a responder to an incident.\nOne of `id`, `name` or `username` has to be defined.","type":"object","required":["type"],"properties":{"id":{"description":"ID of the responder.","type":"string"},"name":{"description":"Name of the responder.","type":"string"},"type":{"description":"Type of responder.","type":"string","minLength":1},"username":{"description":"Username of the responder.","type":"string"}}}},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"source":{"description":"Backlink to the sender of the notification.","type":"string"},"tags":{"description":"Comma separated list of tags attached to the notifications.","type":"string"},"updateAlerts":{"description":"Whether to update message and description of the alert in OpsGenie if it already exists\nBy default, the alert is never updated in OpsGenie, the new message only appears in activity log.","type":"boolean"}}}},"pagerdutyConfigs":{"description":"List of PagerDuty configurations.","type":"array","items":{"description":"PagerDutyConfig configures notifications via PagerDuty.\nSee https://prometheus.io/docs/alerting/latest/configuration/#pagerduty_config","type":"object","properties":{"class":{"description":"The class/type of the event.","type":"string"},"client":{"description":"Client identification.","type":"string"},"clientURL":{"description":"Backlink to the sender of notification.","type":"string"},"component":{"description":"The part or component of the affected system that is broken.","type":"string"},"description":{"description":"Description of the incident.","type":"string"},"details":{"description":"Arbitrary key/value pairs that provide further detail about the incident.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"group":{"description":"A cluster or grouping of sources.","type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"pagerDutyImageConfigs":{"description":"A list of image details to attach that provide further detail about an incident.","type":"array","items":{"description":"PagerDutyImageConfig attaches images to an incident","type":"object","properties":{"alt":{"description":"Alt is the optional alternative text for the image.","type":"string"},"href":{"description":"Optional URL; makes the image a clickable link.","type":"string"},"src":{"description":"Src of the image being attached to the incident","type":"string"}}}},"pagerDutyLinkConfigs":{"description":"A list of link details to attach that provide further detail about an incident.","type":"array","items":{"description":"PagerDutyLinkConfig attaches text links to an incident","type":"object","properties":{"alt":{"description":"Text that describes the purpose of the link, and can be used as the link's text.","type":"string"},"href":{"description":"Href is the URL of the link to be attached","type":"string"}}}},"routingKey":{"description":"The secret's key that contains the PagerDuty integration key (when using\nEvents API v2). Either this field or `serviceKey` needs to be defined.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"serviceKey":{"description":"The secret's key that contains the PagerDuty service key (when using\nintegration type \"Prometheus\"). Either this field or `routingKey` needs to\nbe defined.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"severity":{"description":"Severity of the incident.","type":"string"},"source":{"description":"Unique location of the affected system.","type":"string"},"url":{"description":"The URL to send requests to.","type":"string"}}}},"pushoverConfigs":{"description":"List of Pushover configurations.","type":"array","items":{"description":"PushoverConfig configures notifications via Pushover.\nSee https://prometheus.io/docs/alerting/latest/configuration/#pushover_config","type":"object","properties":{"device":{"description":"The name of a device to send the notification to","type":"string"},"expire":{"description":"How long your notification will continue to be retried for, unless the user\nacknowledges the notification.","type":"string","pattern":"^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$"},"html":{"description":"Whether notification message is HTML or plain text.","type":"boolean"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Notification message.","type":"string"},"priority":{"description":"Priority, see https://pushover.net/api#priority","type":"string"},"retry":{"description":"How often the Pushover servers will send the same notification to the user.\nMust be at least 30 seconds.","type":"string","pattern":"^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"sound":{"description":"The name of one of the sounds supported by device clients to override the user's default sound choice","type":"string"},"title":{"description":"Notification title.","type":"string"},"token":{"description":"The secret's key that contains the registered application's API token, see https://pushover.net/apps.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.\nEither `token` or `tokenFile` is required.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"tokenFile":{"description":"The token file that contains the registered application's API token, see https://pushover.net/apps.\nEither `token` or `tokenFile` is required.\nIt requires Alertmanager >= v0.26.0.","type":"string"},"ttl":{"description":"The time to live definition for the alert notification","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"url":{"description":"A supplementary URL shown alongside the message.","type":"string"},"urlTitle":{"description":"A title for supplementary URL, otherwise just the URL is shown","type":"string"},"userKey":{"description":"The secret's key that contains the recipient user's user key.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.\nEither `userKey` or `userKeyFile` is required.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"userKeyFile":{"description":"The user key file that contains the recipient user's user key.\nEither `userKey` or `userKeyFile` is required.\nIt requires Alertmanager >= v0.26.0.","type":"string"}}}},"slackConfigs":{"description":"List of Slack configurations.","type":"array","items":{"description":"SlackConfig configures notifications via Slack.\nSee https://prometheus.io/docs/alerting/latest/configuration/#slack_config","type":"object","properties":{"actions":{"description":"A list of Slack actions that are sent with each notification.","type":"array","items":{"description":"SlackAction configures a single Slack action that is sent with each\nnotification.\nSee https://api.slack.com/docs/message-attachments#action_fields and\nhttps://api.slack.com/docs/message-buttons for more information.","type":"object","required":["text","type"],"properties":{"confirm":{"description":"SlackConfirmationField protect users from destructive actions or\nparticularly distinguished decisions by asking them to confirm their button\nclick one more time.\nSee https://api.slack.com/docs/interactive-message-field-guide#confirmation_fields\nfor more information.","type":"object","required":["text"],"properties":{"dismissText":{"type":"string"},"okText":{"type":"string"},"text":{"type":"string","minLength":1},"title":{"type":"string"}}},"name":{"type":"string"},"style":{"type":"string"},"text":{"type":"string","minLength":1},"type":{"type":"string","minLength":1},"url":{"type":"string"},"value":{"type":"string"}}}},"apiURL":{"description":"The secret's key that contains the Slack webhook URL.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"callbackId":{"type":"string"},"channel":{"description":"The channel or user to send notifications to.","type":"string"},"color":{"type":"string"},"fallback":{"type":"string"},"fields":{"description":"A list of Slack fields that are sent with each notification.","type":"array","items":{"description":"SlackField configures a single Slack field that is sent with each notification.\nEach field must contain a title, value, and optionally, a boolean value to indicate if the field\nis short enough to be displayed next to other fields designated as short.\nSee https://api.slack.com/docs/message-attachments#fields for more information.","type":"object","required":["title","value"],"properties":{"short":{"type":"boolean"},"title":{"type":"string","minLength":1},"value":{"type":"string","minLength":1}}}},"footer":{"type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"iconEmoji":{"type":"string"},"iconURL":{"type":"string"},"imageURL":{"type":"string"},"linkNames":{"type":"boolean"},"mrkdwnIn":{"type":"array","items":{"type":"string"}},"pretext":{"type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"shortFields":{"type":"boolean"},"text":{"type":"string"},"thumbURL":{"type":"string"},"title":{"type":"string"},"titleLink":{"type":"string"},"username":{"type":"string"}}}},"snsConfigs":{"description":"List of SNS configurations","type":"array","items":{"description":"SNSConfig configures notifications via AWS SNS.\nSee https://prometheus.io/docs/alerting/latest/configuration/#sns_configs","type":"object","properties":{"apiURL":{"description":"The SNS API URL i.e. https://sns.us-east-2.amazonaws.com.\nIf not specified, the SNS API URL from the SNS SDK will be used.","type":"string"},"attributes":{"description":"SNS message attributes.","type":"object","additionalProperties":{"type":"string"}},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"The message content of the SNS notification.","type":"string"},"phoneNumber":{"description":"Phone number if message is delivered via SMS in E.164 format.\nIf you don't specify this value, you must specify a value for the TopicARN or TargetARN.","type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"sigv4":{"description":"Configures AWS's Signature Verification 4 signing process to sign requests.","type":"object","properties":{"accessKey":{"description":"AccessKey is the AWS API key. If not specified, the environment variable\n`AWS_ACCESS_KEY_ID` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"profile":{"description":"Profile is the named AWS profile used to authenticate.","type":"string"},"region":{"description":"Region is the AWS region. If blank, the region from the default credentials chain used.","type":"string"},"roleArn":{"description":"RoleArn is the named AWS profile used to authenticate.","type":"string"},"secretKey":{"description":"SecretKey is the AWS API secret. If not specified, the environment\nvariable `AWS_SECRET_ACCESS_KEY` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"subject":{"description":"Subject line when the message is delivered to email endpoints.","type":"string"},"targetARN":{"description":"The  mobile platform endpoint ARN if message is delivered via mobile notifications.\nIf you don't specify this value, you must specify a value for the topic_arn or PhoneNumber.","type":"string"},"topicARN":{"description":"SNS topic ARN, i.e. arn:aws:sns:us-east-2:698519295917:My-Topic\nIf you don't specify this value, you must specify a value for the PhoneNumber or TargetARN.","type":"string"}}}},"telegramConfigs":{"description":"List of Telegram configurations.","type":"array","items":{"description":"TelegramConfig configures notifications via Telegram.\nSee https://prometheus.io/docs/alerting/latest/configuration/#telegram_config","type":"object","required":["chatID"],"properties":{"apiURL":{"description":"The Telegram API URL i.e. https://api.telegram.org.\nIf not specified, default API URL will be used.","type":"string"},"botToken":{"description":"Telegram bot token. It is mutually exclusive with `botTokenFile`.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.\n\nEither `botToken` or `botTokenFile` is required.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"botTokenFile":{"description":"File to read the Telegram bot token from. It is mutually exclusive with `botToken`.\nEither `botToken` or `botTokenFile` is required.\n\nIt requires Alertmanager >= v0.26.0.","type":"string"},"chatID":{"description":"The Telegram chat ID.","type":"integer","format":"int64"},"disableNotifications":{"description":"Disable telegram notifications","type":"boolean"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Message template","type":"string"},"parseMode":{"description":"Parse mode for telegram message","type":"string","enum":["MarkdownV2","Markdown","HTML"]},"sendResolved":{"description":"Whether to notify about resolved alerts.","type":"boolean"}}}},"victoropsConfigs":{"description":"List of VictorOps configurations.","type":"array","items":{"description":"VictorOpsConfig configures notifications via VictorOps.\nSee https://prometheus.io/docs/alerting/latest/configuration/#victorops_config","type":"object","properties":{"apiKey":{"description":"The secret's key that contains the API key to use when talking to the VictorOps API.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"apiUrl":{"description":"The VictorOps API URL.","type":"string"},"customFields":{"description":"Additional custom fields for notification.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"entityDisplayName":{"description":"Contains summary of the alerted problem.","type":"string"},"httpConfig":{"description":"The HTTP client's configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"messageType":{"description":"Describes the behavior of the alert (CRITICAL, WARNING, INFO).","type":"string"},"monitoringTool":{"description":"The monitoring tool the state message is from.","type":"string"},"routingKey":{"description":"A key used to map the alert to a team.","type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"stateMessage":{"description":"Contains long explanation of the alerted problem.","type":"string"}}}},"webexConfigs":{"description":"List of Webex configurations.","type":"array","items":{"description":"WebexConfig configures notification via Cisco Webex\nSee https://prometheus.io/docs/alerting/latest/configuration/#webex_config","type":"object","required":["roomID"],"properties":{"apiURL":{"description":"The Webex Teams API URL i.e. https://webexapis.com/v1/messages\nProvide if different from the default API URL.","type":"string","pattern":"^https?://.+$"},"httpConfig":{"description":"The HTTP client's configuration.\nYou must supply the bot token via the `httpConfig.authorization` field.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Message template","type":"string"},"roomID":{"description":"ID of the Webex Teams room where to send the messages.","type":"string","minLength":1},"sendResolved":{"description":"Whether to notify about resolved alerts.","type":"boolean"}}}},"webhookConfigs":{"description":"List of webhook configurations.","type":"array","items":{"description":"WebhookConfig configures notifications via a generic receiver supporting the webhook payload.\nSee https://prometheus.io/docs/alerting/latest/configuration/#webhook_config","type":"object","properties":{"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"maxAlerts":{"description":"Maximum number of alerts to be sent per webhook message. When 0, all alerts are included.","type":"integer","format":"int32","minimum":0},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"url":{"description":"The URL to send HTTP POST requests to. `urlSecret` takes precedence over\n`url`. One of `urlSecret` and `url` should be defined.","type":"string"},"urlSecret":{"description":"The secret's key that contains the webhook URL to send HTTP requests to.\n`urlSecret` takes precedence over `url`. One of `urlSecret` and `url`\nshould be defined.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"wechatConfigs":{"description":"List of WeChat configurations.","type":"array","items":{"description":"WeChatConfig configures notifications via WeChat.\nSee https://prometheus.io/docs/alerting/latest/configuration/#wechat_config","type":"object","properties":{"agentID":{"type":"string"},"apiSecret":{"description":"The secret's key that contains the WeChat API key.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"apiURL":{"description":"The WeChat API URL.","type":"string"},"corpID":{"description":"The corp id for authentication.","type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"API request data as defined by the WeChat API.","type":"string"},"messageType":{"type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"toParty":{"type":"string"},"toTag":{"type":"string"},"toUser":{"type":"string"}}}}}}},"route":{"description":"The Alertmanager route definition for alerts matching the resource's\nnamespace. If present, it will be added to the generated Alertmanager\nconfiguration as a first-level route.","type":"object","properties":{"activeTimeIntervals":{"description":"ActiveTimeIntervals is a list of MuteTimeInterval names when this route should be active.","type":"array","items":{"type":"string"}},"continue":{"description":"Boolean indicating whether an alert should continue matching subsequent\nsibling nodes. It will always be overridden to true for the first-level\nroute by the Prometheus operator.","type":"boolean"},"groupBy":{"description":"List of labels to group by.\nLabels must not be repeated (unique list).\nSpecial label \"...\" (aggregate by all possible labels), if provided, must be the only element in the list.","type":"array","items":{"type":"string"}},"groupInterval":{"description":"How long to wait before sending an updated notification.\nMust match the regular expression`^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$`\nExample: \"5m\"","type":"string"},"groupWait":{"description":"How long to wait before sending the initial notification.\nMust match the regular expression`^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$`\nExample: \"30s\"","type":"string"},"matchers":{"description":"List of matchers that the alert's labels should match. For the first\nlevel route, the operator removes any existing equality and regexp\nmatcher on the `namespace` label and adds a `namespace: <object\nnamespace>` matcher.","type":"array","items":{"description":"Matcher defines how to match on alert's labels.","type":"object","required":["name"],"properties":{"matchType":{"description":"Match operation available with AlertManager >= v0.22.0 and\ntakes precedence over Regex (deprecated) if non-empty.","type":"string","enum":["!=","=","=~","!~"]},"name":{"description":"Label to match.","type":"string","minLength":1},"regex":{"description":"Whether to match on equality (false) or regular-expression (true).\nDeprecated: for AlertManager >= v0.22.0, `matchType` should be used instead.","type":"boolean"},"value":{"description":"Label value to match.","type":"string"}}}},"muteTimeIntervals":{"description":"Note: this comment applies to the field definition above but appears\nbelow otherwise it gets included in the generated manifest.\nCRD schema doesn't support self-referential types for now (see\nhttps://github.com/kubernetes/kubernetes/issues/62872). We have to use\nan alternative type to circumvent the limitation. The downside is that\nthe Kube API can't validate the data beyond the fact that it is a valid\nJSON representation.\nMuteTimeIntervals is a list of MuteTimeInterval names that will mute this route when matched,","type":"array","items":{"type":"string"}},"receiver":{"description":"Name of the receiver for this route. If not empty, it should be listed in\nthe `receivers` field.","type":"string"},"repeatInterval":{"description":"How long to wait before repeating the last notification.\nMust match the regular expression`^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$`\nExample: \"4h\"","type":"string"},"routes":{"description":"Child routes.","type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}}}}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1alpha1"}]},"com.coreos.monitoring.v1alpha1.AlertmanagerConfigList":{"description":"AlertmanagerConfigList is a list of AlertmanagerConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of alertmanagerconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1alpha1.AlertmanagerConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"AlertmanagerConfigList","version":"v1alpha1"}]},"com.coreos.monitoring.v1beta1.AlertmanagerConfig":{"description":"The `AlertmanagerConfig` custom resource definition (CRD) defines how `Alertmanager` objects process Prometheus alerts. It allows to specify alert grouping and routing, notification receivers and inhibition rules.\n\n`Alertmanager` objects select `AlertmanagerConfig` objects using label and namespace selectors.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"AlertmanagerConfigSpec is a specification of the desired behavior of the Alertmanager configuration.\nBy definition, the Alertmanager configuration only applies to alerts for which\nthe `namespace` label is equal to the namespace of the AlertmanagerConfig resource.","type":"object","properties":{"inhibitRules":{"description":"List of inhibition rules. The rules will only apply to alerts matching\nthe resource's namespace.","type":"array","items":{"description":"InhibitRule defines an inhibition rule that allows to mute alerts when other\nalerts are already firing.\nSee https://prometheus.io/docs/alerting/latest/configuration/#inhibit_rule","type":"object","properties":{"equal":{"description":"Labels that must have an equal value in the source and target alert for\nthe inhibition to take effect.","type":"array","items":{"type":"string"}},"sourceMatch":{"description":"Matchers for which one or more alerts have to exist for the inhibition\nto take effect. The operator enforces that the alert matches the\nresource's namespace.","type":"array","items":{"description":"Matcher defines how to match on alert's labels.","type":"object","required":["name"],"properties":{"matchType":{"description":"Match operator, one of `=` (equal to), `!=` (not equal to), `=~` (regex\nmatch) or `!~` (not regex match).\nNegative operators (`!=` and `!~`) require Alertmanager >= v0.22.0.","type":"string","enum":["!=","=","=~","!~"]},"name":{"description":"Label to match.","type":"string","minLength":1},"value":{"description":"Label value to match.","type":"string"}}}},"targetMatch":{"description":"Matchers that have to be fulfilled in the alerts to be muted. The\noperator enforces that the alert matches the resource's namespace.","type":"array","items":{"description":"Matcher defines how to match on alert's labels.","type":"object","required":["name"],"properties":{"matchType":{"description":"Match operator, one of `=` (equal to), `!=` (not equal to), `=~` (regex\nmatch) or `!~` (not regex match).\nNegative operators (`!=` and `!~`) require Alertmanager >= v0.22.0.","type":"string","enum":["!=","=","=~","!~"]},"name":{"description":"Label to match.","type":"string","minLength":1},"value":{"description":"Label value to match.","type":"string"}}}}}}},"receivers":{"description":"List of receivers.","type":"array","items":{"description":"Receiver defines one or more notification integrations.","type":"object","required":["name"],"properties":{"discordConfigs":{"description":"List of Slack configurations.","type":"array","items":{"description":"DiscordConfig configures notifications via Discord.\nSee https://prometheus.io/docs/alerting/latest/configuration/#discord_config","type":"object","required":["apiURL"],"properties":{"apiURL":{"description":"The secret's key that contains the Discord webhook URL.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"The template of the message's body.","type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"title":{"description":"The template of the message's title.","type":"string"}}}},"emailConfigs":{"description":"List of Email configurations.","type":"array","items":{"description":"EmailConfig configures notifications via Email.","type":"object","properties":{"authIdentity":{"description":"The identity to use for authentication.","type":"string"},"authPassword":{"description":"The secret's key that contains the password to use for authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"authSecret":{"description":"The secret's key that contains the CRAM-MD5 secret.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"authUsername":{"description":"The username to use for authentication.","type":"string"},"from":{"description":"The sender address.","type":"string"},"headers":{"description":"Further headers email header key/value pairs. Overrides any headers\npreviously set by the notification implementation.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"hello":{"description":"The hostname to identify to the SMTP server.","type":"string"},"html":{"description":"The HTML body of the email notification.","type":"string"},"requireTLS":{"description":"The SMTP TLS requirement.\nNote that Go does not support unencrypted connections to remote SMTP endpoints.","type":"boolean"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"smarthost":{"description":"The SMTP host and port through which emails are sent. E.g. example.com:25","type":"string"},"text":{"description":"The text body of the email notification.","type":"string"},"tlsConfig":{"description":"TLS configuration","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"to":{"description":"The email address to send notifications to.","type":"string"}}}},"msteamsConfigs":{"description":"List of MSTeams configurations.\nIt requires Alertmanager >= 0.26.0.","type":"array","items":{"description":"MSTeamsConfig configures notifications via Microsoft Teams.\nIt requires Alertmanager >= 0.26.0.","type":"object","required":["webhookUrl"],"properties":{"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"sendResolved":{"description":"Whether to notify about resolved alerts.","type":"boolean"},"summary":{"description":"Message summary template.\nIt requires Alertmanager >= 0.27.0.","type":"string"},"text":{"description":"Message body template.","type":"string"},"title":{"description":"Message title template.","type":"string"},"webhookUrl":{"description":"MSTeams webhook URL.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"name":{"description":"Name of the receiver. Must be unique across all items from the list.","type":"string","minLength":1},"opsgenieConfigs":{"description":"List of OpsGenie configurations.","type":"array","items":{"description":"OpsGenieConfig configures notifications via OpsGenie.\nSee https://prometheus.io/docs/alerting/latest/configuration/#opsgenie_config","type":"object","properties":{"actions":{"description":"Comma separated list of actions that will be available for the alert.","type":"string"},"apiKey":{"description":"The secret's key that contains the OpsGenie API key.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"apiURL":{"description":"The URL to send OpsGenie API requests to.","type":"string"},"description":{"description":"Description of the incident.","type":"string"},"details":{"description":"A set of arbitrary key/value pairs that provide further detail about the incident.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"entity":{"description":"Optional field that can be used to specify which domain alert is related to.","type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Alert text limited to 130 characters.","type":"string"},"note":{"description":"Additional alert note.","type":"string"},"priority":{"description":"Priority level of alert. Possible values are P1, P2, P3, P4, and P5.","type":"string"},"responders":{"description":"List of responders responsible for notifications.","type":"array","items":{"description":"OpsGenieConfigResponder defines a responder to an incident.\nOne of `id`, `name` or `username` has to be defined.","type":"object","required":["type"],"properties":{"id":{"description":"ID of the responder.","type":"string"},"name":{"description":"Name of the responder.","type":"string"},"type":{"description":"Type of responder.","type":"string","minLength":1,"enum":["team","teams","user","escalation","schedule"]},"username":{"description":"Username of the responder.","type":"string"}}}},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"source":{"description":"Backlink to the sender of the notification.","type":"string"},"tags":{"description":"Comma separated list of tags attached to the notifications.","type":"string"}}}},"pagerdutyConfigs":{"description":"List of PagerDuty configurations.","type":"array","items":{"description":"PagerDutyConfig configures notifications via PagerDuty.\nSee https://prometheus.io/docs/alerting/latest/configuration/#pagerduty_config","type":"object","properties":{"class":{"description":"The class/type of the event.","type":"string"},"client":{"description":"Client identification.","type":"string"},"clientURL":{"description":"Backlink to the sender of notification.","type":"string"},"component":{"description":"The part or component of the affected system that is broken.","type":"string"},"description":{"description":"Description of the incident.","type":"string"},"details":{"description":"Arbitrary key/value pairs that provide further detail about the incident.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"group":{"description":"A cluster or grouping of sources.","type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"pagerDutyImageConfigs":{"description":"A list of image details to attach that provide further detail about an incident.","type":"array","items":{"description":"PagerDutyImageConfig attaches images to an incident","type":"object","properties":{"alt":{"description":"Alt is the optional alternative text for the image.","type":"string"},"href":{"description":"Optional URL; makes the image a clickable link.","type":"string"},"src":{"description":"Src of the image being attached to the incident","type":"string"}}}},"pagerDutyLinkConfigs":{"description":"A list of link details to attach that provide further detail about an incident.","type":"array","items":{"description":"PagerDutyLinkConfig attaches text links to an incident","type":"object","properties":{"alt":{"description":"Text that describes the purpose of the link, and can be used as the link's text.","type":"string"},"href":{"description":"Href is the URL of the link to be attached","type":"string"}}}},"routingKey":{"description":"The secret's key that contains the PagerDuty integration key (when using\nEvents API v2). Either this field or `serviceKey` needs to be defined.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"serviceKey":{"description":"The secret's key that contains the PagerDuty service key (when using\nintegration type \"Prometheus\"). Either this field or `routingKey` needs to\nbe defined.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"severity":{"description":"Severity of the incident.","type":"string"},"source":{"description":"Unique location of the affected system.","type":"string"},"url":{"description":"The URL to send requests to.","type":"string"}}}},"pushoverConfigs":{"description":"List of Pushover configurations.","type":"array","items":{"description":"PushoverConfig configures notifications via Pushover.\nSee https://prometheus.io/docs/alerting/latest/configuration/#pushover_config","type":"object","properties":{"device":{"description":"The name of a device to send the notification to","type":"string"},"expire":{"description":"How long your notification will continue to be retried for, unless the user\nacknowledges the notification.","type":"string","pattern":"^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$"},"html":{"description":"Whether notification message is HTML or plain text.","type":"boolean"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Notification message.","type":"string"},"priority":{"description":"Priority, see https://pushover.net/api#priority","type":"string"},"retry":{"description":"How often the Pushover servers will send the same notification to the user.\nMust be at least 30 seconds.","type":"string","pattern":"^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"sound":{"description":"The name of one of the sounds supported by device clients to override the user's default sound choice","type":"string"},"title":{"description":"Notification title.","type":"string"},"token":{"description":"The secret's key that contains the registered application's API token, see https://pushover.net/apps.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.\nEither `token` or `tokenFile` is required.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"tokenFile":{"description":"The token file that contains the registered application's API token, see https://pushover.net/apps.\nEither `token` or `tokenFile` is required.\nIt requires Alertmanager >= v0.26.0.","type":"string"},"ttl":{"description":"The time to live definition for the alert notification","type":"string","pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"url":{"description":"A supplementary URL shown alongside the message.","type":"string"},"urlTitle":{"description":"A title for supplementary URL, otherwise just the URL is shown","type":"string"},"userKey":{"description":"The secret's key that contains the recipient user's user key.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.\nEither `userKey` or `userKeyFile` is required.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"userKeyFile":{"description":"The user key file that contains the recipient user's user key.\nEither `userKey` or `userKeyFile` is required.\nIt requires Alertmanager >= v0.26.0.","type":"string"}}}},"slackConfigs":{"description":"List of Slack configurations.","type":"array","items":{"description":"SlackConfig configures notifications via Slack.\nSee https://prometheus.io/docs/alerting/latest/configuration/#slack_config","type":"object","properties":{"actions":{"description":"A list of Slack actions that are sent with each notification.","type":"array","items":{"description":"SlackAction configures a single Slack action that is sent with each\nnotification.\nSee https://api.slack.com/docs/message-attachments#action_fields and\nhttps://api.slack.com/docs/message-buttons for more information.","type":"object","required":["text","type"],"properties":{"confirm":{"description":"SlackConfirmationField protect users from destructive actions or\nparticularly distinguished decisions by asking them to confirm their button\nclick one more time.\nSee https://api.slack.com/docs/interactive-message-field-guide#confirmation_fields\nfor more information.","type":"object","required":["text"],"properties":{"dismissText":{"type":"string"},"okText":{"type":"string"},"text":{"type":"string","minLength":1},"title":{"type":"string"}}},"name":{"type":"string"},"style":{"type":"string"},"text":{"type":"string","minLength":1},"type":{"type":"string","minLength":1},"url":{"type":"string"},"value":{"type":"string"}}}},"apiURL":{"description":"The secret's key that contains the Slack webhook URL.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"callbackId":{"type":"string"},"channel":{"description":"The channel or user to send notifications to.","type":"string"},"color":{"type":"string"},"fallback":{"type":"string"},"fields":{"description":"A list of Slack fields that are sent with each notification.","type":"array","items":{"description":"SlackField configures a single Slack field that is sent with each notification.\nEach field must contain a title, value, and optionally, a boolean value to indicate if the field\nis short enough to be displayed next to other fields designated as short.\nSee https://api.slack.com/docs/message-attachments#fields for more information.","type":"object","required":["title","value"],"properties":{"short":{"type":"boolean"},"title":{"type":"string","minLength":1},"value":{"type":"string","minLength":1}}}},"footer":{"type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"iconEmoji":{"type":"string"},"iconURL":{"type":"string"},"imageURL":{"type":"string"},"linkNames":{"type":"boolean"},"mrkdwnIn":{"type":"array","items":{"type":"string"}},"pretext":{"type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"shortFields":{"type":"boolean"},"text":{"type":"string"},"thumbURL":{"type":"string"},"title":{"type":"string"},"titleLink":{"type":"string"},"username":{"type":"string"}}}},"snsConfigs":{"description":"List of SNS configurations","type":"array","items":{"description":"SNSConfig configures notifications via AWS SNS.\nSee https://prometheus.io/docs/alerting/latest/configuration/#sns_configs","type":"object","properties":{"apiURL":{"description":"The SNS API URL i.e. https://sns.us-east-2.amazonaws.com.\nIf not specified, the SNS API URL from the SNS SDK will be used.","type":"string"},"attributes":{"description":"SNS message attributes.","type":"object","additionalProperties":{"type":"string"}},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"The message content of the SNS notification.","type":"string"},"phoneNumber":{"description":"Phone number if message is delivered via SMS in E.164 format.\nIf you don't specify this value, you must specify a value for the TopicARN or TargetARN.","type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"sigv4":{"description":"Configures AWS's Signature Verification 4 signing process to sign requests.","type":"object","properties":{"accessKey":{"description":"AccessKey is the AWS API key. If not specified, the environment variable\n`AWS_ACCESS_KEY_ID` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"profile":{"description":"Profile is the named AWS profile used to authenticate.","type":"string"},"region":{"description":"Region is the AWS region. If blank, the region from the default credentials chain used.","type":"string"},"roleArn":{"description":"RoleArn is the named AWS profile used to authenticate.","type":"string"},"secretKey":{"description":"SecretKey is the AWS API secret. If not specified, the environment\nvariable `AWS_SECRET_ACCESS_KEY` is used.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"subject":{"description":"Subject line when the message is delivered to email endpoints.","type":"string"},"targetARN":{"description":"The  mobile platform endpoint ARN if message is delivered via mobile notifications.\nIf you don't specify this value, you must specify a value for the topic_arn or PhoneNumber.","type":"string"},"topicARN":{"description":"SNS topic ARN, i.e. arn:aws:sns:us-east-2:698519295917:My-Topic\nIf you don't specify this value, you must specify a value for the PhoneNumber or TargetARN.","type":"string"}}}},"telegramConfigs":{"description":"List of Telegram configurations.","type":"array","items":{"description":"TelegramConfig configures notifications via Telegram.\nSee https://prometheus.io/docs/alerting/latest/configuration/#telegram_config","type":"object","required":["chatID"],"properties":{"apiURL":{"description":"The Telegram API URL i.e. https://api.telegram.org.\nIf not specified, default API URL will be used.","type":"string"},"botToken":{"description":"Telegram bot token. It is mutually exclusive with `botTokenFile`.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.\n\nEither `botToken` or `botTokenFile` is required.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"botTokenFile":{"description":"File to read the Telegram bot token from. It is mutually exclusive with `botToken`.\nEither `botToken` or `botTokenFile` is required.\n\nIt requires Alertmanager >= v0.26.0.","type":"string"},"chatID":{"description":"The Telegram chat ID.","type":"integer","format":"int64"},"disableNotifications":{"description":"Disable telegram notifications","type":"boolean"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Message template","type":"string"},"parseMode":{"description":"Parse mode for telegram message","type":"string","enum":["MarkdownV2","Markdown","HTML"]},"sendResolved":{"description":"Whether to notify about resolved alerts.","type":"boolean"}}}},"victoropsConfigs":{"description":"List of VictorOps configurations.","type":"array","items":{"description":"VictorOpsConfig configures notifications via VictorOps.\nSee https://prometheus.io/docs/alerting/latest/configuration/#victorops_config","type":"object","properties":{"apiKey":{"description":"The secret's key that contains the API key to use when talking to the VictorOps API.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"apiUrl":{"description":"The VictorOps API URL.","type":"string"},"customFields":{"description":"Additional custom fields for notification.","type":"array","items":{"description":"KeyValue defines a (key, value) tuple.","type":"object","required":["key","value"],"properties":{"key":{"description":"Key of the tuple.","type":"string","minLength":1},"value":{"description":"Value of the tuple.","type":"string"}}}},"entityDisplayName":{"description":"Contains summary of the alerted problem.","type":"string"},"httpConfig":{"description":"The HTTP client's configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"messageType":{"description":"Describes the behavior of the alert (CRITICAL, WARNING, INFO).","type":"string"},"monitoringTool":{"description":"The monitoring tool the state message is from.","type":"string"},"routingKey":{"description":"A key used to map the alert to a team.","type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"stateMessage":{"description":"Contains long explanation of the alerted problem.","type":"string"}}}},"webexConfigs":{"description":"List of Webex configurations.","type":"array","items":{"description":"WebexConfig configures notification via Cisco Webex\nSee https://prometheus.io/docs/alerting/latest/configuration/#webex_config","type":"object","required":["roomID"],"properties":{"apiURL":{"description":"The Webex Teams API URL i.e. https://webexapis.com/v1/messages","type":"string","pattern":"^https?://.+$"},"httpConfig":{"description":"The HTTP client's configuration.\nYou must use this configuration to supply the bot token as part of the HTTP `Authorization` header.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"Message template","type":"string"},"roomID":{"description":"ID of the Webex Teams room where to send the messages.","type":"string","minLength":1},"sendResolved":{"description":"Whether to notify about resolved alerts.","type":"boolean"}}}},"webhookConfigs":{"description":"List of webhook configurations.","type":"array","items":{"description":"WebhookConfig configures notifications via a generic receiver supporting the webhook payload.\nSee https://prometheus.io/docs/alerting/latest/configuration/#webhook_config","type":"object","properties":{"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"maxAlerts":{"description":"Maximum number of alerts to be sent per webhook message. When 0, all alerts are included.","type":"integer","format":"int32","minimum":0},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"url":{"description":"The URL to send HTTP POST requests to. `urlSecret` takes precedence over\n`url`. One of `urlSecret` and `url` should be defined.","type":"string"},"urlSecret":{"description":"The secret's key that contains the webhook URL to send HTTP requests to.\n`urlSecret` takes precedence over `url`. One of `urlSecret` and `url`\nshould be defined.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}}}}},"wechatConfigs":{"description":"List of WeChat configurations.","type":"array","items":{"description":"WeChatConfig configures notifications via WeChat.\nSee https://prometheus.io/docs/alerting/latest/configuration/#wechat_config","type":"object","properties":{"agentID":{"type":"string"},"apiSecret":{"description":"The secret's key that contains the WeChat API key.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"apiURL":{"description":"The WeChat API URL.","type":"string"},"corpID":{"description":"The corp id for authentication.","type":"string"},"httpConfig":{"description":"HTTP client configuration.","type":"object","properties":{"authorization":{"description":"Authorization header configuration for the client.\nThis is mutually exclusive with BasicAuth and is only available starting from Alertmanager v0.22+.","type":"object","properties":{"credentials":{"description":"Selects a key of a Secret in the namespace that contains the credentials for authentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"type":{"description":"Defines the authentication type. The value is case-insensitive.\n\n\"Basic\" is not a supported value.\n\nDefault: \"Bearer\"","type":"string"}}},"basicAuth":{"description":"BasicAuth for the client.\nThis is mutually exclusive with Authorization. If both are defined, BasicAuth takes precedence.","type":"object","properties":{"password":{"description":"`password` specifies a key of a Secret containing the password for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"username":{"description":"`username` specifies a key of a Secret containing the username for\nauthentication.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"bearerTokenSecret":{"description":"The secret's key that contains the bearer token to be used by the client\nfor authentication.\nThe secret needs to be in the same namespace as the AlertmanagerConfig\nobject and accessible by the Prometheus Operator.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string","minLength":1},"name":{"description":"The name of the secret in the object's namespace to select from.","type":"string","minLength":1}}},"followRedirects":{"description":"FollowRedirects specifies whether the client should follow HTTP 3xx redirects.","type":"boolean"},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"oauth2":{"description":"OAuth2 client credentials used to fetch a token for the targets.","type":"object","required":["clientId","clientSecret","tokenUrl"],"properties":{"clientId":{"description":"`clientId` specifies a key of a Secret or ConfigMap containing the\nOAuth2 client's ID.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"clientSecret":{"description":"`clientSecret` specifies a key of a Secret containing the OAuth2\nclient's secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"endpointParams":{"description":"`endpointParams` configures the HTTP parameters to append to the token\nURL.","type":"object","additionalProperties":{"type":"string"}},"noProxy":{"description":"`noProxy` is a comma-separated string that can contain IPs, CIDR notation, domain names\nthat should be excluded from proxying. IP and domain names can\ncontain port numbers.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"string"},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"scopes":{"description":"`scopes` defines the OAuth2 scopes used for the token request.","type":"array","items":{"type":"string"}},"tlsConfig":{"description":"TLS configuration to use when connecting to the OAuth2 server.\nIt requires Prometheus >= v2.43.0.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}},"tokenUrl":{"description":"`tokenURL` configures the URL to fetch the token from.","type":"string","minLength":1}}},"proxyConnectHeader":{"description":"ProxyConnectHeader optionally specifies headers to send to\nproxies during CONNECT requests.\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"object","additionalProperties":{"type":"array","items":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"proxyFromEnvironment":{"description":"Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).\n\nIt requires Prometheus >= v2.43.0 or Alertmanager >= 0.25.0.","type":"boolean"},"proxyURL":{"description":"Optional proxy URL.\n\nIf defined, this field takes precedence over `proxyUrl`.","type":"string"},"proxyUrl":{"description":"`proxyURL` defines the HTTP proxy server to use.","type":"string","pattern":"^http(s)?://.+$"},"tlsConfig":{"description":"TLS configuration for the client.","type":"object","properties":{"ca":{"description":"Certificate authority used when verifying server certificates.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"cert":{"description":"Client certificate to present when doing client-authentication.","type":"object","properties":{"configMap":{"description":"ConfigMap containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret containing data to use for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"insecureSkipVerify":{"description":"Disable target certificate validation.","type":"boolean"},"keySecret":{"description":"Secret containing the client key file for the targets.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"maxVersion":{"description":"Maximum acceptable TLS version.\n\nIt requires Prometheus >= v2.41.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"minVersion":{"description":"Minimum acceptable TLS version.\n\nIt requires Prometheus >= v2.35.0.","type":"string","enum":["TLS10","TLS11","TLS12","TLS13"]},"serverName":{"description":"Used to verify the hostname for the targets.","type":"string"}}}}},"message":{"description":"API request data as defined by the WeChat API.","type":"string"},"messageType":{"type":"string"},"sendResolved":{"description":"Whether or not to notify about resolved alerts.","type":"boolean"},"toParty":{"type":"string"},"toTag":{"type":"string"},"toUser":{"type":"string"}}}}}}},"route":{"description":"The Alertmanager route definition for alerts matching the resource's\nnamespace. If present, it will be added to the generated Alertmanager\nconfiguration as a first-level route.","type":"object","properties":{"activeTimeIntervals":{"description":"ActiveTimeIntervals is a list of TimeInterval names when this route should be active.","type":"array","items":{"type":"string"}},"continue":{"description":"Boolean indicating whether an alert should continue matching subsequent\nsibling nodes. It will always be overridden to true for the first-level\nroute by the Prometheus operator.","type":"boolean"},"groupBy":{"description":"List of labels to group by.\nLabels must not be repeated (unique list).\nSpecial label \"...\" (aggregate by all possible labels), if provided, must be the only element in the list.","type":"array","items":{"type":"string"}},"groupInterval":{"description":"How long to wait before sending an updated notification.\nMust match the regular expression`^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$`\nExample: \"5m\"","type":"string"},"groupWait":{"description":"How long to wait before sending the initial notification.\nMust match the regular expression`^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$`\nExample: \"30s\"","type":"string"},"matchers":{"description":"List of matchers that the alert's labels should match. For the first\nlevel route, the operator removes any existing equality and regexp\nmatcher on the `namespace` label and adds a `namespace: <object\nnamespace>` matcher.","type":"array","items":{"description":"Matcher defines how to match on alert's labels.","type":"object","required":["name"],"properties":{"matchType":{"description":"Match operator, one of `=` (equal to), `!=` (not equal to), `=~` (regex\nmatch) or `!~` (not regex match).\nNegative operators (`!=` and `!~`) require Alertmanager >= v0.22.0.","type":"string","enum":["!=","=","=~","!~"]},"name":{"description":"Label to match.","type":"string","minLength":1},"value":{"description":"Label value to match.","type":"string"}}}},"muteTimeIntervals":{"description":"Note: this comment applies to the field definition above but appears\nbelow otherwise it gets included in the generated manifest.\nCRD schema doesn't support self-referential types for now (see\nhttps://github.com/kubernetes/kubernetes/issues/62872). We have to use\nan alternative type to circumvent the limitation. The downside is that\nthe Kube API can't validate the data beyond the fact that it is a valid\nJSON representation.\nMuteTimeIntervals is a list of TimeInterval names that will mute this route when matched.","type":"array","items":{"type":"string"}},"receiver":{"description":"Name of the receiver for this route. If not empty, it should be listed in\nthe `receivers` field.","type":"string"},"repeatInterval":{"description":"How long to wait before repeating the last notification.\nMust match the regular expression`^(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?$`\nExample: \"4h\"","type":"string"},"routes":{"description":"Child routes.","type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}}}},"timeIntervals":{"description":"List of TimeInterval specifying when the routes should be muted or active.","type":"array","items":{"description":"TimeInterval specifies the periods in time when notifications will be muted or active.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the time interval.","type":"string"},"timeIntervals":{"description":"TimeIntervals is a list of TimePeriod.","type":"array","items":{"description":"TimePeriod describes periods of time.","type":"object","properties":{"daysOfMonth":{"description":"DaysOfMonth is a list of DayOfMonthRange","type":"array","items":{"description":"DayOfMonthRange is an inclusive range of days of the month beginning at 1","type":"object","properties":{"end":{"description":"End of the inclusive range","type":"integer","maximum":31,"minimum":-31},"start":{"description":"Start of the inclusive range","type":"integer","maximum":31,"minimum":-31}}}},"months":{"description":"Months is a list of MonthRange","type":"array","items":{"description":"MonthRange is an inclusive range of months of the year beginning in January\nMonths can be specified by name (e.g 'January') by numerical month (e.g '1') or as an inclusive range (e.g 'January:March', '1:3', '1:March')","type":"string","pattern":"^((?i)january|february|march|april|may|june|july|august|september|october|november|december|1[0-2]|[1-9])(?:((:((?i)january|february|march|april|may|june|july|august|september|october|november|december|1[0-2]|[1-9]))$)|$)"}},"times":{"description":"Times is a list of TimeRange","type":"array","items":{"description":"TimeRange defines a start and end time in 24hr format","type":"object","properties":{"endTime":{"description":"EndTime is the end time in 24hr format.","type":"string","pattern":"^((([01][0-9])|(2[0-3])):[0-5][0-9])$|(^24:00$)"},"startTime":{"description":"StartTime is the start time in 24hr format.","type":"string","pattern":"^((([01][0-9])|(2[0-3])):[0-5][0-9])$|(^24:00$)"}}}},"weekdays":{"description":"Weekdays is a list of WeekdayRange","type":"array","items":{"description":"WeekdayRange is an inclusive range of days of the week beginning on Sunday\nDays can be specified by name (e.g 'Sunday') or as an inclusive range (e.g 'Monday:Friday')","type":"string","pattern":"^((?i)sun|mon|tues|wednes|thurs|fri|satur)day(?:((:(sun|mon|tues|wednes|thurs|fri|satur)day)$)|$)"}},"years":{"description":"Years is a list of YearRange","type":"array","items":{"description":"YearRange is an inclusive range of years","type":"string","pattern":"^2\\d{3}(?::2\\d{3}|$)"}}}}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"AlertmanagerConfig","version":"v1beta1"}]},"com.coreos.monitoring.v1beta1.AlertmanagerConfigList":{"description":"AlertmanagerConfigList is a list of AlertmanagerConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of alertmanagerconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.monitoring.v1beta1.AlertmanagerConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.coreos.com","kind":"AlertmanagerConfigList","version":"v1beta1"}]},"com.coreos.operators.v1.OLMConfig":{"description":"OLMConfig is a resource responsible for configuring OLM.","type":"object","required":["metadata"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OLMConfigSpec is the spec for an OLMConfig resource.","type":"object","properties":{"features":{"description":"Features contains the list of configurable OLM features.","type":"object","properties":{"disableCopiedCSVs":{"description":"DisableCopiedCSVs is used to disable OLM's \"Copied CSV\" feature\nfor operators installed at the cluster scope, where a cluster\nscoped operator is one that has been installed in an\nOperatorGroup that targets all namespaces.\nWhen reenabled, OLM will recreate the \"Copied CSVs\" for each\ncluster scoped operator.","type":"boolean"},"packageServerSyncInterval":{"description":"PackageServerSyncInterval is used to define the sync interval for\npackagerserver pods. Packageserver pods periodically check the\nstatus of CatalogSources; this specifies the period using duration\nformat (e.g. \"60m\"). For this parameter, only hours (\"h\"), minutes\n(\"m\"), and seconds (\"s\") may be specified. When not specified, the\nperiod defaults to the value specified within the packageserver.","type":"string","pattern":"^([0-9]+(\\.[0-9]+)?(s|m|h))+$"}}}}},"status":{"description":"OLMConfigStatus is the status for an OLMConfig resource.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OLMConfig","version":"v1"}]},"com.coreos.operators.v1.OLMConfigList":{"description":"OLMConfigList is a list of OLMConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of olmconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1.OLMConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OLMConfigList","version":"v1"}]},"com.coreos.operators.v1.Operator":{"description":"Operator represents a cluster operator.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperatorSpec defines the desired state of Operator","type":"object"},"status":{"description":"OperatorStatus defines the observed state of an Operator and its components","type":"object","properties":{"components":{"description":"Components describes resources that compose the operator.","type":"object","required":["labelSelector"],"properties":{"labelSelector":{"description":"LabelSelector is a label query over a set of resources used to select the operator's components","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"refs":{"description":"Refs are a set of references to the operator's component resources, selected with LabelSelector.","type":"array","items":{"description":"RichReference is a reference to a resource, enriched with its status conditions.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"conditions":{"description":"Conditions represents the latest state of the component.","type":"array","items":{"description":"Condition represent the latest available observations of an component's state.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","type":"string","format":"date-time"},"lastUpdateTime":{"description":"Last time the condition was probed","type":"string","format":"date-time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"Operator","version":"v1"}]},"com.coreos.operators.v1.OperatorCondition":{"description":"OperatorCondition is a Custom Resource of type `OperatorCondition` which is used to convey information to OLM about the state of an operator.","type":"object","required":["metadata"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperatorConditionSpec allows a cluster admin to convey information about the state of an operator to OLM, potentially overriding state reported by the operator.","type":"object","properties":{"deployments":{"type":"array","items":{"type":"string"}},"overrides":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"serviceAccounts":{"type":"array","items":{"type":"string"}}}},"status":{"description":"OperatorConditionStatus allows an operator to convey information its state to OLM. The status may trail the actual\nstate of a system.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v1"}]},"com.coreos.operators.v1.OperatorConditionList":{"description":"OperatorConditionList is a list of OperatorCondition","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operatorconditions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorCondition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorConditionList","version":"v1"}]},"com.coreos.operators.v1.OperatorGroup":{"description":"OperatorGroup is the unit of multitenancy for OLM managed operators.\nIt constrains the installation of operators in its namespace to a specified set of target namespaces.","type":"object","required":["metadata"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperatorGroupSpec is the spec for an OperatorGroup resource.","type":"object","properties":{"selector":{"description":"Selector selects the OperatorGroup's target namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"serviceAccountName":{"description":"ServiceAccountName is the admin specified service account which will be\nused to deploy operator(s) in this operator group.","type":"string"},"staticProvidedAPIs":{"description":"Static tells OLM not to update the OperatorGroup's providedAPIs annotation","type":"boolean"},"targetNamespaces":{"description":"TargetNamespaces is an explicit set of namespaces to target.\nIf it is set, Selector is ignored.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"upgradeStrategy":{"description":"UpgradeStrategy defines the upgrade strategy for operators in the namespace.\nThere are currently two supported upgrade strategies:\n\nDefault: OLM will only allow clusterServiceVersions to move to the replacing\nphase from the succeeded phase. This effectively means that OLM will not\nallow operators to move to the next version if an installation or upgrade\nhas failed.\n\nTechPreviewUnsafeFailForward: OLM will allow clusterServiceVersions to move to the\nreplacing phase from the succeeded phase or from the failed phase.\nAdditionally, OLM will generate new installPlans when a subscription references\na failed installPlan and the catalog has been updated with a new upgrade for\nthe existing set of operators.\n\nWARNING: The TechPreviewUnsafeFailForward upgrade strategy is unsafe and may result\nin unexpected behavior or unrecoverable data loss unless you have deep\nunderstanding of the set of operators being managed in the namespace.","type":"string","enum":["Default","TechPreviewUnsafeFailForward"]}}},"status":{"description":"OperatorGroupStatus is the status for an OperatorGroupResource.","type":"object","required":["lastUpdated"],"properties":{"conditions":{"description":"Conditions is an array of the OperatorGroup's conditions.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"lastUpdated":{"description":"LastUpdated is a timestamp of the last time the OperatorGroup's status was Updated.","type":"string","format":"date-time"},"namespaces":{"description":"Namespaces is the set of target namespaces for the OperatorGroup.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"serviceAccountRef":{"description":"ServiceAccountRef references the service account object specified.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1"}]},"com.coreos.operators.v1.OperatorGroupList":{"description":"OperatorGroupList is a list of OperatorGroup","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operatorgroups. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1.OperatorGroup"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorGroupList","version":"v1"}]},"com.coreos.operators.v1.OperatorList":{"description":"OperatorList is a list of Operator","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operators. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1.Operator"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorList","version":"v1"}]},"com.coreos.operators.v1alpha1.CatalogSource":{"description":"CatalogSource is a repository of CSVs, CRDs, and operator packages.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["sourceType"],"properties":{"address":{"description":"Address is a host that OLM can use to connect to a pre-existing registry.\nFormat: <registry-host or ip>:<port>\nOnly used when SourceType = SourceTypeGrpc.\nIgnored when the Image field is set.","type":"string"},"configMap":{"description":"ConfigMap is the name of the ConfigMap to be used to back a configmap-server registry.\nOnly used when SourceType = SourceTypeConfigmap or SourceTypeInternal.","type":"string"},"description":{"type":"string"},"displayName":{"description":"Metadata","type":"string"},"grpcPodConfig":{"description":"GrpcPodConfig exposes different overrides for the pod spec of the CatalogSource Pod.\nOnly used when SourceType = SourceTypeGrpc and Image is set.","type":"object","properties":{"affinity":{"description":"Affinity is the catalog source's pod's affinity.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"extractContent":{"description":"ExtractContent configures the gRPC catalog Pod to extract catalog metadata from the provided index image and\nuse a well-known version of the `opm` server to expose it. The catalog index image that this CatalogSource is\nconfigured to use *must* be using the file-based catalogs in order to utilize this feature.","type":"object","required":["cacheDir","catalogDir"],"properties":{"cacheDir":{"description":"CacheDir is the directory storing the pre-calculated API cache.","type":"string"},"catalogDir":{"description":"CatalogDir is the directory storing the file-based catalog contents.","type":"string"}}},"memoryTarget":{"description":"MemoryTarget configures the $GOMEMLIMIT value for the gRPC catalog Pod. This is a soft memory limit for the server,\nwhich the runtime will attempt to meet but makes no guarantees that it will do so. If this value is set, the Pod\nwill have the following modifications made to the container running the server:\n- the $GOMEMLIMIT environment variable will be set to this value in bytes\n- the memory request will be set to this value\n\nThis field should be set if it's desired to reduce the footprint of a catalog server as much as possible, or if\na catalog being served is very large and needs more than the default allocation. If your index image has a file-\nsystem cache, determine a good approximation for this value by doubling the size of the package cache at\n/tmp/cache/cache/packages.json in the index image.\n\nThis field is best-effort; if unset, no default will be used and no Pod memory limit or $GOMEMLIMIT value will be set.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"securityContextConfig":{"description":"SecurityContextConfig can be one of `legacy` or `restricted`. The CatalogSource's pod is either injected with the\nright pod.spec.securityContext and pod.spec.container[*].securityContext values to allow the pod to run in Pod\nSecurity Admission (PSA) `restricted` mode, or doesn't set these values at all, in which case the pod can only be\nrun in PSA `baseline` or `privileged` namespaces. If the SecurityContextConfig is unspecified, the mode will be\ndetermined by the namespace's PSA configuration. If the namespace is enforcing `restricted` mode, then the pod\nwill be configured as if `restricted` was specified. Otherwise, it will be configured as if `legacy` was\nspecified. Specifying a value other than `legacy` or `restricted` result in a validation error. When using older\ncatalog images, which can not run in `restricted` mode, the SecurityContextConfig should be set to `legacy`.\n\nMore information about PSA can be found here: https://kubernetes.io/docs/concepts/security/pod-security-admission/'","type":"string","enum":["legacy","restricted"]},"tolerations":{"description":"Tolerations are the catalog source's pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"icon":{"type":"object","required":["base64data","mediatype"],"properties":{"base64data":{"type":"string"},"mediatype":{"type":"string"}}},"image":{"description":"Image is an operator-registry container image to instantiate a registry-server with.\nOnly used when SourceType = SourceTypeGrpc.\nIf present, the address field is ignored.","type":"string"},"priority":{"description":"Priority field assigns a weight to the catalog source to prioritize them so that it can be consumed by the dependency resolver.\nUsage:\nHigher weight indicates that this catalog source is preferred over lower weighted catalog sources during dependency resolution.\nThe range of the priority value can go from positive to negative in the range of int32.\nThe default value to a catalog source with unassigned priority would be 0.\nThe catalog source with the same priority values will be ranked lexicographically based on its name.","type":"integer"},"publisher":{"type":"string"},"runAsRoot":{"description":"RunAsRoot allows admins to indicate that they wish to run the CatalogSource pod in a privileged\npod as root.  This should only be enabled when running older catalog images which could not be run as non-root.","type":"boolean"},"secrets":{"description":"Secrets represent set of secrets that can be used to access the contents of the catalog.\nIt is best to keep this list small, since each will need to be tried for every catalog entry.","type":"array","items":{"type":"string"}},"sourceType":{"description":"SourceType is the type of source","type":"string"},"updateStrategy":{"description":"UpdateStrategy defines how updated catalog source images can be discovered\nConsists of an interval that defines polling duration and an embedded strategy type","type":"object","properties":{"registryPoll":{"type":"object","properties":{"interval":{"description":"Interval is used to determine the time interval between checks of the latest catalog source version.\nThe catalog operator polls to see if a new version of the catalog source is available.\nIf available, the latest image is pulled and gRPC traffic is directed to the latest catalog source.","type":"string"}}}}}}},"status":{"type":"object","properties":{"conditions":{"description":"Represents the state of a CatalogSource. Note that Message and Reason represent the original\nstatus information, which may be migrated to be conditions based in the future. Any new features\nintroduced will use conditions.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"configMapReference":{"description":"ConfigMapReference (deprecated) is the reference to the ConfigMap containing the catalog source's configuration, when the catalog source is a ConfigMap","type":"object","required":["name","namespace"],"properties":{"lastUpdateTime":{"type":"string","format":"date-time"},"name":{"type":"string"},"namespace":{"type":"string"},"resourceVersion":{"type":"string"},"uid":{"description":"UID is a type that holds unique ID values, including UUIDs.  Because we\ndon't ONLY use UUIDs, this is an alias to string.  Being a type captures\nintent and helps make sure that UIDs and names do not get conflated.","type":"string"}}},"connectionState":{"description":"ConnectionState represents the current state of the CatalogSource's connection to the registry","type":"object","required":["lastObservedState"],"properties":{"address":{"type":"string"},"lastConnect":{"type":"string","format":"date-time"},"lastObservedState":{"type":"string"}}},"latestImageRegistryPoll":{"description":"The last time the CatalogSource image registry has been polled to ensure the image is up-to-date","type":"string","format":"date-time"},"message":{"description":"A human readable message indicating details about why the CatalogSource is in this condition.","type":"string"},"reason":{"description":"Reason is the reason the CatalogSource was transitioned to its current state.","type":"string"},"registryService":{"description":"RegistryService represents the current state of the GRPC service used to serve the catalog","type":"object","properties":{"createdAt":{"type":"string","format":"date-time"},"port":{"type":"string"},"protocol":{"type":"string"},"serviceName":{"type":"string"},"serviceNamespace":{"type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"CatalogSource","version":"v1alpha1"}]},"com.coreos.operators.v1alpha1.CatalogSourceList":{"description":"CatalogSourceList is a list of CatalogSource","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of catalogsources. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.CatalogSource"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"CatalogSourceList","version":"v1alpha1"}]},"com.coreos.operators.v1alpha1.ClusterServiceVersion":{"description":"ClusterServiceVersion is a Custom Resource of type `ClusterServiceVersionSpec`.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterServiceVersionSpec declarations tell OLM how to install an operator\nthat can manage apps for a given version.","type":"object","required":["displayName","install"],"properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata.","type":"object","additionalProperties":{"type":"string"}},"apiservicedefinitions":{"description":"APIServiceDefinitions declares all of the extension apis managed or required by\nan operator being ran by ClusterServiceVersion.","type":"object","properties":{"owned":{"type":"array","items":{"description":"APIServiceDescription provides details to OLM about apis provided via aggregation","type":"object","required":["group","kind","name","version"],"properties":{"actionDescriptors":{"type":"array","items":{"description":"ActionDescriptor describes a declarative action that can be performed on a custom resource instance","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"containerPort":{"type":"integer","format":"int32"},"deploymentName":{"type":"string"},"description":{"type":"string"},"displayName":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"resources":{"type":"array","items":{"description":"APIResourceReference is a reference to a Kubernetes resource type that the referrer utilizes.","type":"object","required":["kind","name","version"],"properties":{"kind":{"description":"Kind of the referenced resource type.","type":"string"},"name":{"description":"Plural name of the referenced resource type (CustomResourceDefinition.Spec.Names[].Plural). Empty string if the referenced resource type is not a custom resource.","type":"string"},"version":{"description":"API Version of the referenced resource type.","type":"string"}}}},"specDescriptors":{"type":"array","items":{"description":"SpecDescriptor describes a field in a spec block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"statusDescriptors":{"type":"array","items":{"description":"StatusDescriptor describes a field in a status block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"version":{"type":"string"}}}},"required":{"type":"array","items":{"description":"APIServiceDescription provides details to OLM about apis provided via aggregation","type":"object","required":["group","kind","name","version"],"properties":{"actionDescriptors":{"type":"array","items":{"description":"ActionDescriptor describes a declarative action that can be performed on a custom resource instance","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"containerPort":{"type":"integer","format":"int32"},"deploymentName":{"type":"string"},"description":{"type":"string"},"displayName":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"resources":{"type":"array","items":{"description":"APIResourceReference is a reference to a Kubernetes resource type that the referrer utilizes.","type":"object","required":["kind","name","version"],"properties":{"kind":{"description":"Kind of the referenced resource type.","type":"string"},"name":{"description":"Plural name of the referenced resource type (CustomResourceDefinition.Spec.Names[].Plural). Empty string if the referenced resource type is not a custom resource.","type":"string"},"version":{"description":"API Version of the referenced resource type.","type":"string"}}}},"specDescriptors":{"type":"array","items":{"description":"SpecDescriptor describes a field in a spec block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"statusDescriptors":{"type":"array","items":{"description":"StatusDescriptor describes a field in a status block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"version":{"type":"string"}}}}}},"cleanup":{"description":"Cleanup specifies the cleanup behaviour when the CSV gets deleted","type":"object","required":["enabled"],"properties":{"enabled":{"type":"boolean"}}},"customresourcedefinitions":{"description":"CustomResourceDefinitions declares all of the CRDs managed or required by\nan operator being ran by ClusterServiceVersion.\n\nIf the CRD is present in the Owned list, it is implicitly required.","type":"object","properties":{"owned":{"type":"array","items":{"description":"CRDDescription provides details to OLM about the CRDs","type":"object","required":["kind","name","version"],"properties":{"actionDescriptors":{"type":"array","items":{"description":"ActionDescriptor describes a declarative action that can be performed on a custom resource instance","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"description":{"type":"string"},"displayName":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"resources":{"type":"array","items":{"description":"APIResourceReference is a reference to a Kubernetes resource type that the referrer utilizes.","type":"object","required":["kind","name","version"],"properties":{"kind":{"description":"Kind of the referenced resource type.","type":"string"},"name":{"description":"Plural name of the referenced resource type (CustomResourceDefinition.Spec.Names[].Plural). Empty string if the referenced resource type is not a custom resource.","type":"string"},"version":{"description":"API Version of the referenced resource type.","type":"string"}}}},"specDescriptors":{"type":"array","items":{"description":"SpecDescriptor describes a field in a spec block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"statusDescriptors":{"type":"array","items":{"description":"StatusDescriptor describes a field in a status block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"version":{"type":"string"}}}},"required":{"type":"array","items":{"description":"CRDDescription provides details to OLM about the CRDs","type":"object","required":["kind","name","version"],"properties":{"actionDescriptors":{"type":"array","items":{"description":"ActionDescriptor describes a declarative action that can be performed on a custom resource instance","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"description":{"type":"string"},"displayName":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"resources":{"type":"array","items":{"description":"APIResourceReference is a reference to a Kubernetes resource type that the referrer utilizes.","type":"object","required":["kind","name","version"],"properties":{"kind":{"description":"Kind of the referenced resource type.","type":"string"},"name":{"description":"Plural name of the referenced resource type (CustomResourceDefinition.Spec.Names[].Plural). Empty string if the referenced resource type is not a custom resource.","type":"string"},"version":{"description":"API Version of the referenced resource type.","type":"string"}}}},"specDescriptors":{"type":"array","items":{"description":"SpecDescriptor describes a field in a spec block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"statusDescriptors":{"type":"array","items":{"description":"StatusDescriptor describes a field in a status block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"description":"RawMessage is a raw encoded JSON value.\nIt implements [Marshaler] and [Unmarshaler] and can\nbe used to delay JSON decoding or precompute a JSON encoding.","type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}}},"version":{"type":"string"}}}}}},"description":{"description":"Description of the operator. Can include the features, limitations or use-cases of the\noperator.","type":"string"},"displayName":{"description":"The name of the operator in display format.","type":"string"},"icon":{"description":"The icon for this operator.","type":"array","items":{"type":"object","required":["base64data","mediatype"],"properties":{"base64data":{"type":"string"},"mediatype":{"type":"string"}}}},"install":{"description":"NamedInstallStrategy represents the block of an ClusterServiceVersion resource\nwhere the install strategy is specified.","type":"object","required":["strategy"],"properties":{"spec":{"description":"StrategyDetailsDeployment represents the parsed details of a Deployment\nInstallStrategy.","type":"object","required":["deployments"],"properties":{"clusterPermissions":{"type":"array","items":{"description":"StrategyDeploymentPermissions describe the rbac rules and service account needed by the install strategy","type":"object","required":["rules","serviceAccountName"],"properties":{"rules":{"type":"array","items":{"description":"PolicyRule holds information that describes a policy rule, but does not contain information\nabout who the rule applies to or which namespace the rule applies to.","type":"object","required":["verbs"],"properties":{"apiGroups":{"description":"APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of\nthe enumerated resources in any API group will be allowed. \"\" represents the core API group and \"*\" represents all API groups.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"nonResourceURLs":{"description":"NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path\nSince non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding.\nRules can either apply to API resources (such as \"pods\" or \"secrets\") or non-resource URL paths (such as \"/api\"),  but not both.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to. '*' represents all resources.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"verbs":{"description":"Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"serviceAccountName":{"type":"string"}}}},"deployments":{"type":"array","items":{"description":"StrategyDeploymentSpec contains the name, spec and labels for the deployment ALM should create","type":"object","required":["name","spec"],"properties":{"label":{"description":"Set is a map of label:value. It implements Labels.","type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"spec":{"description":"DeploymentSpec is the specification of the desired behavior of the Deployment.","type":"object","required":["selector","template"],"properties":{"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready\nwithout any of its container crashing, for it to be considered available.\nDefaults to 0 (pod will be considered available as soon as it is ready)","type":"integer","format":"int32"},"paused":{"description":"Indicates that the deployment is paused.","type":"boolean"},"progressDeadlineSeconds":{"description":"The maximum time in seconds for a deployment to make progress before it\nis considered to be failed. The deployment controller will continue to\nprocess failed deployments and a condition with a ProgressDeadlineExceeded\nreason will be surfaced in the deployment status. Note that progress will\nnot be estimated during the time a deployment is paused. Defaults to 600s.","type":"integer","format":"int32"},"replicas":{"description":"Number of desired pods. This is a pointer to distinguish between explicit\nzero and not specified. Defaults to 1.","type":"integer","format":"int32"},"revisionHistoryLimit":{"description":"The number of old ReplicaSets to retain to allow rollback.\nThis is a pointer to distinguish between explicit zero and not specified.\nDefaults to 10.","type":"integer","format":"int32"},"selector":{"description":"Label selector for pods. Existing ReplicaSets whose pods are\nselected by this will be the ones affected by this deployment.\nIt must match the pod template's labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"strategy":{"description":"The deployment strategy to use to replace existing pods with new ones.","type":"object","properties":{"rollingUpdate":{"description":"Rolling update config params. Present only if DeploymentStrategyType =\nRollingUpdate.","type":"object","properties":{"maxSurge":{"description":"The maximum number of pods that can be scheduled above the desired number of\npods.\nValue can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%).\nThis can not be 0 if MaxUnavailable is 0.\nAbsolute number is calculated from percentage by rounding up.\nDefaults to 25%.\nExample: when this is set to 30%, the new ReplicaSet can be scaled up immediately when\nthe rolling update starts, such that the total number of old and new pods do not exceed\n130% of desired pods. Once old pods have been killed,\nnew ReplicaSet can be scaled up further, ensuring that total number of pods running\nat any time during the update is at most 130% of desired pods.","x-kubernetes-int-or-string":true},"maxUnavailable":{"description":"The maximum number of pods that can be unavailable during the update.\nValue can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%).\nAbsolute number is calculated from percentage by rounding down.\nThis can not be 0 if MaxSurge is 0.\nDefaults to 25%.\nExample: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods\nimmediately when the rolling update starts. Once new pods are ready, old ReplicaSet\ncan be scaled down further, followed by scaling up the new ReplicaSet, ensuring\nthat the total number of pods available at all times during the update is at\nleast 70% of desired pods.","x-kubernetes-int-or-string":true}}},"type":{"description":"Type of deployment. Can be \"Recreate\" or \"RollingUpdate\". Default is RollingUpdate.","type":"string"}}},"template":{"description":"Template describes the pods that will be created.\nThe only allowed template.spec.restartPolicy value is \"Always\".","type":"object","properties":{"metadata":{"description":"Standard object's metadata.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","x-kubernetes-preserve-unknown-fields":true},"spec":{"description":"Specification of the desired behavior of the pod.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"description":"Optional duration in seconds the pod may be active on the node relative to\nStartTime before the system will actively try to mark it failed and kill associated containers.\nValue must be a positive integer.","type":"integer","format":"int64"},"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.","type":"boolean"},"containers":{"description":"List of containers belonging to the pod.\nContainers cannot currently be added or removed.\nThere must be at least one container in a Pod.\nCannot be updated.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Required.","type":"string"},"value":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod.\nDefaults to \"ClusterFirst\".\nValid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'.\nDNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.\nTo have DNS options set along with hostNetwork, you have to specify DNS policy\nexplicitly to 'ClusterFirstWithHostNet'.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"ephemeralContainers":{"description":"List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing\npod to perform user-initiated actions such as debugging. This list cannot be specified when\ncreating a pod, and it cannot be modified by updating the pod spec. In order to add an\nephemeral container to an existing pod, use the pod's ephemeralcontainers subresource.","type":"array","items":{"description":"An EphemeralContainer is a temporary container that you may add to an existing Pod for\nuser-initiated activities such as debugging. Ephemeral containers have no resource or\nscheduling guarantees, and they will not be restarted when they exit or when a Pod is\nremoved or restarted. The kubelet may evict a Pod if an ephemeral container causes the\nPod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing\nPod. Ephemeral containers may not be removed or restarted.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Lifecycle is not allowed for ephemeral containers.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the ephemeral container specified as a DNS_LABEL.\nThis name must be unique among all containers, init containers and ephemeral containers.","type":"string"},"ports":{"description":"Ports are not allowed for ephemeral containers.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources\nalready allocated to the pod.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"Restart policy for the container to manage the restart behavior of each\ncontainer within a pod.\nThis may only be set for init containers. You cannot set this field on\nephemeral containers.","type":"string"},"securityContext":{"description":"Optional: SecurityContext defines the security options the ephemeral container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"targetContainerName":{"description":"If set, the name of the container from PodSpec that this ephemeral container targets.\nThe ephemeral container will be run in the namespaces (IPC, PID, etc) of this container.\nIf not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not\nsupport namespace targeting then the result of setting this field is undefined.","type":"string"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map"},"hostIPC":{"description":"Use the host's ipc namespace.\nOptional: Default to false.","type":"boolean"},"hostNetwork":{"description":"Host networking requested for this pod. Use the host's network namespace.\nIf this option is set, the ports that will be used must be specified.\nDefault to false.","type":"boolean"},"hostPID":{"description":"Use the host's pid namespace.\nOptional: Default to false.","type":"boolean"},"hostUsers":{"description":"Use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new userns is created for the pod. Setting false is useful for\nmitigating container breakout vulnerabilities even allowing users to run their\ncontainers as root without actually having root privileges on the host.\nThis field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.","type":"boolean"},"hostname":{"description":"Specifies the hostname of the Pod\nIf not specified, the pod's hostname will be set to a system-defined value.","type":"string"},"imagePullSecrets":{"description":"ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec.\nIf specified, these secrets will be passed to individual puller implementations for them to use.\nMore info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"initContainers":{"description":"List of initialization containers belonging to the pod.\nInit containers are executed in order prior to containers being started. If any\ninit container fails, the pod is considered to have failed and is handled according\nto its restartPolicy. The name for an init container or normal container must be\nunique among all containers.\nInit containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes.\nThe resourceRequirements of an init container are taken into account during scheduling\nby finding the highest request/limit for each resource type, and then using the max of\nof that value or the sum of the normal containers. Limits are applied to init containers\nin a similar fashion.\nInit containers cannot currently be added or removed.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeName":{"description":"NodeName indicates in which node this pod is scheduled.\nIf empty, this pod is a candidate for scheduling by the scheduler defined in schedulerName.\nOnce this field is set, the kubelet for this node becomes responsible for the lifecycle of this pod.\nThis field should not be used to express a desire for the pod to be scheduled on a specific node.\nhttps://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#nodename","type":"string"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"description":"Specifies the OS of the containers in the pod.\nSome pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset:\n-securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset:\n- spec.hostPID\n- spec.hostIPC\n- spec.hostUsers\n- spec.securityContext.appArmorProfile\n- spec.securityContext.seLinuxOptions\n- spec.securityContext.seccompProfile\n- spec.securityContext.fsGroup\n- spec.securityContext.fsGroupChangePolicy\n- spec.securityContext.sysctls\n- spec.shareProcessNamespace\n- spec.securityContext.runAsUser\n- spec.securityContext.runAsGroup\n- spec.securityContext.supplementalGroups\n- spec.securityContext.supplementalGroupsPolicy\n- spec.containers[*].securityContext.appArmorProfile\n- spec.containers[*].securityContext.seLinuxOptions\n- spec.containers[*].securityContext.seccompProfile\n- spec.containers[*].securityContext.capabilities\n- spec.containers[*].securityContext.readOnlyRootFilesystem\n- spec.containers[*].securityContext.privileged\n- spec.containers[*].securityContext.allowPrivilegeEscalation\n- spec.containers[*].securityContext.procMount\n- spec.containers[*].securityContext.runAsUser\n- spec.containers[*].securityContext.runAsGroup","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the operating system. The currently supported values are linux and windows.\nAdditional value may be defined in future and can be one of:\nhttps://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration\nClients should expect to handle additional values and treat unrecognized values in this field as os: null","type":"string"}}},"overhead":{"description":"Overhead represents the resource overhead associated with running a pod for a given RuntimeClass.\nThis field will be autopopulated at admission time by the RuntimeClass admission controller. If\nthe RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests.\nThe RuntimeClass admission controller will reject Pod create requests which have the overhead already\nset. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value\ndefined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"description":"PreemptionPolicy is the Policy for preempting pods with lower priority.\nOne of Never, PreemptLowerPriority.\nDefaults to PreemptLowerPriority if unset.","type":"string"},"priority":{"description":"The priority value. Various system components use this field to find the\npriority of the pod. When Priority Admission Controller is enabled, it\nprevents users from setting this field. The admission controller populates\nthis field from PriorityClassName.\nThe higher the value, the higher the priority.","type":"integer","format":"int32"},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"readinessGates":{"description":"If specified, all readiness gates will be evaluated for pod readiness.\nA pod is ready when all its containers are ready AND\nall conditions specified in the readiness gates have status equal to \"True\"\nMore info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates","type":"array","items":{"description":"PodReadinessGate contains the reference to a pod condition","type":"object","required":["conditionType"],"properties":{"conditionType":{"description":"ConditionType refers to a condition in the pod's condition list with matching type.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resourceClaims":{"description":"ResourceClaims defines which ResourceClaims must be allocated\nand reserved before the Pod is allowed to start. The resources\nwill be made available to those containers which consume them\nby name.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable.","type":"array","items":{"description":"PodResourceClaim references exactly one ResourceClaim, either directly\nor by naming a ResourceClaimTemplate which is then turned into a ResourceClaim\nfor the pod.\n\nIt adds a name to it that uniquely identifies the ResourceClaim inside the Pod.\nContainers that need access to the ResourceClaim reference it with this name.","type":"object","required":["name"],"properties":{"name":{"description":"Name uniquely identifies this resource claim inside the pod.\nThis must be a DNS_LABEL.","type":"string"},"resourceClaimName":{"description":"ResourceClaimName is the name of a ResourceClaim object in the same\nnamespace as this pod.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"},"resourceClaimTemplateName":{"description":"ResourceClaimTemplateName is the name of a ResourceClaimTemplate\nobject in the same namespace as this pod.\n\nThe template will be used to create a new ResourceClaim, which will\nbe bound to this pod. When this pod is deleted, the ResourceClaim\nwill also be deleted. The pod name and resource name, along with a\ngenerated component, will be used to form a unique name for the\nResourceClaim, which will be recorded in pod.status.resourceClaimStatuses.\n\nThis field is immutable and no changes will be made to the\ncorresponding ResourceClaim by the control plane after creating the\nResourceClaim.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"restartPolicy":{"description":"Restart policy for all containers within the pod.\nOne of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted.\nDefault to Always.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used\nto run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run.\nIf unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class","type":"string"},"schedulerName":{"description":"If specified, the pod will be dispatched by specified scheduler.\nIf not specified, the pod will be dispatched by default scheduler.","type":"string"},"schedulingGates":{"description":"SchedulingGates is an opaque list of values that if specified will block scheduling the pod.\nIf schedulingGates is not empty, the pod will stay in the SchedulingGated state and the\nscheduler will not attempt to schedule the pod.\n\nSchedulingGates can only be set at pod creation time, and be removed only afterwards.","type":"array","items":{"description":"PodSchedulingGate is associated to a Pod to guard its scheduling.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the scheduling gate.\nEach scheduling gate must have a unique name field.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"serviceAccount":{"description":"DeprecatedServiceAccount is a deprecated alias for ServiceAccountName.\nDeprecated: Use serviceAccountName instead.","type":"string"},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run this pod.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"string"},"setHostnameAsFQDN":{"description":"If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default).\nIn Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname).\nIn Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Services\\\\Tcpip\\\\Parameters to FQDN.\nIf a pod does not have FQDN, this has no effect.\nDefault to false.","type":"boolean"},"shareProcessNamespace":{"description":"Share a single process namespace between all of the containers in a pod.\nWhen this is set containers will be able to view and signal processes from other containers\nin the same pod, and the first process in each container will not be assigned PID 1.\nHostPID and ShareProcessNamespace cannot both be set.\nOptional: Default to false.","type":"boolean"},"subdomain":{"description":"If specified, the fully qualified Pod hostname will be \"<hostname>.<subdomain>.<pod namespace>.svc.<cluster domain>\".\nIf not specified, the pod will not have a domainname at all.","type":"string"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nIf this value is nil, the default grace period will be used instead.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nDefaults to 30 seconds.","type":"integer","format":"int64"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints describes how a group of pods ought to spread across topology\ndomains. Scheduler will schedule pods in a way which abides by the constraints.\nAll topologySpreadConstraints are ANDed.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath).\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}}}}}}}}},"permissions":{"type":"array","items":{"description":"StrategyDeploymentPermissions describe the rbac rules and service account needed by the install strategy","type":"object","required":["rules","serviceAccountName"],"properties":{"rules":{"type":"array","items":{"description":"PolicyRule holds information that describes a policy rule, but does not contain information\nabout who the rule applies to or which namespace the rule applies to.","type":"object","required":["verbs"],"properties":{"apiGroups":{"description":"APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of\nthe enumerated resources in any API group will be allowed. \"\" represents the core API group and \"*\" represents all API groups.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"nonResourceURLs":{"description":"NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path\nSince non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding.\nRules can either apply to API resources (such as \"pods\" or \"secrets\") or non-resource URL paths (such as \"/api\"),  but not both.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to. '*' represents all resources.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"verbs":{"description":"Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"serviceAccountName":{"type":"string"}}}}}},"strategy":{"type":"string"}}},"installModes":{"description":"InstallModes specify supported installation types","type":"array","items":{"description":"InstallMode associates an InstallModeType with a flag representing if the CSV supports it","type":"object","required":["supported","type"],"properties":{"supported":{"type":"boolean"},"type":{"description":"InstallModeType is a supported type of install mode for CSV installation","type":"string"}}}},"keywords":{"description":"A list of keywords describing the operator.","type":"array","items":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects.","type":"object","additionalProperties":{"type":"string"}},"links":{"description":"A list of links related to the operator.","type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"url":{"type":"string"}}}},"maintainers":{"description":"A list of organizational entities maintaining the operator.","type":"array","items":{"type":"object","properties":{"email":{"type":"string"},"name":{"type":"string"}}}},"maturity":{"type":"string"},"minKubeVersion":{"type":"string"},"nativeAPIs":{"type":"array","items":{"description":"GroupVersionKind unambiguously identifies a kind.  It doesn't anonymously include GroupVersion\nto avoid automatic coercion.  It doesn't use a GroupVersion to avoid custom marshalling","type":"object","required":["group","kind","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"version":{"type":"string"}}}},"provider":{"description":"The publishing entity behind the operator.","type":"object","properties":{"name":{"type":"string"},"url":{"type":"string"}}},"relatedImages":{"description":"List any related images, or other container images that your Operator might require to perform their functions.\nThis list should also include operand images as well. All image references should be specified by\ndigest (SHA) and not by tag. This field is only used during catalog creation and plays no part in cluster runtime.","type":"array","items":{"type":"object","required":["image","name"],"properties":{"image":{"type":"string"},"name":{"type":"string"}}}},"replaces":{"description":"The name of a CSV this one replaces. Should match the `metadata.Name` field of the old CSV.","type":"string"},"selector":{"description":"Label selector for related resources.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"skips":{"description":"The name(s) of one or more CSV(s) that should be skipped in the upgrade graph.\nShould match the `metadata.Name` field of the CSV that should be skipped.\nThis field is only used during catalog creation and plays no part in cluster runtime.","type":"array","items":{"type":"string"}},"version":{"type":"string"},"webhookdefinitions":{"type":"array","items":{"description":"WebhookDescription provides details to OLM about required webhooks","type":"object","required":["admissionReviewVersions","generateName","sideEffects","type"],"properties":{"admissionReviewVersions":{"type":"array","items":{"type":"string"}},"containerPort":{"type":"integer","format":"int32","maximum":65535,"minimum":1},"conversionCRDs":{"type":"array","items":{"type":"string"}},"deploymentName":{"type":"string"},"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"generateName":{"type":"string"},"matchPolicy":{"description":"MatchPolicyType specifies the type of match policy.","type":"string"},"objectSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"reinvocationPolicy":{"description":"ReinvocationPolicyType specifies what type of policy the admission hook uses.","type":"string"},"rules":{"type":"array","items":{"description":"RuleWithOperations is a tuple of Operations and Resources. It is recommended to make\nsure that all the tuple expansions are valid.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}}}},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"targetPort":{"x-kubernetes-int-or-string":true},"timeoutSeconds":{"type":"integer","format":"int32"},"type":{"description":"WebhookAdmissionType is the type of admission webhooks supported by OLM","type":"string","enum":["ValidatingAdmissionWebhook","MutatingAdmissionWebhook","ConversionWebhook"]},"webhookPath":{"type":"string"}}}}}},"status":{"description":"ClusterServiceVersionStatus represents information about the status of a CSV. Status may trail the actual\nstate of a system.","type":"object","properties":{"certsLastUpdated":{"description":"Last time the owned APIService certs were updated","type":"string","format":"date-time"},"certsRotateAt":{"description":"Time the owned APIService certs will rotate next","type":"string","format":"date-time"},"cleanup":{"description":"CleanupStatus represents information about the status of cleanup while a CSV is pending deletion","type":"object","properties":{"pendingDeletion":{"description":"PendingDeletion is the list of custom resource objects that are pending deletion and blocked on finalizers.\nThis indicates the progress of cleanup that is blocking CSV deletion or operator uninstall.","type":"array","items":{"description":"ResourceList represents a list of resources which are of the same Group/Kind","type":"object","required":["group","instances","kind"],"properties":{"group":{"type":"string"},"instances":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"namespace":{"description":"Namespace can be empty for cluster-scoped resources","type":"string"}}}},"kind":{"type":"string"}}}}}},"conditions":{"description":"List of conditions, a history of state transitions","type":"array","items":{"description":"Conditions appear in the status as a record of state transitions on the ClusterServiceVersion","type":"object","properties":{"lastTransitionTime":{"description":"Last time the status transitioned from one status to another.","type":"string","format":"date-time"},"lastUpdateTime":{"description":"Last time we updated the status","type":"string","format":"date-time"},"message":{"description":"A human readable message indicating details about why the ClusterServiceVersion is in this condition.","type":"string"},"phase":{"description":"Condition of the ClusterServiceVersion","type":"string"},"reason":{"description":"A brief CamelCase message indicating details about why the ClusterServiceVersion is in this state.\ne.g. 'RequirementsNotMet'","type":"string"}}}},"lastTransitionTime":{"description":"Last time the status transitioned from one status to another.","type":"string","format":"date-time"},"lastUpdateTime":{"description":"Last time we updated the status","type":"string","format":"date-time"},"message":{"description":"A human readable message indicating details about why the ClusterServiceVersion is in this condition.","type":"string"},"phase":{"description":"Current condition of the ClusterServiceVersion","type":"string"},"reason":{"description":"A brief CamelCase message indicating details about why the ClusterServiceVersion is in this state.\ne.g. 'RequirementsNotMet'","type":"string"},"requirementStatus":{"description":"The status of each requirement for this CSV","type":"array","items":{"type":"object","required":["group","kind","message","name","status","version"],"properties":{"dependents":{"type":"array","items":{"description":"DependentStatus is the status for a dependent requirement (to prevent infinite nesting)","type":"object","required":["group","kind","status","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"message":{"type":"string"},"status":{"description":"StatusReason is a camelcased reason for the status of a RequirementStatus or DependentStatus","type":"string"},"uuid":{"type":"string"},"version":{"type":"string"}}}},"group":{"type":"string"},"kind":{"type":"string"},"message":{"type":"string"},"name":{"type":"string"},"status":{"description":"StatusReason is a camelcased reason for the status of a RequirementStatus or DependentStatus","type":"string"},"uuid":{"type":"string"},"version":{"type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"ClusterServiceVersion","version":"v1alpha1"}]},"com.coreos.operators.v1alpha1.ClusterServiceVersionList":{"description":"ClusterServiceVersionList is a list of ClusterServiceVersion","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterserviceversions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.ClusterServiceVersion"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"ClusterServiceVersionList","version":"v1alpha1"}]},"com.coreos.operators.v1alpha1.InstallPlan":{"description":"InstallPlan defines the installation of a set of operators.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"InstallPlanSpec defines a set of Application resources to be installed","type":"object","required":["approval","approved","clusterServiceVersionNames"],"properties":{"approval":{"description":"Approval is the user approval policy for an InstallPlan.\nIt must be one of \"Automatic\" or \"Manual\".","type":"string"},"approved":{"type":"boolean"},"clusterServiceVersionNames":{"type":"array","items":{"type":"string"}},"generation":{"type":"integer"},"source":{"type":"string"},"sourceNamespace":{"type":"string"}}},"status":{"description":"InstallPlanStatus represents the information about the status of\nsteps required to complete installation.\n\nStatus may trail the actual state of a system.","type":"object","required":["catalogSources","phase"],"properties":{"attenuatedServiceAccountRef":{"description":"AttenuatedServiceAccountRef references the service account that is used\nto do scoped operator install.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"bundleLookups":{"description":"BundleLookups is the set of in-progress requests to pull and unpackage bundle content to the cluster.","type":"array","items":{"description":"BundleLookup is a request to pull and unpackage the content of a bundle to the cluster.","type":"object","required":["catalogSourceRef","identifier","path","replaces"],"properties":{"catalogSourceRef":{"description":"CatalogSourceRef is a reference to the CatalogSource the bundle path was resolved from.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"conditions":{"description":"Conditions represents the overall state of a BundleLookup.","type":"array","items":{"type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","type":"string","format":"date-time"},"lastUpdateTime":{"description":"Last time the condition was probed.","type":"string","format":"date-time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"identifier":{"description":"Identifier is the catalog-unique name of the operator (the name of the CSV for bundles that contain CSVs)","type":"string"},"path":{"description":"Path refers to the location of a bundle to pull.\nIt's typically an image reference.","type":"string"},"properties":{"description":"The effective properties of the unpacked bundle.","type":"string"},"replaces":{"description":"Replaces is the name of the bundle to replace with the one found at Path.","type":"string"}}}},"catalogSources":{"type":"array","items":{"type":"string"}},"conditions":{"type":"array","items":{"description":"InstallPlanCondition represents the overall status of the execution of\nan InstallPlan.","type":"object","properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"lastUpdateTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"description":"ConditionReason is a camelcased reason for the state transition.","type":"string"},"status":{"type":"string"},"type":{"description":"InstallPlanConditionType describes the state of an InstallPlan at a certain point as a whole.","type":"string"}}}},"message":{"description":"Message is a human-readable message containing detailed\ninformation that may be important to understanding why the\nplan has its current status.","type":"string"},"phase":{"description":"InstallPlanPhase is the current status of a InstallPlan as a whole.","type":"string"},"plan":{"type":"array","items":{"description":"Step represents the status of an individual step in an InstallPlan.","type":"object","required":["resolving","resource","status"],"properties":{"optional":{"type":"boolean"},"resolving":{"type":"string"},"resource":{"description":"StepResource represents the status of a resource to be tracked by an\nInstallPlan.","type":"object","required":["group","kind","name","sourceName","sourceNamespace","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"manifest":{"type":"string"},"name":{"type":"string"},"sourceName":{"type":"string"},"sourceNamespace":{"type":"string"},"version":{"type":"string"}}},"status":{"description":"StepStatus is the current status of a particular resource an in\nInstallPlan","type":"string"}}}},"startTime":{"description":"StartTime is the time when the controller began applying\nthe resources listed in the plan to the cluster.","type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"InstallPlan","version":"v1alpha1"}]},"com.coreos.operators.v1alpha1.InstallPlanList":{"description":"InstallPlanList is a list of InstallPlan","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of installplans. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.InstallPlan"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"InstallPlanList","version":"v1alpha1"}]},"com.coreos.operators.v1alpha1.Subscription":{"description":"Subscription keeps operators up to date by tracking changes to Catalogs.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"SubscriptionSpec defines an Application that can be installed","type":"object","required":["name","source","sourceNamespace"],"properties":{"channel":{"type":"string"},"config":{"description":"SubscriptionConfig contains configuration specified for a subscription.","type":"object","properties":{"affinity":{"description":"If specified, overrides the pod's scheduling constraints.\nnil sub-attributes will *not* override the original values in the pod.spec for those sub-attributes.\nUse empty object ({}) to erase original sub-attribute values.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"annotations":{"description":"Annotations is an unstructured key value map stored with each Deployment, Pod, APIService in the Operator.\nTypically, annotations may be set by external tools to store and retrieve arbitrary metadata.\nUse this field to pre-define annotations that OLM should add to each of the Subscription's\ndeployments, pods, and apiservices.","type":"object","additionalProperties":{"type":"string"}},"env":{"description":"Env is a list of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"EnvFrom is a list of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nImmutable.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"resources":{"description":"Resources represents compute resources required by this container.\nImmutable.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"Selector is the label selector for pods to be configured.\nExisting ReplicaSets whose pods are\nselected by this will be the ones affected by this deployment.\nIt must match the pod template's labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"tolerations":{"description":"Tolerations are the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}},"volumeMounts":{"description":"List of VolumeMounts to set in the container.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"List of Volumes to set in the podSpec.","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string value means that no VolumeAttributesClass\nwill be applied to the claim but it's not allowed to reset this field to empty string once it is set.\nIf unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass\nwill be set by the persistentvolume controller if it exists.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/\n(Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath).\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}}}},"installPlanApproval":{"description":"Approval is the user approval policy for an InstallPlan.\nIt must be one of \"Automatic\" or \"Manual\".","type":"string"},"name":{"type":"string"},"source":{"type":"string"},"sourceNamespace":{"type":"string"},"startingCSV":{"type":"string"}}},"status":{"type":"object","required":["lastUpdated"],"properties":{"catalogHealth":{"description":"CatalogHealth contains the Subscription's view of its relevant CatalogSources' status.\nIt is used to determine SubscriptionStatusConditions related to CatalogSources.","type":"array","items":{"description":"SubscriptionCatalogHealth describes the health of a CatalogSource the Subscription knows about.","type":"object","required":["catalogSourceRef","healthy","lastUpdated"],"properties":{"catalogSourceRef":{"description":"CatalogSourceRef is a reference to a CatalogSource.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"healthy":{"description":"Healthy is true if the CatalogSource is healthy; false otherwise.","type":"boolean"},"lastUpdated":{"description":"LastUpdated represents the last time that the CatalogSourceHealth changed","type":"string","format":"date-time"}}}},"conditions":{"description":"Conditions is a list of the latest available observations about a Subscription's current state.","type":"array","items":{"description":"SubscriptionCondition represents the latest available observations of a Subscription's state.","type":"object","required":["status","type"],"properties":{"lastHeartbeatTime":{"description":"LastHeartbeatTime is the last time we got an update on a given condition","type":"string","format":"date-time"},"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transit from one status to another","type":"string","format":"date-time"},"message":{"description":"Message is a human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"Reason is a one-word CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"Status is the status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type is the type of Subscription condition.","type":"string"}}}},"currentCSV":{"description":"CurrentCSV is the CSV the Subscription is progressing to.","type":"string"},"installPlanGeneration":{"description":"InstallPlanGeneration is the current generation of the installplan","type":"integer"},"installPlanRef":{"description":"InstallPlanRef is a reference to the latest InstallPlan that contains the Subscription's current CSV.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"installedCSV":{"description":"InstalledCSV is the CSV currently installed by the Subscription.","type":"string"},"installplan":{"description":"Install is a reference to the latest InstallPlan generated for the Subscription.\nDEPRECATED: InstallPlanRef","type":"object","required":["apiVersion","kind","name","uuid"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"uuid":{"description":"UID is a type that holds unique ID values, including UUIDs.  Because we\ndon't ONLY use UUIDs, this is an alias to string.  Being a type captures\nintent and helps make sure that UIDs and names do not get conflated.","type":"string"}}},"lastUpdated":{"description":"LastUpdated represents the last time that the Subscription status was updated.","type":"string","format":"date-time"},"reason":{"description":"Reason is the reason the Subscription was transitioned to its current state.","type":"string"},"state":{"description":"State represents the current state of the Subscription","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"Subscription","version":"v1alpha1"}]},"com.coreos.operators.v1alpha1.SubscriptionList":{"description":"SubscriptionList is a list of Subscription","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of subscriptions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1alpha1.Subscription"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"SubscriptionList","version":"v1alpha1"}]},"com.coreos.operators.v1alpha2.OperatorGroup":{"description":"OperatorGroup is the unit of multitenancy for OLM managed operators.\nIt constrains the installation of operators in its namespace to a specified set of target namespaces.","type":"object","required":["metadata"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperatorGroupSpec is the spec for an OperatorGroup resource.","type":"object","properties":{"selector":{"description":"Selector selects the OperatorGroup's target namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"serviceAccountName":{"description":"ServiceAccountName is the admin specified service account which will be\nused to deploy operator(s) in this operator group.","type":"string"},"staticProvidedAPIs":{"description":"Static tells OLM not to update the OperatorGroup's providedAPIs annotation","type":"boolean"},"targetNamespaces":{"description":"TargetNamespaces is an explicit set of namespaces to target.\nIf it is set, Selector is ignored.","type":"array","items":{"type":"string"}}}},"status":{"description":"OperatorGroupStatus is the status for an OperatorGroupResource.","type":"object","required":["lastUpdated"],"properties":{"lastUpdated":{"description":"LastUpdated is a timestamp of the last time the OperatorGroup's status was Updated.","type":"string","format":"date-time"},"namespaces":{"description":"Namespaces is the set of target namespaces for the OperatorGroup.","type":"array","items":{"type":"string"}},"serviceAccountRef":{"description":"ServiceAccountRef references the service account object specified.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorGroup","version":"v1alpha2"}]},"com.coreos.operators.v1alpha2.OperatorGroupList":{"description":"OperatorGroupList is a list of OperatorGroup","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operatorgroups. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v1alpha2.OperatorGroup"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorGroupList","version":"v1alpha2"}]},"com.coreos.operators.v2.OperatorCondition":{"description":"OperatorCondition is a Custom Resource of type `OperatorCondition` which is used to convey information to OLM about the state of an operator.","type":"object","required":["metadata"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperatorConditionSpec allows an operator to report state to OLM and provides\ncluster admin with the ability to manually override state reported by the operator.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"deployments":{"type":"array","items":{"type":"string"}},"overrides":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"serviceAccounts":{"type":"array","items":{"type":"string"}}}},"status":{"description":"OperatorConditionStatus allows OLM to convey which conditions have been observed.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorCondition","version":"v2"}]},"com.coreos.operators.v2.OperatorConditionList":{"description":"OperatorConditionList is a list of OperatorCondition","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operatorconditions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.coreos.operators.v2.OperatorCondition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operators.coreos.com","kind":"OperatorConditionList","version":"v2"}]},"com.github.openshift.api.apps.v1.CustomDeploymentStrategyParams":{"description":"CustomDeploymentStrategyParams are the input to the Custom deployment strategy.","type":"object","properties":{"command":{"description":"Command is optional and overrides CMD in the container Image.","type":"array","items":{"type":"string"}},"environment":{"description":"Environment holds the environment which will be given to the container for Image.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"image":{"description":"Image specifies a container image which can carry out a deployment.","type":"string"}}},"com.github.openshift.api.apps.v1.DeploymentCause":{"description":"DeploymentCause captures information about a particular cause of a deployment.","type":"object","required":["type"],"properties":{"imageTrigger":{"description":"ImageTrigger contains the image trigger details, if this trigger was fired based on an image change","$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentCauseImageTrigger"},"type":{"description":"Type of the trigger that resulted in the creation of a new deployment","type":"string"}}},"com.github.openshift.api.apps.v1.DeploymentCauseImageTrigger":{"description":"DeploymentCauseImageTrigger represents details about the cause of a deployment originating from an image change trigger","type":"object","required":["from"],"properties":{"from":{"description":"From is a reference to the changed object which triggered a deployment. The field may have the kinds DockerImage, ImageStreamTag, or ImageStreamImage.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}}},"com.github.openshift.api.apps.v1.DeploymentCondition":{"description":"DeploymentCondition describes the state of a deployment config at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"The last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastUpdateTime":{"description":"The last time this condition was updated.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of deployment condition.","type":"string"}}},"com.github.openshift.api.apps.v1.DeploymentConfig":{"description":"Deployment Configs define the template for a pod and manages deploying new images or configuration changes. A single deployment configuration is usually analogous to a single micro-service. Can support many different deployment patterns, including full restart, customizable rolling updates, and  fully custom behaviors, as well as pre- and post- deployment hooks. Each individual deployment is represented as a replication controller.\n\nA deployment is \"triggered\" when its configuration is changed or a tag in an Image Stream is changed. Triggers can be disabled to allow manual control over a deployment. The \"strategy\" determines how the deployment is carried out and may be changed at any time. The `latestVersion` field is updated when a new deployment is triggered by any means.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer). Deprecated: Use deployments or other means for declarative updates for pods instead.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"Spec represents a desired deployment state and how to deploy to it.","$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigSpec"},"status":{"description":"Status represents the current deployment state.","$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"DeploymentConfig","version":"v1"},{"group":"apps.openshift.io","kind":"DeploymentConfig","version":"v1"}]},"com.github.openshift.api.apps.v1.DeploymentConfigList":{"description":"DeploymentConfigList is a collection of deployment configs.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of deployment configs","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"DeploymentConfigList","version":"v1"},{"group":"apps.openshift.io","kind":"DeploymentConfigList","version":"v1"}]},"com.github.openshift.api.apps.v1.DeploymentConfigRollback":{"description":"DeploymentConfigRollback provides the input to rollback generation.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["name","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the deployment config that will be rolled back.","type":"string"},"spec":{"description":"Spec defines the options to rollback generation.","$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentConfigRollbackSpec"},"updatedAnnotations":{"description":"UpdatedAnnotations is a set of new annotations that will be added in the deployment config.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"DeploymentConfigRollback","version":"v1"},{"group":"apps.openshift.io","kind":"DeploymentConfigRollback","version":"v1"}]},"com.github.openshift.api.apps.v1.DeploymentConfigRollbackSpec":{"description":"DeploymentConfigRollbackSpec represents the options for rollback generation.","type":"object","required":["from","includeTriggers","includeTemplate","includeReplicationMeta","includeStrategy"],"properties":{"from":{"description":"From points to a ReplicationController which is a deployment.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"includeReplicationMeta":{"description":"IncludeReplicationMeta specifies whether to include the replica count and selector.","type":"boolean"},"includeStrategy":{"description":"IncludeStrategy specifies whether to include the deployment Strategy.","type":"boolean"},"includeTemplate":{"description":"IncludeTemplate specifies whether to include the PodTemplateSpec.","type":"boolean"},"includeTriggers":{"description":"IncludeTriggers specifies whether to include config Triggers.","type":"boolean"},"revision":{"description":"Revision to rollback to. If set to 0, rollback to the last revision.","type":"integer","format":"int64"}}},"com.github.openshift.api.apps.v1.DeploymentConfigSpec":{"description":"DeploymentConfigSpec represents the desired state of the deployment.","type":"object","properties":{"minReadySeconds":{"description":"MinReadySeconds is the minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)","type":"integer","format":"int32"},"paused":{"description":"Paused indicates that the deployment config is paused resulting in no new deployments on template changes or changes in the template caused by other triggers.","type":"boolean"},"replicas":{"description":"Replicas is the number of desired replicas.","type":"integer","format":"int32"},"revisionHistoryLimit":{"description":"RevisionHistoryLimit is the number of old ReplicationControllers to retain to allow for rollbacks. This field is a pointer to allow for differentiation between an explicit zero and not specified. Defaults to 10. (This only applies to DeploymentConfigs created via the new group API resource, not the legacy resource.)","type":"integer","format":"int32"},"selector":{"description":"Selector is a label query over pods that should match the Replicas count.","type":"object","additionalProperties":{"type":"string"}},"strategy":{"description":"Strategy describes how a deployment is executed.","$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentStrategy"},"template":{"description":"Template is the object that describes the pod that will be created if insufficient replicas are detected.","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"},"test":{"description":"Test ensures that this deployment config will have zero replicas except while a deployment is running. This allows the deployment config to be used as a continuous deployment test - triggering on images, running the deployment, and then succeeding or failing. Post strategy hooks and After actions can be used to integrate successful deployment with an action.","type":"boolean"},"triggers":{"description":"Triggers determine how updates to a DeploymentConfig result in new deployments. If no triggers are defined, a new deployment can only occur as a result of an explicit client update to the DeploymentConfig with a new LatestVersion. If null, defaults to having a config change trigger.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentTriggerPolicy"}}}},"com.github.openshift.api.apps.v1.DeploymentConfigStatus":{"description":"DeploymentConfigStatus represents the current deployment state.","type":"object","required":["latestVersion","observedGeneration","replicas","updatedReplicas","availableReplicas","unavailableReplicas"],"properties":{"availableReplicas":{"description":"AvailableReplicas is the total number of available pods targeted by this deployment config.","type":"integer","format":"int32"},"conditions":{"description":"Conditions represents the latest available observations of a deployment config's current state.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentCondition"},"x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"details":{"description":"Details are the reasons for the update to this deployment config. This could be based on a change made by the user or caused by an automatic trigger","$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentDetails"},"latestVersion":{"description":"LatestVersion is used to determine whether the current deployment associated with a deployment config is out of sync.","type":"integer","format":"int64"},"observedGeneration":{"description":"ObservedGeneration is the most recent generation observed by the deployment config controller.","type":"integer","format":"int64"},"readyReplicas":{"description":"Total number of ready pods targeted by this deployment.","type":"integer","format":"int32"},"replicas":{"description":"Replicas is the total number of pods targeted by this deployment config.","type":"integer","format":"int32"},"unavailableReplicas":{"description":"UnavailableReplicas is the total number of unavailable pods targeted by this deployment config.","type":"integer","format":"int32"},"updatedReplicas":{"description":"UpdatedReplicas is the total number of non-terminated pods targeted by this deployment config that have the desired template spec.","type":"integer","format":"int32"}}},"com.github.openshift.api.apps.v1.DeploymentDetails":{"description":"DeploymentDetails captures information about the causes of a deployment.","type":"object","required":["causes"],"properties":{"causes":{"description":"Causes are extended data associated with all the causes for creating a new deployment","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentCause"}},"message":{"description":"Message is the user specified change message, if this deployment was triggered manually by the user","type":"string"}}},"com.github.openshift.api.apps.v1.DeploymentLog":{"description":"DeploymentLog represents the logs for a deployment\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"DeploymentLog","version":"v1"},{"group":"apps.openshift.io","kind":"DeploymentLog","version":"v1"}]},"com.github.openshift.api.apps.v1.DeploymentRequest":{"description":"DeploymentRequest is a request to a deployment config for a new deployment.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["name","latest","force"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"excludeTriggers":{"description":"ExcludeTriggers instructs the instantiator to avoid processing the specified triggers. This field overrides the triggers from latest and allows clients to control specific logic. This field is ignored if not specified.","type":"array","items":{"type":"string"}},"force":{"description":"Force will try to force a new deployment to run. If the deployment config is paused, then setting this to true will return an Invalid error.","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"latest":{"description":"Latest will update the deployment config with the latest state from all triggers.","type":"boolean"},"name":{"description":"Name of the deployment config for requesting a new deployment.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"DeploymentRequest","version":"v1"},{"group":"apps.openshift.io","kind":"DeploymentRequest","version":"v1"}]},"com.github.openshift.api.apps.v1.DeploymentStrategy":{"description":"DeploymentStrategy describes how to perform a deployment.","type":"object","properties":{"activeDeadlineSeconds":{"description":"ActiveDeadlineSeconds is the duration in seconds that the deployer pods for this deployment config may be active on a node before the system actively tries to terminate them.","type":"integer","format":"int64"},"annotations":{"description":"Annotations is a set of key, value pairs added to custom deployer and lifecycle pre/post hook pods.","type":"object","additionalProperties":{"type":"string"}},"customParams":{"description":"CustomParams are the input to the Custom deployment strategy, and may also be specified for the Recreate and Rolling strategies to customize the execution process that runs the deployment.","$ref":"#/definitions/com.github.openshift.api.apps.v1.CustomDeploymentStrategyParams"},"labels":{"description":"Labels is a set of key, value pairs added to custom deployer and lifecycle pre/post hook pods.","type":"object","additionalProperties":{"type":"string"}},"recreateParams":{"description":"RecreateParams are the input to the Recreate deployment strategy.","$ref":"#/definitions/com.github.openshift.api.apps.v1.RecreateDeploymentStrategyParams"},"resources":{"description":"Resources contains resource requirements to execute the deployment and any hooks.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"rollingParams":{"description":"RollingParams are the input to the Rolling deployment strategy.","$ref":"#/definitions/com.github.openshift.api.apps.v1.RollingDeploymentStrategyParams"},"type":{"description":"Type is the name of a deployment strategy.","type":"string"}}},"com.github.openshift.api.apps.v1.DeploymentTriggerImageChangeParams":{"description":"DeploymentTriggerImageChangeParams represents the parameters to the ImageChange trigger.","type":"object","required":["from"],"properties":{"automatic":{"description":"Automatic means that the detection of a new tag value should result in an image update inside the pod template.","type":"boolean"},"containerNames":{"description":"ContainerNames is used to restrict tag updates to the specified set of container names in a pod. If multiple triggers point to the same containers, the resulting behavior is undefined. Future API versions will make this a validation error. If ContainerNames does not point to a valid container, the trigger will be ignored. Future API versions will make this a validation error.","type":"array","items":{"type":"string"}},"from":{"description":"From is a reference to an image stream tag to watch for changes. From.Name is the only required subfield - if From.Namespace is blank, the namespace of the current deployment trigger will be used.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"lastTriggeredImage":{"description":"LastTriggeredImage is the last image to be triggered.","type":"string"}}},"com.github.openshift.api.apps.v1.DeploymentTriggerPolicy":{"description":"DeploymentTriggerPolicy describes a policy for a single trigger that results in a new deployment.","type":"object","properties":{"imageChangeParams":{"description":"ImageChangeParams represents the parameters for the ImageChange trigger.","$ref":"#/definitions/com.github.openshift.api.apps.v1.DeploymentTriggerImageChangeParams"},"type":{"description":"Type of the trigger","type":"string"}}},"com.github.openshift.api.apps.v1.ExecNewPodHook":{"description":"ExecNewPodHook is a hook implementation which runs a command in a new pod based on the specified container which is assumed to be part of the deployment template.","type":"object","required":["command","containerName"],"properties":{"command":{"description":"Command is the action command and its arguments.","type":"array","items":{"type":"string"}},"containerName":{"description":"ContainerName is the name of a container in the deployment pod template whose container image will be used for the hook pod's container.","type":"string"},"env":{"description":"Env is a set of environment variables to supply to the hook pod's container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"volumes":{"description":"Volumes is a list of named volumes from the pod template which should be copied to the hook pod. Volumes names not found in pod spec are ignored. An empty list means no volumes will be copied.","type":"array","items":{"type":"string"}}}},"com.github.openshift.api.apps.v1.LifecycleHook":{"description":"LifecycleHook defines a specific deployment lifecycle action. Only one type of action may be specified at any time.","type":"object","required":["failurePolicy"],"properties":{"execNewPod":{"description":"ExecNewPod specifies the options for a lifecycle hook backed by a pod.","$ref":"#/definitions/com.github.openshift.api.apps.v1.ExecNewPodHook"},"failurePolicy":{"description":"FailurePolicy specifies what action to take if the hook fails.","type":"string"},"tagImages":{"description":"TagImages instructs the deployer to tag the current image referenced under a container onto an image stream tag.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.apps.v1.TagImageHook"}}}},"com.github.openshift.api.apps.v1.RecreateDeploymentStrategyParams":{"description":"RecreateDeploymentStrategyParams are the input to the Recreate deployment strategy.","type":"object","properties":{"mid":{"description":"Mid is a lifecycle hook which is executed while the deployment is scaled down to zero before the first new pod is created. All LifecycleHookFailurePolicy values are supported.","$ref":"#/definitions/com.github.openshift.api.apps.v1.LifecycleHook"},"post":{"description":"Post is a lifecycle hook which is executed after the strategy has finished all deployment logic. All LifecycleHookFailurePolicy values are supported.","$ref":"#/definitions/com.github.openshift.api.apps.v1.LifecycleHook"},"pre":{"description":"Pre is a lifecycle hook which is executed before the strategy manipulates the deployment. All LifecycleHookFailurePolicy values are supported.","$ref":"#/definitions/com.github.openshift.api.apps.v1.LifecycleHook"},"timeoutSeconds":{"description":"TimeoutSeconds is the time to wait for updates before giving up. If the value is nil, a default will be used.","type":"integer","format":"int64"}}},"com.github.openshift.api.apps.v1.RollingDeploymentStrategyParams":{"description":"RollingDeploymentStrategyParams are the input to the Rolling deployment strategy.","type":"object","properties":{"intervalSeconds":{"description":"IntervalSeconds is the time to wait between polling deployment status after update. If the value is nil, a default will be used.","type":"integer","format":"int64"},"maxSurge":{"description":"MaxSurge is the maximum number of pods that can be scheduled above the original number of pods. Value can be an absolute number (ex: 5) or a percentage of total pods at the start of the update (ex: 10%). Absolute number is calculated from percentage by rounding up.\n\nThis cannot be 0 if MaxUnavailable is 0. By default, 25% is used.\n\nExample: when this is set to 30%, the new RC can be scaled up by 30% immediately when the rolling update starts. Once old pods have been killed, new RC can be scaled up further, ensuring that total number of pods running at any time during the update is atmost 130% of original pods.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"maxUnavailable":{"description":"MaxUnavailable is the maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of total pods at the start of update (ex: 10%). Absolute number is calculated from percentage by rounding down.\n\nThis cannot be 0 if MaxSurge is 0. By default, 25% is used.\n\nExample: when this is set to 30%, the old RC can be scaled down by 30% immediately when the rolling update starts. Once new pods are ready, old RC can be scaled down further, followed by scaling up the new RC, ensuring that at least 70% of original number of pods are available at all times during the update.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"post":{"description":"Post is a lifecycle hook which is executed after the strategy has finished all deployment logic. All LifecycleHookFailurePolicy values are supported.","$ref":"#/definitions/com.github.openshift.api.apps.v1.LifecycleHook"},"pre":{"description":"Pre is a lifecycle hook which is executed before the deployment process begins. All LifecycleHookFailurePolicy values are supported.","$ref":"#/definitions/com.github.openshift.api.apps.v1.LifecycleHook"},"timeoutSeconds":{"description":"TimeoutSeconds is the time to wait for updates before giving up. If the value is nil, a default will be used.","type":"integer","format":"int64"},"updatePeriodSeconds":{"description":"UpdatePeriodSeconds is the time to wait between individual pod updates. If the value is nil, a default will be used.","type":"integer","format":"int64"}}},"com.github.openshift.api.apps.v1.TagImageHook":{"description":"TagImageHook is a request to tag the image in a particular container onto an ImageStreamTag.","type":"object","required":["containerName","to"],"properties":{"containerName":{"description":"ContainerName is the name of a container in the deployment config whose image value will be used as the source of the tag. If there is only a single container this value will be defaulted to the name of that container.","type":"string"},"to":{"description":"To is the target ImageStreamTag to set the container's image onto.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}}},"com.github.openshift.api.authorization.v1.ClusterRole":{"description":"ClusterRole is a logical grouping of PolicyRules that can be referenced as a unit by ClusterRoleBindings.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["rules"],"properties":{"aggregationRule":{"description":"AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be stomped by the controller.","$ref":"#/definitions/io.k8s.api.rbac.v1.AggregationRule_v2"},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"rules":{"description":"Rules holds all the PolicyRules for this ClusterRole","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.PolicyRule"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ClusterRole","version":"v1"},{"group":"authorization.openshift.io","kind":"ClusterRole","version":"v1"}]},"com.github.openshift.api.authorization.v1.ClusterRoleBinding":{"description":"ClusterRoleBinding references a ClusterRole, but not contain it.  It can reference any ClusterRole in the same namespace or in the global namespace. It adds who information via (Users and Groups) OR Subjects and namespace information by which namespace it exists in. ClusterRoleBindings in a given namespace only have effect in that namespace (excepting the master namespace which has power in all namespaces).\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["subjects","roleRef"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupNames":{"description":"GroupNames holds all the groups directly bound to the role. This field should only be specified when supporting legacy clients and servers. See Subjects for further details.","type":"array","items":{"type":"string"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"roleRef":{"description":"RoleRef can only reference the current namespace and the global namespace. If the ClusterRoleRef cannot be resolved, the Authorizer must return an error. Since Policy is a singleton, this is sufficient knowledge to locate a role.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"subjects":{"description":"Subjects hold object references to authorize with this rule. This field is ignored if UserNames or GroupNames are specified to support legacy clients and servers. Thus newer clients that do not need to support backwards compatibility should send only fully qualified Subjects and should omit the UserNames and GroupNames fields. Clients that need to support backwards compatibility can use this field to build the UserNames and GroupNames.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}},"userNames":{"description":"UserNames holds all the usernames directly bound to the role. This field should only be specified when supporting legacy clients and servers. See Subjects for further details.","type":"array","items":{"type":"string"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ClusterRoleBinding","version":"v1"},{"group":"authorization.openshift.io","kind":"ClusterRoleBinding","version":"v1"}]},"com.github.openshift.api.authorization.v1.ClusterRoleBindingList":{"description":"ClusterRoleBindingList is a collection of ClusterRoleBindings\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of ClusterRoleBindings","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRoleBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ClusterRoleBindingList","version":"v1"},{"group":"authorization.openshift.io","kind":"ClusterRoleBindingList","version":"v1"}]},"com.github.openshift.api.authorization.v1.ClusterRoleList":{"description":"ClusterRoleList is a collection of ClusterRoles\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of ClusterRoles","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.ClusterRole"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ClusterRoleList","version":"v1"},{"group":"authorization.openshift.io","kind":"ClusterRoleList","version":"v1"}]},"com.github.openshift.api.authorization.v1.LocalResourceAccessReview":{"description":"LocalResourceAccessReview is a means to request a list of which users and groups are authorized to perform the action specified by spec in a particular namespace\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["namespace","verb","resourceAPIGroup","resourceAPIVersion","resource","resourceName","path","isNonResourceURL"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"content":{"description":"Content is the actual content of the request for create and update","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"},"isNonResourceURL":{"description":"IsNonResourceURL is true if this is a request for a non-resource URL (outside of the resource hierarchy)","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces","type":"string"},"path":{"description":"Path is the path of a non resource URL","type":"string"},"resource":{"description":"Resource is one of the existing resource types","type":"string"},"resourceAPIGroup":{"description":"Group is the API group of the resource Serialized as resourceAPIGroup to avoid confusion with the 'groups' field when inlined","type":"string"},"resourceAPIVersion":{"description":"Version is the API version of the resource Serialized as resourceAPIVersion to avoid confusion with TypeMeta.apiVersion and ObjectMeta.resourceVersion when inlined","type":"string"},"resourceName":{"description":"ResourceName is the name of the resource being requested for a \"get\" or deleted for a \"delete\"","type":"string"},"verb":{"description":"Verb is one of: get, list, watch, create, update, delete","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"LocalResourceAccessReview","version":"v1"},{"group":"authorization.openshift.io","kind":"LocalResourceAccessReview","version":"v1"}]},"com.github.openshift.api.authorization.v1.LocalSubjectAccessReview":{"description":"LocalSubjectAccessReview is an object for requesting information about whether a user or group can perform an action in a particular namespace\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["namespace","verb","resourceAPIGroup","resourceAPIVersion","resource","resourceName","path","isNonResourceURL","user","groups","scopes"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"content":{"description":"Content is the actual content of the request for create and update","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"},"groups":{"description":"Groups is optional.  Groups is the list of groups to which the User belongs.","type":"array","items":{"type":"string"}},"isNonResourceURL":{"description":"IsNonResourceURL is true if this is a request for a non-resource URL (outside of the resource hierarchy)","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces","type":"string"},"path":{"description":"Path is the path of a non resource URL","type":"string"},"resource":{"description":"Resource is one of the existing resource types","type":"string"},"resourceAPIGroup":{"description":"Group is the API group of the resource Serialized as resourceAPIGroup to avoid confusion with the 'groups' field when inlined","type":"string"},"resourceAPIVersion":{"description":"Version is the API version of the resource Serialized as resourceAPIVersion to avoid confusion with TypeMeta.apiVersion and ObjectMeta.resourceVersion when inlined","type":"string"},"resourceName":{"description":"ResourceName is the name of the resource being requested for a \"get\" or deleted for a \"delete\"","type":"string"},"scopes":{"description":"Scopes to use for the evaluation.  Empty means \"use the unscoped (full) permissions of the user/groups\". Nil for a self-SAR, means \"use the scopes on this request\". Nil for a regular SAR, means the same as empty.","type":"array","items":{"type":"string"}},"user":{"description":"User is optional.  If both User and Groups are empty, the current authenticated user is used.","type":"string"},"verb":{"description":"Verb is one of: get, list, watch, create, update, delete","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"LocalSubjectAccessReview","version":"v1"},{"group":"authorization.openshift.io","kind":"LocalSubjectAccessReview","version":"v1"}]},"com.github.openshift.api.authorization.v1.PolicyRule":{"description":"PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.","type":"object","required":["verbs","resources"],"properties":{"apiGroups":{"description":"APIGroups is the name of the APIGroup that contains the resources.  If this field is empty, then both kubernetes and origin API groups are assumed. That means that if an action is requested against one of the enumerated resources in either the kubernetes or the origin API group, the request will be allowed","type":"array","items":{"type":"string"}},"attributeRestrictions":{"description":"AttributeRestrictions will vary depending on what the Authorizer/AuthorizationAttributeBuilder pair supports. If the Authorizer does not recognize how to handle the AttributeRestrictions, the Authorizer should report an error.","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"},"nonResourceURLs":{"description":"NonResourceURLsSlice is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path This name is intentionally different than the internal type so that the DefaultConvert works nicely and because the ordering may be different.","type":"array","items":{"type":"string"}},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"}},"resources":{"description":"Resources is a list of resources this rule applies to.  ResourceAll represents all resources.","type":"array","items":{"type":"string"}},"verbs":{"description":"Verbs is a list of Verbs that apply to ALL the ResourceKinds and AttributeRestrictions contained in this rule.  VerbAll represents all kinds.","type":"array","items":{"type":"string"}}}},"com.github.openshift.api.authorization.v1.ResourceAccessReview":{"description":"ResourceAccessReview is a means to request a list of which users and groups are authorized to perform the action specified by spec\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["namespace","verb","resourceAPIGroup","resourceAPIVersion","resource","resourceName","path","isNonResourceURL"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"content":{"description":"Content is the actual content of the request for create and update","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"},"isNonResourceURL":{"description":"IsNonResourceURL is true if this is a request for a non-resource URL (outside of the resource hierarchy)","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces","type":"string"},"path":{"description":"Path is the path of a non resource URL","type":"string"},"resource":{"description":"Resource is one of the existing resource types","type":"string"},"resourceAPIGroup":{"description":"Group is the API group of the resource Serialized as resourceAPIGroup to avoid confusion with the 'groups' field when inlined","type":"string"},"resourceAPIVersion":{"description":"Version is the API version of the resource Serialized as resourceAPIVersion to avoid confusion with TypeMeta.apiVersion and ObjectMeta.resourceVersion when inlined","type":"string"},"resourceName":{"description":"ResourceName is the name of the resource being requested for a \"get\" or deleted for a \"delete\"","type":"string"},"verb":{"description":"Verb is one of: get, list, watch, create, update, delete","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ResourceAccessReview","version":"v1"},{"group":"authorization.openshift.io","kind":"ResourceAccessReview","version":"v1"}]},"com.github.openshift.api.authorization.v1.Role":{"description":"Role is a logical grouping of PolicyRules that can be referenced as a unit by RoleBindings.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["rules"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"rules":{"description":"Rules holds all the PolicyRules for this Role","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.PolicyRule"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Role","version":"v1"},{"group":"authorization.openshift.io","kind":"Role","version":"v1"}]},"com.github.openshift.api.authorization.v1.RoleBinding":{"description":"RoleBinding references a Role, but not contain it.  It can reference any Role in the same namespace or in the global namespace. It adds who information via (Users and Groups) OR Subjects and namespace information by which namespace it exists in. RoleBindings in a given namespace only have effect in that namespace (excepting the master namespace which has power in all namespaces).\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["subjects","roleRef"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupNames":{"description":"GroupNames holds all the groups directly bound to the role. This field should only be specified when supporting legacy clients and servers. See Subjects for further details.","type":"array","items":{"type":"string"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"roleRef":{"description":"RoleRef can only reference the current namespace and the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error. Since Policy is a singleton, this is sufficient knowledge to locate a role.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"subjects":{"description":"Subjects hold object references to authorize with this rule. This field is ignored if UserNames or GroupNames are specified to support legacy clients and servers. Thus newer clients that do not need to support backwards compatibility should send only fully qualified Subjects and should omit the UserNames and GroupNames fields. Clients that need to support backwards compatibility can use this field to build the UserNames and GroupNames.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}},"userNames":{"description":"UserNames holds all the usernames directly bound to the role. This field should only be specified when supporting legacy clients and servers. See Subjects for further details.","type":"array","items":{"type":"string"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"RoleBinding","version":"v1"},{"group":"authorization.openshift.io","kind":"RoleBinding","version":"v1"}]},"com.github.openshift.api.authorization.v1.RoleBindingList":{"description":"RoleBindingList is a collection of RoleBindings\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of RoleBindings","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.RoleBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"RoleBindingList","version":"v1"},{"group":"authorization.openshift.io","kind":"RoleBindingList","version":"v1"}]},"com.github.openshift.api.authorization.v1.RoleList":{"description":"RoleList is a collection of Roles\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of Roles","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.Role"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"RoleList","version":"v1"},{"group":"authorization.openshift.io","kind":"RoleList","version":"v1"}]},"com.github.openshift.api.authorization.v1.SelfSubjectRulesReview":{"description":"SelfSubjectRulesReview is a resource you can create to determine which actions you can perform in a namespace\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"Spec adds information about how to conduct the check","$ref":"#/definitions/com.github.openshift.api.authorization.v1.SelfSubjectRulesReviewSpec"},"status":{"description":"Status is completed by the server to tell which permissions you have","$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectRulesReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"SelfSubjectRulesReview","version":"v1"},{"group":"authorization.openshift.io","kind":"SelfSubjectRulesReview","version":"v1"}]},"com.github.openshift.api.authorization.v1.SelfSubjectRulesReviewSpec":{"description":"SelfSubjectRulesReviewSpec adds information about how to conduct the check","type":"object","required":["scopes"],"properties":{"scopes":{"description":"Scopes to use for the evaluation.  Empty means \"use the unscoped (full) permissions of the user/groups\". Nil means \"use the scopes on this request\".","type":"array","items":{"type":"string"}}}},"com.github.openshift.api.authorization.v1.SubjectAccessReview":{"description":"SubjectAccessReview is an object for requesting information about whether a user or group can perform an action\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["namespace","verb","resourceAPIGroup","resourceAPIVersion","resource","resourceName","path","isNonResourceURL","user","groups","scopes"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"content":{"description":"Content is the actual content of the request for create and update","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"},"groups":{"description":"GroupsSlice is optional. Groups is the list of groups to which the User belongs.","type":"array","items":{"type":"string"}},"isNonResourceURL":{"description":"IsNonResourceURL is true if this is a request for a non-resource URL (outside of the resource hierarchy)","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces","type":"string"},"path":{"description":"Path is the path of a non resource URL","type":"string"},"resource":{"description":"Resource is one of the existing resource types","type":"string"},"resourceAPIGroup":{"description":"Group is the API group of the resource Serialized as resourceAPIGroup to avoid confusion with the 'groups' field when inlined","type":"string"},"resourceAPIVersion":{"description":"Version is the API version of the resource Serialized as resourceAPIVersion to avoid confusion with TypeMeta.apiVersion and ObjectMeta.resourceVersion when inlined","type":"string"},"resourceName":{"description":"ResourceName is the name of the resource being requested for a \"get\" or deleted for a \"delete\"","type":"string"},"scopes":{"description":"Scopes to use for the evaluation.  Empty means \"use the unscoped (full) permissions of the user/groups\". Nil for a self-SAR, means \"use the scopes on this request\". Nil for a regular SAR, means the same as empty.","type":"array","items":{"type":"string"}},"user":{"description":"User is optional. If both User and Groups are empty, the current authenticated user is used.","type":"string"},"verb":{"description":"Verb is one of: get, list, watch, create, update, delete","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"SubjectAccessReview","version":"v1"},{"group":"authorization.openshift.io","kind":"SubjectAccessReview","version":"v1"}]},"com.github.openshift.api.authorization.v1.SubjectRulesReview":{"description":"SubjectRulesReview is a resource you can create to determine which actions another user can perform in a namespace\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"Spec adds information about how to conduct the check","$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectRulesReviewSpec"},"status":{"description":"Status is completed by the server to tell which permissions you have","$ref":"#/definitions/com.github.openshift.api.authorization.v1.SubjectRulesReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"SubjectRulesReview","version":"v1"},{"group":"authorization.openshift.io","kind":"SubjectRulesReview","version":"v1"}]},"com.github.openshift.api.authorization.v1.SubjectRulesReviewSpec":{"description":"SubjectRulesReviewSpec adds information about how to conduct the check","type":"object","required":["user","groups","scopes"],"properties":{"groups":{"description":"Groups is optional.  Groups is the list of groups to which the User belongs.  At least one of User and Groups must be specified.","type":"array","items":{"type":"string"}},"scopes":{"description":"Scopes to use for the evaluation.  Empty means \"use the unscoped (full) permissions of the user/groups\".","type":"array","items":{"type":"string"}},"user":{"description":"User is optional.  At least one of User and Groups must be specified.","type":"string"}}},"com.github.openshift.api.authorization.v1.SubjectRulesReviewStatus":{"description":"SubjectRulesReviewStatus is contains the result of a rules check","type":"object","required":["rules"],"properties":{"evaluationError":{"description":"EvaluationError can appear in combination with Rules.  It means some error happened during evaluation that may have prevented additional rules from being populated.","type":"string"},"rules":{"description":"Rules is the list of rules (no particular sort) that are allowed for the subject","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.authorization.v1.PolicyRule"}}}},"com.github.openshift.api.build.v1.BinaryBuildSource":{"description":"BinaryBuildSource describes a binary file to be used for the Docker and Source build strategies, where the file will be extracted and used as the build source.","type":"object","properties":{"asFile":{"description":"asFile indicates that the provided binary input should be considered a single file within the build input. For example, specifying \"webapp.war\" would place the provided binary as `/webapp.war` for the builder. If left empty, the Docker and Source build strategies assume this file is a zip, tar, or tar.gz file and extract it as the source. The custom strategy receives this binary as standard input. This filename may not contain slashes or be '..' or '.'.","type":"string"}}},"com.github.openshift.api.build.v1.BitbucketWebHookCause":{"description":"BitbucketWebHookCause has information about a Bitbucket webhook that triggered a build.","type":"object","properties":{"revision":{"description":"Revision is the git source revision information of the trigger.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceRevision"},"secret":{"description":"Secret is the obfuscated webhook secret that triggered a build.","type":"string"}}},"com.github.openshift.api.build.v1.Build":{"description":"Build encapsulates the inputs needed to produce a new deployable image, as well as the status of the execution and a reference to the Pod which executed the build.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"spec is all the inputs used to execute the build.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildSpec"},"status":{"description":"status is the current status of the build.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Build","version":"v1"},{"group":"build.openshift.io","kind":"Build","version":"v1"}]},"com.github.openshift.api.build.v1.BuildCondition":{"description":"BuildCondition describes the state of a build at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"The last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastUpdateTime":{"description":"The last time this condition was updated.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of build condition.","type":"string"}}},"com.github.openshift.api.build.v1.BuildConfig":{"description":"Build configurations define a build process for new container images. There are three types of builds possible - a container image build using a Dockerfile, a Source-to-Image build that uses a specially prepared base image that accepts source code that it can make runnable, and a custom build that can run // arbitrary container images as a base and accept the build parameters. Builds run on the cluster and on completion are pushed to the container image registry specified in the \"output\" section. A build can be triggered via a webhook, when the base image changes, or when a user manually requests a new build be // created.\n\nEach build created by a build configuration is numbered and refers back to its parent configuration. Multiple builds can be triggered at once. Builds that do not have \"output\" set can be used to test code or run a verification build.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"spec holds all the input necessary to produce a new build, and the conditions when to trigger them.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfigSpec"},"status":{"description":"status holds any relevant information about a build config","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfigStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"BuildConfig","version":"v1"},{"group":"build.openshift.io","kind":"BuildConfig","version":"v1"}]},"com.github.openshift.api.build.v1.BuildConfigList":{"description":"BuildConfigList is a collection of BuildConfigs.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of build configs","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"BuildConfigList","version":"v1"},{"group":"build.openshift.io","kind":"BuildConfigList","version":"v1"}]},"com.github.openshift.api.build.v1.BuildConfigSpec":{"description":"BuildConfigSpec describes when and how builds are created","type":"object","required":["strategy"],"properties":{"completionDeadlineSeconds":{"description":"completionDeadlineSeconds is an optional duration in seconds, counted from the time when a build pod gets scheduled in the system, that the build may be active on a node before the system actively tries to terminate the build; value must be positive integer","type":"integer","format":"int64"},"failedBuildsHistoryLimit":{"description":"failedBuildsHistoryLimit is the number of old failed builds to retain. When a BuildConfig is created, the 5 most recent failed builds are retained unless this value is set. If removed after the BuildConfig has been created, all failed builds are retained.","type":"integer","format":"int32"},"mountTrustedCA":{"description":"mountTrustedCA bind mounts the cluster's trusted certificate authorities, as defined in the cluster's proxy configuration, into the build. This lets processes within a build trust components signed by custom PKI certificate authorities, such as private artifact repositories and HTTPS proxies.\n\nWhen this field is set to true, the contents of `/etc/pki/ca-trust` within the build are managed by the build container, and any changes to this directory or its subdirectories (for example - within a Dockerfile `RUN` instruction) are not persisted in the build's output image.","type":"boolean"},"nodeSelector":{"description":"nodeSelector is a selector which must be true for the build pod to fit on a node If nil, it can be overridden by default build nodeselector values for the cluster. If set to an empty map or a map with any values, default build nodeselector values are ignored.","type":"object","additionalProperties":{"type":"string"}},"output":{"description":"output describes the container image the Strategy should produce.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildOutput"},"postCommit":{"description":"postCommit is a build hook executed after the build output image is committed, before it is pushed to a registry.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildPostCommitSpec"},"resources":{"description":"resources computes resource requirements to execute the build.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"revision":{"description":"revision is the information from the source for a specific repo snapshot. This is optional.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceRevision"},"runPolicy":{"description":"RunPolicy describes how the new build created from this build configuration will be scheduled for execution. This is optional, if not specified we default to \"Serial\".","type":"string"},"serviceAccount":{"description":"serviceAccount is the name of the ServiceAccount to use to run the pod created by this build. The pod will be allowed to use secrets referenced by the ServiceAccount","type":"string"},"source":{"description":"source describes the SCM in use.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildSource"},"strategy":{"description":"strategy defines how to perform a build.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildStrategy"},"successfulBuildsHistoryLimit":{"description":"successfulBuildsHistoryLimit is the number of old successful builds to retain. When a BuildConfig is created, the 5 most recent successful builds are retained unless this value is set. If removed after the BuildConfig has been created, all successful builds are retained.","type":"integer","format":"int32"},"triggers":{"description":"triggers determine how new Builds can be launched from a BuildConfig. If no triggers are defined, a new build can only occur as a result of an explicit client build creation.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildTriggerPolicy"}}}},"com.github.openshift.api.build.v1.BuildConfigStatus":{"description":"BuildConfigStatus contains current state of the build config object.","type":"object","required":["lastVersion"],"properties":{"imageChangeTriggers":{"description":"ImageChangeTriggers captures the runtime state of any ImageChangeTrigger specified in the BuildConfigSpec, including the value reconciled by the OpenShift APIServer for the lastTriggeredImageID. There is a single entry in this array for each image change trigger in spec. Each trigger status references the ImageStreamTag that acts as the source of the trigger.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.ImageChangeTriggerStatus"}},"lastVersion":{"description":"lastVersion is used to inform about number of last triggered build.","type":"integer","format":"int64"}}},"com.github.openshift.api.build.v1.BuildList":{"description":"BuildList is a collection of Builds.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of builds","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.Build"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"BuildList","version":"v1"},{"group":"build.openshift.io","kind":"BuildList","version":"v1"}]},"com.github.openshift.api.build.v1.BuildLog":{"description":"BuildLog is the (unused) resource associated with the build log redirector\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"BuildLog","version":"v1"},{"group":"build.openshift.io","kind":"BuildLog","version":"v1"}]},"com.github.openshift.api.build.v1.BuildOutput":{"description":"BuildOutput is input to a build strategy and describes the container image that the strategy should produce.","type":"object","properties":{"imageLabels":{"description":"imageLabels define a list of labels that are applied to the resulting image. If there are multiple labels with the same name then the last one in the list is used.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.ImageLabel"}},"pushSecret":{"description":"PushSecret is the name of a Secret that would be used for setting up the authentication for executing the Docker push to authentication enabled Docker Registry (or Docker Hub).","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"to":{"description":"to defines an optional location to push the output of this build to. Kind must be one of 'ImageStreamTag' or 'DockerImage'. This value will be used to look up a container image repository to push to. In the case of an ImageStreamTag, the ImageStreamTag will be looked for in the namespace of the build unless Namespace is specified.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}}},"com.github.openshift.api.build.v1.BuildPostCommitSpec":{"description":"A BuildPostCommitSpec holds a build post commit hook specification. The hook executes a command in a temporary container running the build output image, immediately after the last layer of the image is committed and before the image is pushed to a registry. The command is executed with the current working directory ($PWD) set to the image's WORKDIR.\n\nThe build will be marked as failed if the hook execution fails. It will fail if the script or command return a non-zero exit code, or if there is any other error related to starting the temporary container.\n\nThere are five different ways to configure the hook. As an example, all forms below are equivalent and will execute `rake test --verbose`.\n\n1. Shell script:\n\n\t   \"postCommit\": {\n\t     \"script\": \"rake test --verbose\",\n\t   }\n\n\tThe above is a convenient form which is equivalent to:\n\n\t   \"postCommit\": {\n\t     \"command\": [\"/bin/sh\", \"-ic\"],\n\t     \"args\":    [\"rake test --verbose\"]\n\t   }\n\n2. A command as the image entrypoint:\n\n\t   \"postCommit\": {\n\t     \"commit\": [\"rake\", \"test\", \"--verbose\"]\n\t   }\n\n\tCommand overrides the image entrypoint in the exec form, as documented in\n\tDocker: https://docs.docker.com/engine/reference/builder/#entrypoint.\n\n3. Pass arguments to the default entrypoint:\n\n\t       \"postCommit\": {\n\t\t\t      \"args\": [\"rake\", \"test\", \"--verbose\"]\n\t\t      }\n\n\t    This form is only useful if the image entrypoint can handle arguments.\n\n4. Shell script with arguments:\n\n\t   \"postCommit\": {\n\t     \"script\": \"rake test $1\",\n\t     \"args\":   [\"--verbose\"]\n\t   }\n\n\tThis form is useful if you need to pass arguments that would otherwise be\n\thard to quote properly in the shell script. In the script, $0 will be\n\t\"/bin/sh\" and $1, $2, etc, are the positional arguments from Args.\n\n5. Command with arguments:\n\n\t   \"postCommit\": {\n\t     \"command\": [\"rake\", \"test\"],\n\t     \"args\":    [\"--verbose\"]\n\t   }\n\n\tThis form is equivalent to appending the arguments to the Command slice.\n\nIt is invalid to provide both Script and Command simultaneously. If none of the fields are specified, the hook is not executed.","type":"object","properties":{"args":{"description":"args is a list of arguments that are provided to either Command, Script or the container image's default entrypoint. The arguments are placed immediately after the command to be run.","type":"array","items":{"type":"string"}},"command":{"description":"command is the command to run. It may not be specified with Script. This might be needed if the image doesn't have `/bin/sh`, or if you do not want to use a shell. In all other cases, using Script might be more convenient.","type":"array","items":{"type":"string"}},"script":{"description":"script is a shell script to be run with `/bin/sh -ic`. It may not be specified with Command. Use Script when a shell script is appropriate to execute the post build hook, for example for running unit tests with `rake test`. If you need control over the image entrypoint, or if the image does not have `/bin/sh`, use Command and/or Args. The `-i` flag is needed to support CentOS and RHEL images that use Software Collections (SCL), in order to have the appropriate collections enabled in the shell. E.g., in the Ruby image, this is necessary to make `ruby`, `bundle` and other binaries available in the PATH.","type":"string"}}},"com.github.openshift.api.build.v1.BuildRequest":{"description":"BuildRequest is the resource used to pass parameters to build generator\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"binary":{"description":"binary indicates a request to build from a binary provided to the builder","$ref":"#/definitions/com.github.openshift.api.build.v1.BinaryBuildSource"},"dockerStrategyOptions":{"description":"DockerStrategyOptions contains additional docker-strategy specific options for the build","$ref":"#/definitions/com.github.openshift.api.build.v1.DockerStrategyOptions"},"env":{"description":"env contains additional environment variables you want to pass into a builder container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"from":{"description":"from is the reference to the ImageStreamTag that triggered the build.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"lastVersion":{"description":"lastVersion (optional) is the LastVersion of the BuildConfig that was used to generate the build. If the BuildConfig in the generator doesn't match, a build will not be generated.","type":"integer","format":"int64"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"revision":{"description":"revision is the information from the source for a specific repo snapshot.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceRevision"},"sourceStrategyOptions":{"description":"SourceStrategyOptions contains additional source-strategy specific options for the build","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceStrategyOptions"},"triggeredBy":{"description":"triggeredBy describes which triggers started the most recent update to the build configuration and contains information about those triggers.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildTriggerCause"}},"triggeredByImage":{"description":"triggeredByImage is the Image that triggered this build.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"BuildRequest","version":"v1"},{"group":"build.openshift.io","kind":"BuildRequest","version":"v1"}]},"com.github.openshift.api.build.v1.BuildSource":{"description":"BuildSource is the SCM used for the build.","type":"object","properties":{"binary":{"description":"binary builds accept a binary as their input. The binary is generally assumed to be a tar, gzipped tar, or zip file depending on the strategy. For container image builds, this is the build context and an optional Dockerfile may be specified to override any Dockerfile in the build context. For Source builds, this is assumed to be an archive as described above. For Source and container image builds, if binary.asFile is set the build will receive a directory with a single file. contextDir may be used when an archive is provided. Custom builds will receive this binary as input on STDIN.","$ref":"#/definitions/com.github.openshift.api.build.v1.BinaryBuildSource"},"configMaps":{"description":"configMaps represents a list of configMaps and their destinations that will be used for the build.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.ConfigMapBuildSource"}},"contextDir":{"description":"contextDir specifies the sub-directory where the source code for the application exists. This allows to have buildable sources in directory other than root of repository.","type":"string"},"dockerfile":{"description":"dockerfile is the raw contents of a Dockerfile which should be built. When this option is specified, the FROM may be modified based on your strategy base image and additional ENV stanzas from your strategy environment will be added after the FROM, but before the rest of your Dockerfile stanzas. The Dockerfile source type may be used with other options like git - in those cases the Git repo will have any innate Dockerfile replaced in the context dir.","type":"string"},"git":{"description":"git contains optional information about git build source","$ref":"#/definitions/com.github.openshift.api.build.v1.GitBuildSource"},"images":{"description":"images describes a set of images to be used to provide source for the build","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.ImageSource"}},"secrets":{"description":"secrets represents a list of secrets and their destinations that will be used only for the build.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.SecretBuildSource"}},"sourceSecret":{"description":"sourceSecret is the name of a Secret that would be used for setting up the authentication for cloning private repository. The secret contains valid credentials for remote repository, where the data's key represent the authentication method to be used and value is the base64 encoded credentials. Supported auth methods are: ssh-privatekey.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"type":{"description":"type of build input to accept","type":"string"}}},"com.github.openshift.api.build.v1.BuildSpec":{"description":"BuildSpec has the information to represent a build and also additional information about a build","type":"object","required":["strategy"],"properties":{"completionDeadlineSeconds":{"description":"completionDeadlineSeconds is an optional duration in seconds, counted from the time when a build pod gets scheduled in the system, that the build may be active on a node before the system actively tries to terminate the build; value must be positive integer","type":"integer","format":"int64"},"mountTrustedCA":{"description":"mountTrustedCA bind mounts the cluster's trusted certificate authorities, as defined in the cluster's proxy configuration, into the build. This lets processes within a build trust components signed by custom PKI certificate authorities, such as private artifact repositories and HTTPS proxies.\n\nWhen this field is set to true, the contents of `/etc/pki/ca-trust` within the build are managed by the build container, and any changes to this directory or its subdirectories (for example - within a Dockerfile `RUN` instruction) are not persisted in the build's output image.","type":"boolean"},"nodeSelector":{"description":"nodeSelector is a selector which must be true for the build pod to fit on a node If nil, it can be overridden by default build nodeselector values for the cluster. If set to an empty map or a map with any values, default build nodeselector values are ignored.","type":"object","additionalProperties":{"type":"string"}},"output":{"description":"output describes the container image the Strategy should produce.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildOutput"},"postCommit":{"description":"postCommit is a build hook executed after the build output image is committed, before it is pushed to a registry.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildPostCommitSpec"},"resources":{"description":"resources computes resource requirements to execute the build.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"revision":{"description":"revision is the information from the source for a specific repo snapshot. This is optional.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceRevision"},"serviceAccount":{"description":"serviceAccount is the name of the ServiceAccount to use to run the pod created by this build. The pod will be allowed to use secrets referenced by the ServiceAccount","type":"string"},"source":{"description":"source describes the SCM in use.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildSource"},"strategy":{"description":"strategy defines how to perform a build.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildStrategy"},"triggeredBy":{"description":"triggeredBy describes which triggers started the most recent update to the build configuration and contains information about those triggers.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildTriggerCause"}}}},"com.github.openshift.api.build.v1.BuildStatus":{"description":"BuildStatus contains the status of a build","type":"object","required":["phase"],"properties":{"cancelled":{"description":"cancelled describes if a cancel event was triggered for the build.","type":"boolean"},"completionTimestamp":{"description":"completionTimestamp is a timestamp representing the server time when this Build was finished, whether that build failed or succeeded.  It reflects the time at which the Pod running the Build terminated. It is represented in RFC3339 form and is in UTC.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"conditions":{"description":"Conditions represents the latest available observations of a build's current state.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildCondition"},"x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"config":{"description":"config is an ObjectReference to the BuildConfig this Build is based on.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"duration":{"description":"duration contains time.Duration object describing build time.","type":"integer","format":"int64"},"logSnippet":{"description":"logSnippet is the last few lines of the build log.  This value is only set for builds that failed.","type":"string"},"message":{"description":"message is a human-readable message indicating details about why the build has this status.","type":"string"},"output":{"description":"output describes the container image the build has produced.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildStatusOutput"},"outputDockerImageReference":{"description":"outputDockerImageReference contains a reference to the container image that will be built by this build. Its value is computed from Build.Spec.Output.To, and should include the registry address, so that it can be used to push and pull the image.","type":"string"},"phase":{"description":"phase is the point in the build lifecycle. Possible values are \"New\", \"Pending\", \"Running\", \"Complete\", \"Failed\", \"Error\", and \"Cancelled\".","type":"string"},"reason":{"description":"reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.","type":"string"},"stages":{"description":"stages contains details about each stage that occurs during the build including start time, duration (in milliseconds), and the steps that occured within each stage.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.StageInfo"}},"startTimestamp":{"description":"startTimestamp is a timestamp representing the server time when this Build started running in a Pod. It is represented in RFC3339 form and is in UTC.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"com.github.openshift.api.build.v1.BuildStatusOutput":{"description":"BuildStatusOutput contains the status of the built image.","type":"object","properties":{"to":{"description":"to describes the status of the built image being pushed to a registry.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildStatusOutputTo"}}},"com.github.openshift.api.build.v1.BuildStatusOutputTo":{"description":"BuildStatusOutputTo describes the status of the built image with regards to image registry to which it was supposed to be pushed.","type":"object","properties":{"imageDigest":{"description":"imageDigest is the digest of the built container image. The digest uniquely identifies the image in the registry to which it was pushed.\n\nPlease note that this field may not always be set even if the push completes successfully - e.g. when the registry returns no digest or returns it in a format that the builder doesn't understand.","type":"string"}}},"com.github.openshift.api.build.v1.BuildStrategy":{"description":"BuildStrategy contains the details of how to perform a build.","type":"object","properties":{"customStrategy":{"description":"customStrategy holds the parameters to the Custom build strategy","$ref":"#/definitions/com.github.openshift.api.build.v1.CustomBuildStrategy"},"dockerStrategy":{"description":"dockerStrategy holds the parameters to the container image build strategy.","$ref":"#/definitions/com.github.openshift.api.build.v1.DockerBuildStrategy"},"jenkinsPipelineStrategy":{"description":"JenkinsPipelineStrategy holds the parameters to the Jenkins Pipeline build strategy. Deprecated: use OpenShift Pipelines","$ref":"#/definitions/com.github.openshift.api.build.v1.JenkinsPipelineBuildStrategy"},"sourceStrategy":{"description":"sourceStrategy holds the parameters to the Source build strategy.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceBuildStrategy"},"type":{"description":"type is the kind of build strategy.","type":"string"}}},"com.github.openshift.api.build.v1.BuildTriggerCause":{"description":"BuildTriggerCause holds information about a triggered build. It is used for displaying build trigger data for each build and build configuration in oc describe. It is also used to describe which triggers led to the most recent update in the build configuration.","type":"object","properties":{"bitbucketWebHook":{"description":"BitbucketWebHook represents data for a Bitbucket webhook that fired a specific build.","$ref":"#/definitions/com.github.openshift.api.build.v1.BitbucketWebHookCause"},"genericWebHook":{"description":"genericWebHook holds data about a builds generic webhook trigger.","$ref":"#/definitions/com.github.openshift.api.build.v1.GenericWebHookCause"},"githubWebHook":{"description":"gitHubWebHook represents data for a GitHub webhook that fired a specific build.","$ref":"#/definitions/com.github.openshift.api.build.v1.GitHubWebHookCause"},"gitlabWebHook":{"description":"GitLabWebHook represents data for a GitLab webhook that fired a specific build.","$ref":"#/definitions/com.github.openshift.api.build.v1.GitLabWebHookCause"},"imageChangeBuild":{"description":"imageChangeBuild stores information about an imagechange event that triggered a new build.","$ref":"#/definitions/com.github.openshift.api.build.v1.ImageChangeCause"},"message":{"description":"message is used to store a human readable message for why the build was triggered. E.g.: \"Manually triggered by user\", \"Configuration change\",etc.","type":"string"}}},"com.github.openshift.api.build.v1.BuildTriggerPolicy":{"description":"BuildTriggerPolicy describes a policy for a single trigger that results in a new Build.","type":"object","required":["type"],"properties":{"bitbucket":{"description":"BitbucketWebHook contains the parameters for a Bitbucket webhook type of trigger","$ref":"#/definitions/com.github.openshift.api.build.v1.WebHookTrigger"},"generic":{"description":"generic contains the parameters for a Generic webhook type of trigger","$ref":"#/definitions/com.github.openshift.api.build.v1.WebHookTrigger"},"github":{"description":"github contains the parameters for a GitHub webhook type of trigger","$ref":"#/definitions/com.github.openshift.api.build.v1.WebHookTrigger"},"gitlab":{"description":"GitLabWebHook contains the parameters for a GitLab webhook type of trigger","$ref":"#/definitions/com.github.openshift.api.build.v1.WebHookTrigger"},"imageChange":{"description":"imageChange contains parameters for an ImageChange type of trigger","$ref":"#/definitions/com.github.openshift.api.build.v1.ImageChangeTrigger"},"type":{"description":"type is the type of build trigger. Valid values:\n\n- GitHub GitHubWebHookBuildTriggerType represents a trigger that launches builds on GitHub webhook invocations\n\n- Generic GenericWebHookBuildTriggerType represents a trigger that launches builds on generic webhook invocations\n\n- GitLab GitLabWebHookBuildTriggerType represents a trigger that launches builds on GitLab webhook invocations\n\n- Bitbucket BitbucketWebHookBuildTriggerType represents a trigger that launches builds on Bitbucket webhook invocations\n\n- ImageChange ImageChangeBuildTriggerType represents a trigger that launches builds on availability of a new version of an image\n\n- ConfigChange ConfigChangeBuildTriggerType will trigger a build on an initial build config creation WARNING: In the future the behavior will change to trigger a build on any config change","type":"string"}}},"com.github.openshift.api.build.v1.BuildVolume":{"description":"BuildVolume describes a volume that is made available to build pods, such that it can be mounted into buildah's runtime environment. Only a subset of Kubernetes Volume sources are supported.","type":"object","required":["name","source","mounts"],"properties":{"mounts":{"description":"mounts represents the location of the volume in the image build container","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildVolumeMount"},"x-kubernetes-list-map-keys":["destinationPath"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"destinationPath","x-kubernetes-patch-strategy":"merge"},"name":{"description":"name is a unique identifier for this BuildVolume. It must conform to the Kubernetes DNS label standard and be unique within the pod. Names that collide with those added by the build controller will result in a failed build with an error message detailing which name caused the error. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"source":{"description":"source represents the location and type of the mounted volume.","$ref":"#/definitions/com.github.openshift.api.build.v1.BuildVolumeSource"}}},"com.github.openshift.api.build.v1.BuildVolumeMount":{"description":"BuildVolumeMount describes the mounting of a Volume within buildah's runtime environment.","type":"object","required":["destinationPath"],"properties":{"destinationPath":{"description":"destinationPath is the path within the buildah runtime environment at which the volume should be mounted. The transient mount within the build image and the backing volume will both be mounted read only. Must be an absolute path, must not contain '..' or ':', and must not collide with a destination path generated by the builder process Paths that collide with those added by the build controller will result in a failed build with an error message detailing which path caused the error.","type":"string"}}},"com.github.openshift.api.build.v1.BuildVolumeSource":{"description":"BuildVolumeSource represents the source of a volume to mount Only one of its supported types may be specified at any given time.","type":"object","required":["type"],"properties":{"configMap":{"description":"configMap represents a ConfigMap that should populate this volume","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapVolumeSource_v2"},"csi":{"description":"csi represents ephemeral storage provided by external CSI drivers which support this capability","$ref":"#/definitions/io.k8s.api.core.v1.CSIVolumeSource"},"secret":{"description":"secret represents a Secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret","$ref":"#/definitions/io.k8s.api.core.v1.SecretVolumeSource_v2"},"type":{"description":"type is the BuildVolumeSourceType for the volume source. Type must match the populated volume source. Valid types are: Secret, ConfigMap","type":"string"}}},"com.github.openshift.api.build.v1.ConfigMapBuildSource":{"description":"ConfigMapBuildSource describes a configmap and its destination directory that will be used only at the build time. The content of the configmap referenced here will be copied into the destination directory instead of mounting.","type":"object","required":["configMap"],"properties":{"configMap":{"description":"configMap is a reference to an existing configmap that you want to use in your build.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"destinationDir":{"description":"destinationDir is the directory where the files from the configmap should be available for the build time. For the Source build strategy, these will be injected into a container where the assemble script runs. For the container image build strategy, these will be copied into the build directory, where the Dockerfile is located, so users can ADD or COPY them during container image build.","type":"string"}}},"com.github.openshift.api.build.v1.CustomBuildStrategy":{"description":"CustomBuildStrategy defines input parameters specific to Custom build.","type":"object","required":["from"],"properties":{"buildAPIVersion":{"description":"buildAPIVersion is the requested API version for the Build object serialized and passed to the custom builder","type":"string"},"env":{"description":"env contains additional environment variables you want to pass into a builder container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"exposeDockerSocket":{"description":"exposeDockerSocket will allow running Docker commands (and build container images) from inside the container.","type":"boolean"},"forcePull":{"description":"forcePull describes if the controller should configure the build pod to always pull the images for the builder or only pull if it is not present locally","type":"boolean"},"from":{"description":"from is reference to an DockerImage, ImageStreamTag, or ImageStreamImage from which the container image should be pulled","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"pullSecret":{"description":"pullSecret is the name of a Secret that would be used for setting up the authentication for pulling the container images from the private Docker registries","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"secrets":{"description":"secrets is a list of additional secrets that will be included in the build pod","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.SecretSpec"}}}},"com.github.openshift.api.build.v1.DockerBuildStrategy":{"description":"DockerBuildStrategy defines input parameters specific to container image build.","type":"object","properties":{"buildArgs":{"description":"buildArgs contains build arguments that will be resolved in the Dockerfile.  See https://docs.docker.com/engine/reference/builder/#/arg for more details. NOTE: Only the 'name' and 'value' fields are supported. Any settings on the 'valueFrom' field are ignored.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"dockerfilePath":{"description":"dockerfilePath is the path of the Dockerfile that will be used to build the container image, relative to the root of the context (contextDir). Defaults to `Dockerfile` if unset.","type":"string"},"env":{"description":"env contains additional environment variables you want to pass into a builder container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"forcePull":{"description":"forcePull describes if the builder should pull the images from registry prior to building.","type":"boolean"},"from":{"description":"from is a reference to an DockerImage, ImageStreamTag, or ImageStreamImage which overrides the FROM image in the Dockerfile for the build. If the Dockerfile uses multi-stage builds, this will replace the image in the last FROM directive of the file.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"imageOptimizationPolicy":{"description":"imageOptimizationPolicy describes what optimizations the system can use when building images to reduce the final size or time spent building the image. The default policy is 'None' which means the final build image will be equivalent to an image created by the container image build API. The experimental policy 'SkipLayers' will avoid commiting new layers in between each image step, and will fail if the Dockerfile cannot provide compatibility with the 'None' policy. An additional experimental policy 'SkipLayersAndWarn' is the same as 'SkipLayers' but simply warns if compatibility cannot be preserved.","type":"string"},"noCache":{"description":"noCache if set to true indicates that the container image build must be executed with the --no-cache=true flag","type":"boolean"},"pullSecret":{"description":"pullSecret is the name of a Secret that would be used for setting up the authentication for pulling the container images from the private Docker registries","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"volumes":{"description":"volumes is a list of input volumes that can be mounted into the builds runtime environment. Only a subset of Kubernetes Volume sources are supported by builds. More info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildVolume"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}}},"com.github.openshift.api.build.v1.DockerStrategyOptions":{"description":"DockerStrategyOptions contains extra strategy options for container image builds","type":"object","properties":{"buildArgs":{"description":"Args contains any build arguments that are to be passed to Docker.  See https://docs.docker.com/engine/reference/builder/#/arg for more details","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"noCache":{"description":"noCache overrides the docker-strategy noCache option in the build config","type":"boolean"}}},"com.github.openshift.api.build.v1.GenericWebHookCause":{"description":"GenericWebHookCause holds information about a generic WebHook that triggered a build.","type":"object","properties":{"revision":{"description":"revision is an optional field that stores the git source revision information of the generic webhook trigger when it is available.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceRevision"},"secret":{"description":"secret is the obfuscated webhook secret that triggered a build.","type":"string"}}},"com.github.openshift.api.build.v1.GitBuildSource":{"description":"GitBuildSource defines the parameters of a Git SCM","type":"object","required":["uri"],"properties":{"httpProxy":{"description":"httpProxy is a proxy used to reach the git repository over http","type":"string"},"httpsProxy":{"description":"httpsProxy is a proxy used to reach the git repository over https","type":"string"},"noProxy":{"description":"noProxy is the list of domains for which the proxy should not be used","type":"string"},"ref":{"description":"ref is the branch/tag/ref to build.","type":"string"},"uri":{"description":"uri points to the source that will be built. The structure of the source will depend on the type of build to run","type":"string"}}},"com.github.openshift.api.build.v1.GitHubWebHookCause":{"description":"GitHubWebHookCause has information about a GitHub webhook that triggered a build.","type":"object","properties":{"revision":{"description":"revision is the git revision information of the trigger.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceRevision"},"secret":{"description":"secret is the obfuscated webhook secret that triggered a build.","type":"string"}}},"com.github.openshift.api.build.v1.GitLabWebHookCause":{"description":"GitLabWebHookCause has information about a GitLab webhook that triggered a build.","type":"object","properties":{"revision":{"description":"Revision is the git source revision information of the trigger.","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceRevision"},"secret":{"description":"Secret is the obfuscated webhook secret that triggered a build.","type":"string"}}},"com.github.openshift.api.build.v1.GitSourceRevision":{"description":"GitSourceRevision is the commit information from a git source for a build","type":"object","properties":{"author":{"description":"author is the author of a specific commit","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceControlUser"},"commit":{"description":"commit is the commit hash identifying a specific commit","type":"string"},"committer":{"description":"committer is the committer of a specific commit","$ref":"#/definitions/com.github.openshift.api.build.v1.SourceControlUser"},"message":{"description":"message is the description of a specific commit","type":"string"}}},"com.github.openshift.api.build.v1.ImageChangeCause":{"description":"ImageChangeCause contains information about the image that triggered a build","type":"object","properties":{"fromRef":{"description":"fromRef contains detailed information about an image that triggered a build.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"imageID":{"description":"imageID is the ID of the image that triggered a new build.","type":"string"}}},"com.github.openshift.api.build.v1.ImageChangeTrigger":{"description":"ImageChangeTrigger allows builds to be triggered when an ImageStream changes","type":"object","properties":{"from":{"description":"from is a reference to an ImageStreamTag that will trigger a build when updated It is optional. If no From is specified, the From image from the build strategy will be used. Only one ImageChangeTrigger with an empty From reference is allowed in a build configuration.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"lastTriggeredImageID":{"description":"lastTriggeredImageID is used internally by the ImageChangeController to save last used image ID for build This field is deprecated and will be removed in a future release. Deprecated","type":"string"},"paused":{"description":"paused is true if this trigger is temporarily disabled. Optional.","type":"boolean"}}},"com.github.openshift.api.build.v1.ImageChangeTriggerStatus":{"description":"ImageChangeTriggerStatus tracks the latest resolved status of the associated ImageChangeTrigger policy specified in the BuildConfigSpec.Triggers struct.","type":"object","properties":{"from":{"description":"from is the ImageStreamTag that is the source of the trigger.","$ref":"#/definitions/com.github.openshift.api.build.v1.ImageStreamTagReference"},"lastTriggerTime":{"description":"lastTriggerTime is the last time this particular ImageStreamTag triggered a Build to start. This field is only updated when this trigger specifically started a Build.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastTriggeredImageID":{"description":"lastTriggeredImageID represents the sha/id of the ImageStreamTag when a Build for this BuildConfig was started. The lastTriggeredImageID is updated each time a Build for this BuildConfig is started, even if this ImageStreamTag is not the reason the Build is started.","type":"string"}}},"com.github.openshift.api.build.v1.ImageLabel":{"description":"ImageLabel represents a label applied to the resulting image.","type":"object","required":["name"],"properties":{"name":{"description":"name defines the name of the label. It must have non-zero length.","type":"string"},"value":{"description":"value defines the literal value of the label.","type":"string"}}},"com.github.openshift.api.build.v1.ImageSource":{"description":"ImageSource is used to describe build source that will be extracted from an image or used during a multi stage build. A reference of type ImageStreamTag, ImageStreamImage or DockerImage may be used. A pull secret can be specified to pull the image from an external registry or override the default service account secret if pulling from the internal registry. Image sources can either be used to extract content from an image and place it into the build context along with the repository source, or used directly during a multi-stage container image build to allow content to be copied without overwriting the contents of the repository source (see the 'paths' and 'as' fields).","type":"object","required":["from"],"properties":{"as":{"description":"A list of image names that this source will be used in place of during a multi-stage container image build. For instance, a Dockerfile that uses \"COPY --from=nginx:latest\" will first check for an image source that has \"nginx:latest\" in this field before attempting to pull directly. If the Dockerfile does not reference an image source it is ignored. This field and paths may both be set, in which case the contents will be used twice.","type":"array","items":{"type":"string"}},"from":{"description":"from is a reference to an ImageStreamTag, ImageStreamImage, or DockerImage to copy source from.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"paths":{"description":"paths is a list of source and destination paths to copy from the image. This content will be copied into the build context prior to starting the build. If no paths are set, the build context will not be altered.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.ImageSourcePath"}},"pullSecret":{"description":"pullSecret is a reference to a secret to be used to pull the image from a registry If the image is pulled from the OpenShift registry, this field does not need to be set.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"}}},"com.github.openshift.api.build.v1.ImageSourcePath":{"description":"ImageSourcePath describes a path to be copied from a source image and its destination within the build directory.","type":"object","required":["sourcePath","destinationDir"],"properties":{"destinationDir":{"description":"destinationDir is the relative directory within the build directory where files copied from the image are placed.","type":"string"},"sourcePath":{"description":"sourcePath is the absolute path of the file or directory inside the image to copy to the build directory.  If the source path ends in /. then the content of the directory will be copied, but the directory itself will not be created at the destination.","type":"string"}}},"com.github.openshift.api.build.v1.ImageStreamTagReference":{"description":"ImageStreamTagReference references the ImageStreamTag in an image change trigger by namespace and name.","type":"object","properties":{"name":{"description":"name is the name of the ImageStreamTag for an ImageChangeTrigger","type":"string"},"namespace":{"description":"namespace is the namespace where the ImageStreamTag for an ImageChangeTrigger is located","type":"string"}}},"com.github.openshift.api.build.v1.JenkinsPipelineBuildStrategy":{"description":"JenkinsPipelineBuildStrategy holds parameters specific to a Jenkins Pipeline build. Deprecated: use OpenShift Pipelines","type":"object","properties":{"env":{"description":"env contains additional environment variables you want to pass into a build pipeline.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"jenkinsfile":{"description":"Jenkinsfile defines the optional raw contents of a Jenkinsfile which defines a Jenkins pipeline build.","type":"string"},"jenkinsfilePath":{"description":"JenkinsfilePath is the optional path of the Jenkinsfile that will be used to configure the pipeline relative to the root of the context (contextDir). If both JenkinsfilePath & Jenkinsfile are both not specified, this defaults to Jenkinsfile in the root of the specified contextDir.","type":"string"}}},"com.github.openshift.api.build.v1.SecretBuildSource":{"description":"SecretBuildSource describes a secret and its destination directory that will be used only at the build time. The content of the secret referenced here will be copied into the destination directory instead of mounting.","type":"object","required":["secret"],"properties":{"destinationDir":{"description":"destinationDir is the directory where the files from the secret should be available for the build time. For the Source build strategy, these will be injected into a container where the assemble script runs. Later, when the script finishes, all files injected will be truncated to zero length. For the container image build strategy, these will be copied into the build directory, where the Dockerfile is located, so users can ADD or COPY them during container image build.","type":"string"},"secret":{"description":"secret is a reference to an existing secret that you want to use in your build.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"}}},"com.github.openshift.api.build.v1.SecretLocalReference":{"description":"SecretLocalReference contains information that points to the local secret being used","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the resource in the same namespace being referenced","type":"string"}}},"com.github.openshift.api.build.v1.SecretSpec":{"description":"SecretSpec specifies a secret to be included in a build pod and its corresponding mount point","type":"object","required":["secretSource","mountPath"],"properties":{"mountPath":{"description":"mountPath is the path at which to mount the secret","type":"string"},"secretSource":{"description":"secretSource is a reference to the secret","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"}}},"com.github.openshift.api.build.v1.SourceBuildStrategy":{"description":"SourceBuildStrategy defines input parameters specific to an Source build.","type":"object","required":["from"],"properties":{"env":{"description":"env contains additional environment variables you want to pass into a builder container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"}},"forcePull":{"description":"forcePull describes if the builder should pull the images from registry prior to building.","type":"boolean"},"from":{"description":"from is reference to an DockerImage, ImageStreamTag, or ImageStreamImage from which the container image should be pulled","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"incremental":{"description":"incremental flag forces the Source build to do incremental builds if true.","type":"boolean"},"pullSecret":{"description":"pullSecret is the name of a Secret that would be used for setting up the authentication for pulling the container images from the private Docker registries","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"scripts":{"description":"scripts is the location of Source scripts","type":"string"},"volumes":{"description":"volumes is a list of input volumes that can be mounted into the builds runtime environment. Only a subset of Kubernetes Volume sources are supported by builds. More info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.BuildVolume"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}}},"com.github.openshift.api.build.v1.SourceControlUser":{"description":"SourceControlUser defines the identity of a user of source control","type":"object","properties":{"email":{"description":"email of the source control user","type":"string"},"name":{"description":"name of the source control user","type":"string"}}},"com.github.openshift.api.build.v1.SourceRevision":{"description":"SourceRevision is the revision or commit information from the source for the build","type":"object","required":["type"],"properties":{"git":{"description":"Git contains information about git-based build source","$ref":"#/definitions/com.github.openshift.api.build.v1.GitSourceRevision"},"type":{"description":"type of the build source, may be one of 'Source', 'Dockerfile', 'Binary', or 'Images'","type":"string"}}},"com.github.openshift.api.build.v1.SourceStrategyOptions":{"description":"SourceStrategyOptions contains extra strategy options for Source builds","type":"object","properties":{"incremental":{"description":"incremental overrides the source-strategy incremental option in the build config","type":"boolean"}}},"com.github.openshift.api.build.v1.StageInfo":{"description":"StageInfo contains details about a build stage.","type":"object","properties":{"durationMilliseconds":{"description":"durationMilliseconds identifies how long the stage took to complete in milliseconds. Note: the duration of a stage can exceed the sum of the duration of the steps within the stage as not all actions are accounted for in explicit build steps.","type":"integer","format":"int64"},"name":{"description":"name is a unique identifier for each build stage that occurs.","type":"string"},"startTime":{"description":"startTime is a timestamp representing the server time when this Stage started. It is represented in RFC3339 form and is in UTC.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"steps":{"description":"steps contains details about each step that occurs during a build stage including start time and duration in milliseconds.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.build.v1.StepInfo"}}}},"com.github.openshift.api.build.v1.StepInfo":{"description":"StepInfo contains details about a build step.","type":"object","properties":{"durationMilliseconds":{"description":"durationMilliseconds identifies how long the step took to complete in milliseconds.","type":"integer","format":"int64"},"name":{"description":"name is a unique identifier for each build step.","type":"string"},"startTime":{"description":"startTime is a timestamp representing the server time when this Step started. it is represented in RFC3339 form and is in UTC.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"com.github.openshift.api.build.v1.WebHookTrigger":{"description":"WebHookTrigger is a trigger that gets invoked using a webhook type of post","type":"object","properties":{"allowEnv":{"description":"allowEnv determines whether the webhook can set environment variables; can only be set to true for GenericWebHook.","type":"boolean"},"secret":{"description":"secret used to validate requests. Deprecated: use SecretReference instead.","type":"string"},"secretReference":{"description":"secretReference is a reference to a secret in the same namespace, containing the value to be validated when the webhook is invoked. The secret being referenced must contain a key named \"WebHookSecretKey\", the value of which will be checked against the value supplied in the webhook invocation.","$ref":"#/definitions/com.github.openshift.api.build.v1.SecretLocalReference"}}},"com.github.openshift.api.image.v1.Image":{"description":"Image is an immutable representation of a container image and metadata at a point in time. Images are named by taking a hash of their contents (metadata and content) and any change in format, content, or metadata results in a new name. The images resource is primarily for use by cluster administrators and integrations like the cluster image registry - end users instead access images via the imagestreamtags or imagestreamimages resources. While image metadata is stored in the API, any integration that implements the container image registry API must provide its own storage for the raw manifest data, image config, and layer contents.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"dockerImageConfig":{"description":"DockerImageConfig is a JSON blob that the runtime uses to set up the container. This is a part of manifest schema v2. Will not be set when the image represents a manifest list.","type":"string"},"dockerImageLayers":{"description":"DockerImageLayers represents the layers in the image. May not be set if the image does not define that data or if the image represents a manifest list.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageLayer"}},"dockerImageManifest":{"description":"DockerImageManifest is the raw JSON of the manifest","type":"string"},"dockerImageManifestMediaType":{"description":"DockerImageManifestMediaType specifies the mediaType of manifest. This is a part of manifest schema v2.","type":"string"},"dockerImageManifests":{"description":"DockerImageManifests holds information about sub-manifests when the image represents a manifest list. When this field is present, no DockerImageLayers should be specified.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageManifest"}},"dockerImageMetadata":{"description":"DockerImageMetadata contains metadata about this image","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension","x-kubernetes-patch-strategy":"replace"},"dockerImageMetadataVersion":{"description":"DockerImageMetadataVersion conveys the version of the object, which if empty defaults to \"1.0\"","type":"string"},"dockerImageReference":{"description":"DockerImageReference is the string that can be used to pull this image.","type":"string"},"dockerImageSignatures":{"description":"DockerImageSignatures provides the signatures as opaque blobs. This is a part of manifest schema v1.","type":"array","items":{"type":"string","format":"byte"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"signatures":{"description":"Signatures holds all signatures of the image.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageSignature"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Image","version":"v1"},{"group":"image.openshift.io","kind":"Image","version":"v1"}]},"com.github.openshift.api.image.v1.ImageBlobReferences":{"description":"ImageBlobReferences describes the blob references within an image.","type":"object","properties":{"config":{"description":"config, if set, is the blob that contains the image config. Some images do not have separate config blobs and this field will be set to nil if so.","type":"string"},"imageMissing":{"description":"imageMissing is true if the image is referenced by the image stream but the image object has been deleted from the API by an administrator. When this field is set, layers and config fields may be empty and callers that depend on the image metadata should consider the image to be unavailable for download or viewing.","type":"boolean"},"layers":{"description":"layers is the list of blobs that compose this image, from base layer to top layer. All layers referenced by this array will be defined in the blobs map. Some images may have zero layers.","type":"array","items":{"type":"string"}},"manifests":{"description":"manifests is the list of other image names that this image points to. For a single architecture image, it is empty. For a multi-arch image, it consists of the digests of single architecture images, such images shouldn't have layers nor config.","type":"array","items":{"type":"string"}}}},"com.github.openshift.api.image.v1.ImageImportSpec":{"description":"ImageImportSpec describes a request to import a specific image.","type":"object","required":["from"],"properties":{"from":{"description":"From is the source of an image to import; only kind DockerImage is allowed","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"importPolicy":{"description":"ImportPolicy is the policy controlling how the image is imported","$ref":"#/definitions/com.github.openshift.api.image.v1.TagImportPolicy"},"includeManifest":{"description":"IncludeManifest determines if the manifest for each image is returned in the response","type":"boolean"},"referencePolicy":{"description":"ReferencePolicy defines how other components should consume the image","$ref":"#/definitions/com.github.openshift.api.image.v1.TagReferencePolicy"},"to":{"description":"To is a tag in the current image stream to assign the imported image to, if name is not specified the default tag from from.name will be used","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"}}},"com.github.openshift.api.image.v1.ImageImportStatus":{"description":"ImageImportStatus describes the result of an image import.","type":"object","required":["status"],"properties":{"image":{"description":"Image is the metadata of that image, if the image was located","$ref":"#/definitions/com.github.openshift.api.image.v1.Image"},"manifests":{"description":"Manifests holds sub-manifests metadata when importing a manifest list","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"status":{"description":"Status is the status of the image import, including errors encountered while retrieving the image","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"},"tag":{"description":"Tag is the tag this image was located under, if any","type":"string"}}},"com.github.openshift.api.image.v1.ImageLayer":{"description":"ImageLayer represents a single layer of the image. Some images may have multiple layers. Some may have none.","type":"object","required":["name","size","mediaType"],"properties":{"mediaType":{"description":"MediaType of the referenced object.","type":"string"},"name":{"description":"Name of the layer as defined by the underlying store.","type":"string"},"size":{"description":"Size of the layer in bytes as defined by the underlying store.","type":"integer","format":"int64"}}},"com.github.openshift.api.image.v1.ImageLayerData":{"description":"ImageLayerData contains metadata about an image layer.","type":"object","required":["size","mediaType"],"properties":{"mediaType":{"description":"MediaType of the referenced object.","type":"string"},"size":{"description":"Size of the layer in bytes as defined by the underlying store. This field is optional if the necessary information about size is not available.","type":"integer","format":"int64"}}},"com.github.openshift.api.image.v1.ImageList":{"description":"ImageList is a list of Image objects.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of images","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.Image"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageList","version":"v1"},{"group":"image.openshift.io","kind":"ImageList","version":"v1"}]},"com.github.openshift.api.image.v1.ImageLookupPolicy":{"description":"ImageLookupPolicy describes how an image stream can be used to override the image references used by pods, builds, and other resources in a namespace.","type":"object","required":["local"],"properties":{"local":{"description":"local will change the docker short image references (like \"mysql\" or \"php:latest\") on objects in this namespace to the image ID whenever they match this image stream, instead of reaching out to a remote registry. The name will be fully qualified to an image ID if found. The tag's referencePolicy is taken into account on the replaced value. Only works within the current namespace.","type":"boolean"}}},"com.github.openshift.api.image.v1.ImageManifest":{"description":"ImageManifest represents sub-manifests of a manifest list. The Digest field points to a regular Image object.","type":"object","required":["digest","mediaType","manifestSize","architecture","os"],"properties":{"architecture":{"description":"Architecture specifies the supported CPU architecture, for example `amd64` or `ppc64le`.","type":"string"},"digest":{"description":"Digest is the unique identifier for the manifest. It refers to an Image object.","type":"string"},"manifestSize":{"description":"ManifestSize represents the size of the raw object contents, in bytes.","type":"integer","format":"int64"},"mediaType":{"description":"MediaType defines the type of the manifest, possible values are application/vnd.oci.image.manifest.v1+json, application/vnd.docker.distribution.manifest.v2+json or application/vnd.docker.distribution.manifest.v1+json.","type":"string"},"os":{"description":"OS specifies the operating system, for example `linux`.","type":"string"},"variant":{"description":"Variant is an optional field repreenting a variant of the CPU, for example v6 to specify a particular CPU variant of the ARM CPU.","type":"string"}}},"com.github.openshift.api.image.v1.ImageSignature":{"description":"ImageSignature holds a signature of an image. It allows to verify image identity and possibly other claims as long as the signature is trusted. Based on this information it is possible to restrict runnable images to those matching cluster-wide policy. Mandatory fields should be parsed by clients doing image verification. The others are parsed from signature's content by the server. They serve just an informative purpose.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["type","content"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"conditions":{"description":"Conditions represent the latest available observations of a signature's current state.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.SignatureCondition"},"x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"content":{"description":"Required: An opaque binary string which is an image's signature.","type":"string","format":"byte"},"created":{"description":"If specified, it is the time of signature's creation.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"imageIdentity":{"description":"A human readable string representing image's identity. It could be a product name and version, or an image pull spec (e.g. \"registry.access.redhat.com/rhel7/rhel:7.2\").","type":"string"},"issuedBy":{"description":"If specified, it holds information about an issuer of signing certificate or key (a person or entity who signed the signing certificate or key).","$ref":"#/definitions/com.github.openshift.api.image.v1.SignatureIssuer"},"issuedTo":{"description":"If specified, it holds information about a subject of signing certificate or key (a person or entity who signed the image).","$ref":"#/definitions/com.github.openshift.api.image.v1.SignatureSubject"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"signedClaims":{"description":"Contains claims from the signature.","type":"object","additionalProperties":{"type":"string"}},"type":{"description":"Required: Describes a type of stored blob.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageSignature","version":"v1"},{"group":"image.openshift.io","kind":"ImageSignature","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStream":{"description":"An ImageStream stores a mapping of tags to images, metadata overrides that are applied when images are tagged in a stream, and an optional reference to a container image repository on a registry. Users typically update the spec.tags field to point to external images which are imported from container registries using credentials in your namespace with the pull secret type, or to existing image stream tags and images which are immediately accessible for tagging or pulling. The history of images applied to a tag is visible in the status.tags field and any user who can view an image stream is allowed to tag that image into their own image streams. Access to pull images from the integrated registry is granted by having the \"get imagestreams/layers\" permission on a given image stream. Users may remove a tag by deleting the imagestreamtag resource, which causes both spec and status for that tag to be removed. Image stream history is retained until an administrator runs the prune operation, which removes references that are no longer in use. To preserve a historical image, ensure there is a tag in spec pointing to that image by its digest.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"Spec describes the desired state of this stream","$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamSpec"},"status":{"description":"Status describes the current state of this stream","$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageStream","version":"v1"},{"group":"image.openshift.io","kind":"ImageStream","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStreamImage":{"description":"ImageStreamImage represents an Image that is retrieved by image name from an ImageStream. User interfaces and regular users can use this resource to access the metadata details of a tagged image in the image stream history for viewing, since Image resources are not directly accessible to end users. A not found error will be returned if no such image is referenced by a tag within the ImageStream. Images are created when spec tags are set on an image stream that represent an image in an external registry, when pushing to the integrated registry, or when tagging an existing image from one image stream to another. The name of an image stream image is in the form \"<STREAM>@<DIGEST>\", where the digest is the content addressible identifier for the image (sha256:xxxxx...). You can use ImageStreamImages as the from.kind of an image stream spec tag to reference an image exactly. The only operations supported on the imagestreamimage endpoint are retrieving the image.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["image"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"image":{"description":"Image associated with the ImageStream and image name.","$ref":"#/definitions/com.github.openshift.api.image.v1.Image"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageStreamImage","version":"v1"},{"group":"image.openshift.io","kind":"ImageStreamImage","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStreamImport":{"description":"The image stream import resource provides an easy way for a user to find and import container images from other container image registries into the server. Individual images or an entire image repository may be imported, and users may choose to see the results of the import prior to tagging the resulting images into the specified image stream.\n\nThis API is intended for end-user tools that need to see the metadata of the image prior to import (for instance, to generate an application from it). Clients that know the desired image can continue to create spec.tags directly into their image streams.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec","status"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"Spec is a description of the images that the user wishes to import","$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamImportSpec"},"status":{"description":"Status is the result of importing the image","$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamImportStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageStreamImport","version":"v1"},{"group":"image.openshift.io","kind":"ImageStreamImport","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStreamImportSpec":{"description":"ImageStreamImportSpec defines what images should be imported.","type":"object","required":["import"],"properties":{"images":{"description":"Images are a list of individual images to import.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageImportSpec"}},"import":{"description":"Import indicates whether to perform an import - if so, the specified tags are set on the spec and status of the image stream defined by the type meta.","type":"boolean"},"repository":{"description":"Repository is an optional import of an entire container image repository. A maximum limit on the number of tags imported this way is imposed by the server.","$ref":"#/definitions/com.github.openshift.api.image.v1.RepositoryImportSpec"}}},"com.github.openshift.api.image.v1.ImageStreamImportStatus":{"description":"ImageStreamImportStatus contains information about the status of an image stream import.","type":"object","properties":{"images":{"description":"Images is set with the result of importing spec.images","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageImportStatus"}},"import":{"description":"Import is the image stream that was successfully updated or created when 'to' was set.","$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"},"repository":{"description":"Repository is set if spec.repository was set to the outcome of the import","$ref":"#/definitions/com.github.openshift.api.image.v1.RepositoryImportStatus"}}},"com.github.openshift.api.image.v1.ImageStreamLayers":{"description":"ImageStreamLayers describes information about the layers referenced by images in this image stream.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["blobs","images"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"blobs":{"description":"blobs is a map of blob name to metadata about the blob.","type":"object","additionalProperties":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageLayerData"}},"images":{"description":"images is a map between an image name and the names of the blobs and config that comprise the image.","type":"object","additionalProperties":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageBlobReferences"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"}},"x-kubernetes-group-version-kind":[{"group":"image.openshift.io","kind":"ImageStreamLayers","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStreamList":{"description":"ImageStreamList is a list of ImageStream objects.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of imageStreams","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStream"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageStreamList","version":"v1"},{"group":"image.openshift.io","kind":"ImageStreamList","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStreamMapping":{"description":"ImageStreamMapping represents a mapping from a single image stream tag to a container image as well as the reference to the container image stream the image came from. This resource is used by privileged integrators to create an image resource and to associate it with an image stream in the status tags field. Creating an ImageStreamMapping will allow any user who can view the image stream to tag or pull that image, so only create mappings where the user has proven they have access to the image contents directly. The only operation supported for this resource is create and the metadata name and namespace should be set to the image stream containing the tag that should be updated.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["image","tag"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"image":{"description":"Image is a container image.","$ref":"#/definitions/com.github.openshift.api.image.v1.Image"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"tag":{"description":"Tag is a string value this image can be located with inside the stream.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageStreamMapping","version":"v1"},{"group":"image.openshift.io","kind":"ImageStreamMapping","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStreamSpec":{"description":"ImageStreamSpec represents options for ImageStreams.","type":"object","properties":{"dockerImageRepository":{"description":"dockerImageRepository is optional, if specified this stream is backed by a container repository on this server Deprecated: This field is deprecated as of v3.7 and will be removed in a future release. Specify the source for the tags to be imported in each tag via the spec.tags.from reference instead.","type":"string"},"lookupPolicy":{"description":"lookupPolicy controls how other resources reference images within this namespace.","$ref":"#/definitions/com.github.openshift.api.image.v1.ImageLookupPolicy"},"tags":{"description":"tags map arbitrary string values to specific image locators","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.TagReference"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}}},"com.github.openshift.api.image.v1.ImageStreamStatus":{"description":"ImageStreamStatus contains information about the state of this image stream.","type":"object","required":["dockerImageRepository"],"properties":{"dockerImageRepository":{"description":"DockerImageRepository represents the effective location this stream may be accessed at. May be empty until the server determines where the repository is located","type":"string"},"publicDockerImageRepository":{"description":"PublicDockerImageRepository represents the public location from where the image can be pulled outside the cluster. This field may be empty if the administrator has not exposed the integrated registry externally.","type":"string"},"tags":{"description":"Tags are a historical record of images associated with each tag. The first entry in the TagEvent array is the currently tagged image.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.NamedTagEventList"},"x-kubernetes-patch-merge-key":"tag","x-kubernetes-patch-strategy":"merge"}}},"com.github.openshift.api.image.v1.ImageStreamTag":{"description":"ImageStreamTag represents an Image that is retrieved by tag name from an ImageStream. Use this resource to interact with the tags and images in an image stream by tag, or to see the image details for a particular tag. The image associated with this resource is the most recently successfully tagged, imported, or pushed image (as described in the image stream status.tags.items list for this tag). If an import is in progress or has failed the previous image will be shown. Deleting an image stream tag clears both the status and spec fields of an image stream. If no image can be retrieved for a given tag, a not found error will be returned.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["tag","generation","lookupPolicy","image"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"conditions":{"description":"conditions is an array of conditions that apply to the image stream tag.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.TagEventCondition"}},"generation":{"description":"generation is the current generation of the tagged image - if tag is provided and this value is not equal to the tag generation, a user has requested an import that has not completed, or conditions will be filled out indicating any error.","type":"integer","format":"int64"},"image":{"description":"image associated with the ImageStream and tag.","$ref":"#/definitions/com.github.openshift.api.image.v1.Image"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"lookupPolicy":{"description":"lookupPolicy indicates whether this tag will handle image references in this namespace.","$ref":"#/definitions/com.github.openshift.api.image.v1.ImageLookupPolicy"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"tag":{"description":"tag is the spec tag associated with this image stream tag, and it may be null if only pushes have occurred to this image stream.","$ref":"#/definitions/com.github.openshift.api.image.v1.TagReference"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageStreamTag","version":"v1"},{"group":"image.openshift.io","kind":"ImageStreamTag","version":"v1"}]},"com.github.openshift.api.image.v1.ImageStreamTagList":{"description":"ImageStreamTagList is a list of ImageStreamTag objects.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of image stream tags","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageStreamTag"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ImageStreamTagList","version":"v1"},{"group":"image.openshift.io","kind":"ImageStreamTagList","version":"v1"}]},"com.github.openshift.api.image.v1.ImageTag":{"description":"ImageTag represents a single tag within an image stream and includes the spec, the status history, and the currently referenced image (if any) of the provided tag. This type replaces the ImageStreamTag by providing a full view of the tag. ImageTags are returned for every spec or status tag present on the image stream. If no tag exists in either form a not found error will be returned by the API. A create operation will succeed if no spec tag has already been defined and the spec field is set. Delete will remove both spec and status elements from the image stream.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec","status","image"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"image":{"description":"image is the details of the most recent image stream status tag, and it may be null if import has not completed or an administrator has deleted the image object. To verify this is the most recent image, you must verify the generation of the most recent status.items entry matches the spec tag (if a spec tag is set). This field will not be set when listing image tags.","$ref":"#/definitions/com.github.openshift.api.image.v1.Image"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"spec is the spec tag associated with this image stream tag, and it may be null if only pushes have occurred to this image stream.","$ref":"#/definitions/com.github.openshift.api.image.v1.TagReference"},"status":{"description":"status is the status tag details associated with this image stream tag, and it may be null if no push or import has been performed.","$ref":"#/definitions/com.github.openshift.api.image.v1.NamedTagEventList"}},"x-kubernetes-group-version-kind":[{"group":"image.openshift.io","kind":"ImageTag","version":"v1"}]},"com.github.openshift.api.image.v1.ImageTagList":{"description":"ImageTagList is a list of ImageTag objects. When listing image tags, the image field is not populated. Tags are returned in alphabetical order by image stream and then tag.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of image stream tags","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageTag"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"image.openshift.io","kind":"ImageTagList","version":"v1"}]},"com.github.openshift.api.image.v1.NamedTagEventList":{"description":"NamedTagEventList relates a tag to its image history.","type":"object","required":["tag","items"],"properties":{"conditions":{"description":"Conditions is an array of conditions that apply to the tag event list.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.TagEventCondition"}},"items":{"description":"Standard object's metadata.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.TagEvent"}},"tag":{"description":"Tag is the tag for which the history is recorded","type":"string"}}},"com.github.openshift.api.image.v1.RepositoryImportSpec":{"description":"RepositoryImportSpec describes a request to import images from a container image repository.","type":"object","required":["from"],"properties":{"from":{"description":"From is the source for the image repository to import; only kind DockerImage and a name of a container image repository is allowed","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"importPolicy":{"description":"ImportPolicy is the policy controlling how the image is imported","$ref":"#/definitions/com.github.openshift.api.image.v1.TagImportPolicy"},"includeManifest":{"description":"IncludeManifest determines if the manifest for each image is returned in the response","type":"boolean"},"referencePolicy":{"description":"ReferencePolicy defines how other components should consume the image","$ref":"#/definitions/com.github.openshift.api.image.v1.TagReferencePolicy"}}},"com.github.openshift.api.image.v1.RepositoryImportStatus":{"description":"RepositoryImportStatus describes the result of an image repository import","type":"object","properties":{"additionalTags":{"description":"AdditionalTags are tags that exist in the repository but were not imported because a maximum limit of automatic imports was applied.","type":"array","items":{"type":"string"}},"images":{"description":"Images is a list of images successfully retrieved by the import of the repository.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.image.v1.ImageImportStatus"}},"status":{"description":"Status reflects whether any failure occurred during import","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5"}}},"com.github.openshift.api.image.v1.SecretList":{"description":"SecretList is a list of Secret.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of secret objects. More info: https://kubernetes.io/docs/concepts/configuration/secret","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"image.openshift.io","kind":"SecretList","version":"v1"}]},"com.github.openshift.api.image.v1.SignatureCondition":{"description":"SignatureCondition describes an image signature condition of particular kind at particular probe time.","type":"object","required":["type","status"],"properties":{"lastProbeTime":{"description":"Last time the condition was checked.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastTransitionTime":{"description":"Last time the condition transit from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Human readable message indicating details about last transition.","type":"string"},"reason":{"description":"(brief) reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of signature condition, Complete or Failed.","type":"string"}}},"com.github.openshift.api.image.v1.SignatureIssuer":{"description":"SignatureIssuer holds information about an issuer of signing certificate or key.","type":"object","properties":{"commonName":{"description":"Common name (e.g. openshift-signing-service).","type":"string"},"organization":{"description":"Organization name.","type":"string"}}},"com.github.openshift.api.image.v1.SignatureSubject":{"description":"SignatureSubject holds information about a person or entity who created the signature.","type":"object","required":["publicKeyID"],"properties":{"commonName":{"description":"Common name (e.g. openshift-signing-service).","type":"string"},"organization":{"description":"Organization name.","type":"string"},"publicKeyID":{"description":"If present, it is a human readable key id of public key belonging to the subject used to verify image signature. It should contain at least 64 lowest bits of public key's fingerprint (e.g. 0x685ebe62bf278440).","type":"string"}}},"com.github.openshift.api.image.v1.TagEvent":{"description":"TagEvent is used by ImageStreamStatus to keep a historical record of images associated with a tag.","type":"object","required":["created","dockerImageReference","image","generation"],"properties":{"created":{"description":"Created holds the time the TagEvent was created","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"dockerImageReference":{"description":"DockerImageReference is the string that can be used to pull this image","type":"string"},"generation":{"description":"Generation is the spec tag generation that resulted in this tag being updated","type":"integer","format":"int64"},"image":{"description":"Image is the image","type":"string"}}},"com.github.openshift.api.image.v1.TagEventCondition":{"description":"TagEventCondition contains condition information for a tag event.","type":"object","required":["type","status","generation"],"properties":{"generation":{"description":"Generation is the spec tag generation that this status corresponds to","type":"integer","format":"int64"},"lastTransitionTime":{"description":"LastTransitionTIme is the time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Message is a human readable description of the details about last transition, complementing reason.","type":"string"},"reason":{"description":"Reason is a brief machine readable explanation for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of tag event condition, currently only ImportSuccess","type":"string"}}},"com.github.openshift.api.image.v1.TagImportPolicy":{"description":"TagImportPolicy controls how images related to this tag will be imported.","type":"object","properties":{"importMode":{"description":"ImportMode describes how to import an image manifest.","type":"string"},"insecure":{"description":"Insecure is true if the server may bypass certificate verification or connect directly over HTTP during image import.","type":"boolean"},"scheduled":{"description":"Scheduled indicates to the server that this tag should be periodically checked to ensure it is up to date, and imported","type":"boolean"}}},"com.github.openshift.api.image.v1.TagReference":{"description":"TagReference specifies optional annotations for images using this tag and an optional reference to an ImageStreamTag, ImageStreamImage, or DockerImage this tag should track.","type":"object","required":["name"],"properties":{"annotations":{"description":"Optional; if specified, annotations that are applied to images retrieved via ImageStreamTags.","type":"object","additionalProperties":{"type":"string"}},"from":{"description":"Optional; if specified, a reference to another image that this tag should point to. Valid values are ImageStreamTag, ImageStreamImage, and DockerImage.  ImageStreamTag references can only reference a tag within this same ImageStream.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"generation":{"description":"Generation is a counter that tracks mutations to the spec tag (user intent). When a tag reference is changed the generation is set to match the current stream generation (which is incremented every time spec is changed). Other processes in the system like the image importer observe that the generation of spec tag is newer than the generation recorded in the status and use that as a trigger to import the newest remote tag. To trigger a new import, clients may set this value to zero which will reset the generation to the latest stream generation. Legacy clients will send this value as nil which will be merged with the current tag generation.","type":"integer","format":"int64"},"importPolicy":{"description":"ImportPolicy is information that controls how images may be imported by the server.","$ref":"#/definitions/com.github.openshift.api.image.v1.TagImportPolicy"},"name":{"description":"Name of the tag","type":"string"},"reference":{"description":"Reference states if the tag will be imported. Default value is false, which means the tag will be imported.","type":"boolean"},"referencePolicy":{"description":"ReferencePolicy defines how other components should consume the image.","$ref":"#/definitions/com.github.openshift.api.image.v1.TagReferencePolicy"}}},"com.github.openshift.api.image.v1.TagReferencePolicy":{"description":"TagReferencePolicy describes how pull-specs for images in this image stream tag are generated when image change triggers in deployment configs or builds are resolved. This allows the image stream author to control how images are accessed.","type":"object","required":["type"],"properties":{"type":{"description":"Type determines how the image pull spec should be transformed when the image stream tag is used in deployment config triggers or new builds. The default value is `Source`, indicating the original location of the image should be used (if imported). The user may also specify `Local`, indicating that the pull spec should point to the integrated container image registry and leverage the registry's ability to proxy the pull to an upstream registry. `Local` allows the credentials used to pull this image to be managed from the image stream's namespace, so others on the platform can access a remote image but have no access to the remote secret. It also allows the image layers to be mirrored into the local registry which the images can still be pulled even if the upstream registry is unavailable.","type":"string"}}},"com.github.openshift.api.oauth.v1.ClusterRoleScopeRestriction":{"description":"ClusterRoleScopeRestriction describes restrictions on cluster role scopes","type":"object","required":["roleNames","namespaces","allowEscalation"],"properties":{"allowEscalation":{"description":"AllowEscalation indicates whether you can request roles and their escalating resources","type":"boolean"},"namespaces":{"description":"Namespaces is the list of namespaces that can be referenced.  * means any of them (including *)","type":"array","items":{"type":"string"}},"roleNames":{"description":"RoleNames is the list of cluster roles that can referenced.  * means anything","type":"array","items":{"type":"string"}}}},"com.github.openshift.api.oauth.v1.OAuthAccessToken":{"description":"OAuthAccessToken describes an OAuth access token. The name of a token must be prefixed with a `sha256~` string, must not contain \"/\" or \"%\" characters and must be at least 32 characters long.\n\nThe name of the token is constructed from the actual token by sha256-hashing it and using URL-safe unpadded base64-encoding (as described in RFC4648) on the hashed result.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"authorizeToken":{"description":"AuthorizeToken contains the token that authorized this token","type":"string"},"clientName":{"description":"ClientName references the client that created this token.","type":"string"},"expiresIn":{"description":"ExpiresIn is the seconds from CreationTime before this token expires.","type":"integer","format":"int64"},"inactivityTimeoutSeconds":{"description":"InactivityTimeoutSeconds is the value in seconds, from the CreationTimestamp, after which this token can no longer be used. The value is automatically incremented when the token is used.","type":"integer","format":"int32"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"redirectURI":{"description":"RedirectURI is the redirection associated with the token.","type":"string"},"refreshToken":{"description":"RefreshToken is the value by which this token can be renewed. Can be blank.","type":"string"},"scopes":{"description":"Scopes is an array of the requested scopes.","type":"array","items":{"type":"string"}},"userName":{"description":"UserName is the user name associated with this token","type":"string"},"userUID":{"description":"UserUID is the unique UID associated with this token","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthAccessToken","version":"v1"}]},"com.github.openshift.api.oauth.v1.OAuthAccessTokenList":{"description":"OAuthAccessTokenList is a collection of OAuth access tokens\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of OAuth access tokens","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAccessToken"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthAccessTokenList","version":"v1"}]},"com.github.openshift.api.oauth.v1.OAuthAuthorizeToken":{"description":"OAuthAuthorizeToken describes an OAuth authorization token\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"clientName":{"description":"ClientName references the client that created this token.","type":"string"},"codeChallenge":{"description":"CodeChallenge is the optional code_challenge associated with this authorization code, as described in rfc7636","type":"string"},"codeChallengeMethod":{"description":"CodeChallengeMethod is the optional code_challenge_method associated with this authorization code, as described in rfc7636","type":"string"},"expiresIn":{"description":"ExpiresIn is the seconds from CreationTime before this token expires.","type":"integer","format":"int64"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"redirectURI":{"description":"RedirectURI is the redirection associated with the token.","type":"string"},"scopes":{"description":"Scopes is an array of the requested scopes.","type":"array","items":{"type":"string"}},"state":{"description":"State data from request","type":"string"},"userName":{"description":"UserName is the user name associated with this token","type":"string"},"userUID":{"description":"UserUID is the unique UID associated with this token. UserUID and UserName must both match for this token to be valid.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthAuthorizeToken","version":"v1"}]},"com.github.openshift.api.oauth.v1.OAuthAuthorizeTokenList":{"description":"OAuthAuthorizeTokenList is a collection of OAuth authorization tokens\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of OAuth authorization tokens","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthAuthorizeToken"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthAuthorizeTokenList","version":"v1"}]},"com.github.openshift.api.oauth.v1.OAuthClient":{"description":"OAuthClient describes an OAuth client\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"accessTokenInactivityTimeoutSeconds":{"description":"AccessTokenInactivityTimeoutSeconds overrides the default token inactivity timeout for tokens granted to this client. The value represents the maximum amount of time that can occur between consecutive uses of the token. Tokens become invalid if they are not used within this temporal window. The user will need to acquire a new token to regain access once a token times out. This value needs to be set only if the default set in configuration is not appropriate for this client. Valid values are: - 0: Tokens for this client never time out - X: Tokens time out if there is no activity for X seconds The current minimum allowed value for X is 300 (5 minutes)\n\nWARNING: existing tokens' timeout will not be affected (lowered) by changing this value","type":"integer","format":"int32"},"accessTokenMaxAgeSeconds":{"description":"AccessTokenMaxAgeSeconds overrides the default access token max age for tokens granted to this client. 0 means no expiration.","type":"integer","format":"int32"},"additionalSecrets":{"description":"AdditionalSecrets holds other secrets that may be used to identify the client.  This is useful for rotation and for service account token validation","type":"array","items":{"type":"string"}},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"grantMethod":{"description":"GrantMethod is a required field which determines how to handle grants for this client. Valid grant handling methods are:\n - auto:   always approves grant requests, useful for trusted clients\n - prompt: prompts the end user for approval of grant requests, useful for third-party clients","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"redirectURIs":{"description":"RedirectURIs is the valid redirection URIs associated with a client","type":"array","items":{"type":"string"},"x-kubernetes-patch-strategy":"merge"},"respondWithChallenges":{"description":"RespondWithChallenges indicates whether the client wants authentication needed responses made in the form of challenges instead of redirects","type":"boolean"},"scopeRestrictions":{"description":"ScopeRestrictions describes which scopes this client can request.  Each requested scope is checked against each restriction.  If any restriction matches, then the scope is allowed. If no restriction matches, then the scope is denied.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.ScopeRestriction"}},"secret":{"description":"Secret is the unique secret associated with a client","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthClient","version":"v1"}]},"com.github.openshift.api.oauth.v1.OAuthClientAuthorization":{"description":"OAuthClientAuthorization describes an authorization created by an OAuth client\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"clientName":{"description":"ClientName references the client that created this authorization","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"scopes":{"description":"Scopes is an array of the granted scopes.","type":"array","items":{"type":"string"}},"userName":{"description":"UserName is the user name that authorized this client","type":"string"},"userUID":{"description":"UserUID is the unique UID associated with this authorization. UserUID and UserName must both match for this authorization to be valid.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthClientAuthorization","version":"v1"}]},"com.github.openshift.api.oauth.v1.OAuthClientAuthorizationList":{"description":"OAuthClientAuthorizationList is a collection of OAuth client authorizations\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of OAuth client authorizations","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClientAuthorization"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthClientAuthorizationList","version":"v1"}]},"com.github.openshift.api.oauth.v1.OAuthClientList":{"description":"OAuthClientList is a collection of OAuth clients\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of OAuth clients","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.OAuthClient"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"OAuthClientList","version":"v1"}]},"com.github.openshift.api.oauth.v1.ScopeRestriction":{"description":"ScopeRestriction describe one restriction on scopes.  Exactly one option must be non-nil.","type":"object","properties":{"clusterRole":{"description":"ClusterRole describes a set of restrictions for cluster role scoping.","$ref":"#/definitions/com.github.openshift.api.oauth.v1.ClusterRoleScopeRestriction"},"literals":{"description":"ExactValues means the scope has to match a particular set of strings exactly","type":"array","items":{"type":"string"}}}},"com.github.openshift.api.oauth.v1.UserOAuthAccessToken":{"description":"UserOAuthAccessToken is a virtual resource to mirror OAuthAccessTokens to the user the access token was issued for","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"authorizeToken":{"description":"AuthorizeToken contains the token that authorized this token","type":"string"},"clientName":{"description":"ClientName references the client that created this token.","type":"string"},"expiresIn":{"description":"ExpiresIn is the seconds from CreationTime before this token expires.","type":"integer","format":"int64"},"inactivityTimeoutSeconds":{"description":"InactivityTimeoutSeconds is the value in seconds, from the CreationTimestamp, after which this token can no longer be used. The value is automatically incremented when the token is used.","type":"integer","format":"int32"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"redirectURI":{"description":"RedirectURI is the redirection associated with the token.","type":"string"},"refreshToken":{"description":"RefreshToken is the value by which this token can be renewed. Can be blank.","type":"string"},"scopes":{"description":"Scopes is an array of the requested scopes.","type":"array","items":{"type":"string"}},"userName":{"description":"UserName is the user name associated with this token","type":"string"},"userUID":{"description":"UserUID is the unique UID associated with this token","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"UserOAuthAccessToken","version":"v1"}]},"com.github.openshift.api.oauth.v1.UserOAuthAccessTokenList":{"description":"UserOAuthAccessTokenList is a collection of access tokens issued on behalf of the requesting user\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.oauth.v1.UserOAuthAccessToken"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"oauth.openshift.io","kind":"UserOAuthAccessTokenList","version":"v1"}]},"com.github.openshift.api.project.v1.Project":{"description":"Projects are the unit of isolation and collaboration in OpenShift. A project has one or more members, a quota on the resources that the project may consume, and the security controls on the resources in the project. Within a project, members may have different roles - project administrators can set membership, editors can create and manage the resources, and viewers can see but not access running containers. In a normal cluster project administrators are not able to alter their quotas - that is restricted to cluster administrators.\n\nListing or watching projects will return only projects the user has the reader role on.\n\nAn OpenShift project is an alternative representation of a Kubernetes namespace. Projects are exposed as editable to end users while namespaces are not. Direct creation of a project is typically restricted to administrators, while end users should use the requestproject resource.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"Spec defines the behavior of the Namespace.","$ref":"#/definitions/com.github.openshift.api.project.v1.ProjectSpec"},"status":{"description":"Status describes the current status of a Namespace","$ref":"#/definitions/com.github.openshift.api.project.v1.ProjectStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Project","version":"v1"},{"group":"project.openshift.io","kind":"Project","version":"v1"}]},"com.github.openshift.api.project.v1.ProjectList":{"description":"ProjectList is a list of Project objects.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of projects","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.project.v1.Project"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ProjectList","version":"v1"},{"group":"project.openshift.io","kind":"ProjectList","version":"v1"}]},"com.github.openshift.api.project.v1.ProjectRequest":{"description":"ProjectRequest is the set of options necessary to fully qualify a project request\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"description":{"description":"Description is the description to apply to a project","type":"string"},"displayName":{"description":"DisplayName is the display name to apply to a project","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ProjectRequest","version":"v1"},{"group":"project.openshift.io","kind":"ProjectRequest","version":"v1"}]},"com.github.openshift.api.project.v1.ProjectSpec":{"description":"ProjectSpec describes the attributes on a Project","type":"object","properties":{"finalizers":{"description":"Finalizers is an opaque list of values that must be empty to permanently remove object from storage","type":"array","items":{"type":"string"}}}},"com.github.openshift.api.project.v1.ProjectStatus":{"description":"ProjectStatus is information about the current status of a Project","type":"object","properties":{"conditions":{"description":"Represents the latest available observations of the project current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NamespaceCondition"},"x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"phase":{"description":"Phase is the current lifecycle phase of the project\n\nPossible enum values:\n - `\"Active\"` means the namespace is available for use in the system\n - `\"Terminating\"` means the namespace is undergoing graceful termination","type":"string","enum":["Active","Terminating"]}}},"com.github.openshift.api.quota.v1.AppliedClusterResourceQuota":{"description":"AppliedClusterResourceQuota mirrors ClusterResourceQuota at a project scope, for projection into a project.  It allows a project-admin to know which ClusterResourceQuotas are applied to his project and their associated usage.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"Spec defines the desired quota","$ref":"#/definitions/com.github.openshift.api.quota.v1.ClusterResourceQuotaSpec"},"status":{"description":"Status defines the actual enforced quota and its current usage","$ref":"#/definitions/com.github.openshift.api.quota.v1.ClusterResourceQuotaStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"AppliedClusterResourceQuota","version":"v1"},{"group":"quota.openshift.io","kind":"AppliedClusterResourceQuota","version":"v1"}]},"com.github.openshift.api.quota.v1.AppliedClusterResourceQuotaList":{"description":"AppliedClusterResourceQuotaList is a collection of AppliedClusterResourceQuotas\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of AppliedClusterResourceQuota","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.quota.v1.AppliedClusterResourceQuota"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"AppliedClusterResourceQuotaList","version":"v1"},{"group":"quota.openshift.io","kind":"AppliedClusterResourceQuotaList","version":"v1"}]},"com.github.openshift.api.quota.v1.ClusterResourceQuotaSelector":{"description":"ClusterResourceQuotaSelector is used to select projects.  At least one of LabelSelector or AnnotationSelector must present.  If only one is present, it is the only selection criteria.  If both are specified, the project must match both restrictions.","type":"object","properties":{"annotations":{"description":"AnnotationSelector is used to select projects by annotation.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"LabelSelector is used to select projects by label.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v4"}}},"com.github.openshift.api.quota.v1.ClusterResourceQuotaSpec":{"description":"ClusterResourceQuotaSpec defines the desired quota restrictions","type":"object","required":["selector","quota"],"properties":{"quota":{"description":"Quota defines the desired quota","$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuotaSpec_v2"},"selector":{"description":"Selector is the selector used to match projects. It should only select active projects on the scale of dozens (though it can select many more less active projects).  These projects will contend on object creation through this resource.","$ref":"#/definitions/com.github.openshift.api.quota.v1.ClusterResourceQuotaSelector"}}},"com.github.openshift.api.quota.v1.ClusterResourceQuotaStatus":{"description":"ClusterResourceQuotaStatus defines the actual enforced quota and its current usage","type":"object","required":["total"],"properties":{"namespaces":{"description":"Namespaces slices the usage by project.  This division allows for quick resolution of deletion reconciliation inside of a single project without requiring a recalculation across all projects.  This can be used to pull the deltas for a given project.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.quota.v1.ResourceQuotaStatusByNamespace"}},"total":{"description":"Total defines the actual enforced quota and its current usage across all projects","$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuotaStatus"}}},"com.github.openshift.api.quota.v1.ResourceQuotaStatusByNamespace":{"description":"ResourceQuotaStatusByNamespace gives status for a particular project","type":"object","required":["namespace","status"],"properties":{"namespace":{"description":"Namespace the project this status applies to","type":"string"},"status":{"description":"Status indicates how many resources have been consumed by this project","$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuotaStatus"}}},"com.github.openshift.api.route.v1.LocalObjectReference":{"description":"LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.","type":"object","properties":{"name":{"description":"name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"com.github.openshift.api.route.v1.Route":{"description":"A route allows developers to expose services through an HTTP(S) aware load balancing and proxy layer via a public DNS entry. The route may further specify TLS options and a certificate, or specify a public CNAME that the router should also accept for HTTP and HTTPS traffic. An administrator typically configures their router to be visible outside the cluster firewall, and may also add additional security, caching, or traffic controls on the service content. Routers usually talk directly to the service endpoints.\n\nOnce a route is created, the `host` field may not be changed. Generally, routers use the oldest route with a given host when resolving conflicts.\n\nRouters are subject to additional customization and may support additional controls via the annotations field.\n\nBecause administrators may configure multiple routers, the route status field is used to return information to clients about the names and states of the route under each router. If a client chooses a duplicate name, for instance, the route status conditions are used to indicate the route cannot be chosen.\n\nTo enable HTTP/2 ALPN on a route it requires a custom (non-wildcard) certificate. This prevents connection coalescing by clients, notably web browsers. We do not support HTTP/2 ALPN on routes that use the default certificate because of the risk of connection re-use/coalescing. Routes that do not have their own custom certificate will not be HTTP/2 ALPN-enabled on either the frontend or the backend.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"spec is the desired state of the route","$ref":"#/definitions/com.github.openshift.api.route.v1.RouteSpec"},"status":{"description":"status is the current state of the route","$ref":"#/definitions/com.github.openshift.api.route.v1.RouteStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Route","version":"v1"},{"group":"route.openshift.io","kind":"Route","version":"v1"}]},"com.github.openshift.api.route.v1.RouteHTTPHeader":{"description":"RouteHTTPHeader specifies configuration for setting or deleting an HTTP header.","type":"object","required":["name","action"],"properties":{"action":{"description":"action specifies actions to perform on headers, such as setting or deleting headers.","$ref":"#/definitions/com.github.openshift.api.route.v1.RouteHTTPHeaderActionUnion"},"name":{"description":"name specifies the name of a header on which to perform an action. Its value must be a valid HTTP header name as defined in RFC 2616 section 4.2. The name must consist only of alphanumeric and the following special characters, \"-!#$%&'*+.^_`\". The following header names are reserved and may not be modified via this API: Strict-Transport-Security, Proxy, Cookie, Set-Cookie. It must be no more than 255 characters in length. Header name must be unique.","type":"string"}}},"com.github.openshift.api.route.v1.RouteHTTPHeaderActionUnion":{"description":"RouteHTTPHeaderActionUnion specifies an action to take on an HTTP header.","type":"object","required":["type"],"properties":{"set":{"description":"set defines the HTTP header that should be set: added if it doesn't exist or replaced if it does. This field is required when type is Set and forbidden otherwise.","$ref":"#/definitions/com.github.openshift.api.route.v1.RouteSetHTTPHeader"},"type":{"description":"type defines the type of the action to be applied on the header. Possible values are Set or Delete. Set allows you to set HTTP request and response headers. Delete allows you to delete HTTP request and response headers.","type":"string"}},"x-kubernetes-unions":[{"discriminator":"type","fields-to-discriminateBy":{"set":"Set"}}]},"com.github.openshift.api.route.v1.RouteHTTPHeaderActions":{"description":"RouteHTTPHeaderActions defines configuration for actions on HTTP request and response headers.","type":"object","properties":{"request":{"description":"request is a list of HTTP request headers to modify. Currently, actions may define to either `Set` or `Delete` headers values. Actions defined here will modify the request headers of all requests made through a route. These actions are applied to a specific Route defined within a cluster i.e. connections made through a route. Currently, actions may define to either `Set` or `Delete` headers values. Route actions will be executed after IngressController actions for request headers. Actions are applied in sequence as defined in this list. A maximum of 20 request header actions may be configured. You can use this field to specify HTTP request headers that should be set or deleted when forwarding connections from the client to your application. Sample fetchers allowed are \"req.hdr\" and \"ssl_c_der\". Converters allowed are \"lower\" and \"base64\". Example header values: \"%[req.hdr(X-target),lower]\", \"%{+Q}[ssl_c_der,base64]\". Any request header configuration applied directly via a Route resource using this API will override header configuration for a header of the same name applied via spec.httpHeaders.actions on the IngressController or route annotation. Note: This field cannot be used if your route uses TLS passthrough.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.route.v1.RouteHTTPHeader"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"response":{"description":"response is a list of HTTP response headers to modify. Currently, actions may define to either `Set` or `Delete` headers values. Actions defined here will modify the response headers of all requests made through a route. These actions are applied to a specific Route defined within a cluster i.e. connections made through a route. Route actions will be executed before IngressController actions for response headers. Actions are applied in sequence as defined in this list. A maximum of 20 response header actions may be configured. You can use this field to specify HTTP response headers that should be set or deleted when forwarding responses from your application to the client. Sample fetchers allowed are \"res.hdr\" and \"ssl_c_der\". Converters allowed are \"lower\" and \"base64\". Example header values: \"%[res.hdr(X-target),lower]\", \"%{+Q}[ssl_c_der,base64]\". Note: This field cannot be used if your route uses TLS passthrough.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.route.v1.RouteHTTPHeader"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"com.github.openshift.api.route.v1.RouteHTTPHeaders":{"description":"RouteHTTPHeaders defines policy for HTTP headers.","type":"object","properties":{"actions":{"description":"actions specifies options for modifying headers and their values. Note that this option only applies to cleartext HTTP connections and to secure HTTP connections for which the ingress controller terminates encryption (that is, edge-terminated or reencrypt connections).  Headers cannot be modified for TLS passthrough connections. Setting the HSTS (`Strict-Transport-Security`) header is not supported via actions. `Strict-Transport-Security` may only be configured using the \"haproxy.router.openshift.io/hsts_header\" route annotation, and only in accordance with the policy specified in Ingress.Spec.RequiredHSTSPolicies. In case of HTTP request headers, the actions specified in spec.httpHeaders.actions on the Route will be executed after the actions specified in the IngressController's spec.httpHeaders.actions field. In case of HTTP response headers, the actions specified in spec.httpHeaders.actions on the IngressController will be executed after the actions specified in the Route's spec.httpHeaders.actions field. The headers set via this API will not appear in access logs. Any actions defined here are applied after any actions related to the following other fields: cache-control, spec.clientTLS, spec.httpHeaders.forwardedHeaderPolicy, spec.httpHeaders.uniqueId, and spec.httpHeaders.headerNameCaseAdjustments. The following header names are reserved and may not be modified via this API: Strict-Transport-Security, Proxy, Cookie, Set-Cookie. Note that the total size of all net added headers *after* interpolating dynamic values must not exceed the value of spec.tuningOptions.headerBufferMaxRewriteBytes on the IngressController. Please refer to the documentation for that API field for more details.","$ref":"#/definitions/com.github.openshift.api.route.v1.RouteHTTPHeaderActions"}}},"com.github.openshift.api.route.v1.RouteIngress":{"description":"RouteIngress holds information about the places where a route is exposed.","type":"object","properties":{"conditions":{"description":"Conditions is the state of the route, may be empty.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.route.v1.RouteIngressCondition"}},"host":{"description":"Host is the host string under which the route is exposed; this value is required","type":"string"},"routerCanonicalHostname":{"description":"CanonicalHostname is the external host name for the router that can be used as a CNAME for the host requested for this route. This value is optional and may not be set in all cases.","type":"string"},"routerName":{"description":"Name is a name chosen by the router to identify itself; this value is required","type":"string"},"wildcardPolicy":{"description":"Wildcard policy is the wildcard policy that was allowed where this route is exposed.","type":"string"}}},"com.github.openshift.api.route.v1.RouteIngressCondition":{"description":"RouteIngressCondition contains details for the current condition of this route on a particular router.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"RFC 3339 date and time when this condition last transitioned","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Human readable message indicating details about last transition.","type":"string"},"reason":{"description":"(brief) reason for the condition's last transition, and is usually a machine and human readable constant","type":"string"},"status":{"description":"Status is the status of the condition. Can be True, False, Unknown.","type":"string"},"type":{"description":"Type is the type of the condition. Currently only Admitted or UnservableInFutureVersions.","type":"string"}}},"com.github.openshift.api.route.v1.RouteList":{"description":"RouteList is a collection of Routes.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of routes","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.route.v1.Route"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"RouteList","version":"v1"},{"group":"route.openshift.io","kind":"RouteList","version":"v1"}]},"com.github.openshift.api.route.v1.RoutePort":{"description":"RoutePort defines a port mapping from a router to an endpoint in the service endpoints.","type":"object","required":["targetPort"],"properties":{"targetPort":{"description":"The target port on pods selected by the service this route points to. If this is a string, it will be looked up as a named port in the target endpoints port list. Required","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"}}},"com.github.openshift.api.route.v1.RouteSetHTTPHeader":{"description":"RouteSetHTTPHeader specifies what value needs to be set on an HTTP header.","type":"object","required":["value"],"properties":{"value":{"description":"value specifies a header value. Dynamic values can be added. The value will be interpreted as an HAProxy format string as defined in http://cbonte.github.io/haproxy-dconv/2.6/configuration.html#8.2.6 and may use HAProxy's %[] syntax and otherwise must be a valid HTTP header value as defined in https://datatracker.ietf.org/doc/html/rfc7230#section-3.2. The value of this field must be no more than 16384 characters in length. Note that the total size of all net added headers *after* interpolating dynamic values must not exceed the value of spec.tuningOptions.headerBufferMaxRewriteBytes on the IngressController.","type":"string"}}},"com.github.openshift.api.route.v1.RouteSpec":{"description":"RouteSpec describes the hostname or path the route exposes, any security information, and one to four backends (services) the route points to. Requests are distributed among the backends depending on the weights assigned to each backend. When using roundrobin scheduling the portion of requests that go to each backend is the backend weight divided by the sum of all of the backend weights. When the backend has more than one endpoint the requests that end up on the backend are roundrobin distributed among the endpoints. Weights are between 0 and 256 with default 100. Weight 0 causes no requests to the backend. If all weights are zero the route will be considered to have no backends and return a standard 503 response.\n\nThe `tls` field is optional and allows specific certificates or behavior for the route. Routers typically configure a default certificate on a wildcard domain to terminate routes without explicit certificates, but custom hostnames usually must choose passthrough (send traffic directly to the backend via the TLS Server-Name- Indication field) or provide a certificate.","type":"object","required":["to"],"properties":{"alternateBackends":{"description":"alternateBackends allows up to 3 additional backends to be assigned to the route. Only the Service kind is allowed, and it will be defaulted to Service. Use the weight field in RouteTargetReference object to specify relative preference.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.route.v1.RouteTargetReference"}},"host":{"description":"host is an alias/DNS that points to the service. Optional. If not specified a route name will typically be automatically chosen. Must follow DNS952 subdomain conventions.","type":"string"},"httpHeaders":{"description":"httpHeaders defines policy for HTTP headers.","$ref":"#/definitions/com.github.openshift.api.route.v1.RouteHTTPHeaders"},"path":{"description":"path that the router watches for, to route traffic for to the service. Optional","type":"string"},"port":{"description":"If specified, the port to be used by the router. Most routers will use all endpoints exposed by the service by default - set this value to instruct routers which port to use.","$ref":"#/definitions/com.github.openshift.api.route.v1.RoutePort"},"subdomain":{"description":"subdomain is a DNS subdomain that is requested within the ingress controller's domain (as a subdomain). If host is set this field is ignored. An ingress controller may choose to ignore this suggested name, in which case the controller will report the assigned name in the status.ingress array or refuse to admit the route. If this value is set and the server does not support this field host will be populated automatically. Otherwise host is left empty. The field may have multiple parts separated by a dot, but not all ingress controllers may honor the request. This field may not be changed after creation except by a user with the update routes/custom-host permission.\n\nExample: subdomain `frontend` automatically receives the router subdomain `apps.mycluster.com` to have a full hostname `frontend.apps.mycluster.com`.","type":"string"},"tls":{"description":"The tls field provides the ability to configure certificates and termination for the route.","$ref":"#/definitions/com.github.openshift.api.route.v1.TLSConfig"},"to":{"description":"to is an object the route should use as the primary backend. Only the Service kind is allowed, and it will be defaulted to Service. If the weight field (0-256 default 100) is set to zero, no traffic will be sent to this backend.","$ref":"#/definitions/com.github.openshift.api.route.v1.RouteTargetReference"},"wildcardPolicy":{"description":"Wildcard policy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}},"com.github.openshift.api.route.v1.RouteStatus":{"description":"RouteStatus provides relevant info about the status of a route, including which routers acknowledge it.","type":"object","properties":{"ingress":{"description":"ingress describes the places where the route may be exposed. The list of ingress points may contain duplicate Host or RouterName values. Routes are considered live once they are `Ready`","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.route.v1.RouteIngress"}}}},"com.github.openshift.api.route.v1.RouteTargetReference":{"description":"RouteTargetReference specifies the target that resolve into endpoints. Only the 'Service' kind is allowed. Use 'weight' field to emphasize one over others.","type":"object","required":["kind","name"],"properties":{"kind":{"description":"The kind of target that the route is referring to. Currently, only 'Service' is allowed","type":"string"},"name":{"description":"name of the service/target that is being referred to. e.g. name of the service","type":"string"},"weight":{"description":"weight as an integer between 0 and 256, default 100, that specifies the target's relative weight against other target reference objects. 0 suppresses requests to this backend.","type":"integer","format":"int32"}}},"com.github.openshift.api.route.v1.TLSConfig":{"description":"TLSConfig defines config used to secure a route and provide termination","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate chain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt termination this file should be provided in order to have routers use it for health checks on the secure connection. If this field is not specified, the router may provide its own destination CA and perform hostname validation using the short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically verify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference. This should be a single serving certificate, not a certificate chain. Do not include a CA certificate. The secret referenced should be present in the same namespace as that of the Route. Forbidden when `certificate` is set.","$ref":"#/definitions/com.github.openshift.api.route.v1.LocalObjectReference"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While each router may make its own decisions on which ports to expose, this is normally port 80.\n\nIf a route does not specify insecureEdgeTerminationPolicy, then the default behavior is \"None\".\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only).\n\n* None - no traffic is allowed on the insecure port (default).\n\n* Redirect - clients are redirected to the secure port.","type":"string"},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default) * passthrough - Traffic is sent straight to the destination without the router providing TLS termination * reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string"}}},"com.github.openshift.api.security.v1.PodSecurityPolicyReview":{"description":"PodSecurityPolicyReview checks which service accounts (not users, since that would be cluster-wide) can create the `PodTemplateSpec` in question.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"spec is the PodSecurityPolicy to check.","$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicyReviewSpec"},"status":{"description":"status represents the current information/status for the PodSecurityPolicyReview.","$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicyReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PodSecurityPolicyReview","version":"v1"},{"group":"security.openshift.io","kind":"PodSecurityPolicyReview","version":"v1"}]},"com.github.openshift.api.security.v1.PodSecurityPolicyReviewSpec":{"description":"PodSecurityPolicyReviewSpec defines specification for PodSecurityPolicyReview","type":"object","required":["template"],"properties":{"serviceAccountNames":{"description":"serviceAccountNames is an optional set of ServiceAccounts to run the check with. If serviceAccountNames is empty, the template.spec.serviceAccountName is used, unless it's empty, in which case \"default\" is used instead. If serviceAccountNames is specified, template.spec.serviceAccountName is ignored.","type":"array","items":{"type":"string"}},"template":{"description":"template is the PodTemplateSpec to check. The template.spec.serviceAccountName field is used if serviceAccountNames is empty, unless the template.spec.serviceAccountName is empty, in which case \"default\" is used. If serviceAccountNames is specified, template.spec.serviceAccountName is ignored.","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}}},"com.github.openshift.api.security.v1.PodSecurityPolicyReviewStatus":{"description":"PodSecurityPolicyReviewStatus represents the status of PodSecurityPolicyReview.","type":"object","required":["allowedServiceAccounts"],"properties":{"allowedServiceAccounts":{"description":"allowedServiceAccounts returns the list of service accounts in *this* namespace that have the power to create the PodTemplateSpec.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.security.v1.ServiceAccountPodSecurityPolicyReviewStatus"}}}},"com.github.openshift.api.security.v1.PodSecurityPolicySelfSubjectReview":{"description":"PodSecurityPolicySelfSubjectReview checks whether this user/SA tuple can create the PodTemplateSpec\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"spec defines specification the PodSecurityPolicySelfSubjectReview.","$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySelfSubjectReviewSpec"},"status":{"description":"status represents the current information/status for the PodSecurityPolicySelfSubjectReview.","$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySubjectReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PodSecurityPolicySelfSubjectReview","version":"v1"},{"group":"security.openshift.io","kind":"PodSecurityPolicySelfSubjectReview","version":"v1"}]},"com.github.openshift.api.security.v1.PodSecurityPolicySelfSubjectReviewSpec":{"description":"PodSecurityPolicySelfSubjectReviewSpec contains specification for PodSecurityPolicySelfSubjectReview.","type":"object","required":["template"],"properties":{"template":{"description":"template is the PodTemplateSpec to check.","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}}},"com.github.openshift.api.security.v1.PodSecurityPolicySubjectReview":{"description":"PodSecurityPolicySubjectReview checks whether a particular user/SA tuple can create the PodTemplateSpec.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"spec defines specification for the PodSecurityPolicySubjectReview.","$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySubjectReviewSpec"},"status":{"description":"status represents the current information/status for the PodSecurityPolicySubjectReview.","$ref":"#/definitions/com.github.openshift.api.security.v1.PodSecurityPolicySubjectReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PodSecurityPolicySubjectReview","version":"v1"},{"group":"security.openshift.io","kind":"PodSecurityPolicySubjectReview","version":"v1"}]},"com.github.openshift.api.security.v1.PodSecurityPolicySubjectReviewSpec":{"description":"PodSecurityPolicySubjectReviewSpec defines specification for PodSecurityPolicySubjectReview","type":"object","required":["template"],"properties":{"groups":{"description":"groups is the groups you're testing for.","type":"array","items":{"type":"string"}},"template":{"description":"template is the PodTemplateSpec to check. If template.spec.serviceAccountName is empty it will not be defaulted. If its non-empty, it will be checked.","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"},"user":{"description":"user is the user you're testing for. If you specify \"user\" but not \"group\", then is it interpreted as \"What if user were not a member of any groups. If user and groups are empty, then the check is performed using *only* the serviceAccountName in the template.","type":"string"}}},"com.github.openshift.api.security.v1.PodSecurityPolicySubjectReviewStatus":{"description":"PodSecurityPolicySubjectReviewStatus contains information/status for PodSecurityPolicySubjectReview.","type":"object","properties":{"allowedBy":{"description":"allowedBy is a reference to the rule that allows the PodTemplateSpec. A rule can be a SecurityContextConstraint or a PodSecurityPolicy A `nil`, indicates that it was denied.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available.","type":"string"},"template":{"description":"template is the PodTemplateSpec after the defaulting is applied.","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}}},"com.github.openshift.api.security.v1.RangeAllocation":{"description":"RangeAllocation is used so we can easily expose a RangeAllocation typed for security group\n\nCompatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.","type":"object","required":["range","data"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"data":{"description":"data is a byte array representing the serialized state of a range allocation.  It is a bitmap with each bit set to one to represent a range is taken.","type":"string","format":"byte"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"range":{"description":"range is a string representing a unique label for a range of uids, \"1000000000-2000000000/10000\".","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"security.openshift.io","kind":"RangeAllocation","version":"v1"}]},"com.github.openshift.api.security.v1.RangeAllocationList":{"description":"RangeAllocationList is a list of RangeAllocations objects\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of RangeAllocations.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.security.v1.RangeAllocation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"security.openshift.io","kind":"RangeAllocationList","version":"v1"}]},"com.github.openshift.api.security.v1.ServiceAccountPodSecurityPolicyReviewStatus":{"description":"ServiceAccountPodSecurityPolicyReviewStatus represents ServiceAccount name and related review status","type":"object","required":["name"],"properties":{"allowedBy":{"description":"allowedBy is a reference to the rule that allows the PodTemplateSpec. A rule can be a SecurityContextConstraint or a PodSecurityPolicy A `nil`, indicates that it was denied.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"name":{"description":"name contains the allowed and the denied ServiceAccount name","type":"string"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available.","type":"string"},"template":{"description":"template is the PodTemplateSpec after the defaulting is applied.","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}}},"com.github.openshift.api.template.v1.BrokerTemplateInstance":{"description":"BrokerTemplateInstance holds the service broker-related state associated with a TemplateInstance.  BrokerTemplateInstance is part of an experimental API.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"spec describes the state of this BrokerTemplateInstance.","$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstanceSpec"}},"x-kubernetes-group-version-kind":[{"group":"template.openshift.io","kind":"BrokerTemplateInstance","version":"v1"}]},"com.github.openshift.api.template.v1.BrokerTemplateInstanceList":{"description":"BrokerTemplateInstanceList is a list of BrokerTemplateInstance objects.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of BrokerTemplateInstances","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.template.v1.BrokerTemplateInstance"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"template.openshift.io","kind":"BrokerTemplateInstanceList","version":"v1"}]},"com.github.openshift.api.template.v1.BrokerTemplateInstanceSpec":{"description":"BrokerTemplateInstanceSpec describes the state of a BrokerTemplateInstance.","type":"object","required":["templateInstance","secret"],"properties":{"bindingIDs":{"description":"bindingids is a list of 'binding_id's provided during successive bind calls to the template service broker.","type":"array","items":{"type":"string"}},"secret":{"description":"secret is a reference to a Secret object residing in a namespace, containing the necessary template parameters.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"templateInstance":{"description":"templateinstance is a reference to a TemplateInstance object residing in a namespace.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}}},"com.github.openshift.api.template.v1.Parameter":{"description":"Parameter defines a name/value variable that is to be processed during the Template to Config transformation.","type":"object","required":["name"],"properties":{"description":{"description":"Description of a parameter. Optional.","type":"string"},"displayName":{"description":"Optional: The name that will show in UI instead of parameter 'Name'","type":"string"},"from":{"description":"From is an input value for the generator. Optional.","type":"string"},"generate":{"description":"generate specifies the generator to be used to generate random string from an input value specified by From field. The result string is stored into Value field. If empty, no generator is being used, leaving the result Value untouched. Optional.\n\nThe only supported generator is \"expression\", which accepts a \"from\" value in the form of a simple regular expression containing the range expression \"[a-zA-Z0-9]\", and the length expression \"a{length}\".\n\nExamples:\n\nfrom             | value ----------------------------- \"test[0-9]{1}x\"  | \"test7x\" \"[0-1]{8}\"       | \"01001100\" \"0x[A-F0-9]{4}\"  | \"0xB3AF\" \"[a-zA-Z0-9]{8}\" | \"hW4yQU5i\"","type":"string"},"name":{"description":"Name must be set and it can be referenced in Template Items using ${PARAMETER_NAME}. Required.","type":"string"},"required":{"description":"Optional: Indicates the parameter must have a value.  Defaults to false.","type":"boolean"},"value":{"description":"Value holds the Parameter data. If specified, the generator will be ignored. The value replaces all occurrences of the Parameter ${Name} expression during the Template to Config transformation. Optional.","type":"string"}}},"com.github.openshift.api.template.v1.Template":{"description":"Template contains the inputs needed to produce a Config.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["objects"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"labels":{"description":"labels is a optional set of labels that are applied to every object during the Template to Config transformation.","type":"object","additionalProperties":{"type":"string"}},"message":{"description":"message is an optional instructional message that will be displayed when this template is instantiated. This field should inform the user how to utilize the newly created resources. Parameter substitution will be performed on the message before being displayed so that generated credentials and other parameters can be included in the output.","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"objects":{"description":"objects is an array of resources to include in this template. If a namespace value is hardcoded in the object, it will be removed during template instantiation, however if the namespace value is, or contains, a ${PARAMETER_REFERENCE}, the resolved value after parameter substitution will be respected and the object will be created in that namespace.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"}},"parameters":{"description":"parameters is an optional array of Parameters used during the Template to Config transformation.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Parameter"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ProcessedTemplate","version":"v1"},{"group":"","kind":"Template","version":"v1"},{"group":"","kind":"TemplateConfig","version":"v1"},{"group":"template.openshift.io","kind":"Template","version":"v1"}]},"com.github.openshift.api.template.v1.TemplateInstance":{"description":"TemplateInstance requests and records the instantiation of a Template. TemplateInstance is part of an experimental API.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"spec describes the desired state of this TemplateInstance.","$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstanceSpec"},"status":{"description":"status describes the current state of this TemplateInstance.","$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstanceStatus"}},"x-kubernetes-group-version-kind":[{"group":"template.openshift.io","kind":"TemplateInstance","version":"v1"}]},"com.github.openshift.api.template.v1.TemplateInstanceCondition":{"description":"TemplateInstanceCondition contains condition information for a TemplateInstance.","type":"object","required":["type","status","lastTransitionTime","reason","message"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time a condition status transitioned from one state to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Message is a human readable description of the details of the last transition, complementing reason.","type":"string"},"reason":{"description":"Reason is a brief machine readable explanation for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False or Unknown.","type":"string"},"type":{"description":"Type of the condition, currently Ready or InstantiateFailure.","type":"string"}}},"com.github.openshift.api.template.v1.TemplateInstanceList":{"description":"TemplateInstanceList is a list of TemplateInstance objects.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of Templateinstances","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstance"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"template.openshift.io","kind":"TemplateInstanceList","version":"v1"}]},"com.github.openshift.api.template.v1.TemplateInstanceObject":{"description":"TemplateInstanceObject references an object created by a TemplateInstance.","type":"object","properties":{"ref":{"description":"ref is a reference to the created object.  When used under .spec, only name and namespace are used; these can contain references to parameters which will be substituted following the usual rules.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}}},"com.github.openshift.api.template.v1.TemplateInstanceRequester":{"description":"TemplateInstanceRequester holds the identity of an agent requesting a template instantiation.","type":"object","properties":{"extra":{"description":"extra holds additional information provided by the authenticator.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"groups":{"description":"groups represent the groups this user is a part of.","type":"array","items":{"type":"string"}},"uid":{"description":"uid is a unique value that identifies this user across time; if this user is deleted and another user by the same name is added, they will have different UIDs.","type":"string"},"username":{"description":"username uniquely identifies this user among all active users.","type":"string"}}},"com.github.openshift.api.template.v1.TemplateInstanceSpec":{"description":"TemplateInstanceSpec describes the desired state of a TemplateInstance.","type":"object","required":["template"],"properties":{"requester":{"description":"requester holds the identity of the agent requesting the template instantiation.","$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstanceRequester"},"secret":{"description":"secret is a reference to a Secret object containing the necessary template parameters.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"template":{"description":"template is a full copy of the template for instantiation.","$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}}},"com.github.openshift.api.template.v1.TemplateInstanceStatus":{"description":"TemplateInstanceStatus describes the current state of a TemplateInstance.","type":"object","properties":{"conditions":{"description":"conditions represent the latest available observations of a TemplateInstance's current state.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstanceCondition"}},"objects":{"description":"Objects references the objects created by the TemplateInstance.","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.template.v1.TemplateInstanceObject"}}}},"com.github.openshift.api.template.v1.TemplateList":{"description":"TemplateList is a list of Template objects.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of templates","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.template.v1.Template"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"TemplateList","version":"v1"},{"group":"template.openshift.io","kind":"TemplateList","version":"v1"}]},"com.github.openshift.api.user.v1.Group":{"description":"Group represents a referenceable set of Users\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["users"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"users":{"description":"Users is the list of users in this group.","type":"array","items":{"type":"string"}}},"x-kubernetes-group-version-kind":[{"group":"user.openshift.io","kind":"Group","version":"v1"}]},"com.github.openshift.api.user.v1.GroupList":{"description":"GroupList is a collection of Groups\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of groups","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Group"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"user.openshift.io","kind":"GroupList","version":"v1"}]},"com.github.openshift.api.user.v1.Identity":{"description":"Identity records a successful authentication of a user with an identity provider. The information about the source of authentication is stored on the identity, and the identity is then associated with a single user object. Multiple identities can reference a single user. Information retrieved from the authentication provider is stored in the extra field using a schema determined by the provider.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["providerName","providerUserName","user"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"extra":{"description":"Extra holds extra information about this identity","type":"object","additionalProperties":{"type":"string"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"providerName":{"description":"ProviderName is the source of identity information","type":"string"},"providerUserName":{"description":"ProviderUserName uniquely represents this identity in the scope of the provider","type":"string"},"user":{"description":"User is a reference to the user this identity is associated with Both Name and UID must be set","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}},"x-kubernetes-group-version-kind":[{"group":"user.openshift.io","kind":"Identity","version":"v1"}]},"com.github.openshift.api.user.v1.IdentityList":{"description":"IdentityList is a collection of Identities\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of identities","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.user.v1.Identity"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"user.openshift.io","kind":"IdentityList","version":"v1"}]},"com.github.openshift.api.user.v1.User":{"description":"Upon log in, every user of the system receives a User and Identity resource. Administrators may directly manipulate the attributes of the users for their own tracking, or set groups via the API. The user name is unique and is chosen based on the value provided by the identity provider - if a user already exists with the incoming name, the user name may have a number appended to it depending on the configuration of the system.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["groups"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"fullName":{"description":"FullName is the full name of user","type":"string"},"groups":{"description":"Groups specifies group names this user is a member of. This field is deprecated and will be removed in a future release. Instead, create a Group object containing the name of this User.","type":"array","items":{"type":"string"}},"identities":{"description":"Identities are the identities associated with this user","type":"array","items":{"type":"string"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-group-version-kind":[{"group":"user.openshift.io","kind":"User","version":"v1"}]},"com.github.openshift.api.user.v1.UserIdentityMapping":{"description":"UserIdentityMapping maps a user to an identity\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"identity":{"description":"Identity is a reference to an identity","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"user":{"description":"User is a reference to a user","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}},"x-kubernetes-group-version-kind":[{"group":"user.openshift.io","kind":"UserIdentityMapping","version":"v1"}]},"com.github.openshift.api.user.v1.UserList":{"description":"UserList is a collection of Users\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of users","type":"array","items":{"$ref":"#/definitions/com.github.openshift.api.user.v1.User"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"user.openshift.io","kind":"UserList","version":"v1"}]},"com.github.operator-framework.api.pkg.lib.version.OperatorVersion":{"description":"OperatorVersion is a wrapper around semver.Version which supports correct marshaling to YAML and JSON.","type":"string","format":"semver"},"com.github.operator-framework.api.pkg.operators.v1alpha1.APIResourceReference":{"description":"APIResourceReference is a reference to a Kubernetes resource type that the referrer utilizes.","type":"object","required":["name","kind","version"],"properties":{"kind":{"description":"Kind of the referenced resource type.","type":"string"},"name":{"description":"Plural name of the referenced resource type (CustomResourceDefinition.Spec.Names[].Plural). Empty string if the referenced resource type is not a custom resource.","type":"string"},"version":{"description":"API Version of the referenced resource type.","type":"string"}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.APIServiceDefinitions":{"description":"APIServiceDefinitions declares all of the extension apis managed or required by an operator being ran by ClusterServiceVersion.","type":"object","properties":{"owned":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.APIServiceDescription"}},"required":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.APIServiceDescription"}}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.APIServiceDescription":{"description":"APIServiceDescription provides details to OLM about apis provided via aggregation","type":"object","required":["name","group","version","kind"],"properties":{"actionDescriptors":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.ActionDescriptor"}},"containerPort":{"type":"integer","format":"int32"},"deploymentName":{"type":"string"},"description":{"type":"string"},"displayName":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"resources":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.APIResourceReference"}},"specDescriptors":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.SpecDescriptor"}},"statusDescriptors":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.StatusDescriptor"}},"version":{"type":"string"}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.ActionDescriptor":{"description":"ActionDescriptor describes a declarative action that can be performed on a custom resource instance","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.CRDDescription":{"description":"CRDDescription provides details to OLM about the CRDs","type":"object","required":["name","version","kind"],"properties":{"actionDescriptors":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.ActionDescriptor"}},"description":{"type":"string"},"displayName":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"resources":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.APIResourceReference"}},"specDescriptors":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.SpecDescriptor"}},"statusDescriptors":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.StatusDescriptor"}},"version":{"type":"string"}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.CustomResourceDefinitions":{"description":"CustomResourceDefinitions declares all of the CRDs managed or required by an operator being ran by ClusterServiceVersion.\n\nIf the CRD is present in the Owned list, it is implicitly required.","type":"object","properties":{"owned":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.CRDDescription"}},"required":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.CRDDescription"}}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.InstallMode":{"description":"InstallMode associates an InstallModeType with a flag representing if the CSV supports it","type":"object","required":["type","supported"],"properties":{"supported":{"type":"boolean"},"type":{"type":"string"}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.SpecDescriptor":{"description":"SpecDescriptor describes a field in a spec block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}},"com.github.operator-framework.api.pkg.operators.v1alpha1.StatusDescriptor":{"description":"StatusDescriptor describes a field in a status block of a CRD so that OLM can consume it","type":"object","required":["path"],"properties":{"description":{"type":"string"},"displayName":{"type":"string"},"path":{"type":"string"},"value":{"type":"string","format":"byte"},"x-descriptors":{"type":"array","items":{"type":"string"}}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.AppLink":{"description":"AppLink defines a link to an application","type":"object","properties":{"name":{"type":"string"},"url":{"type":"string"}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.CSVDescription":{"description":"CSVDescription defines a description of a CSV","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-list-type":"map"},"apiservicedefinitions":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.APIServiceDefinitions"},"customresourcedefinitions":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.CustomResourceDefinitions"},"description":{"description":"LongDescription is the CSV's description","type":"string"},"displayName":{"description":"DisplayName is the CSV's display name","type":"string"},"icon":{"description":"Icon is the CSV's base64 encoded icon","type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Icon"},"x-kubernetes-list-type":"set"},"installModes":{"description":"InstallModes specify supported installation types","type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.api.pkg.operators.v1alpha1.InstallMode"},"x-kubernetes-list-type":"set"},"keywords":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"links":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.AppLink"},"x-kubernetes-list-type":"set"},"maintainers":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Maintainer"},"x-kubernetes-list-type":"set"},"maturity":{"type":"string"},"minKubeVersion":{"description":"Minimum Kubernetes version for operator installation","type":"string"},"nativeApis":{"type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.GroupVersionKind"}},"provider":{"description":"Provider is the CSV's provider","$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.AppLink"},"relatedImages":{"description":"List of related images","type":"array","items":{"type":"string"}},"version":{"description":"Version is the CSV's semantic version","$ref":"#/definitions/com.github.operator-framework.api.pkg.lib.version.OperatorVersion"}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.ChannelEntry":{"description":"ChannelEntry defines a member of a package channel.","type":"object","required":["name"],"properties":{"deprecation":{"description":"Deprecation is an optional field which contains information if the channel entry is deprecated.","$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Deprecation"},"name":{"description":"Name is the name of the bundle for this entry.","type":"string"},"version":{"description":"Version is the version of the bundle for this entry.","type":"string"}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Deprecation":{"description":"Deprecation conveys information regarding a deprecated resource.","type":"object","required":["message"],"properties":{"message":{"description":"Message is a human readable message describing the deprecation.","type":"string"}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Icon":{"description":"Icon defines a base64 encoded icon and media type","type":"object","properties":{"base64data":{"type":"string"},"mediatype":{"type":"string"}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Maintainer":{"description":"Maintainer defines a project maintainer","type":"object","properties":{"email":{"type":"string"},"name":{"type":"string"}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageChannel":{"description":"PackageChannel defines a single channel under a package, pointing to a version of that package.","type":"object","required":["name","currentCSV","entries"],"properties":{"currentCSV":{"description":"CurrentCSV defines a reference to the CSV holding the version of this package currently for the channel.","type":"string"},"currentCSVDesc":{"description":"CurrentCSVSpec holds the spec of the current CSV","$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.CSVDescription"},"deprecation":{"description":"Deprecation is an optional field which contains information if the channel is deprecated.","$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Deprecation"},"entries":{"description":"Entries lists all CSVs in the channel, with their upgrade edges.","type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.ChannelEntry"}},"name":{"description":"Name is the name of the channel, e.g. `alpha` or `stable`","type":"string"}}},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifest":{"description":"PackageManifest holds information about a package, which is a reference to one (or more) channels under a single package.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifestSpec"},"status":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifestStatus"}},"x-kubernetes-group-version-kind":[{"group":"packages.operators.coreos.com","kind":"PackageManifest","version":"v1"}]},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifestList":{"description":"PackageManifestList is a list of PackageManifest objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifest"},"x-kubernetes-list-type":"set"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"packages.operators.coreos.com","kind":"PackageManifestList","version":"v1"}]},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifestSpec":{"description":"PackageManifestSpec defines the desired state of PackageManifest","type":"object"},"com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageManifestStatus":{"description":"PackageManifestStatus represents the current status of the PackageManifest","type":"object","required":["catalogSource","catalogSourceDisplayName","catalogSourcePublisher","catalogSourceNamespace","packageName","channels","defaultChannel"],"properties":{"catalogSource":{"description":"CatalogSource is the name of the CatalogSource this package belongs to","type":"string"},"catalogSourceDisplayName":{"type":"string"},"catalogSourceNamespace":{"description":"CatalogSourceNamespace is the namespace of the owning CatalogSource","type":"string"},"catalogSourcePublisher":{"type":"string"},"channels":{"description":"Channels are the declared channels for the package, ala `stable` or `alpha`.","type":"array","items":{"$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.PackageChannel"},"x-kubernetes-list-type":"set"},"defaultChannel":{"description":"DefaultChannel is, if specified, the name of the default channel for the package. The default channel will be installed if no other channel is explicitly given. If the package has a single channel, then that channel is implicitly the default.","type":"string"},"deprecation":{"description":"Deprecation is an optional field which contains information if the package is deprecated.","$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.Deprecation"},"packageName":{"description":"PackageName is the name of the overall package, ala `etcd`.","type":"string"},"provider":{"description":"Provider is the provider of the PackageManifest's default CSV","$ref":"#/definitions/com.github.operator-framework.operator-lifecycle-manager.pkg.package-server.apis.operators.v1.AppLink"}}},"com.grafana.tempo.v1alpha1.TempoMonolithic":{"description":"TempoMonolithic manages a Tempo deployment in monolithic mode.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TempoMonolithicSpec defines the desired state of TempoMonolithic.","type":"object","properties":{"affinity":{"description":"Affinity defines the Affinity rules for scheduling pods.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"extraConfig":{"description":"ExtraConfig defines any extra (overlay) configuration of components.","type":"object","properties":{"tempo":{"description":"Tempo defines any extra Tempo configuration, which will be merged with the operator's generated Tempo configuration","x-kubernetes-preserve-unknown-fields":true}}},"ingestion":{"description":"Ingestion defines the trace ingestion configuration.","type":"object","properties":{"otlp":{"description":"OTLP defines the ingestion configuration for the OTLP protocol.","type":"object","properties":{"grpc":{"description":"GRPC defines the OTLP over gRPC configuration.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled defines if OTLP over gRPC is enabled.\nDefault: enabled.","type":"boolean"},"tls":{"description":"TLS defines the TLS configuration for OTLP/gRPC ingestion.\n\nOn OpenShift when operator config `servingCertsService`  and TLS is enabled  but no `certName` and `caName`\nare provided it will use OpenShift serving certificate service.","type":"object","properties":{"caName":{"description":"CA is the name of a ConfigMap containing a CA certificate (service-ca.crt).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"certName":{"description":"Cert is the name of a Secret containing a certificate (tls.crt) and private key (tls.key).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"enabled":{"description":"Enabled defines if TLS is enabled.","type":"boolean"},"minVersion":{"description":"MinVersion defines the minimum acceptable TLS version.","type":"string"}}}}},"http":{"description":"HTTP defines the OTLP over HTTP configuration.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled defines if OTLP over HTTP is enabled.\nDefault: enabled.","type":"boolean"},"tls":{"description":"TLS defines the TLS configuration for OTLP/HTTP ingestion.\n\nOn OpenShift when operator config `servingCertsService`  and TLS is enabled  but no `certName` and `caName`\nare provided it will use OpenShift serving certificate service.","type":"object","properties":{"caName":{"description":"CA is the name of a ConfigMap containing a CA certificate (service-ca.crt).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"certName":{"description":"Cert is the name of a Secret containing a certificate (tls.crt) and private key (tls.key).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"enabled":{"description":"Enabled defines if TLS is enabled.","type":"boolean"},"minVersion":{"description":"MinVersion defines the minimum acceptable TLS version.","type":"string"}}}}}}}}},"jaegerui":{"description":"JaegerUI defines the Jaeger UI configuration.","type":"object","required":["enabled"],"properties":{"authentication":{"description":"Authentication defines the options for the oauth proxy used to protect jaeger UI","type":"object","properties":{"enabled":{"description":"Defines if the authentication will be enabled for jaeger UI.","type":"boolean"},"resources":{"description":"Resources defines the compute resource requirements of the OAuth Proxy container.\nThe OAuth Proxy performs authentication and authorization of incoming requests to Jaeger UI when multi-tenancy is disabled.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"sar":{"description":"SAR defines the SAR to be used in the oauth-proxy\ndefault is \"{\"namespace\": \"<tempo_stack_namespace>\", \"resource\": \"pods\", \"verb\": \"get\"}","type":"string"}}},"enabled":{"description":"Enabled defines if the Jaeger UI component should be created.","type":"boolean"},"findTracesConcurrentRequests":{"description":"FindTracesConcurrentRequests defines how many concurrent request a single trace search can submit (defaults 2).\nThe search for traces in Jaeger submits limit+1 requests. First requests finds trace IDs and then it fetches\nentire traces by ID. This property allows Jaeger to fetch traces in parallel.\nNote that by default a single Tempo querier can process 20 concurrent search jobs.\nIncreasing this property might require scaling up querier instances, especially on error \"job queue full\"\nSee also Tempo's extraConfig:\nquerier.max_concurrent_queries (20 default)\nquery_frontend.max_outstanding_per_tenant: (2000 default). Increase if the query-frontend returns 429","type":"integer"},"ingress":{"description":"Ingress defines the Ingress configuration for the Jaeger UI.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations defines the annotations of the Ingress object.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled defines if an Ingress object should be created for Jaeger UI.","type":"boolean"},"host":{"description":"Host defines the hostname of the Ingress object.","type":"string"},"ingressClassName":{"description":"IngressClassName defines the name of an IngressClass cluster resource.\nDefines which ingress controller serves this ingress resource.","type":"string"}}},"resources":{"description":"Resources defines the compute resource requirements of the Jaeger UI container.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"route":{"description":"Route defines the OpenShift route configuration for the Jaeger UI.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations defines the annotations of the Route object.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled defines if a Route object should be created for Jaeger UI.","type":"boolean"},"host":{"description":"Host defines the hostname of the Route object.","type":"string"},"termination":{"description":"Termination specifies the termination type.","type":"string","enum":["insecure","edge","passthrough","reencrypt"]}}},"servicesQueryDuration":{"description":"ServicesQueryDuration defines how long the services will be available in the services list","type":"string"},"tempoQueryResources":{"description":"Resources defines the compute resource requirements of the Tempo Query container.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"management":{"description":"ManagementState defines whether this instance is managed by the operator or self-managed.\nDefault: Managed.","type":"string","enum":["Managed","Unmanaged"]},"multitenancy":{"description":"Multitenancy defines the multi-tenancy configuration.","type":"object","required":["enabled","mode"],"properties":{"authentication":{"description":"Authentication defines the tempo-gateway component authentication configuration spec per tenant.","type":"array","items":{"description":"AuthenticationSpec defines the oidc configuration per tenant for tempo Gateway component.","type":"object","required":["tenantId","tenantName"],"properties":{"oidc":{"description":"OIDC defines the spec for the OIDC tenant's authentication.","type":"object","properties":{"groupClaim":{"description":"Group claim field from ID Token","type":"string"},"issuerURL":{"description":"IssuerURL defines the URL for issuer.","type":"string"},"redirectURL":{"description":"RedirectURL defines the URL for redirect.","type":"string"},"secret":{"description":"Secret defines the spec for the clientID, clientSecret and issuerCAPath for tenant's authentication.","type":"object","properties":{"name":{"description":"Name of a secret in the namespace configured for tenant secrets.","type":"string"}}},"usernameClaim":{"description":"User claim field from ID Token","type":"string"}}},"tenantId":{"description":"TenantID defines a universally unique identifier of the tenant.\nUnlike the tenantName, which must be unique at a given time, the tenantId must be unique over the entire lifetime of the Tempo deployment.\nTempo uses this ID to prefix objects in the object storage.","type":"string"},"tenantName":{"description":"TenantName defines a human readable, unique name of the tenant.\nThe value of this field must be specified in the X-Scope-OrgID header and in the resources field of a ClusterRole to identify the tenant.","type":"string"}}}},"authorization":{"description":"Authorization defines the tempo-gateway component authorization configuration spec per tenant.","type":"object","properties":{"roleBindings":{"description":"RoleBindings defines configuration to bind a set of roles to a set of subjects.","type":"array","items":{"description":"RoleBindingsSpec binds a set of roles to a set of subjects.","type":"object","required":["name","roles","subjects"],"properties":{"name":{"type":"string"},"roles":{"type":"array","items":{"type":"string"}},"subjects":{"type":"array","items":{"description":"Subject represents a subject that has been bound to a role.","type":"object","required":["kind","name"],"properties":{"kind":{"description":"SubjectKind is a kind of Tempo Gateway RBAC subject.","type":"string","enum":["user","group"]},"name":{"type":"string"}}}}}}},"roles":{"description":"Roles defines a set of permissions to interact with a tenant.","type":"array","items":{"description":"RoleSpec describes a set of permissions to interact with a tenant.","type":"object","required":["name","permissions","resources","tenants"],"properties":{"name":{"type":"string"},"permissions":{"type":"array","items":{"description":"PermissionType is a Tempo Gateway RBAC permission.","type":"string","enum":["read","write"]}},"resources":{"type":"array","items":{"type":"string"}},"tenants":{"type":"array","items":{"type":"string"}}}}}}},"enabled":{"description":"Enabled defines if multi-tenancy is enabled.","type":"boolean"},"mode":{"description":"Mode defines the multitenancy mode.","type":"string","enum":["static","openshift"]},"resources":{"description":"Resources defines the compute resource requirements of the gateway container.\nThe gateway performs authentication and authorization of incoming requests when multi-tenancy is enabled.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"nodeSelector":{"description":"NodeSelector defines which labels are required by a node to schedule the pod onto it.","type":"object","additionalProperties":{"type":"string"}},"observability":{"description":"Observability defines the observability configuration of the Tempo deployment.","type":"object","properties":{"grafana":{"description":"Grafana defines the Grafana configuration of the Tempo deployment.","type":"object","properties":{"dataSource":{"description":"DataSource defines the Grafana data source configuration.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled defines if a Grafana data source should be created for this Tempo deployment.","type":"boolean"},"instanceSelector":{"description":"InstanceSelector defines the Grafana instance where the data source should be created.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}},"metrics":{"description":"Metrics defines the metric configuration of the Tempo deployment.","type":"object","properties":{"prometheusRules":{"description":"ServiceMonitors defines the PrometheusRule configuration.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled defines if PrometheusRule objects should be created for this Tempo deployment.","type":"boolean"},"extraLabels":{"description":"ExtraLabels defines additional labels for the PrometheusRules objects.","type":"object","additionalProperties":{"type":"string"}}}},"serviceMonitors":{"description":"ServiceMonitors defines the ServiceMonitor configuration.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled defines if ServiceMonitor objects should be created for this Tempo deployment.","type":"boolean"},"extraLabels":{"description":"ExtraLabels defines additional labels for the ServiceMonitor objects.","type":"object","additionalProperties":{"type":"string"}}}}}}}},"podSecurityContext":{"description":"PodSecurityContext defines the security context that will be applied to the Tempo Pod.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"query":{"description":"Query defines query configuration.","type":"object","properties":{"mcpServer":{"description":"MCPServer defines the MCP (Model Context Protocol) server configuration.\nThe MCP server allows AI assistants to query tracing data.","type":"object","properties":{"enabled":{"description":"Enabled defines if the MCP (Model Context Protocol) server should be enabled.","type":"boolean"}}},"rbac":{"description":"RBAC defines query RBAC options.\nThis option can be used only with multi-tenancy.","type":"object","properties":{"enabled":{"description":"Enabled defines if the query RBAC should be enabled.","type":"boolean"}}}}},"resources":{"description":"Resources defines the compute resource requirements of the Tempo container.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"serviceAccount":{"description":"ServiceAccount defines the Service Account to use for all Tempo components.","type":"string"},"storage":{"description":"Storage defines the storage configuration.","type":"object","required":["traces"],"properties":{"traces":{"description":"Traces defines the storage configuration for traces.","type":"object","required":["backend"],"properties":{"azure":{"description":"Azure defines the configuration for Azure Storage.","type":"object","required":["secret"],"properties":{"secret":{"description":"Secret is the name of a Secret containing credentials for accessing object storage.\nIt needs to be in the same namespace as the TempoMonolithic custom resource.","type":"string","minLength":1}}},"backend":{"description":"Backend defines the backend for storing traces.\nDefault: memory.","type":"string","enum":["memory","pv","azure","gcs","s3"]},"gcs":{"description":"GCP defines the configuration for Google Cloud Storage.","type":"object","required":["secret"],"properties":{"secret":{"description":"Secret is the name of a Secret containing credentials for accessing object storage.\nIt needs to be in the same namespace as the TempoMonolithic custom resource.","type":"string","minLength":1}}},"s3":{"description":"S3 defines the configuration for Amazon S3.","type":"object","required":["secret"],"properties":{"credentialMode":{"description":"CredentialMode can be used to set the desired credential mode for authenticating with the object storage.\nIf this is not set, then the operator tries to infer the credential mode from the provided secret and its\nown configuration.","type":"string","enum":["static","token","token-cco"]},"secret":{"description":"Secret is the name of a Secret containing credentials for accessing object storage.\nIt needs to be in the same namespace as the TempoMonolithic custom resource.","type":"string","minLength":1},"tls":{"description":"TLS defines the TLS configuration for Amazon S3.","type":"object","properties":{"caName":{"description":"CA is the name of a ConfigMap containing a CA certificate (service-ca.crt).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"certName":{"description":"Cert is the name of a Secret containing a certificate (tls.crt) and private key (tls.key).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"enabled":{"description":"Enabled defines if TLS is enabled.","type":"boolean"},"minVersion":{"description":"MinVersion defines the minimum acceptable TLS version.","type":"string"}}}}},"size":{"description":"Size defines the size of the volume where traces are stored.\nFor in-memory storage, this defines the size of the tmpfs volume.\nFor persistent volume storage, this defines the size of the persistent volume.\nFor object storage, this defines the size of the persistent volume containing the Write-Ahead Log (WAL) of Tempo.\nDefault: 2Gi for memory, 10Gi for all other backends.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"storageClassName":{"description":"StorageClassName for the PVC used by the Tempo Pod. Defaults to nil (uses the default storage class in the cluster).","type":"string"}}}}},"timeout":{"description":"Timeout configures the same timeout on all components starting at ingress down to the ingestor/querier.\nTimeout configuration on a specific component has a higher precedence.\nDefault is 30 seconds.","type":"string"},"tolerations":{"description":"Tolerations defines the tolerations of a node to schedule the pod onto it.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"status":{"description":"TempoMonolithicStatus defines the observed state of TempoMonolithic.","type":"object","properties":{"components":{"description":"Components provides summary of all Tempo pod status, grouped per component.","type":"object","properties":{"tempo":{"description":"Tempo is a map of the pod status of the Tempo pods.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}}}},"conditions":{"description":"Conditions of the Tempo deployment health.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"operatorVersion":{"description":"Version of the Tempo Operator.","type":"string"},"tempoVersion":{"description":"Version of the managed Tempo instance.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"tempo.grafana.com","kind":"TempoMonolithic","version":"v1alpha1"}]},"com.grafana.tempo.v1alpha1.TempoMonolithicList":{"description":"TempoMonolithicList is a list of TempoMonolithic","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tempomonolithics. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoMonolithic"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tempo.grafana.com","kind":"TempoMonolithicList","version":"v1alpha1"}]},"com.grafana.tempo.v1alpha1.TempoStack":{"description":"TempoStack manages a Tempo deployment in microservices mode.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TempoStackSpec defines the desired state of TempoStack.","type":"object","required":["managementState","storage"],"properties":{"extraConfig":{"description":"ExtraConfigSpec defines extra configurations for tempo that will be merged with the operator generated, configurations defined here\nhas precedence and could override generated config.","type":"object","properties":{"tempo":{"description":"Tempo defines any extra Tempo configuration, which will be merged with the operator's generated Tempo configuration","x-kubernetes-preserve-unknown-fields":true}}},"hashRing":{"description":"HashRing defines the spec for the distributed hash ring configuration.","type":"object","properties":{"memberlist":{"description":"MemberList configuration spec","type":"object","properties":{"enableIPv6":{"description":"EnableIPv6 enables IPv6 support for the memberlist based hash ring.","type":"boolean"},"instanceAddrType":{"description":"InstanceAddrType defines the type of address to use to advertise to the ring.\nDefaults to the first address from any private network interfaces of the current pod.\nAlternatively the public pod IP can be used in case private networks (RFC 1918 and RFC 6598)\nare not available.","type":"string","enum":["default","podIP"]}}}}},"images":{"description":"Images defines the image for each container.","type":"object","properties":{"jaegerQuery":{"description":"JaegerQuery defines the tempo-query container image.","type":"string"},"oauthProxy":{"description":"OauthProxy defines the oauth proxy image used to protect the jaegerUI on single tenant.","type":"string"},"tempo":{"description":"Tempo defines the tempo container image.","type":"string"},"tempoGateway":{"description":"TempoGateway defines the tempo-gateway container image.","type":"string"},"tempoGatewayOpa":{"description":"TempoGatewayOpa defines the OPA sidecar container for TempoGateway.","type":"string"},"tempoQuery":{"description":"TempoQuery defines the tempo-query container image.","type":"string"}}},"limits":{"description":"LimitSpec is used to limit ingestion and querying rates.","type":"object","properties":{"global":{"description":"Global is used to define global rate limits.","type":"object","properties":{"ingestion":{"description":"Ingestion is used to define ingestion rate limits.","type":"object","properties":{"ingestionBurstSizeBytes":{"description":"IngestionBurstSizeBytes defines the burst size (bytes) used in ingestion.","type":"integer"},"ingestionRateLimitBytes":{"description":"IngestionRateLimitBytes defines the Per-user ingestion rate limit (bytes) used in ingestion.","type":"integer"},"maxBytesPerTrace":{"description":"MaxBytesPerTrace defines the maximum number of bytes of an acceptable trace.","type":"integer"},"maxTracesPerUser":{"description":"MaxTracesPerUser defines the maximum number of traces a user can send.","type":"integer"}}},"query":{"description":"Query is used to define query rate limits.","type":"object","properties":{"maxBytesPerTagValues":{"description":"MaxBytesPerTagValues defines the maximum size in bytes of a tag-values query.","type":"integer"},"maxSearchBytesPerTrace":{"description":"DEPRECATED. MaxSearchBytesPerTrace defines the maximum size of search data for a single\ntrace in bytes.\ndefault: `0` to disable.","type":"integer"},"maxSearchDuration":{"description":"MaxSearchDuration defines the maximum allowed time range for a search.\nIf this value is not set, then spec.search.maxDuration is used.","type":"string"}}}}},"perTenant":{"description":"PerTenant is used to define rate limits per tenant.","type":"object","additionalProperties":{"description":"RateLimitSpec defines rate limits for Ingestion and Query components.","type":"object","properties":{"ingestion":{"description":"Ingestion is used to define ingestion rate limits.","type":"object","properties":{"ingestionBurstSizeBytes":{"description":"IngestionBurstSizeBytes defines the burst size (bytes) used in ingestion.","type":"integer"},"ingestionRateLimitBytes":{"description":"IngestionRateLimitBytes defines the Per-user ingestion rate limit (bytes) used in ingestion.","type":"integer"},"maxBytesPerTrace":{"description":"MaxBytesPerTrace defines the maximum number of bytes of an acceptable trace.","type":"integer"},"maxTracesPerUser":{"description":"MaxTracesPerUser defines the maximum number of traces a user can send.","type":"integer"}}},"query":{"description":"Query is used to define query rate limits.","type":"object","properties":{"maxBytesPerTagValues":{"description":"MaxBytesPerTagValues defines the maximum size in bytes of a tag-values query.","type":"integer"},"maxSearchBytesPerTrace":{"description":"DEPRECATED. MaxSearchBytesPerTrace defines the maximum size of search data for a single\ntrace in bytes.\ndefault: `0` to disable.","type":"integer"},"maxSearchDuration":{"description":"MaxSearchDuration defines the maximum allowed time range for a search.\nIf this value is not set, then spec.search.maxDuration is used.","type":"string"}}}}}}}},"managementState":{"description":"ManagementState defines if the CR should be managed by the operator or not.\nDefault is managed.","type":"string","enum":["Managed","Unmanaged"]},"networkPolicy":{"description":"NetworkPolicySpec defines how network policies are handled.","type":"object","properties":{"enabled":{"description":"Enabled determines whether network policies are generated for the operands.","type":"boolean"}}},"observability":{"description":"ObservabilitySpec defines how telemetry data gets handled.","type":"object","properties":{"grafana":{"description":"Grafana defines the Grafana configuration for operands.","type":"object","properties":{"createDatasource":{"description":"CreateDatasource specifies if a Grafana Datasource should be created for Tempo.","type":"boolean"},"instanceSelector":{"description":"InstanceSelector specifies the Grafana instance where the datasource should be created.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"metrics":{"description":"Metrics defines the metrics configuration for operands.","type":"object","properties":{"createPrometheusRules":{"description":"CreatePrometheusRules specifies if Prometheus rules for alerts should be created for Tempo components.","type":"boolean"},"createServiceMonitors":{"description":"CreateServiceMonitors specifies if ServiceMonitors should be created for Tempo components.","type":"boolean"},"extraPrometheusRuleLabels":{"description":"ExtraPrometheusRuleLabels defines additional labels for the PrometheusRule objects.","type":"object","additionalProperties":{"type":"string"}},"extraServiceMonitorLabels":{"description":"ExtraServiceMonitorLabels defines additional labels for the ServiceMonitor objects.","type":"object","additionalProperties":{"type":"string"}}}},"tracing":{"description":"Tracing defines a config for operands.","type":"object","properties":{"jaeger_agent_endpoint":{"description":"JaegerAgentEndpoint defines the jaeger endpoint data gets send to.\nDeprecated: in favor of OTLPHttpEndpoint.","type":"string"},"otlp_http_endpoint":{"description":"OTLPHttpEndpoint defines the OTLP/http endpoint data gets send to.\nFor example, \"http://localhost:4320\".\nThe default OTLP/http port 4318 collides with the distributor ports, therefore it is recommended to use a different port\non the sidecar injected to the Tempo (e.g. 4320).","type":"string"},"sampling_fraction":{"description":"SamplingFraction defines the sampling ratio. Valid values are 0 to 1.\nThe SamplingFraction has to be defined to enable tracing.","type":"string"}}}}},"replicationFactor":{"description":"The replication factor is a configuration setting that determines how many ingesters need to acknowledge the data from the distributors before accepting a span.","type":"integer"},"resources":{"description":"Resources defines resources configuration.","type":"object","properties":{"total":{"description":"The total amount of resources for Tempo instance.\nThe operator autonomously splits resources between deployed Tempo components.\nOnly limits are supported, the operator calculates requests automatically.\nSee http://github.com/grafana/tempo/issues/1540.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"retention":{"description":"Retention period defined by dataset.\nUser can specify how long data should be stored.","type":"object","properties":{"global":{"description":"Global is used to configure global retention.","type":"object","properties":{"traces":{"description":"Traces defines retention period. Supported parameter suffixes are \"s\", \"m\" and \"h\".\nexample: 336h\ndefault: value is 48h.","type":"string"}}},"perTenant":{"description":"PerTenant is used to configure retention per tenant.","type":"object","additionalProperties":{"description":"RetentionConfig defines how long data should be provided.","type":"object","properties":{"traces":{"description":"Traces defines retention period. Supported parameter suffixes are \"s\", \"m\" and \"h\".\nexample: 336h\ndefault: value is 48h.","type":"string"}}}}}},"search":{"description":"SearchSpec control the configuration for the search capabilities.","type":"object","properties":{"defaultResultLimit":{"description":"Limit used for search requests if none is set by the caller (default: 20)","type":"integer"},"maxDuration":{"description":"The maximum allowed time range for a search, default: 0s which means unlimited.","type":"string"},"maxResultLimit":{"description":"The maximum allowed value of the limit parameter on search requests. If the search request limit parameter\nexceeds the value configured here it will be set to the value configured here.\nThe default value of 0 disables this limit.","type":"integer"}}},"serviceAccount":{"description":"ServiceAccount defines the service account to use for all tempo components.","type":"string"},"size":{"description":"Size defines a predefined deployment size profile for this TempoStack.\nThe operator will apply pre-tested resource configurations based on the selected size.\nWhen not set, resources are determined by spec.resources.total or component-level overrides.\nSize also sets a default replication factor (1 for demo, 2 for others) if not explicitly specified.","type":"string","enum":["1x.demo","1x.pico","1x.extra-small","1x.small","1x.medium"]},"storage":{"description":"Storage defines the spec for the object storage endpoint to store traces.\nUser is required to create secret and supply it.","type":"object","required":["secret"],"properties":{"secret":{"description":"Secret for object storage authentication.\nName of a secret in the same namespace as the TempoStack custom resource.","type":"object","required":["name","type"],"properties":{"credentialMode":{"description":"CredentialMode can be used to set the desired credential mode for authenticating with the object storage.\nIf this is not set, then the operator tries to infer the credential mode from the provided secret and its\nown configuration.","type":"string","enum":["static","token","token-cco"]},"name":{"description":"Name of a secret in the namespace configured for object storage secrets.","type":"string","minLength":1},"type":{"description":"Type of object storage that should be used","type":"string","enum":["azure","gcs","s3"]}}},"tls":{"description":"TLS configuration for reaching the object storage endpoint.","type":"object","properties":{"caName":{"description":"CA is the name of a ConfigMap containing a CA certificate (service-ca.crt).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"certName":{"description":"Cert is the name of a Secret containing a certificate (tls.crt) and private key (tls.key).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"enabled":{"description":"Enabled defines if TLS is enabled.","type":"boolean"},"minVersion":{"description":"MinVersion defines the minimum acceptable TLS version.","type":"string"}}}}},"storageClassName":{"description":"StorageClassName for PVCs used by ingester. Defaults to nil (default storage class in the cluster).","type":"string"},"storageSize":{"description":"StorageSize for PVCs used by ingester. Defaults to 10Gi.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"template":{"description":"Template defines requirements for a set of tempo components.","type":"object","properties":{"compactor":{"description":"Compactor defines the tempo compactor component spec.","type":"object","properties":{"nodeSelector":{"description":"NodeSelector defines the simple form of the node-selection constraint.","type":"object","additionalProperties":{"type":"string"}},"podSecurityContext":{"description":"PodSecurityContext defines security context will be applied to all pods of this component.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"replicas":{"description":"Replicas defines the number of replicas to be created for this component.","type":"integer","format":"int32"},"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"tolerations":{"description":"Tolerations defines component-specific pod tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"distributor":{"description":"Distributor defines the distributor component spec.","type":"object","properties":{"component":{"description":"TempoComponentSpec is embedded to extend this definition with further options.\n\nCurrently, there is no way to inline this field.\nSee: https://github.com/golang/go/issues/6213","type":"object","properties":{"nodeSelector":{"description":"NodeSelector defines the simple form of the node-selection constraint.","type":"object","additionalProperties":{"type":"string"}},"podSecurityContext":{"description":"PodSecurityContext defines security context will be applied to all pods of this component.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"replicas":{"description":"Replicas defines the number of replicas to be created for this component.","type":"integer","format":"int32"},"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"tolerations":{"description":"Tolerations defines component-specific pod tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"tls":{"description":"TLS defines TLS configuration for distributor receivers\n\nIf openshift feature flag `servingCertsService` is enabled and TLS is enabled but no\ncertName or caName is specified, OpenShift service serving certificates will  be used.","type":"object","properties":{"caName":{"description":"CA is the name of a ConfigMap containing a CA certificate (service-ca.crt).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"certName":{"description":"Cert is the name of a Secret containing a certificate (tls.crt) and private key (tls.key).\nIt needs to be in the same namespace as the Tempo custom resource.","type":"string"},"enabled":{"description":"Enabled defines if TLS is enabled.","type":"boolean"},"minVersion":{"description":"MinVersion defines the minimum acceptable TLS version.","type":"string"}}}}},"gateway":{"description":"Gateway defines the tempo gateway spec.","type":"object","required":["enabled"],"properties":{"component":{"description":"TempoComponentSpec is embedded to extend this definition with further options.\n\nCurrently there is no way to inline this field.\nSee: https://github.com/golang/go/issues/6213","type":"object","properties":{"nodeSelector":{"description":"NodeSelector defines the simple form of the node-selection constraint.","type":"object","additionalProperties":{"type":"string"}},"podSecurityContext":{"description":"PodSecurityContext defines security context will be applied to all pods of this component.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"replicas":{"description":"Replicas defines the number of replicas to be created for this component.","type":"integer","format":"int32"},"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"tolerations":{"description":"Tolerations defines component-specific pod tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"enabled":{"type":"boolean"},"ingress":{"description":"Ingress defines gateway Ingress options.","type":"object","properties":{"annotations":{"description":"Annotations defines the annotations of the Ingress object.","type":"object","additionalProperties":{"type":"string"}},"host":{"description":"Host defines the hostname of the Ingress object.","type":"string"},"ingressClassName":{"description":"IngressClassName defines the name of an IngressClass cluster resource.\nDefines which ingress controller serves this ingress resource.","type":"string"},"route":{"description":"Route defines the options for the OpenShift route.","type":"object","properties":{"termination":{"description":"Termination defines the termination type.\nThe default is \"edge\".","type":"string","enum":["insecure","edge","passthrough","reencrypt"]}}},"type":{"description":"Type defines the type of Ingress for the Jaeger Query UI.\nCurrently ingress, route and none are supported.","type":"string","enum":["ingress","route",""]}}},"rbac":{"description":"RBAC defines query RBAC options.","type":"object","properties":{"enabled":{"description":"Enabled defines if the query RBAC should be enabled.","type":"boolean"}}}}},"ingester":{"description":"Ingester defines the ingester component spec.","type":"object","properties":{"nodeSelector":{"description":"NodeSelector defines the simple form of the node-selection constraint.","type":"object","additionalProperties":{"type":"string"}},"podSecurityContext":{"description":"PodSecurityContext defines security context will be applied to all pods of this component.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"replicas":{"description":"Replicas defines the number of replicas to be created for this component.","type":"integer","format":"int32"},"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"tolerations":{"description":"Tolerations defines component-specific pod tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"querier":{"description":"Querier defines the querier component spec.","type":"object","properties":{"nodeSelector":{"description":"NodeSelector defines the simple form of the node-selection constraint.","type":"object","additionalProperties":{"type":"string"}},"podSecurityContext":{"description":"PodSecurityContext defines security context will be applied to all pods of this component.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"replicas":{"description":"Replicas defines the number of replicas to be created for this component.","type":"integer","format":"int32"},"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"tolerations":{"description":"Tolerations defines component-specific pod tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"queryFrontend":{"description":"TempoQueryFrontendSpec defines the query frontend spec.","type":"object","properties":{"component":{"description":"TempoComponentSpec is embedded to extend this definition with further options.\n\nCurrently there is no way to inline this field.\nSee: https://github.com/golang/go/issues/6213","type":"object","properties":{"nodeSelector":{"description":"NodeSelector defines the simple form of the node-selection constraint.","type":"object","additionalProperties":{"type":"string"}},"podSecurityContext":{"description":"PodSecurityContext defines security context will be applied to all pods of this component.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"replicas":{"description":"Replicas defines the number of replicas to be created for this component.","type":"integer","format":"int32"},"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"tolerations":{"description":"Tolerations defines component-specific pod tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"jaegerQuery":{"description":"JaegerQuery defines options specific to the Jaeger Query component.","type":"object","properties":{"authentication":{"description":"Authentication defines the options for the oauth proxy used to protect jaeger UI","type":"object","properties":{"enabled":{"description":"Defines if the authentication will be enabled for jaeger UI.","type":"boolean"},"resources":{"description":"Resources defines the compute resource requirements of the OAuth Proxy container.\nThe OAuth Proxy performs authentication and authorization of incoming requests to Jaeger UI when multi-tenancy is disabled.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"sar":{"description":"SAR defines the SAR to be used in the oauth-proxy\ndefault is \"{\"namespace\": \"<tempo_stack_namespace>\", \"resource\": \"pods\", \"verb\": \"get\"}","type":"string"}}},"enabled":{"description":"Enabled defines if the Jaeger Query component should be created.","type":"boolean"},"findTracesConcurrentRequests":{"description":"FindTracesConcurrentRequests defines how many concurrent request a single trace search can submit (defaults querier.replicas*2).\nThe search for traces in Jaeger submits limit+1 requests. First requests finds trace IDs and then it fetches\nentire traces by ID. This property allows Jaeger to fetch traces in parallel.\nNote that by default a single Tempo querier can process 20 concurrent search jobs.\nIncreasing this property might require scaling up querier instances, especially on error \"job queue full\"\nSee also Tempo's extraConfig:\nquerier.max_concurrent_queries (20 default)\nquery_frontend.max_outstanding_per_tenant: (2000 default). Increase if the query-frontend returns 429","type":"integer"},"ingress":{"description":"Ingress defines the options for the Jaeger Query ingress.","type":"object","properties":{"annotations":{"description":"Annotations defines the annotations of the Ingress object.","type":"object","additionalProperties":{"type":"string"}},"host":{"description":"Host defines the hostname of the Ingress object.","type":"string"},"ingressClassName":{"description":"IngressClassName defines the name of an IngressClass cluster resource.\nDefines which ingress controller serves this ingress resource.","type":"string"},"route":{"description":"Route defines the options for the OpenShift route.","type":"object","properties":{"termination":{"description":"Termination defines the termination type.\nThe default is \"edge\".","type":"string","enum":["insecure","edge","passthrough","reencrypt"]}}},"type":{"description":"Type defines the type of Ingress for the Jaeger Query UI.\nCurrently ingress, route and none are supported.","type":"string","enum":["ingress","route",""]}}},"monitorTab":{"description":"MonitorTab defines the monitor tab configuration.","type":"object","properties":{"enabled":{"description":"Enabled enables the monitor tab in the Jaeger console.\nThe PrometheusEndpoint must be configured to enable this feature.","type":"boolean"},"prometheusEndpoint":{"description":"PrometheusEndpoint defines the endpoint to the Prometheus instance that contains the span rate, error, and duration (RED) metrics.\nFor instance on OpenShift this is set to https://thanos-querier.openshift-monitoring.svc.cluster.local:9091","type":"string"},"redMetricsNamespace":{"description":"REDMetricsNamespace defines the a prefix used retrieve span rate, error, and duration (RED) metrics.","type":"string"}}},"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"servicesQueryDuration":{"description":"ServicesQueryDuration defines how long the services will be available in the services list","type":"string"},"tempoQuery":{"description":"TempoQuery defines options specific to the Tempoo Query component.","type":"object","properties":{"resources":{"description":"Resources defines resources for this component, this will override the calculated resources derived from total","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}}}},"mcpServer":{"description":"MCPServer defines the MCP (Model Context Protocol) server configuration.\nThe MCP server allows AI assistants to query tracing data.","type":"object","properties":{"enabled":{"description":"Enabled defines if the MCP (Model Context Protocol) server should be enabled.","type":"boolean"}}}}}}},"tenants":{"description":"Tenants defines the per-tenant authentication and authorization spec.","type":"object","required":["mode"],"properties":{"authentication":{"description":"Authentication defines the tempo-gateway component authentication configuration spec per tenant.","type":"array","items":{"description":"AuthenticationSpec defines the oidc configuration per tenant for tempo Gateway component.","type":"object","required":["tenantId","tenantName"],"properties":{"oidc":{"description":"OIDC defines the spec for the OIDC tenant's authentication.","type":"object","properties":{"groupClaim":{"description":"Group claim field from ID Token","type":"string"},"issuerURL":{"description":"IssuerURL defines the URL for issuer.","type":"string"},"redirectURL":{"description":"RedirectURL defines the URL for redirect.","type":"string"},"secret":{"description":"Secret defines the spec for the clientID, clientSecret and issuerCAPath for tenant's authentication.","type":"object","properties":{"name":{"description":"Name of a secret in the namespace configured for tenant secrets.","type":"string"}}},"usernameClaim":{"description":"User claim field from ID Token","type":"string"}}},"tenantId":{"description":"TenantID defines a universally unique identifier of the tenant.\nUnlike the tenantName, which must be unique at a given time, the tenantId must be unique over the entire lifetime of the Tempo deployment.\nTempo uses this ID to prefix objects in the object storage.","type":"string"},"tenantName":{"description":"TenantName defines a human readable, unique name of the tenant.\nThe value of this field must be specified in the X-Scope-OrgID header and in the resources field of a ClusterRole to identify the tenant.","type":"string"}}}},"authorization":{"description":"Authorization defines the tempo-gateway component authorization configuration spec per tenant.","type":"object","properties":{"roleBindings":{"description":"RoleBindings defines configuration to bind a set of roles to a set of subjects.","type":"array","items":{"description":"RoleBindingsSpec binds a set of roles to a set of subjects.","type":"object","required":["name","roles","subjects"],"properties":{"name":{"type":"string"},"roles":{"type":"array","items":{"type":"string"}},"subjects":{"type":"array","items":{"description":"Subject represents a subject that has been bound to a role.","type":"object","required":["kind","name"],"properties":{"kind":{"description":"SubjectKind is a kind of Tempo Gateway RBAC subject.","type":"string","enum":["user","group"]},"name":{"type":"string"}}}}}}},"roles":{"description":"Roles defines a set of permissions to interact with a tenant.","type":"array","items":{"description":"RoleSpec describes a set of permissions to interact with a tenant.","type":"object","required":["name","permissions","resources","tenants"],"properties":{"name":{"type":"string"},"permissions":{"type":"array","items":{"description":"PermissionType is a Tempo Gateway RBAC permission.","type":"string","enum":["read","write"]}},"resources":{"type":"array","items":{"type":"string"}},"tenants":{"type":"array","items":{"type":"string"}}}}}}},"mode":{"description":"Mode defines the multitenancy mode.","type":"string","enum":["static","openshift"]}}},"timeout":{"description":"Timeout configures the same timeout on all components starting at ingress down to the ingestor/querier.\nTimeout configuration on a specific component has a higher precedence.\nDefaults to 30 seconds.","type":"string"}}},"status":{"description":"TempoStackStatus defines the observed state of TempoStack.","type":"object","properties":{"components":{"description":"Components provides summary of all Tempo pod status grouped\nper component.","type":"object","properties":{"compactor":{"description":"Compactor is a map to the pod status of the compactor pod.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"distributor":{"description":"Distributor is a map to the per pod status of the distributor deployment","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"gateway":{"description":"Gateway is a map to the per pod status of the query frontend deployment","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"ingester":{"description":"Ingester is a map to the per pod status of the ingester statefulset","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"querier":{"description":"Querier is a map to the per pod status of the querier deployment","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"queryFrontend":{"description":"QueryFrontend is a map to the per pod status of the query frontend deployment","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}}}},"conditions":{"description":"Conditions of the Tempo deployment health.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"operatorVersion":{"description":"Version of the Tempo Operator.","type":"string"},"tempoQueryVersion":{"description":"DEPRECATED. Version of the Tempo Query component used.","type":"string"},"tempoVersion":{"description":"Version of the managed Tempo instance.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"tempo.grafana.com","kind":"TempoStack","version":"v1alpha1"}]},"com.grafana.tempo.v1alpha1.TempoStackList":{"description":"TempoStackList is a list of TempoStack","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tempostacks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.grafana.tempo.v1alpha1.TempoStack"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tempo.grafana.com","kind":"TempoStackList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.Application":{"description":"Application is the Schema for the applications API.  For description, refer to <a href=\"https://konflux-ci.dev/docs/reference/kube-apis/application-api/\"> Hybrid Application Service Kube API </a>","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ApplicationSpec defines the desired state of Application","type":"object","required":["displayName"],"properties":{"appModelRepository":{"description":"AppModelRepository refers to the git repository that will store the application model (a devfile)\nCan be the same as GitOps repository.\nA repository will be generated if this field is left blank.\nOptional.","type":"object","required":["url"],"properties":{"branch":{"description":"Branch corresponds to the branch in the repository that should be used\nExample: devel.\nOptional.","type":"string"},"context":{"description":"Context corresponds to the context within the repository that should be used\nExample: folderA/folderB/gitops.\nOptional.","type":"string"},"url":{"description":"URL refers to the repository URL that should be used. If not specified, a GitOps repository under the\n$GITHUB_ORG (defaults to redhat-appstudio-appdata) organization on GitHub will be generated by HAS.\nExample: https://github.com/devfile-test/myrepo.\nRequired.","type":"string"}}},"description":{"description":"Description refers to a brief description of the application.\nOptional.","type":"string"},"displayName":{"description":"DisplayName refers to the name that an application will be deployed with in App Studio.\nRequired.","type":"string"},"gitOpsRepository":{"description":"GitOpsRepository refers to the git repository that will store the gitops resources.\nCan be the same as App Model Repository.\nA repository will be generated if this field is left blank.\nOptional.","type":"object","required":["url"],"properties":{"branch":{"description":"Branch corresponds to the branch in the repository that should be used\nExample: devel.\nOptional.","type":"string"},"context":{"description":"Context corresponds to the context within the repository that should be used\nExample: folderA/folderB/gitops.\nOptional.","type":"string"},"url":{"description":"URL refers to the repository URL that should be used. If not specified, a GitOps repository under the\n$GITHUB_ORG (defaults to redhat-appstudio-appdata) organization on GitHub will be generated by HAS.\nExample: https://github.com/devfile-test/myrepo.\nRequired.","type":"string"}}}}},"status":{"description":"ApplicationStatus defines the observed state of Application","type":"object","required":["conditions"],"properties":{"conditions":{"description":"Conditions is an array of the Application's status conditions","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"devfile":{"description":"Devfile corresponds to the devfile representation of the Application resource","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"Application","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ApplicationList":{"description":"ApplicationList is a list of Application","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of applications. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Application"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ApplicationList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.Component":{"description":"Component is the Schema for the components API.    For description, refer to <a href=\"https://konflux-ci.dev/docs/reference/kube-apis/application-api/\"> Hybrid Application Service Kube API </a>","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ComponentSpec defines the desired state of Component","type":"object","required":["source"],"properties":{"actions":{"description":"Specific actions that will be processed by the controller and then removed from 'spec.actions'.\nUsed for triggering builds or creating pipeline configuration PRs.\nOptional.","type":"object","properties":{"create-pipeline-configuration-pr":{"description":"Send a PR with build pipeline configuration proposal for Component version(s).\nIf not set, version onboarding will be done without pipeline configuration PR.\nCould be used after onboarding to create / renew build pipeline definition.\nOptional.","type":"object","properties":{"all-versions":{"description":"When specified it will send a PR with build pipeline configuration proposal for all Component versions.\nHas precedence over 'version' and 'versions'.\nOptional.","type":"boolean"},"version":{"description":"When specified it will send a PR with build pipeline configuration proposal for the Component version.\nCan be specified together with 'versions' and any duplicates will be removed.\nOptional.","type":"string"},"versions":{"description":"When specified it will send a PR with build pipeline configuration proposal for Component versions.\nCan be specified together with 'version' and any duplicates will be removed.\nOptional.","type":"array","items":{"type":"string"}}}},"trigger-push-build":{"description":"Specify name of component version to restart the push build for.\nCan be specified together with 'trigger-push-builds' and any duplicates will be removed.\nOptional.","type":"string"},"trigger-push-builds":{"description":"Specify names of component versions to restart the push build for.\nCan be specified together with 'trigger-push-build' and any duplicates will be removed.\nOptional.","type":"array","items":{"type":"string"}}}},"application":{"description":"Application is the name of the application resource that the component belongs to.\nOptional.\n!!! Will be removed when we remove old model","type":"string","pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"build-nudges-ref":{"description":"The list of components to be nudged by this components build upon a successful result.\nOptional.\n!!! Will be removed when we remove old model","type":"array","items":{"type":"string"}},"componentName":{"description":"ComponentName is name of the component to be added to the Application. The name must adhere to DNS-1123 validation.\nOptional.\n!!! Will be removed when we remove old model","type":"string","maxLength":63,"pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"containerImage":{"description":"The container image repository to use for this component (without tag).\nEither will be set by Image Repository, or explicitly specified with custom repo.\nAll versions of this component will use this single image repository.\nExample: quay.io/org/tenant/component\nOptional.","type":"string"},"default-build-pipeline":{"description":"Used only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nPipeline used for all versions, unless explicitly specified for a specific version.\nWhen omitted it has to be specified in all versions.\nOptional.","type":"object","properties":{"pull":{"description":"Pipeline used for pull pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"pull-and-push":{"description":"Pipeline used for pull and push pipeline runs.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"push":{"description":"Pipeline used for push pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}}}},"env":{"description":"An array of environment variables to add to the component (ValueFrom not currently supported)\nOptional","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"replicas":{"description":"The number of replicas to deploy the component with.\nOptional.\n!!! Will be removed when we remove old model","type":"integer"},"repository-settings":{"description":"Used for setting additional settings for the Repository CR.\nOptional.","type":"object","properties":{"comment-strategy":{"description":"When specified, will set value of `comment_strategy` in the Repository CR\nOptional.","type":"string"},"github-app-token-scope-repos":{"description":"When specified, will add values to `github_app_token_scope_repos` in the Repository CR\nOptional.","type":"array","items":{"type":"string"}}}},"resources":{"description":"Compute Resources required by this component.\nOptional.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"route":{"description":"The route to expose the component with.\nOptional.\n!!! Will be removed when we remove old model","type":"string"},"secret":{"description":"Secret describes the name of a Kubernetes secret containing either:\n1. A Personal Access Token to access the Component's git repostiory (if using a Git-source component) or\n2. An Image Pull Secret to access the Component's container image (if using an Image-source component).\nOptional.\n!!! Will be removed when we remove old model","type":"string"},"skip-offboarding-pr":{"description":"When 'true', during offboarding a cleaning PR won't be created.\nDefault: false.\nOptional.","type":"boolean"},"skipGitOpsResourceGeneration":{"description":"Whether or not to bypass the generation of GitOps resources for the Component. Defaults to false.\nOptional.\n!!! Will be removed when we remove old model","type":"boolean"},"source":{"description":"Source describes the Component source.\nRequired.","type":"object","properties":{"dockerfileUri":{"description":"Dockerfile path for all versions, unless explicitly specified for a version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"Dockerfile\"\nOptional.","type":"string"},"git":{"description":"Git Source for a Component.\nOptional.\n!!! Will be removed when we remove old model","type":"object","required":["url"],"properties":{"context":{"description":"A relative path inside the git repo containing the component\nExample: folderA/folderB/gitops.\nOptional.","type":"string"},"devfileUrl":{"description":"If specified, the devfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nExample: https://raw.githubusercontent.com/devfile-samples/devfile-sample-java-springboot-basic/main/devfile.yaml.\nOptional.","type":"string"},"dockerfileUrl":{"description":"If specified, the dockerfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nOptional.","type":"string"},"revision":{"description":"Specify a branch/tag/commit id. If not specified, default is `main`/`master`.\nExample: devel.\nOptional.","type":"string"},"url":{"description":"An HTTPS URL representing the git repository to create the component from.","type":"string"}}},"url":{"description":"Git repository URL for the component.\nOptional.\n!!! Will be required when we remove old model","type":"string"},"versions":{"description":"List of all versions for this component.\nOptional.\n!!! Will be required when we remove old model","type":"array","items":{"type":"object","required":["name","revision"],"properties":{"build-pipeline":{"description":"Used only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nPipeline used for the version; when omitted, the default pipeline will be used from 'spec.default-build-pipeline'.\nOptional.","type":"object","properties":{"pull":{"description":"Pipeline used for pull pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"pull-and-push":{"description":"Pipeline used for pull and push pipeline runs.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"push":{"description":"Pipeline used for push pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}}}},"context":{"description":"Context directory for the version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"\" (empty string, root of repository).\nOptional.","type":"string"},"dockerfileUri":{"description":"Dockerfile path for the version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"Dockerfile\".\nOptional.","type":"string"},"name":{"description":"User defined name for the version.\nAfter sanitization (lower case, removing spaces, etc) all version names must be unique.\nRequired.","type":"string"},"revision":{"description":"Git branch to use for the version.\nRequired.","type":"string"},"skip-builds":{"description":"When 'true' it will disable builds for a revision in the version.\nDefault: false.\nOptional.","type":"boolean"}}}}}},"targetPort":{"description":"The port to expose the component over.\nOptional.\n!!! Will be removed when we remove old model","type":"integer"}}},"status":{"description":"ComponentStatus defines the observed state of Component","type":"object","properties":{"build-nudged-by":{"description":"The list of names of Components whose builds nudge this resource (their spec.build-nudges-ref[] references this component)\n!!! Will be removed when we remove old model","type":"array","items":{"type":"string"}},"conditions":{"description":"Conditions is an array of the Component's status conditions","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"devfile":{"description":"The devfile model for the Component CR\n!!! Will be removed when we remove old model","type":"string"},"gitops":{"description":"GitOps specific status for the Component CR\n!!! Will be removed when we remove old model","type":"object","properties":{"branch":{"description":"Branch is the git branch used for the gitops repository","type":"string"},"commitID":{"description":"CommitID is the most recent commit ID in the GitOps repository for this component","type":"string"},"context":{"description":"Context is the path within the gitops repository used for the gitops resources","type":"string"},"repositoryURL":{"description":"RepositoryURL is the gitops repository URL for the component","type":"string"},"resourceGenerationSkipped":{"description":"ResourceGenerationSkipped is whether or not GitOps resource generation was skipped for the component","type":"boolean"}}},"lastBuiltCommit":{"description":"The last built commit id (SHA-1 checksum) from the latest component build.\nExample: 41fbdb124775323f58fd5ce93c70bb7d79c20650.\n!!! Will be removed when we remove old model SHOULD this be in version specific section??","type":"string"},"lastPromotedImage":{"description":"The last digest image component promoted with.\nExample: quay.io/someorg/somerepository@sha256:5ca85b7f7b9da18a9c4101e81ee1d9bac35ac2b0b0221908ff7389204660a262.\n!!! Will be removed when we remove old model SHOULD this be in version specific section??","type":"string"},"message":{"description":"General error message, not specific to any version (version-specific errors are in versions[].message).\nExample: \"Spec.ContainerImage is not set\" or \"GitHub App is not installed\".","type":"string"},"pac-repository":{"description":"Name of Repository CR for the component.","type":"string"},"repository-settings":{"description":"Identifies which additional settings are used for the Repository CR.","type":"object","properties":{"comment-strategy":{"description":"When specified, will set value of `comment_strategy` in the Repository CR\nOptional.","type":"string"},"github-app-token-scope-repos":{"description":"When specified, will add values to `github_app_token_scope_repos` in the Repository CR\nOptional.","type":"array","items":{"type":"string"}}}},"versions":{"description":"All versions which were processed by onboarding.\nWhen version is removed from the spec, offboarding will remove it from the status.","type":"array","items":{"type":"object","properties":{"configuration-merge-url":{"description":"Link with onboarding PR if requested by 'spec.actions.create-pipeline-configuration-pr'.\nOnly present if onboarding was successful.\nExample: https://github.com/user/repo/pull/1","type":"string"},"message":{"description":"Version specific error message.\nExample: \"pipeline for this version doesn't exist\"","type":"string"},"name":{"description":"Name for the version.","type":"string"},"onboarding-status":{"description":"Onboarding status will be either 'succeeded' or 'failed' ('disabled' won't be there because we will just remove specific version section).","type":"string"},"onboarding-time":{"description":"Timestamp for when onboarding happened.\nOnly present if onboarding was successful.\nExample: \"29 May 2024 15:11:16 UTC\"","type":"string"},"revision":{"description":"Git revision (branch) for the version.","type":"string"},"skip-builds":{"description":"Identifies that builds for the revision in the version are disabled.","type":"boolean"}}}},"webhook":{"description":"Webhook URL generated by Builds\n!!! Will be removed when we remove old model","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"Component","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ComponentDetectionQuery":{"description":"ComponentDetectionQuery is the Schema for the componentdetectionqueries API.    For description, refer to <a href=\"https://konflux-ci.dev/docs/reference/kube-apis/application-api/\"> Hybrid Application Service Kube API </a>","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ComponentDetectionQuerySpec defines the desired state of ComponentDetectionQuery","type":"object","required":["git"],"properties":{"generateComponentName":{"description":"It defines if should generate random characters at the end of the component name instead of a predicted default value\nThe default value is false.\nIf the value is set to true, component name will always have random characters appended\nOptional.","type":"boolean"},"git":{"description":"Git Source for a Component.\nRequired.","type":"object","required":["url"],"properties":{"context":{"description":"A relative path inside the git repo containing the component\nExample: folderA/folderB/gitops.\nOptional.","type":"string"},"devfileUrl":{"description":"If specified, the devfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nExample: https://raw.githubusercontent.com/devfile-samples/devfile-sample-java-springboot-basic/main/devfile.yaml.\nOptional.","type":"string"},"dockerfileUrl":{"description":"If specified, the dockerfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nOptional.","type":"string"},"revision":{"description":"Specify a branch/tag/commit id. If not specified, default is `main`/`master`.\nExample: devel.\nOptional.","type":"string"},"url":{"description":"An HTTPS URL representing the git repository to create the component from.","type":"string"}}},"secret":{"description":"Secret describes the name of an optional Kubernetes secret containing a Personal Access Token to access the git repostiory.\nOptional.","type":"string"}}},"status":{"description":"ComponentDetectionQueryStatus defines the observed state of ComponentDetectionQuery","type":"object","properties":{"componentDetected":{"description":"ComponentDetected gives a list of components and the info from detection","type":"object","additionalProperties":{"description":"ComponentDetectionDescription holds all the information about the component being detected","type":"object","properties":{"componentStub":{"description":"ComponentStub is a stub of the component detected with all the info gathered from the devfile or service detection","type":"object","required":["source"],"properties":{"actions":{"description":"Specific actions that will be processed by the controller and then removed from 'spec.actions'.\nUsed for triggering builds or creating pipeline configuration PRs.\nOptional.","type":"object","properties":{"create-pipeline-configuration-pr":{"description":"Send a PR with build pipeline configuration proposal for Component version(s).\nIf not set, version onboarding will be done without pipeline configuration PR.\nCould be used after onboarding to create / renew build pipeline definition.\nOptional.","type":"object","properties":{"all-versions":{"description":"When specified it will send a PR with build pipeline configuration proposal for all Component versions.\nHas precedence over 'version' and 'versions'.\nOptional.","type":"boolean"},"version":{"description":"When specified it will send a PR with build pipeline configuration proposal for the Component version.\nCan be specified together with 'versions' and any duplicates will be removed.\nOptional.","type":"string"},"versions":{"description":"When specified it will send a PR with build pipeline configuration proposal for Component versions.\nCan be specified together with 'version' and any duplicates will be removed.\nOptional.","type":"array","items":{"type":"string"}}}},"trigger-push-build":{"description":"Specify name of component version to restart the push build for.\nCan be specified together with 'trigger-push-builds' and any duplicates will be removed.\nOptional.","type":"string"},"trigger-push-builds":{"description":"Specify names of component versions to restart the push build for.\nCan be specified together with 'trigger-push-build' and any duplicates will be removed.\nOptional.","type":"array","items":{"type":"string"}}}},"application":{"description":"Application is the name of the application resource that the component belongs to.\nOptional.\n!!! Will be removed when we remove old model","type":"string","pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"build-nudges-ref":{"description":"The list of components to be nudged by this components build upon a successful result.\nOptional.\n!!! Will be removed when we remove old model","type":"array","items":{"type":"string"}},"componentName":{"description":"ComponentName is name of the component to be added to the Application. The name must adhere to DNS-1123 validation.\nOptional.\n!!! Will be removed when we remove old model","type":"string","maxLength":63,"pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"containerImage":{"description":"The container image repository to use for this component (without tag).\nEither will be set by Image Repository, or explicitly specified with custom repo.\nAll versions of this component will use this single image repository.\nExample: quay.io/org/tenant/component\nOptional.","type":"string"},"default-build-pipeline":{"description":"Used only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nPipeline used for all versions, unless explicitly specified for a specific version.\nWhen omitted it has to be specified in all versions.\nOptional.","type":"object","properties":{"pull":{"description":"Pipeline used for pull pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"pull-and-push":{"description":"Pipeline used for pull and push pipeline runs.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"push":{"description":"Pipeline used for push pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}}}},"env":{"description":"An array of environment variables to add to the component (ValueFrom not currently supported)\nOptional","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"replicas":{"description":"The number of replicas to deploy the component with.\nOptional.\n!!! Will be removed when we remove old model","type":"integer"},"repository-settings":{"description":"Used for setting additional settings for the Repository CR.\nOptional.","type":"object","properties":{"comment-strategy":{"description":"When specified, will set value of `comment_strategy` in the Repository CR\nOptional.","type":"string"},"github-app-token-scope-repos":{"description":"When specified, will add values to `github_app_token_scope_repos` in the Repository CR\nOptional.","type":"array","items":{"type":"string"}}}},"resources":{"description":"Compute Resources required by this component.\nOptional.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"route":{"description":"The route to expose the component with.\nOptional.\n!!! Will be removed when we remove old model","type":"string"},"secret":{"description":"Secret describes the name of a Kubernetes secret containing either:\n1. A Personal Access Token to access the Component's git repostiory (if using a Git-source component) or\n2. An Image Pull Secret to access the Component's container image (if using an Image-source component).\nOptional.\n!!! Will be removed when we remove old model","type":"string"},"skip-offboarding-pr":{"description":"When 'true', during offboarding a cleaning PR won't be created.\nDefault: false.\nOptional.","type":"boolean"},"skipGitOpsResourceGeneration":{"description":"Whether or not to bypass the generation of GitOps resources for the Component. Defaults to false.\nOptional.\n!!! Will be removed when we remove old model","type":"boolean"},"source":{"description":"Source describes the Component source.\nRequired.","type":"object","properties":{"dockerfileUri":{"description":"Dockerfile path for all versions, unless explicitly specified for a version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"Dockerfile\"\nOptional.","type":"string"},"git":{"description":"Git Source for a Component.\nOptional.\n!!! Will be removed when we remove old model","type":"object","required":["url"],"properties":{"context":{"description":"A relative path inside the git repo containing the component\nExample: folderA/folderB/gitops.\nOptional.","type":"string"},"devfileUrl":{"description":"If specified, the devfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nExample: https://raw.githubusercontent.com/devfile-samples/devfile-sample-java-springboot-basic/main/devfile.yaml.\nOptional.","type":"string"},"dockerfileUrl":{"description":"If specified, the dockerfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nOptional.","type":"string"},"revision":{"description":"Specify a branch/tag/commit id. If not specified, default is `main`/`master`.\nExample: devel.\nOptional.","type":"string"},"url":{"description":"An HTTPS URL representing the git repository to create the component from.","type":"string"}}},"url":{"description":"Git repository URL for the component.\nOptional.\n!!! Will be required when we remove old model","type":"string"},"versions":{"description":"List of all versions for this component.\nOptional.\n!!! Will be required when we remove old model","type":"array","items":{"type":"object","required":["name","revision"],"properties":{"build-pipeline":{"description":"Used only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nPipeline used for the version; when omitted, the default pipeline will be used from 'spec.default-build-pipeline'.\nOptional.","type":"object","properties":{"pull":{"description":"Pipeline used for pull pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"pull-and-push":{"description":"Pipeline used for pull and push pipeline runs.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"push":{"description":"Pipeline used for push pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}}}},"context":{"description":"Context directory for the version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"\" (empty string, root of repository).\nOptional.","type":"string"},"dockerfileUri":{"description":"Dockerfile path for the version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"Dockerfile\".\nOptional.","type":"string"},"name":{"description":"User defined name for the version.\nAfter sanitization (lower case, removing spaces, etc) all version names must be unique.\nRequired.","type":"string"},"revision":{"description":"Git branch to use for the version.\nRequired.","type":"string"},"skip-builds":{"description":"When 'true' it will disable builds for a revision in the version.\nDefault: false.\nOptional.","type":"boolean"}}}}}},"targetPort":{"description":"The port to expose the component over.\nOptional.\n!!! Will be removed when we remove old model","type":"integer"}}},"devfileFound":{"description":"DevfileFound tells if a devfile is found in the component","type":"boolean"},"language":{"description":"Language specifies the language of the component detected\nExample: JavaScript","type":"string"},"projectType":{"description":"ProjectType specifies the type of project for the component detected\nExample Node.JS","type":"string"}}}},"conditions":{"description":"Conditions is an array of the ComponentDetectionQuery's status conditions","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ComponentDetectionQuery","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ComponentDetectionQueryList":{"description":"ComponentDetectionQueryList is a list of ComponentDetectionQuery","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of componentdetectionqueries. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ComponentDetectionQuery"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ComponentDetectionQueryList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ComponentList":{"description":"ComponentList is a list of Component","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of components. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Component"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ComponentList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DependencyUpdateCheck":{"description":"DependencyUpdateCheck is the root CRD that triggers mintmaker to Konflux Components for dependency updates.\nHow the controller uses this CRD:\n- Only CRs created in the MintMaker namespace (see `MintMakerNamespaceName`) are processed.\n- When a CR is created, the controller discovers Konflux Components to scan:\n  - By default: all `appstudio.redhat.com/v1alpha1, Kind=Component` across the cluster\n  - Or: a filtered subset when `spec.namespaces` is provided\n  - For each unique repository+branch across those Components, the controller generates\n    one Tekton `PipelineRun` that scans the repository for dependency updates using Renovate.\n\nAnnotations:\n  - `mintmaker.appstudio.redhat.com/processed`: set by the controller when the\n    DependencyUpdateCheck is processed, to avoid reprocessing the same CR.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DependencyUpdateCheckSpec filters which Konflux Components will be scanned.\nIf `namespaces` is empty, MintMaker scans all Components discoverable to the controller.\nIf provided, MintMaker only scans Components that match the namespace/application/component filters.","type":"object","properties":{"namespaces":{"description":"Specifies the list of namespaces for which to run MintMaker.\nIf omitted, MintMaker will run for all namespaces.","type":"array","items":{"description":"NamespaceSpec scopes MintMaker to specific Applications within a Kubernetes namespace.","type":"object","required":["namespace"],"properties":{"applications":{"description":"Specifies the list of Konflux applications in a namespace for which to run MintMaker.\nIf omitted, MintMaker will run for all namespace's applications.","type":"array","items":{"description":"ApplicationSpec scopes MintMaker to specific Components within a single Konflux Application.","type":"object","required":["application"],"properties":{"application":{"description":"Specifies the name of the Konflux application for which to run Mintmaker.\nFor more details see <a href=\"https://github.com/konflux-ci/architecture/blob/main/architecture/core/hybrid-application-service.md\">Konflux Application Service</a>.\nRequired.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"components":{"description":"Specifies the list of components of an application for which to run MintMaker.\nIf omitted, MintMaker will run for all application's components.","type":"array","items":{"description":"Component represents a Component name within a Konflux Application.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}}}},"namespace":{"description":"Specifies the name of the Kubernetes namespace for which to run Mintmaker.\nRequired.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}}}}},"status":{"description":"DependencyUpdateCheckStatus defines the observed state of DependencyUpdateCheck","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheck","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DependencyUpdateCheckList":{"description":"DependencyUpdateCheckList is a list of DependencyUpdateCheck","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of dependencyupdatechecks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DependencyUpdateCheck"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DependencyUpdateCheckList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DeploymentTarget":{"description":"DeploymentTarget is the Schema for the deploymenttargets API. A deployment target, usually a K8s api endpoint. The credentials for connecting to the target will be stored in a secret which will be referenced in the clusterCredentialsSecret field","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DeploymentTargetSpec defines the desired state of DeploymentTarget","type":"object","required":["deploymentTargetClassName","kubernetesCredentials"],"properties":{"claimRef":{"type":"string"},"deploymentTargetClassName":{"type":"string"},"kubernetesCredentials":{"description":"DeploymentTargetKubernetesClusterCredentials defines the K8s cluster credentials for the DeploymentTarget.","type":"object","required":["allowInsecureSkipTLSVerify","apiURL","clusterCredentialsSecret","defaultNamespace"],"properties":{"allowInsecureSkipTLSVerify":{"description":"Indicates that a Service should not check the TLS certificate when connecting to this target.","type":"boolean"},"apiURL":{"description":"APIURL is a reference to a cluster API url.","type":"string"},"clusterCredentialsSecret":{"description":"ClusterCredentialsSecret is a reference to the name of k8s Secret that contains a kubeconfig.","type":"string"},"defaultNamespace":{"type":"string"}}}}},"status":{"description":"DeploymentTargetStatus defines the observed state of DeploymentTarget","type":"object","properties":{"conditions":{"description":"Conditions is an array of the DeploymentTarget's status conditions","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{ // Represents the observations of a foo's current state. // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge // +listType=map // +listMapKey=type Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"phase":{"type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DeploymentTarget","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DeploymentTargetClaim":{"description":"DeploymentTargetClaim is the Schema for the deploymenttargetclaims API. It represents a request for a DeploymentTarget.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DeploymentTargetClaimSpec defines the desired state of DeploymentTargetClaim","type":"object","required":["deploymentTargetClassName"],"properties":{"deploymentTargetClassName":{"type":"string"},"targetName":{"type":"string"}}},"status":{"description":"DeploymentTargetClaimStatus defines the observed state of DeploymentTargetClaim","type":"object","properties":{"conditions":{"description":"Conditions is an array of the DeploymentTargetClaim's status conditions","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{ // Represents the observations of a foo's current state. // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge // +listType=map // +listMapKey=type Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"phase":{"type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaim","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DeploymentTargetClaimList":{"description":"DeploymentTargetClaimList is a list of DeploymentTargetClaim","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of deploymenttargetclaims. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClaim"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DeploymentTargetClaimList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DeploymentTargetClass":{"description":"DeploymentTargetClass is the Schema for the deploymenttargetclasses API. Defines DeploymentTarget properties that should be abstracted from the controller/user that creates a DTC and wants a DT to be provisioned automatically for it.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DeploymentTargetClassSpec defines the desired state of DeploymentTargetClass","type":"object","required":["provisioner","reclaimPolicy"],"properties":{"parameters":{"description":"Parameters are used to forward additional information to the provisioner.","type":"object"},"provisioner":{"type":"string"},"reclaimPolicy":{"description":"The reclaimPolicy field will tell the provisioner what to do with the DT once its corresponding DTC is deleted, the values can be Retain or Delete.","type":"string"}}},"status":{"description":"DeploymentTargetClassStatus defines the observed state of DeploymentTargetClass","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DeploymentTargetClass","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DeploymentTargetClassList":{"description":"DeploymentTargetClassList is a list of DeploymentTargetClass","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of deploymenttargetclasses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTargetClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DeploymentTargetClassList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.DeploymentTargetList":{"description":"DeploymentTargetList is a list of DeploymentTarget","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of deploymenttargets. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.DeploymentTarget"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"DeploymentTargetList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy":{"description":"EnterpriseContractPolicy is the Schema for the enterprisecontractpolicies API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"EnterpriseContractPolicySpec is used to configure the Enterprise Contract Policy","type":"object","properties":{"configuration":{"description":"Configuration handles policy modification configuration (exclusions and inclusions)","type":"object","properties":{"collections":{"description":"Collections set of predefined rules.  DEPRECATED: Collections can be listed in include\nwith the \"@\" prefix.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"exclude":{"description":"Exclude set of policy exclusions that, in case of failure, do not block\nthe success of the outcome.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"include":{"description":"Include set of policy inclusions that are added to the policy evaluation.\nThese override excluded rules.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"description":{"description":"Description of the policy or its intended use","type":"string"},"identity":{"description":"Identity to be used for keyless verification. This is an experimental feature.","type":"object","properties":{"issuer":{"description":"Issuer is the URL of the certificate OIDC issuer for keyless verification.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is a regular expression to match the URL of the certificate OIDC issuer for\nkeyless verification.","type":"string"},"subject":{"description":"Subject is the URL of the certificate identity for keyless verification.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is a regular expression to match the URL of the certificate identity for\nkeyless verification.","type":"string"}}},"name":{"description":"Optional name of the policy","type":"string"},"publicKey":{"description":"Public key used to validate the signature of images and attestations","type":"string"},"rekorUrl":{"description":"URL of the Rekor instance. Empty string disables Rekor integration","type":"string"},"sources":{"description":"One or more groups of policy rules","type":"array","minItems":1,"items":{"description":"Source defines policies and data that are evaluated together","type":"object","properties":{"config":{"description":"Config specifies which policy rules are included, or excluded, from the\nprovided policy source urls.","type":"object","properties":{"exclude":{"description":"Exclude is a set of policy exclusions that, in case of failure, do not block\nthe success of the outcome.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"include":{"description":"Include is a set of policy inclusions that are added to the policy evaluation.\nThese take precedence over policy exclusions.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"data":{"description":"List of go-getter style policy data source urls","type":"array","items":{"type":"string"}},"name":{"description":"Optional name for the source","type":"string"},"policy":{"description":"List of go-getter style policy source urls","type":"array","minItems":1,"items":{"type":"string"}},"ruleData":{"description":"Arbitrary rule data that will be visible to policy rules","x-kubernetes-preserve-unknown-fields":true},"volatileConfig":{"description":"Specifies volatile configuration that can include or exclude policy rules\nbased on effective time.","type":"object","properties":{"exclude":{"description":"Exclude is a set of policy exclusions that, in case of failure, do not block\nthe success of the outcome.","type":"array","items":{"description":"VolatileCriteria includes or excludes a policy rule with effective dates as an option.","type":"object","required":["value"],"properties":{"componentNames":{"description":"ComponentNames is used to specify component names from\nApplicationSnapshot. This allows filtering in scenarios where\nmultiple components share the same image repository.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"effectiveOn":{"type":"string","format":"date-time"},"effectiveUntil":{"type":"string","format":"date-time"},"imageDigest":{"description":"ImageDigest is used to specify an image by its digest.","type":"string","pattern":"^sha256:[a-fA-F0-9]{64}$"},"imageRef":{"description":"DEPRECATED: Use ImageDigest instead\nImageRef is used to specify an image by its digest.","type":"string","pattern":"^sha256:[a-fA-F0-9]{64}$"},"imageUrl":{"description":"ImageUrl is used to specify an image by its URL without a tag.","type":"string","pattern":"^[a-z0-9][a-z0-9.-]*[a-z0-9](?:\\/[a-z0-9][a-z0-9-]*[a-z0-9]){2,}$"},"reference":{"description":"Reference is used to include a link to related information such as a Jira issue URL.","type":"string"},"value":{"type":"string"}},"x-kubernetes-validations":[{"message":"only one of imageUrl, imageDigest, imageRef, or componentNames may be set","rule":"(has(self.imageUrl) ? 1 : 0) + (has(self.imageDigest) ? 1 : 0) + (has(self.imageRef) ? 1 : 0) + (has(self.componentNames) ? 1 : 0) <= 1"}]}},"include":{"description":"Include is a set of policy inclusions that are added to the policy evaluation.\nThese take precedence over policy exclusions.","type":"array","items":{"description":"VolatileCriteria includes or excludes a policy rule with effective dates as an option.","type":"object","required":["value"],"properties":{"componentNames":{"description":"ComponentNames is used to specify component names from\nApplicationSnapshot. This allows filtering in scenarios where\nmultiple components share the same image repository.","type":"array","items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"effectiveOn":{"type":"string","format":"date-time"},"effectiveUntil":{"type":"string","format":"date-time"},"imageDigest":{"description":"ImageDigest is used to specify an image by its digest.","type":"string","pattern":"^sha256:[a-fA-F0-9]{64}$"},"imageRef":{"description":"DEPRECATED: Use ImageDigest instead\nImageRef is used to specify an image by its digest.","type":"string","pattern":"^sha256:[a-fA-F0-9]{64}$"},"imageUrl":{"description":"ImageUrl is used to specify an image by its URL without a tag.","type":"string","pattern":"^[a-z0-9][a-z0-9.-]*[a-z0-9](?:\\/[a-z0-9][a-z0-9-]*[a-z0-9]){2,}$"},"reference":{"description":"Reference is used to include a link to related information such as a Jira issue URL.","type":"string"},"value":{"type":"string"}},"x-kubernetes-validations":[{"message":"only one of imageUrl, imageDigest, imageRef, or componentNames may be set","rule":"(has(self.imageUrl) ? 1 : 0) + (has(self.imageDigest) ? 1 : 0) + (has(self.imageRef) ? 1 : 0) + (has(self.componentNames) ? 1 : 0) <= 1"}]}}}}}}}}},"status":{"description":"EnterpriseContractPolicyStatus defines the observed state of EnterpriseContractPolicy","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicy","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.EnterpriseContractPolicyList":{"description":"EnterpriseContractPolicyList is a list of EnterpriseContractPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of enterprisecontractpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.EnterpriseContractPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"EnterpriseContractPolicyList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.Environment":{"description":"Environment is the Schema for the environments API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"EnvironmentSpec defines the desired state of Environment","type":"object","required":["deploymentStrategy","displayName"],"properties":{"configuration":{"description":"Configuration contains environment-specific details for Applications/Components that are deployed to the Environment.","type":"object","properties":{"env":{"description":"Env is an array of standard environment vairables","type":"array","items":{"description":"EnvVarPair describes environment variables to use for the component","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the environment variable name","type":"string"},"value":{"description":"Value is the environment variable value","type":"string"}}}},"target":{"description":"Target is used to reference a DeploymentTargetClaim for a target Environment. The Environment controller uses the referenced DeploymentTargetClaim to access its bounded DeploymentTarget with cluster credential secret.","type":"object","required":["deploymentTargetClaim"],"properties":{"deploymentTargetClaim":{"description":"DeploymentTargetClaimConfig specifies the DeploymentTargetClaim details for a given Environment.","type":"object","required":["claimName"],"properties":{"claimName":{"type":"string"}}}}}}},"deploymentStrategy":{"description":"DeploymentStrategy is the promotion strategy for the Environment See Environment API doc for details.","type":"string"},"displayName":{"description":"DisplayName is the user-visible, user-definable name for the environment (but not used for functional requirements)","type":"string"},"parentEnvironment":{"description":"ParentEnvironment references another Environment defined in the namespace: when automated promotion is enabled, promotions to the parent environment will cause this environment to be promoted to. See Environment API doc for details.","type":"string"},"tags":{"description":"Tags are a user-visisble, user-definable set of tags that can be applied to the environment","type":"array","items":{"type":"string"}},"type":{"description":"DEPRECATED: Type is whether the Environment is a POC or non-POC environment - This field is deprecated, and should not be used.","type":"string"},"unstableConfigurationFields":{"description":"UnstableConfigurationFields are experimental/prototype: the API has not been finalized here, and is subject to breaking changes. See comment on UnstableEnvironmentConfiguration for details.","type":"object","properties":{"clusterType":{"description":"ClusterType indicates whether the target environment is Kubernetes or OpenShift","type":"string"},"kubernetesCredentials":{"description":"KubernetesClusterCredentials contains cluster credentials for a target Kubernetes/OpenShift cluster.","type":"object","required":["allowInsecureSkipTLSVerify","apiURL","clusterCredentialsSecret","targetNamespace"],"properties":{"allowInsecureSkipTLSVerify":{"description":"Indicates that ArgoCD/GitOps Service should not check the TLS certificate.","type":"boolean"},"apiURL":{"description":"APIURL is a reference to a cluster API url defined within the kube config file of the cluster credentials secret.","type":"string"},"clusterCredentialsSecret":{"description":"ClusterCredentialsSecret is a reference to the name of k8s Secret, defined within the same namespace as the Environment resource, that contains a kubeconfig. The Secret must be of type 'managed-gitops.redhat.com/managed-environment' \n See this temporary URL for details: https://github.com/redhat-appstudio/managed-gitops/tree/main/examples/m6-demo#gitopsdeploymentmanagedenvironment-resource","type":"string"},"clusterResources":{"description":"ClusterResources is used in conjuction with the Namespace field. If the Namespaces field is non-empty, this field will be used to determine whether Argo CD should attempt to manage cluster-scoped resources. - If Namespaces field is empty, this field is not used. - If you are familiar with Argo CD: this field is equivalent to the field of the same name in the Argo CD Cluster Secret. \n Optional, default to false.","type":"boolean"},"ingressDomain":{"description":"IngressDomain is the cluster's ingress domain. For example, in minikube it would be $(minikube ip).nip.io and in OCP it would look like apps.xyz.rhcloud.com. If clusterType == \"Kubernetes\", ingressDomain is mandatory and is enforced by the webhook validation","type":"string"},"namespaces":{"description":"Namespaces allows one to indicate which Namespaces the Secret's ServiceAccount has access to. \n Optional, defaults to empty. If empty, it is assumed that the ServiceAccount has access to all Namespaces. \n The ServiceAccount that GitOps Service/Argo CD uses to deploy may not have access to all of the Namespaces on a cluster. If not specified, it is assumed that the Argo CD ServiceAccount has read/write at cluster-scope. - If you are familiar with Argo CD: this field is equivalent to the field of the same name in the Argo CD Cluster Secret.","type":"array","items":{"type":"string"}},"targetNamespace":{"description":"TargetNamespace is the default destination target on the cluster for deployments. This Namespace will be used for any GitOps repository K8s resources where the `.metadata.Namespace` field is not specified.","type":"string"}}}}}}},"status":{"description":"EnvironmentStatus defines the observed state of Environment","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{ // Represents the observations of a foo's current state. // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge // +listType=map // +listMapKey=type Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"Environment","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.EnvironmentList":{"description":"EnvironmentList is a list of Environment","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of environments. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Environment"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"EnvironmentList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ImageRepository":{"description":"ImageRepository is the Schema for the imagerepositories API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ImageRepositorySpec defines the desired state of ImageRepository","type":"object","properties":{"credentials":{"description":"Credentials management.","type":"object","properties":{"regenerate-namespace-pull-token":{"description":"RegenerateNamespacePullToken defines a request to refresh namespace pull robot credentials.\nThe field gets cleared after the refresh.","type":"boolean"},"regenerate-token":{"description":"RegenerateToken defines a request to refresh image accessing credentials.\nRefreshes both, push and pull tokens.\nThe field gets cleared after the refresh.","type":"boolean"},"verify-linking":{"description":"VerifyLinking defines a request to verify and fix\nsecret linking in pipeline service account.\nThe field gets cleared after fixing.","type":"boolean"}}},"image":{"description":"Requested image repository configuration.","type":"object","properties":{"name":{"description":"Name of the image within configured Quay organization.\nIf ommited, then defaults to \"cr-namespace/cr-name\".\nThis field cannot be changed after the resource creation.","type":"string","pattern":"^[a-z0-9][.a-z0-9_-]*(/[a-z0-9][.a-z0-9_-]*)*$"},"visibility":{"description":"Visibility defines whether the image is publicly visible.\nAllowed values are public and private.\n\"public\" is the default.","type":"string","enum":["public","private"]}}},"notifications":{"description":"Notifications defines configuration for image repository notifications.","type":"array","items":{"type":"object","properties":{"config":{"type":"object","properties":{"email":{"description":"Email is the email address to send notifications to.","type":"string"},"url":{"description":"Webhook is the URL to send notifications to.","type":"string"}}},"event":{"type":"string","enum":["repo_push"]},"method":{"type":"string","enum":["email","webhook"]},"title":{"type":"string"}}}}}},"status":{"description":"ImageRepositoryStatus defines the observed state of ImageRepository","type":"object","properties":{"credentials":{"description":"Credentials contain information related to image repository credentials.","type":"object","properties":{"generationTimestamp":{"description":"GenerationTime shows timestamp when the current credentials were generated.","type":"string","format":"date-time"},"pull-robot-account":{"description":"PullRobotAccountName is present only if ImageRepository has labels that connect it to Application and Component.\nHolds name of the quay robot account with real (pull only) permissions from the generated repository.","type":"string"},"pull-secret":{"description":"PullSecretName is present only if ImageRepository has labels that connect it to Application and Component.\nHolds name of the dockerconfig secret with credentials to pull only from the generated repository.\nThe secret might not be present in the same namespace as ImageRepository, but created in other environments.","type":"string"},"push-robot-account":{"description":"PushRobotAccountName holds name of the quay robot account with write (push and pull) permissions into the generated repository.","type":"string"},"push-secret":{"description":"PushSecretName holds name of the dockerconfig secret with credentials to push (and pull) into the generated repository.","type":"string"}}},"image":{"description":"Image describes actual state of the image repository.","type":"object","properties":{"url":{"description":"URL is the full image repository url to push into / pull from.","type":"string"},"visibility":{"description":"Visibility shows actual generated image repository visibility.","type":"string"}}},"message":{"description":"Message shows error information for the request.\nIt could contain non critical error, like failed to change image visibility,\nwhile the state is ready and image resitory could be used.","type":"string"},"notifications":{"description":"Notifications shows the status of the notifications configuration.","type":"array","items":{"description":"NotificationStatus shows the status of the notification configuration.","type":"object","properties":{"title":{"type":"string"},"uuid":{"type":"string"}}}},"state":{"description":"State shows if image repository could be used.\n\"ready\" means repository was created and usable,\n\"failed\" means that the image repository creation request failed.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ImageRepository","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ImageRepositoryList":{"description":"ImageRepositoryList is a list of ImageRepository","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imagerepositories. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ImageRepository"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ImageRepositoryList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.IntegrationTestScenario":{"description":"IntegrationTestScenario is the Schema for the integrationtestscenarios API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"IntegrationTestScenarioSpec defines the desired state of IntegrationScenario","type":"object","required":["application","bundle","pipeline"],"properties":{"application":{"description":"Application that's associated with the IntegrationTestScenario","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"bundle":{"description":"Tekton Bundle where to find the pipeline","type":"string"},"contexts":{"description":"Contexts where this IntegrationTestScenario can be applied","type":"array","items":{"description":"TestContext contains the name and values of a Test context","type":"object","required":["name"],"properties":{"description":{"type":"string"},"name":{"type":"string"}}}},"environment":{"description":"Environment that will be utilized by the test pipeline","type":"object","required":["name","type"],"properties":{"configuration":{"description":"EnvironmentConfiguration contains Environment-specific configurations details, to be used when generating\nComponent/Application GitOps repository resources.","type":"object","properties":{"env":{"description":"An array of standard environment variables","type":"array","items":{"description":"EnvVarPair describes environment variables to use for the component","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the environment variable name","type":"string"},"value":{"description":"Value is the environment variable value","type":"string"}}}},"target":{"description":"Target is used to reference a DeploymentTargetClaim for a target Environment.\nThe Environment controller uses the referenced DeploymentTargetClaim to access its bounded\nDeploymentTarget with cluster credential secret.","type":"object","required":["deploymentTargetClaim"],"properties":{"deploymentTargetClaim":{"description":"DeploymentTargetClaimConfig specifies the DeploymentTargetClaim details for a given Environment.","type":"object","required":["claimName"],"properties":{"claimName":{"type":"string"}}}}}}},"name":{"type":"string"},"type":{"description":"DEPRECATED: EnvironmentType should no longer be used, and has no replacement.\n- It's original purpose was to indicate whether an environment is POC/Non-POC, but these data were ultimately not required.","type":"string"}}},"params":{"description":"Params to pass to the pipeline","type":"array","items":{"description":"PipelineParameter contains the name and values of a Tekton Pipeline parameter","type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"pipeline":{"description":"Release Tekton Pipeline to execute","type":"string"}}},"status":{"description":"IntegrationTestScenarioStatus defines the observed state of IntegrationTestScenario","type":"object","required":["conditions"],"properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.IntegrationTestScenarioList":{"description":"IntegrationTestScenarioList is a list of IntegrationTestScenario","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of integrationtestscenarios. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.IntegrationTestScenario"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"IntegrationTestScenarioList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.InternalRequest":{"description":"InternalRequest is the Schema for the internalrequests API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"InternalRequestSpec defines the desired state of InternalRequest.","type":"object","required":["pipeline"],"properties":{"params":{"description":"Params is the list of optional parameters to pass to the Tekton pipeline\nkubebuilder:pruning:PreserveUnknownFields","type":"object","additionalProperties":{"type":"string"}},"pipeline":{"description":"Pipeline contains the details of the pipeline to execute for the InternalRequest","type":"object","required":["pipelineRef"],"properties":{"params":{"description":"Params is a slice of parameters for a given resolver","type":"array","items":{"description":"Param defines the parameters for a given resolver in PipelineRef","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"pipelineRef":{"description":"PipelineRef is the reference to the Pipeline","type":"object","required":["params","resolver"],"properties":{"params":{"description":"Params is a slice of parameters for a given resolver","type":"array","items":{"description":"Param defines the parameters for a given resolver in PipelineRef","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"resolver":{"description":"Resolver is the name of a Tekton resolver to be used (e.g. git)","type":"string"}}},"serviceAccountName":{"description":"ServiceAccountName is the ServiceAccount to use during the execution of the Pipeline","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"timeouts":{"description":"Timeouts defines the different Timeouts to use in the PipelineRun execution","type":"object","properties":{"finally":{"description":"Finally sets the maximum allowed duration of this pipeline's finally","type":"string"},"pipeline":{"description":"Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.","type":"string"},"tasks":{"description":"Tasks sets the maximum allowed duration of this pipeline's tasks","type":"string"}}}}},"serviceAccount":{"description":"ServiceAccount defines the serviceAccount to use in the InternalRequest PipelineRun execution.\nIf none is passed, the default Tekton ServiceAccount will be used","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"timeouts":{"description":"Timeouts defines the different Timeouts to use in the InternalRequest PipelineRun execution","type":"object","properties":{"finally":{"description":"Finally sets the maximum allowed duration of this pipeline's finally","type":"string"},"pipeline":{"description":"Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.","type":"string"},"tasks":{"description":"Tasks sets the maximum allowed duration of this pipeline's tasks","type":"string"}}}}},"status":{"description":"InternalRequestStatus defines the observed state of InternalRequest.","type":"object","properties":{"completionTime":{"description":"CompletionTime is the time the InternalRequest PipelineRun completed","type":"string","format":"date-time"},"conditions":{"description":"Conditions represent the latest available observations for the internalrequest","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"pipelineRun":{"description":"PipelineRun contains the namespaced name of the PipelineRun executed for this InternalRequest","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"results":{"description":"Results is the list of optional results as seen in the Tekton PipelineRun\nkubebuilder:pruning:PreserveUnknownFields","type":"object","additionalProperties":{"type":"string"}},"startTime":{"description":"StartTime is the time when the InternalRequest PipelineRun was created and set to run","type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"InternalRequest","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.InternalRequestList":{"description":"InternalRequestList is a list of InternalRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of internalrequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"InternalRequestList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.InternalServicesConfig":{"description":"InternalServicesConfig is the Schema for the internalservicesconfigs API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"InternalServicesConfigSpec defines the desired state of InternalServicesConfig.","type":"object","properties":{"allowList":{"description":"AllowList is the list of remote namespaces that are allowed to execute InternalRequests","type":"array","items":{"type":"string"}},"debug":{"description":"Debug sets the operator to run in debug mode. In this mode, PipelineRuns and PVCs will not be removed","type":"boolean"},"volumeClaim":{"description":"VolumeClaim holds information about the volume to request for Pipelines requiring a workspace","type":"object","properties":{"name":{"description":"Name is the workspace name","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"size":{"description":"Size is the size that will be requested when a workspace is required by a Pipeline","type":"string","pattern":"^[1-9][0-9]*(K|M|G)i$"}}}}},"status":{"description":"InternalServicesConfigStatus defines the observed state of InternalServicesConfig.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"InternalServicesConfig","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.InternalServicesConfigList":{"description":"InternalServicesConfigList is a list of InternalServicesConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of internalservicesconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.InternalServicesConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"InternalServicesConfigList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.PromotionRun":{"description":"PromotionRun is the Schema for the promotionruns API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PromotionRunSpec defines the desired state of PromotionRun","type":"object","required":["application","snapshot"],"properties":{"application":{"description":"Application is the name of an Application resource defined within the namespaced, and which is the target of the promotion","type":"string"},"automatedPromotion":{"description":"AutomatedPromotion is for fields specific to automated promotion Only one field should be defined: either 'manualPromotion' or 'automatedPromotion', but not both.","type":"object","required":["initialEnvironment"],"properties":{"initialEnvironment":{"description":"InitialEnvironment: start iterating through the digraph, beginning with the value specified in 'initialEnvironment'","type":"string"}}},"manualPromotion":{"description":"ManualPromotion is for fields specific to manual promotion. Only one field should be defined: either 'manualPromotion' or 'automatedPromotion', but not both.","type":"object","required":["targetEnvironment"],"properties":{"targetEnvironment":{"description":"TargetEnvironment is the environment to promote to","type":"string"}}},"snapshot":{"description":"Snapshot refers to the name of a Snapshot resource defined within the namespace, used to promote container images between Environments.","type":"string"}}},"status":{"description":"PromotionRunStatus defines the observed state of PromotionRun","type":"object","required":["state"],"properties":{"activeBindings":{"description":"ActiveBindings is the list of active bindings currently being promoted to: - For an automated promotion, there can be multiple active bindings at a time (one for each env at a particular tree depth) - For a manual promotion, there will be only one.","type":"array","items":{"type":"string"}},"completionResult":{"description":"CompletionResult indicates success/failure once the promotion has completed all work. CompletionResult will only have a value if State field is 'Complete'.","type":"string"},"conditions":{"type":"array","items":{"description":"PromotionRunCondition contains details about an PromotionRun condition, which is usually an error or warning","type":"object","required":["status","type"],"properties":{"lastProbeTime":{"description":"LastProbeTime is the last time the condition was observed.","type":"string","format":"date-time"},"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.","type":"string","format":"date-time"},"message":{"description":"Message contains human-readable message indicating details about the last condition.","type":"string"},"reason":{"description":"Reason is a unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"Status is the status of the condition.","type":"string"},"type":{"description":"Type is a PromotionRun condition type","type":"string"}}}},"environmentStatus":{"description":"EnvironmentStatus represents the set of steps taken during the  current promotion","type":"array","items":{"description":"PromotionRunEnvironmentStatus represents the set of steps taken during the  current promotion: - manual promotions will only have a single step. - automated promotions may have one or more steps, depending on how many environments have been promoted to.","type":"object","required":["displayStatus","environmentName","status","step"],"properties":{"displayStatus":{"description":"DisplayStatus is human-readible description of the current state/status.","type":"string"},"environmentName":{"description":"EnvironmentName is the name of the environment that was promoted to in this step","type":"string"},"status":{"description":"Status is/was the result of promoting to that environment.","type":"string"},"step":{"description":"Step is the sequential number of the step in the array, starting with 1","type":"integer"}}}},"promotionStartTime":{"description":"PromotionStartTime is set to the value when the PromotionRun Reconciler first started the promotion.","type":"string","format":"date-time"},"state":{"description":"State indicates whether or not the overall promotion (either manual or automated is complete)","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"PromotionRun","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.PromotionRunList":{"description":"PromotionRunList is a list of PromotionRun","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of promotionruns. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.PromotionRun"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"PromotionRunList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.Release":{"description":"Release is the Schema for the releases API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ReleaseSpec defines the desired state of Release.","type":"object","required":["releasePlan","snapshot"],"properties":{"data":{"description":"Data is an unstructured key used for providing data for the managed Release Pipeline","x-kubernetes-preserve-unknown-fields":true},"gracePeriodDays":{"description":"GracePeriodDays is the number of days a Release should be kept\nThis value is used to define the Release ExpirationTime","type":"integer"},"releasePlan":{"description":"ReleasePlan to use for this particular Release","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"snapshot":{"description":"Snapshot to be released","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"status":{"description":"ReleaseStatus defines the observed state of Release.","type":"object","properties":{"artifacts":{"description":"Artifacts is an unstructured key used for storing all the artifacts generated by the managed Release Pipeline","x-kubernetes-preserve-unknown-fields":true},"attribution":{"description":"Attribution contains information about the entity authorizing the release","type":"object","properties":{"author":{"description":"Author is the username that the release is attributed to","type":"string"},"standingAuthorization":{"description":"StandingAuthorization indicates whether the release is attributed through a ReleasePlan","type":"boolean"}}},"automated":{"description":"Automated indicates whether the Release was created as part of an automated process or manually by an end-user","type":"boolean"},"collectors":{"description":"Collectors is an unstructured key used for storing all the collectors results generated by the Collectors Pipeline","x-kubernetes-preserve-unknown-fields":true},"collectorsProcessing":{"description":"CollectorsProcessing contains information about the release collectors processing","type":"object","properties":{"managedCollectorsProcessing":{"description":"ManagedCollectorsProcessing contains information about the release managed collectors processing","type":"object","properties":{"completionTime":{"description":"CompletionTime is the time when the Release processing was completed","type":"string","format":"date-time"},"pipelineRun":{"description":"PipelineRun contains the namespaced name of the managed Release PipelineRun executed as part of this release","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"roleBindings":{"description":"RoleBindings defines the roleBindings for accessing resources during the Release\nPipelineRun executed as part of this release.","type":"object","properties":{"managedRoleBinding":{"description":"ManagedRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the managed namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"secretRoleBinding":{"description":"SecretRoleBinding contains the namespaced name of the roleBinding created for accessing secrets within the namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantRoleBinding":{"description":"TenantRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the tenant namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"startTime":{"description":"StartTime is the time when the Release processing started","type":"string","format":"date-time"}}},"tenantCollectorsProcessing":{"description":"TenantCollectorsProcessing contains information about the release tenant collectors processing","type":"object","properties":{"completionTime":{"description":"CompletionTime is the time when the Release processing was completed","type":"string","format":"date-time"},"pipelineRun":{"description":"PipelineRun contains the namespaced name of the managed Release PipelineRun executed as part of this release","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"roleBindings":{"description":"RoleBindings defines the roleBindings for accessing resources during the Release\nPipelineRun executed as part of this release.","type":"object","properties":{"managedRoleBinding":{"description":"ManagedRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the managed namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"secretRoleBinding":{"description":"SecretRoleBinding contains the namespaced name of the roleBinding created for accessing secrets within the namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantRoleBinding":{"description":"TenantRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the tenant namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"startTime":{"description":"StartTime is the time when the Release processing started","type":"string","format":"date-time"}}}}},"completionTime":{"description":"CompletionTime is the time when a Release was completed","type":"string","format":"date-time"},"conditions":{"description":"Conditions represent the latest available observations for the release","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"expirationTime":{"description":"ExpirationTime is the time when a Release can be purged","type":"string","format":"date-time"},"finalProcessing":{"description":"FinalProcessing contains information about the release final processing","type":"object","properties":{"completionTime":{"description":"CompletionTime is the time when the Release processing was completed","type":"string","format":"date-time"},"pipelineRun":{"description":"PipelineRun contains the namespaced name of the managed Release PipelineRun executed as part of this release","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"roleBindings":{"description":"RoleBindings defines the roleBindings for accessing resources during the Release\nPipelineRun executed as part of this release.","type":"object","properties":{"managedRoleBinding":{"description":"ManagedRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the managed namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"secretRoleBinding":{"description":"SecretRoleBinding contains the namespaced name of the roleBinding created for accessing secrets within the namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantRoleBinding":{"description":"TenantRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the tenant namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"startTime":{"description":"StartTime is the time when the Release processing started","type":"string","format":"date-time"}}},"managedPipelineAttempts":{"description":"ManagedPipelineAttempts contains information about each attempt of the release managed pipeline processing","type":"array","items":{"description":"ManagedPipelineAttempt defines the observed state of a managed pipeline processing attempt","type":"object","properties":{"completionTime":{"description":"CompletionTime is the time when the managed pipeline attempt completed","type":"string","format":"date-time"},"failureReason":{"description":"FailureReason is the failure type when the PipelineRun fails","type":"string"},"lastStep":{"description":"LastStep is the name of the last step that executed or failed within the last task","type":"string"},"lastTask":{"description":"LastTask is the name of the last task that executed or failed","type":"string"},"pipelineRun":{"description":"PipelineRun contains the namespaced name of the managed Release PipelineRun executed as part of this attempt","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"roleBindings":{"description":"RoleBindings defines the roleBindings for accessing resources during the managed pipeline attempt","type":"object","properties":{"managedRoleBinding":{"description":"ManagedRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the managed namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"secretRoleBinding":{"description":"SecretRoleBinding contains the namespaced name of the roleBinding created for accessing secrets within the namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantRoleBinding":{"description":"TenantRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the tenant namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"startTime":{"description":"StartTime is the time when the managed pipeline attempt started","type":"string","format":"date-time"},"status":{"description":"Status is the outcome of the managed pipeline attempt","type":"string"},"successfulTasks":{"description":"SuccessfulTasks is the number of tasks that completed successfully","type":"integer"}}}},"managedProcessing":{"description":"ManagedProcessing contains information about the release managed processing\nDeprecated: kept for backward compatibility, use ManagedPipelineAttempts instead","type":"object","properties":{"completionTime":{"description":"CompletionTime is the time when the Release processing was completed","type":"string","format":"date-time"},"pipelineRun":{"description":"PipelineRun contains the namespaced name of the managed Release PipelineRun executed as part of this release","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"roleBindings":{"description":"RoleBindings defines the roleBindings for accessing resources during the Release\nPipelineRun executed as part of this release.","type":"object","properties":{"managedRoleBinding":{"description":"ManagedRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the managed namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"secretRoleBinding":{"description":"SecretRoleBinding contains the namespaced name of the roleBinding created for accessing secrets within the namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantRoleBinding":{"description":"TenantRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the tenant namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"startTime":{"description":"StartTime is the time when the Release processing started","type":"string","format":"date-time"}}},"startTime":{"description":"StartTime is the time when a Release started","type":"string","format":"date-time"},"target":{"description":"Target references where this release is intended to be released to","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantProcessing":{"description":"TenantProcessing contains information about the release tenant processing","type":"object","properties":{"completionTime":{"description":"CompletionTime is the time when the Release processing was completed","type":"string","format":"date-time"},"pipelineRun":{"description":"PipelineRun contains the namespaced name of the managed Release PipelineRun executed as part of this release","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"roleBindings":{"description":"RoleBindings defines the roleBindings for accessing resources during the Release\nPipelineRun executed as part of this release.","type":"object","properties":{"managedRoleBinding":{"description":"ManagedRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the managed namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"secretRoleBinding":{"description":"SecretRoleBinding contains the namespaced name of the roleBinding created for accessing secrets within the namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantRoleBinding":{"description":"TenantRoleBinding contains the namespaced name of the roleBinding created for accessing resources within the tenant namespace.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"startTime":{"description":"StartTime is the time when the Release processing started","type":"string","format":"date-time"}}},"validation":{"description":"Validation contains information about the release validation","type":"object","properties":{"failedPostValidation":{"description":"FailedPostValidation indicates whether the Release was marked as invalid after being initially marked as valid","type":"boolean"},"time":{"description":"Time is the time when the Release was validated or when the validation state changed","type":"string","format":"date-time"}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"Release","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ReleaseList":{"description":"ReleaseList is a list of Release","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of releases. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Release"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ReleaseList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ReleasePlan":{"description":"ReleasePlan is the Schema for the ReleasePlans API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ReleasePlanSpec defines the desired state of ReleasePlan.","type":"object","properties":{"application":{"description":"Application is a reference to the application to be released in the managed namespace.\nEither application or componentGroup must be specified, but not both.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"collectors":{"description":"Collectors contains all the information of the collectors to be executed as part of the release workflow","type":"object","required":["items"],"properties":{"items":{"description":"Items is the list of Collectors to be executed as part of the release workflow","type":"array","items":{"description":"CollectorItem represents all the information about an specific collector which will be executed in the\nCollectorsPipeline.","type":"object","required":["name","params","type"],"properties":{"name":{"description":"Name of the collector","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"params":{"description":"Params is a slice of parameters for a given collector","type":"array","items":{"description":"Param represents a parameter for a collector","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"timeout":{"description":"Timeout in seconds for the collector to execute","type":"integer"},"type":{"description":"Type is the type of collector to be used","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}}},"secrets":{"description":"Secrets is the list of secrets to be used in the Collector's Pipeline","type":"array","items":{"type":"string"}},"serviceAccountName":{"description":"ServiceAccountName is the ServiceAccount to use during the execution of the Collectors Pipeline","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"componentGroup":{"description":"ComponentGroup is a reference to the component group to be released in the managed namespace.\nEither application or componentGroup must be specified, but not both.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"data":{"description":"Data is an unstructured key used for providing data for the managed Release Pipeline","x-kubernetes-preserve-unknown-fields":true},"finalPipeline":{"description":"FinalPipeline contains all the information about the final Pipeline","type":"object","required":["pipelineRef"],"properties":{"maxRetries":{"description":"MaxRetries sets the retry limit for the pipeline overriding the value in\nReleaseServiceConfig when specified. When unset the ReleaseServiceConfig\nvalue is used and 0 disables retries for the pipeline.","type":"integer","minimum":0},"params":{"description":"Params is a slice of parameters to be passed to the Pipeline","type":"array","items":{"description":"Param defines the parameters for a given resolver in PipelineRef","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"pipelineRef":{"description":"PipelineRef is the reference to the Pipeline","type":"object","required":["params","resolver"],"properties":{"ociStorage":{"description":"OciStorage specifies the OCI repository where the Trusted Artifacts are stored.\nThis value is passed to the Pipeline as the \"ociStorage\" parameter.\nIf not set, the default value from the Pipeline definition will be used.\nThis field is intended for use in ReleasePlanAdmissions.","type":"string"},"params":{"description":"Params is a slice of parameters for a given resolver","type":"array","items":{"description":"Param defines the parameters for a given resolver in PipelineRef","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"resolver":{"description":"Resolver is the name of a Tekton resolver to be used (e.g. git)","type":"string"},"useEmptyDir":{"description":"UseEmptyDir specifies whether to use an empty dir volume for the workspace.\nWhen true, the PipelineRun will use an empty dir volume. Otherwise, it will\nuse a volume claim template by default.","type":"boolean"}}},"serviceAccountName":{"description":"ServiceAccountName is the ServiceAccount to use during the execution of the Pipeline","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"taskRunSpecs":{"description":"TaskRunSpecs is the PipelineTaskRunSpec to be used in the PipelineRun execution","type":"array","items":{"description":"PipelineTaskRunSpec  can be used to configure specific\nspecs for a concrete Task","type":"object","properties":{"computeResources":{"description":"Compute resources to use for this TaskRun","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"metadata":{"description":"PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"pipelineTaskName":{"type":"string"},"podTemplate":{"description":"PodTemplate holds pod specific configuration","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"serviceAccountName":{"type":"string"},"sidecarSpecs":{"type":"array","items":{"description":"TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Sidecar.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Sidecar to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"stepSpecs":{"type":"array","items":{"description":"TaskRunStepSpec is used to override the values of a Step in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Step.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Step to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"timeout":{"description":"Duration after which the TaskRun times out. Overrides the timeout specified\non the Task's spec if specified. Takes lower precedence to PipelineRun's\n`spec.timeouts.tasks`\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"}}}},"timeouts":{"description":"Timeouts defines the different Timeouts to use in the PipelineRun execution","type":"object","properties":{"finally":{"description":"Finally sets the maximum allowed duration of this pipeline's finally","type":"string"},"pipeline":{"description":"Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.","type":"string"},"tasks":{"description":"Tasks sets the maximum allowed duration of this pipeline's tasks","type":"string"}}}}},"releaseGracePeriodDays":{"description":"ReleaseGracePeriodDays is the number of days a Release should be kept\nThis value is used to define the Release ExpirationTime","type":"integer"},"target":{"description":"Target references where to send the release requests","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"tenantPipeline":{"description":"TenantPipeline contains all the information about the tenant Pipeline","type":"object","required":["pipelineRef"],"properties":{"maxRetries":{"description":"MaxRetries sets the retry limit for the pipeline overriding the value in\nReleaseServiceConfig when specified. When unset the ReleaseServiceConfig\nvalue is used and 0 disables retries for the pipeline.","type":"integer","minimum":0},"params":{"description":"Params is a slice of parameters to be passed to the Pipeline","type":"array","items":{"description":"Param defines the parameters for a given resolver in PipelineRef","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"pipelineRef":{"description":"PipelineRef is the reference to the Pipeline","type":"object","required":["params","resolver"],"properties":{"ociStorage":{"description":"OciStorage specifies the OCI repository where the Trusted Artifacts are stored.\nThis value is passed to the Pipeline as the \"ociStorage\" parameter.\nIf not set, the default value from the Pipeline definition will be used.\nThis field is intended for use in ReleasePlanAdmissions.","type":"string"},"params":{"description":"Params is a slice of parameters for a given resolver","type":"array","items":{"description":"Param defines the parameters for a given resolver in PipelineRef","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"resolver":{"description":"Resolver is the name of a Tekton resolver to be used (e.g. git)","type":"string"},"useEmptyDir":{"description":"UseEmptyDir specifies whether to use an empty dir volume for the workspace.\nWhen true, the PipelineRun will use an empty dir volume. Otherwise, it will\nuse a volume claim template by default.","type":"boolean"}}},"serviceAccountName":{"description":"ServiceAccountName is the ServiceAccount to use during the execution of the Pipeline","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"taskRunSpecs":{"description":"TaskRunSpecs is the PipelineTaskRunSpec to be used in the PipelineRun execution","type":"array","items":{"description":"PipelineTaskRunSpec  can be used to configure specific\nspecs for a concrete Task","type":"object","properties":{"computeResources":{"description":"Compute resources to use for this TaskRun","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"metadata":{"description":"PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"pipelineTaskName":{"type":"string"},"podTemplate":{"description":"PodTemplate holds pod specific configuration","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"serviceAccountName":{"type":"string"},"sidecarSpecs":{"type":"array","items":{"description":"TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Sidecar.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Sidecar to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"stepSpecs":{"type":"array","items":{"description":"TaskRunStepSpec is used to override the values of a Step in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Step.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Step to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"timeout":{"description":"Duration after which the TaskRun times out. Overrides the timeout specified\non the Task's spec if specified. Takes lower precedence to PipelineRun's\n`spec.timeouts.tasks`\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"}}}},"timeouts":{"description":"Timeouts defines the different Timeouts to use in the PipelineRun execution","type":"object","properties":{"finally":{"description":"Finally sets the maximum allowed duration of this pipeline's finally","type":"string"},"pipeline":{"description":"Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.","type":"string"},"tasks":{"description":"Tasks sets the maximum allowed duration of this pipeline's tasks","type":"string"}}}}}},"x-kubernetes-validations":[{"message":"exactly one of application or componentGroup must be specified","rule":"has(self.application) != has(self.componentGroup)"}]},"status":{"description":"ReleasePlanStatus defines the observed state of ReleasePlan.","type":"object","properties":{"conditions":{"description":"Conditions represent the latest available observations for the releasePlan","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"releasePlanAdmission":{"description":"ReleasePlanAdmission contains the information of the releasePlanAdmission this ReleasePlan is\nmatched to","type":"object","properties":{"active":{"description":"Active indicates whether the ReleasePlanAdmission is set to auto-release or not","type":"boolean"},"name":{"description":"Name contains the namespaced name of the releasePlanAdmission","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ReleasePlan","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ReleasePlanAdmission":{"description":"ReleasePlanAdmission is the Schema for the ReleasePlanAdmissions API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ReleasePlanAdmissionSpec defines the desired state of ReleasePlanAdmission.","type":"object","required":["origin","policy"],"properties":{"applications":{"description":"Applications is a list of references to applications to be released in the managed namespace.\nEither applications or componentGroups must be specified, but not both.","type":"array","minItems":1,"items":{"type":"string"}},"collectors":{"description":"Collectors contains all the information of the collectors to be executed as part of the release workflow","type":"object","required":["items"],"properties":{"items":{"description":"Items is the list of Collectors to be executed as part of the release workflow","type":"array","items":{"description":"CollectorItem represents all the information about an specific collector which will be executed in the\nCollectorsPipeline.","type":"object","required":["name","params","type"],"properties":{"name":{"description":"Name of the collector","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"params":{"description":"Params is a slice of parameters for a given collector","type":"array","items":{"description":"Param represents a parameter for a collector","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"timeout":{"description":"Timeout in seconds for the collector to execute","type":"integer"},"type":{"description":"Type is the type of collector to be used","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}}},"secrets":{"description":"Secrets is the list of secrets to be used in the Collector's Pipeline","type":"array","items":{"type":"string"}},"serviceAccountName":{"description":"ServiceAccountName is the ServiceAccount to use during the execution of the Collectors Pipeline","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"componentGroups":{"description":"ComponentGroups is a list of references to component groups to be released in the managed namespace.\nEither applications or componentGroups must be specified, but not both.","type":"array","minItems":1,"items":{"type":"string"}},"data":{"description":"Data is an unstructured key used for providing data for the managed Release Pipeline","x-kubernetes-preserve-unknown-fields":true},"environment":{"description":"Environment defines which Environment will be used to release the Application","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"origin":{"description":"Origin references where the release requests should come from","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"pipeline":{"description":"Pipeline contains all the information about the managed Pipeline","type":"object","required":["pipelineRef"],"properties":{"maxRetries":{"description":"MaxRetries sets the retry limit for the pipeline overriding the value in\nReleaseServiceConfig when specified. When unset the ReleaseServiceConfig\nvalue is used and 0 disables retries for the pipeline.","type":"integer","minimum":0},"pipelineRef":{"description":"PipelineRef is the reference to the Pipeline","type":"object","required":["params","resolver"],"properties":{"ociStorage":{"description":"OciStorage specifies the OCI repository where the Trusted Artifacts are stored.\nThis value is passed to the Pipeline as the \"ociStorage\" parameter.\nIf not set, the default value from the Pipeline definition will be used.\nThis field is intended for use in ReleasePlanAdmissions.","type":"string"},"params":{"description":"Params is a slice of parameters for a given resolver","type":"array","items":{"description":"Param defines the parameters for a given resolver in PipelineRef","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the parameter","type":"string"},"value":{"description":"Value is the value of the parameter","type":"string"}}}},"resolver":{"description":"Resolver is the name of a Tekton resolver to be used (e.g. git)","type":"string"},"useEmptyDir":{"description":"UseEmptyDir specifies whether to use an empty dir volume for the workspace.\nWhen true, the PipelineRun will use an empty dir volume. Otherwise, it will\nuse a volume claim template by default.","type":"boolean"}}},"serviceAccountName":{"description":"ServiceAccountName is the ServiceAccount to use during the execution of the Pipeline","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"taskRunSpecs":{"description":"TaskRunSpecs is the PipelineTaskRunSpec to be used in the PipelineRun execution","type":"array","items":{"description":"PipelineTaskRunSpec  can be used to configure specific\nspecs for a concrete Task","type":"object","properties":{"computeResources":{"description":"Compute resources to use for this TaskRun","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"metadata":{"description":"PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"pipelineTaskName":{"type":"string"},"podTemplate":{"description":"PodTemplate holds pod specific configuration","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"serviceAccountName":{"type":"string"},"sidecarSpecs":{"type":"array","items":{"description":"TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Sidecar.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Sidecar to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"stepSpecs":{"type":"array","items":{"description":"TaskRunStepSpec is used to override the values of a Step in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Step.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Step to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"timeout":{"description":"Duration after which the TaskRun times out. Overrides the timeout specified\non the Task's spec if specified. Takes lower precedence to PipelineRun's\n`spec.timeouts.tasks`\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"}}}},"timeouts":{"description":"Timeouts defines the different Timeouts to use in the PipelineRun execution","type":"object","properties":{"finally":{"description":"Finally sets the maximum allowed duration of this pipeline's finally","type":"string"},"pipeline":{"description":"Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.","type":"string"},"tasks":{"description":"Tasks sets the maximum allowed duration of this pipeline's tasks","type":"string"}}}}},"policy":{"description":"Policy to validate before releasing an artifact","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}},"x-kubernetes-validations":[{"message":"exactly one of applications or componentGroups must be specified","rule":"has(self.applications) != has(self.componentGroups)"}]},"status":{"description":"ReleasePlanAdmissionStatus defines the observed state of ReleasePlanAdmission.","type":"object","properties":{"conditions":{"description":"Conditions represent the latest available observations for the releasePlanAdmission","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"releasePlans":{"description":"ReleasePlan is a list of releasePlans matched to the ReleasePlanAdmission","type":"array","items":{"description":"MatchedReleasePlan defines the relevant information for a matched ReleasePlan.","type":"object","properties":{"active":{"description":"Active indicates whether the ReleasePlan is set to auto-release or not","type":"boolean"},"name":{"description":"Name contains the namespaced name of the ReleasePlan","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?\\/[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmission","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ReleasePlanAdmissionList":{"description":"ReleasePlanAdmissionList is a list of ReleasePlanAdmission","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of releaseplanadmissions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlanAdmission"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ReleasePlanAdmissionList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ReleasePlanList":{"description":"ReleasePlanList is a list of ReleasePlan","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of releaseplans. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleasePlan"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ReleasePlanList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ReleaseServiceConfig":{"description":"ReleaseServiceConfig is the Schema for the releaseserviceconfigs API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ReleaseServiceConfigSpec defines the desired state of ReleaseServiceConfig.","type":"object","properties":{"EmptyDirOverrides":{"description":"VolumeOverrides is a map containing the volume type for specific Pipeline git refs","type":"array","items":{"description":"EmptyDirOverrides defines the values usually set in a PipelineRef using a git resolver.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"PathInRepo is the path within the git repository where the Pipeline definition can be found","type":"string"},"revision":{"description":"Revision is the git revision where the Pipeline definition can be found","type":"string"},"url":{"description":"Url is the url to the git repo","type":"string"}}}},"debug":{"description":"Debug is the boolean that specifies whether or not the Release Service should run\nin debug mode","type":"boolean"},"defaultTimeouts":{"description":"DefaultTimeouts contain the default Tekton timeouts to be used in case they are\nnot specified in the ReleasePlanAdmission resource.","type":"object","properties":{"finally":{"description":"Finally sets the maximum allowed duration of this pipeline's finally","type":"string"},"pipeline":{"description":"Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.","type":"string"},"tasks":{"description":"Tasks sets the maximum allowed duration of this pipeline's tasks","type":"string"}}},"retryablePipelines":{"description":"RetryablePipelines is a list of pipelines that are safe to automatically retry on failure.","type":"array","items":{"description":"RetryablePipeline is a pipeline that is safe to automatically retry on failure.","type":"object","required":["pathInRepo","retryPolicy","revision","url"],"properties":{"pathInRepo":{"description":"PathInRepo is the path within the git repository where the Pipeline definition\ncan be found.","type":"string"},"retryPolicy":{"description":"RetryPolicy defines how and when the pipeline is retried after a failure.","type":"object","required":["maxRetries"],"properties":{"disableOn":{"description":"DisableOn defines conditions that disable automatic retries.","type":"object","properties":{"tags":{"description":"Tags is a list of values which disable retries when present in the ReleasePlanAdmission\nmapping data.","type":"array","items":{"type":"string"}}}},"maxRetries":{"description":"MaxRetries is the maximum number of retries allowed for a pipeline.","type":"integer","minimum":0},"mitigations":{"description":"Mitigations defines adjustment strategies to apply on retry based on failure type","type":"object","properties":{"oomKill":{"description":"OOMKill defines adjustment for out-of-memory failures","type":"object","required":["multiplier"],"properties":{"maxComputeResources":{"description":"MaxComputeResources sets a upper limit on resources across retries.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"multiplier":{"description":"Multiplier is a factor used to multiply memory limits on each retry","type":"string","pattern":"^[0-9]+(\\.[0-9]+)?$"}}},"timeout":{"description":"Timeout defines adjustment for timeout failures.","type":"object","properties":{"pipeline":{"description":"Pipeline defines the timeout adjustment for PipelineRun timeouts.","type":"object","required":["increment"],"properties":{"increment":{"description":"Increment is the duration to add to the timeout on each retry.","type":"string"},"maxTimeout":{"description":"MaxTimeout is the maximum time allowed across retries.","type":"string"}}},"task":{"description":"Task defines the timeout adjustment for TaskRun timeouts.","type":"object","required":["increment"],"properties":{"increment":{"description":"Increment is the duration to add to the timeout on each retry.","type":"string"},"maxTimeout":{"description":"MaxTimeout is the maximum time allowed across retries.","type":"string"}}}}}}}}},"revision":{"description":"Revision is the git revision where the Pipeline definition can be found.","type":"string"},"url":{"description":"Url is the url to the git repo.","type":"string"}}}}}},"status":{"description":"ReleaseServiceConfigStatus defines the observed state of ReleaseServiceConfig.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfig","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.ReleaseServiceConfigList":{"description":"ReleaseServiceConfigList is a list of ReleaseServiceConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of releaseserviceconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.ReleaseServiceConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ReleaseServiceConfigList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.Snapshot":{"description":"Snapshot is the Schema for the snapshots API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"SnapshotSpec defines the desired state of Snapshot","type":"object","properties":{"application":{"description":"Application is a reference to the name of an Application resource within the same namespace, which defines the target application for the Snapshot (when used with a Binding).","type":"string"},"artifacts":{"description":"Artifacts is a placeholder section for 'artifact links' we want to maintain to other AppStudio resources.\nSee Environment API doc for details.","type":"object","properties":{"unstableFields":{"description":"NOTE: This field (and struct) are placeholders.\n- Until this API is stabilized, consumers of the API may store any unstructured JSON/YAML data here,\n  but no backwards compatibility will be preserved.","x-kubernetes-preserve-unknown-fields":true}}},"componentGroup":{"description":"ComponentGroup is a reference to the name of a ComponentGroup resource within the same namespace, which defines the target ComponentGroup for the Snapshot.","type":"string"},"components":{"description":"Components field contains the sets of components to deploy as part of this snapshot.","type":"array","items":{"description":"SnapshotComponent","type":"object","required":["containerImage","name"],"properties":{"containerImage":{"description":"ContainerImage is the container image to use when deploying the component, as part of a Snapshot","type":"string"},"name":{"description":"Name is the name of the component","type":"string"},"source":{"description":"Source describes the Component source.\nOptional.","type":"object","properties":{"dockerfileUri":{"description":"Dockerfile path for all versions, unless explicitly specified for a version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"Dockerfile\"\nOptional.","type":"string"},"git":{"description":"Git Source for a Component.\nOptional.\n!!! Will be removed when we remove old model","type":"object","required":["url"],"properties":{"context":{"description":"A relative path inside the git repo containing the component\nExample: folderA/folderB/gitops.\nOptional.","type":"string"},"devfileUrl":{"description":"If specified, the devfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nExample: https://raw.githubusercontent.com/devfile-samples/devfile-sample-java-springboot-basic/main/devfile.yaml.\nOptional.","type":"string"},"dockerfileUrl":{"description":"If specified, the dockerfile at the URI will be used for the component. Can be a local path inside the repository, or an external URL.\nOptional.","type":"string"},"revision":{"description":"Specify a branch/tag/commit id. If not specified, default is `main`/`master`.\nExample: devel.\nOptional.","type":"string"},"url":{"description":"An HTTPS URL representing the git repository to create the component from.","type":"string"}}},"url":{"description":"Git repository URL for the component.\nOptional.\n!!! Will be required when we remove old model","type":"string"},"versions":{"description":"List of all versions for this component.\nOptional.\n!!! Will be required when we remove old model","type":"array","items":{"type":"object","required":["name","revision"],"properties":{"build-pipeline":{"description":"Used only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nPipeline used for the version; when omitted, the default pipeline will be used from 'spec.default-build-pipeline'.\nOptional.","type":"object","properties":{"pull":{"description":"Pipeline used for pull pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"pull-and-push":{"description":"Pipeline used for pull and push pipeline runs.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}},"push":{"description":"Pipeline used for push pipeline run.\nCan specify just one of: pipelinespec-from-bundle, pipelineref-by-name, pipelineref-by-git-resolver.\nOptional.","type":"object","properties":{"pipelineref-by-git-resolver":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline via git resolver,\nspecifying repository with a pipeline definition.\nOptional.","type":"object","required":["pathInRepo","revision","url"],"properties":{"pathInRepo":{"description":"Path to the pipeline definition file within the repository.\nExample: pipeline/push.yaml\nRequired.","type":"string"},"revision":{"description":"Git revision (branch, tag, or commit) to use.\nExample: main\nRequired.","type":"string"},"url":{"description":"Git repository URL containing the pipeline definition.\nExample: https://github.com/custom-pipelines/pipelines.git\nRequired.","type":"string"}}},"pipelineref-by-name":{"description":"Will be used to fill out PipelineRef in pipeline runs to user specific pipeline.\nSuch pipeline definition has to be in .tekton.\nOptional.","type":"string"},"pipelinespec-from-bundle":{"description":"Will be used to fetch bundle and fill out PipelineSpec in pipeline runs.\nPipeline name is based on build-pipeline-config CM in build-service NS.\nWhen 'latest' bundle is specified, bundle image will be used from CM.\nWhen bundle is specified to specific image bundle, then that one will be used\nand pipeline name will be used to fetch pipeline from that bundle.\nOptional.","type":"object","required":["bundle","name"],"properties":{"bundle":{"description":"Bundle image reference. Use 'latest' to get bundle from build-pipeline-config CM,\nor specify a specific bundle image.\nRequired.","type":"string"},"name":{"description":"Pipeline name to fetch from the bundle, or from build-pipeline-config CM.\nRequired.","type":"string"}}}}}}},"context":{"description":"Context directory for the version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"\" (empty string, root of repository).\nOptional.","type":"string"},"dockerfileUri":{"description":"Dockerfile path for the version.\nUsed only when sending a PR with build pipeline configuration was requested via 'spec.actions.create-pipeline-configuration-pr'.\nDefault: \"Dockerfile\".\nOptional.","type":"string"},"name":{"description":"User defined name for the version.\nAfter sanitization (lower case, removing spaces, etc) all version names must be unique.\nRequired.","type":"string"},"revision":{"description":"Git branch to use for the version.\nRequired.","type":"string"},"skip-builds":{"description":"When 'true' it will disable builds for a revision in the version.\nDefault: false.\nOptional.","type":"boolean"}}}}}},"version":{"description":"Version is the component verison.  Only required if multiple versions of the same\nComponent are in the Snapshot","type":"string"}}}},"displayDescription":{"description":"DisplayDescription is a user-visible, user definable description for the resource (and is not used for any functional behaviour)","type":"string"},"displayName":{"description":"DisplayName is a user-visible, user-definable name for the resource (and is not used for any functional behaviour)","type":"string"}}},"status":{"description":"SnapshotStatus defines the observed state of Snapshot","type":"object","properties":{"conditions":{"description":"Conditions represent the latest available observations for the Snapshot","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"Snapshot","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding":{"description":"The `SnapshotEnvironmentBinding` resource specifies the deployment relationship between (a single application, a single environment, and a single snapshot) combination. \n It can be thought of as a 3-tuple that defines what Application should be deployed to what Environment, and which Snapshot should be deployed (Snapshot being the specific component container image versions of that Aplication that should be deployed to that Environment). \n **Note**: There should not exist multiple SnapshotEnvironmentBinding CRs in a Namespace that share the same Application and Environment value. For example: - Good: - SnapshotEnvironmentBinding A: (application=appA, environment=dev, snapshot=my-snapshot) - SnapshotEnvironmentBinding B: (application=appA, environment=staging, snapshot=my-snapshot) \n - Bad: - SnapshotEnvironmentBinding A: (application=*appA*, environment=*staging*, snapshot=my-snapshot) - SnapshotEnvironmentBinding B: (application=*appA*, environment=*staging*, snapshot=second-snapshot)","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"See 'SnapshotEnvironmentBinding' resource for details of this resource. SnapshotEnvironmentBindingSpec defines the desired state of SnapshotEnvironmentBinding.","type":"object","required":["application","components","environment","snapshot"],"properties":{"application":{"description":"Application is a reference to the Application resource (defined in the same namespace) that we are deploying as part of this SnapshotEnvironmentBinding. Required","type":"string"},"components":{"description":"Component-specific configuration information, used when generating GitOps repository resources. Required.","type":"array","items":{"description":"BindingComponent contains individual component data","type":"object","required":["name"],"properties":{"configuration":{"description":"Configuration describes GitOps repository customizations that are specific to the the component-application-environment combination. - Values defined in this struct will overwrite values from Application/Environment/Component. Optional","type":"object","properties":{"env":{"description":"Env describes environment variables to use for the component. Optional.","type":"array","items":{"description":"EnvVarPair describes environment variables to use for the component","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the environment variable name","type":"string"},"value":{"description":"Value is the environment variable value","type":"string"}}}},"replicas":{"description":"Replicas defines the number of replicas to use for the component Optional","type":"integer"},"resources":{"description":"Resources defines the Compute Resources required by the component. Optional.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"name":{"description":"Name is the name of the component.","type":"string"}}}},"environment":{"description":"Environment is the environment resource (defined in the namespace) that the binding will deploy to. Required","type":"string"},"snapshot":{"description":"Snapshot is the Snapshot resource (defined in the namespace) that contains the container image versions for the components of the Application. Required","type":"string"}}},"status":{"description":"SnapshotEnvironmentBindingStatus defines the observed state of SnapshotEnvironmentBinding","type":"object","properties":{"bindingConditions":{"description":"BindingConditions will contain user-oriented error messages from the SnapshotEnvironmentBinding reconciler.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{ // Represents the observations of a foo's current state. // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge // +listType=map // +listMapKey=type Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"componentDeploymentConditions":{"description":"ComponentDeploymentConditions describes the deployment status of all of the Components of the Application. This status is updated by the Gitops Service's SnapshotEnvironmentBinding controller","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{ // Represents the observations of a foo's current state. // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge // +listType=map // +listMapKey=type Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"components":{"description":"Components describes a component's GitOps repository information. This status is updated by the Application Service controller.","type":"array","items":{"description":"BindingComponentStatus contains the status of the components","type":"object","required":["gitopsRepository","name"],"properties":{"generatedRouteName":{"description":"GeneratedRouteName is the name of the route that was generated for the Component, if a Route was generated.","type":"string"},"gitopsRepository":{"description":"GitOpsRepository contains the Git URL, path, branch, and most recent commit id for the component","type":"object","required":["branch","commitID","generatedResources","path","url"],"properties":{"branch":{"description":"Branch is the branch to use when accessing the GitOps repository","type":"string"},"commitID":{"description":"CommitID contains the most recent commit ID for which the Kubernetes resources of the Component were modified.","type":"string"},"generatedResources":{"description":"GeneratedResources contains the list of GitOps repository resources generated by the application service controller in the overlays/<environment> dir, for example, 'deployment-patch.yaml'. This is stored to differentiate between application-service controller generated resources vs resources added by a user","type":"array","items":{"type":"string"}},"path":{"description":"Path is a pointer to a folder in the GitOps repo, containing a kustomization.yaml NOTE: Each component-env combination must have it's own separate path","type":"string"},"url":{"description":"URL is the Git repository URL e.g. The Git repository that contains the K8s resources to deployment for the component of the application.","type":"string"}}},"name":{"description":"Name is the name of the component.","type":"string"}}}},"gitopsDeployments":{"description":"GitOpsDeployments describes the set of GitOpsDeployment resources that are owned by the SnapshotEnvironmentBinding, and are deploying the Components of the Application to the target Environment. To determine the health/sync status of a binding, you can look at the GitOpsDeployments decribed here.","type":"array","items":{"description":"BindingStatusGitOpsDeployment describes an individual reference to a GitOpsDeployment resources that is used to deploy this binding. \n To determine the health/sync status of a binding, you can look at the GitOpsDeployments decribed here.","type":"object","required":["componentName"],"properties":{"commitID":{"description":"GitOpsDeploymentCommitID is the commit ID of the GitOpsDeployment","type":"string"},"componentName":{"description":"ComponentName is the name of the component in the (component, gitopsdeployment) pair","type":"string"},"gitopsDeployment":{"description":"GitOpsDeployment is a reference to the name of a GitOpsDeployment resource which is used to deploy the binding. The Health/sync status for the binding can thus be read from the references GitOpsDeployment","type":"string"},"health":{"description":"GitOpsDeploymentHealthStatus is the health status of the deployment owned by the binding","type":"string"},"syncStatus":{"description":"GitOpsDeploymentSyncStatus is the sync status of the deployment owned by the binding","type":"string"}}}},"gitopsRepoConditions":{"description":"Condition describes operations on the GitOps repository, for example, if there were issues with generating/processing the repository. This status is updated by the Application Service controller.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{ // Represents the observations of a foo's current state. // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge // +listType=map // +listMapKey=type Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBinding","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBindingList":{"description":"SnapshotEnvironmentBindingList is a list of SnapshotEnvironmentBinding","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of snapshotenvironmentbindings. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.SnapshotEnvironmentBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"SnapshotEnvironmentBindingList","version":"v1alpha1"}]},"com.redhat.appstudio.v1alpha1.SnapshotList":{"description":"SnapshotList is a list of Snapshot","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of snapshots. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1alpha1.Snapshot"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"SnapshotList","version":"v1alpha1"}]},"com.redhat.appstudio.v1beta1.IntegrationTestScenario":{"description":"IntegrationTestScenario is the Schema for the integrationtestscenarios API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"IntegrationTestScenarioSpec defines the desired state of IntegrationScenario","type":"object","required":["application","resolverRef"],"properties":{"application":{"description":"Application that's associated with the IntegrationTestScenario","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"contexts":{"description":"Contexts where this IntegrationTestScenario can be applied","type":"array","items":{"description":"TestContext contains the name and values of a Test context","type":"object","required":["name"],"properties":{"description":{"type":"string"},"name":{"type":"string"}}}},"environment":{"description":"Environment that will be utilized by the test pipeline","type":"object","required":["name","type"],"properties":{"configuration":{"description":"EnvironmentConfiguration contains Environment-specific configurations details, to be used when generating\nComponent/Application GitOps repository resources.","type":"object","properties":{"env":{"description":"An array of standard environment variables","type":"array","items":{"description":"EnvVarPair describes environment variables to use for the component","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the environment variable name","type":"string"},"value":{"description":"Value is the environment variable value","type":"string"}}}},"target":{"description":"Target is used to reference a DeploymentTargetClaim for a target Environment.\nThe Environment controller uses the referenced DeploymentTargetClaim to access its bounded\nDeploymentTarget with cluster credential secret.","type":"object","required":["deploymentTargetClaim"],"properties":{"deploymentTargetClaim":{"description":"DeploymentTargetClaimConfig specifies the DeploymentTargetClaim details for a given Environment.","type":"object","required":["claimName"],"properties":{"claimName":{"type":"string"}}}}}}},"name":{"type":"string"},"type":{"description":"DEPRECATED: EnvironmentType should no longer be used, and has no replacement.\n- It's original purpose was to indicate whether an environment is POC/Non-POC, but these data were ultimately not required.","type":"string"}}},"params":{"description":"Params to pass to the pipeline","type":"array","items":{"description":"PipelineParameter contains the name and values of a Tekton Pipeline parameter","type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"resolverRef":{"description":"Tekton Resolver where to store the Tekton resolverRef trigger Tekton pipeline used to refer to a Pipeline or Task in a remote location like a git repo.","type":"object","required":["params","resolver"],"properties":{"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"ResolverParameter contains the name and values used to identify the referenced Tekton resource","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"resolver":{"description":"Resolver is the name of the resolver that should perform resolution of the referenced Tekton resource, such as \"git\" or \"bundle\"..","type":"string"}}}}},"status":{"description":"IntegrationTestScenarioStatus defines the observed state of IntegrationTestScenario","type":"object","required":["conditions"],"properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta1"}]},"com.redhat.appstudio.v1beta1.IntegrationTestScenarioList":{"description":"IntegrationTestScenarioList is a list of IntegrationTestScenario","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of integrationtestscenarios. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1beta1.IntegrationTestScenario"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"IntegrationTestScenarioList","version":"v1beta1"}]},"com.redhat.appstudio.v1beta2.ComponentGroup":{"description":"ComponentGroup is the Schema for the componentgroups API.\nComponentGroup serves as the replacement for the Application CR in the new application/component model.\nIt groups Components together for testing and releasing, supports test serialization,\nComponentGroup dependencies, and tracks the Global Candidate List (GCL) for each Component.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ComponentGroupSpec defines the desired state of ComponentGroup","type":"object","required":["components"],"properties":{"components":{"description":"Components is a list of Components (name and branch) that belong to the ComponentGroup.\nThis is the source of truth for logical groupings of versioned Components.","type":"array","items":{"description":"ComponentReference references a Component and its specific branch/version","type":"object","required":["componentVersion","name"],"properties":{"componentVersion":{"description":"ComponentVersion references the ComponentVersion for this Component.\nThe ComponentVersion CRD will be implemented by the build team as part of STONEBLD-3604.\nFor now, this contains the branch name and GCL (Global Candidate List) information.","type":"object","required":["name"],"properties":{"context":{"description":"Name of the context directory for the component version. Used\nwith Revision","type":"string"},"name":{"description":"Name is the name of the ComponentVersion (typically the branch name like \"main\", \"v1\", etc.)\nThis will reference the ComponentVersion CRD once it's implemented.","type":"string"},"version":{"description":"Name of the git revision for the component version. Used as a\nfallback if the `appstudio.openshift.io/version` label is not\nset on the build PLR","type":"string"}}},"name":{"description":"Name is the name of the Component","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}}},"dependents":{"description":"Dependents is a list of ComponentGroup names that are dependent on this ComponentGroup.\nWhen a snapshot is created for this ComponentGroup, snapshots will also be created for all dependents.","type":"array","items":{"type":"string"}},"snapshotCreator":{"description":"SnapshotCreator is an optional field that allows custom logic for Snapshot creation.\nThis field is reserved for future implementation and should not be used yet.","type":"object","properties":{"taskRef":{"description":"TaskRef references a Tekton Task that will create the Snapshot CR.\nThis field is reserved for future use.","type":"object","required":["params","resolver"],"properties":{"params":{"description":"Params contains the parameters used to identify the referenced Task","type":"array","items":{"description":"ResolverParameter contains the name and values used to identify the referenced Tekton resource","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"resolver":{"description":"Resolver is the name of the resolver (e.g., \"git\", \"bundle\")","type":"string"}}}}},"testGraph":{"description":"TestGraph describes the desired order in which tests associated with the ComponentGroup should be executed.\nIf not specified, all tests will run in parallel.\nThe map key is the test scenario name, and the value is a list of parent test scenarios it depends on.","type":"object","additionalProperties":{"type":"array","items":{"description":"TestGraphNode represents a node in the test serialization graph","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the IntegrationTestScenario","type":"string"},"onFail":{"description":"OnFail defines how to behave if this IntegrationTestScenario fails.\nOptions: \"run\" (default) - continue running dependent tests, \"skip\" - skip dependent tests","type":"string","enum":["run","skip"]}}}}}}},"status":{"description":"ComponentGroupStatus defines the observed state of ComponentGroup","type":"object","properties":{"conditions":{"description":"Conditions is an array of the ComponentGroup's status conditions","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"globalCandidateList":{"description":"The list of recently promoted Components which the integration service\nuses to create Snapshots","type":"array","items":{"type":"object","required":["name"],"properties":{"lastPromotedBuildTime":{"description":"Timestamp for build of the LastPromotedImage.  Used to prevent\nregressions resulting from race conditions\nFormat: RFC3339 (e.g., \"2025-08-13T12:00:00Z\")","type":"string","format":"date-time"},"lastPromotedCommit":{"description":"Git commit associated with the build of LastPromotedImage","type":"string"},"lastPromotedImage":{"description":"Location of the last image for this Component to be promoted. If no\nimage has been promoted then the field will be blank","type":"string"},"name":{"description":"Name of the Component","type":"string"},"url":{"description":"Git URL for the component. Needed by Release service. Can be used along\nwith LastPromotedCommit to access the code that has been promoted","type":"string"},"version":{"description":"Version of the Component. Only required if multiple version of the same\nComponent are in the ComponentGroup","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ComponentGroup","version":"v1beta2"}]},"com.redhat.appstudio.v1beta2.ComponentGroupList":{"description":"ComponentGroupList is a list of ComponentGroup","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of componentgroups. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.ComponentGroup"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"ComponentGroupList","version":"v1beta2"}]},"com.redhat.appstudio.v1beta2.IntegrationTestScenario":{"description":"IntegrationTestScenario is the Schema for the integrationtestscenarios API, holds a definiton for integration test with specified attributes like pipeline reference,\napplication and environment. It is a test template triggered after successful creation of a snapshot.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"IntegrationTestScenarioSpec defines the desired state of IntegrationScenario\nExactly one of Application or ComponentGroup must be specified.","type":"object","required":["resolverRef"],"properties":{"application":{"description":"Application that's associated with the IntegrationTestScenario.\nMutually exclusive with ComponentGroup - exactly one must be specified.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"componentGroup":{"description":"ComponentGroup that's associated with the IntegrationTestScenario.\nMutually exclusive with Application - exactly one must be specified.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"contexts":{"description":"Contexts where this IntegrationTestScenario can be applied, for specific component for example","type":"array","items":{"description":"TestContext contains the name and values of a Test context, used by IntegrationTestScenarioSpec Contexts","type":"object","required":["name"],"properties":{"description":{"type":"string"},"name":{"type":"string"}}}},"dependents":{"description":"List of IntegrationTestScenario which are blocked by the successful completion of this IntegrationTestScenario","type":"array","items":{"type":"string"}},"params":{"description":"Params to pass to the pipeline","type":"array","items":{"description":"PipelineParameter contains the name and values of a Tekton Pipeline parameter, used by IntegrationTestScenarioSpec Params","type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"resolverRef":{"description":"Tekton Resolver where to store the Tekton resolverRef trigger Tekton pipeline used to refer to a Pipeline or Task in a remote location like a git repo.","type":"object","required":["params","resolver"],"properties":{"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"ResolverParameter contains the name and values used to identify the referenced Tekton resource","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"resolver":{"description":"Resolver is the name of the resolver that should perform resolution of the referenced Tekton resource, such as \"git\" or \"bundle\"..","type":"string"},"resourceKind":{"description":"ResourceKind defines the kind of resource being resolved. It can either\nbe \"pipeline\" or \"pipelinerun\" but defaults to \"pipeline\" if no value is\nset","type":"string"}}}}},"status":{"description":"IntegrationTestScenarioStatus defines the observed state of IntegrationTestScenario described by conditions","type":"object","required":["conditions"],"properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"IntegrationTestScenario","version":"v1beta2"}]},"com.redhat.appstudio.v1beta2.IntegrationTestScenarioList":{"description":"IntegrationTestScenarioList is a list of IntegrationTestScenario","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of integrationtestscenarios. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/com.redhat.appstudio.v1beta2.IntegrationTestScenario"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"appstudio.redhat.com","kind":"IntegrationTestScenarioList","version":"v1beta2"}]},"dev.knative.eventing.v1.Broker":{"description":"Broker collects a pool of events that are consumable using Triggers. Brokers provide a well-known endpoint for event delivery that senders can use with minimal knowledge of the event routing strategy. Subscribers use Triggers to request delivery of events from a Broker's pool to a specific URL or Addressable endpoint.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the Broker.","type":"object","properties":{"config":{"description":"Config is a KReference to the configuration that specifies configuration options for this Broker. For example, this could be a pointer to a ConfigMap.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"delivery":{"description":"Delivery contains the delivery spec for each trigger to this Broker. Each trigger delivery spec, if any, overrides this global delivery spec.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"Status represents the current state of the Broker. This data may be out of date.","type":"object","properties":{"address":{"description":"Broker is Addressable. It exposes the endpoint as an URI to get events delivered into the Broker mesh.","type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}},"addresses":{"description":"Broker is Addressable. It exposes the endpoints as URIs to get events delivered into the Broker mesh.","type":"array","items":{"type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}}},"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"deadLetterSinkAudience":{"description":"OIDC audience of the dead letter sink.","type":"string"},"deadLetterSinkCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"deadLetterSinkUri":{"description":"DeadLetterSinkURI is the resolved URI of the dead letter sink that will be used as a fallback when not specified by Triggers.","type":"string"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"policies":{"description":"List of applied EventPolicies","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"The API version of the applied EventPolicy. This indicates, which version of EventPolicy is supported by the resource.","type":"string"},"name":{"description":"The name of the applied EventPolicy","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"Broker","version":"v1"}]},"dev.knative.eventing.v1.BrokerList":{"description":"BrokerList is a list of Broker","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of brokers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.eventing.v1.Broker"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"BrokerList","version":"v1"}]},"dev.knative.eventing.v1.Trigger":{"description":"Trigger represents a request to have events delivered to a subscriber from a Broker's event pool.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the Trigger.","x-kubernetes-preserve-unknown-fields":true},"status":{"description":"Status represents the current state of the Trigger. This data may be out of date.","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"deadLetterSinkAudience":{"description":"OIDC audience of the dead letter sink.","type":"string"},"deadLetterSinkCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"deadLetterSinkUri":{"description":"DeadLetterSinkURI is the resolved URI of the dead letter sink for this Trigger, in case there is none this will fallback to it's Broker status DeadLetterSinkURI.","type":"string"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"subscriberAudience":{"description":"OIDC audience of the subscriber.","type":"string"},"subscriberCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"subscriberUri":{"description":"SubscriberURI is the resolved URI of the receiver for this Trigger.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"Trigger","version":"v1"}]},"dev.knative.eventing.v1.TriggerList":{"description":"TriggerList is a list of Trigger","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of triggers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.eventing.v1.Trigger"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"TriggerList","version":"v1"}]},"dev.knative.eventing.v1alpha1.EventPolicy":{"type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the EventPolicy.","type":"object","properties":{"filters":{"description":"Filters is an array of SubscriptionsAPIFilters that evaluate to true or false. If any filter expression in the array evaluates to false, the event will not continue pass the ingress of the target resources of the policy","type":"array","items":{"type":"object","properties":{"all":{"description":"All evaluates to true if all the nested expressions evaluate to true. It must contain at least one filter expression","type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"any":{"description":"Any evaluates to true if any of the nested expressions evaluate to true. It must contain at least one filter expression","type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"cesql":{"description":"CESQL is a CloudEvents SQL v1 expression that will evaluate to true or false for each CloudEvent.","type":"string"},"exact":{"description":"Exact evaluates to true if the values of the matching CloudEvents attributes all exactly match with the associated value string specified (case sensitive)","x-kubernetes-preserve-unknown-fields":true},"not":{"description":"Not evaluates to true if the nested expression evaluates to false.","x-kubernetes-preserve-unknown-fields":true},"prefix":{"description":"Prefix evaluates to true if the values of the matching CloudEvents attributes all start with the associated value string specified (case sensitive)","x-kubernetes-preserve-unknown-fields":true},"suffix":{"description":"Exact evaluates to true if the values of the matching CloudEvents attributes all end with the associated value string specified (case sensitive)","x-kubernetes-preserve-unknown-fields":true}}}},"from":{"description":"From is the list of sources or oidc identities, which are allowed to send events to the targets (.spec.to).","type":"array","items":{"type":"object","properties":{"ref":{"description":"Ref contains a direct reference to a resource which is allowed to send events to the target.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"sub":{"description":"Sub sets the OIDC identity name to be allowed to send events to the target. It is also possible to set a glob-like pattern to match any suffix.","type":"string"}}}},"to":{"description":"To lists all resources for which this policy applies. Resources in this list must act like an ingress and have an audience. The resources are part of the same namespace as the EventPolicy. An empty list means it applies to all resources in the EventPolicies namespace","type":"array","items":{"type":"object","properties":{"ref":{"description":"Ref contains the direct reference to a target","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"selector":{"description":"Selector contains a selector to group targets","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"type":"object","properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","x-kubernetes-preserve-unknown-fields":true}}}}}}}},"status":{"description":"Status represents the current state of the EventPolicy. This data may be out of date.","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"from":{"description":"From is the list of resolved oidc identities from .spec.from","type":"array","items":{"type":"string"}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventPolicy","version":"v1alpha1"}]},"dev.knative.eventing.v1alpha1.EventPolicyList":{"description":"EventPolicyList is a list of EventPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of eventpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.eventing.v1alpha1.EventPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventPolicyList","version":"v1alpha1"}]},"dev.knative.eventing.v1beta1.EventType":{"description":"EventType represents a type of event that can be consumed from a resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the EventType.","type":"object","properties":{"broker":{"type":"string"},"description":{"description":"Description is an optional field used to describe the EventType, in any meaningful way.","type":"string"},"reference":{"description":"Reference a resource. For example, Broker.","type":"object","properties":{"address":{"description":"Address points to a specific Address Name","type":"string"},"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is an optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"schema":{"description":"Schema is a URI, it represents the CloudEvents schemaurl extension attribute. It may be a JSON schema, a protobuf schema, etc. It is optional.","type":"string"},"schemaData":{"description":"SchemaData allows the CloudEvents schema to be stored directly in the EventType. Content is dependent on the encoding. Optional attribute. The contents are not validated or manipulated by the system.","type":"string"},"source":{"description":"Source is a URI, it represents the CloudEvents source.","type":"string"},"type":{"description":"Type represents the CloudEvents type. It is authoritative.","type":"string"}}},"status":{"description":"Status represents the current state of the EventType. This data may be out of date.","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta1"}]},"dev.knative.eventing.v1beta1.EventTypeList":{"description":"EventTypeList is a list of EventType","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of eventtypes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.eventing.v1beta1.EventType"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventTypeList","version":"v1beta1"}]},"dev.knative.eventing.v1beta2.EventType":{"description":"EventType represents a type of event that can be consumed from a resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the EventType.","type":"object","properties":{"broker":{"type":"string"},"description":{"description":"Description is an optional field used to describe the EventType, in any meaningful way.","type":"string"},"reference":{"description":"Reference a resource. For example, Broker.","type":"object","properties":{"address":{"description":"Address points to a specific Address Name","type":"string"},"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is an optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"schema":{"description":"Schema is a URI, it represents the CloudEvents schemaurl extension attribute. It may be a JSON schema, a protobuf schema, etc. It is optional.","type":"string"},"schemaData":{"description":"SchemaData allows the CloudEvents schema to be stored directly in the EventType. Content is dependent on the encoding. Optional attribute. The contents are not validated or manipulated by the system.","type":"string"},"source":{"description":"Source is a URI, it represents the CloudEvents source.","type":"string"},"type":{"description":"Type represents the CloudEvents type. It is authoritative.","type":"string"}}},"status":{"description":"Status represents the current state of the EventType. This data may be out of date.","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta2"}]},"dev.knative.eventing.v1beta2.EventTypeList":{"description":"EventTypeList is a list of EventType","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of eventtypes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.eventing.v1beta2.EventType"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventTypeList","version":"v1beta2"}]},"dev.knative.eventing.v1beta3.EventType":{"description":"EventType represents a type of event that can be consumed from a resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the EventType.","type":"object","properties":{"attributes":{"description":"CloudEvent attribute and extension attributes.","type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"description":"Name of the CloudEvent attribute.","type":"string"},"required":{"description":"Indicates whether the attribute is required.","type":"boolean"},"value":{"description":"Value of the attribute. May be a template string using curly brackets {} to represent variable sections of the string.","type":"string"}}}},"description":{"description":"Description is an optional field used to describe the EventType, in any meaningful way.","type":"string"},"reference":{"description":"Reference a resource. For example, Broker.","type":"object","properties":{"address":{"description":"Address points to a specific Address Name","type":"string"},"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is an optional field, it gets defaulted to the object holding it if left out.","type":"string"}}}}},"status":{"description":"Status represents the current state of the EventType. This data may be out of date.","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventType","version":"v1beta3"}]},"dev.knative.eventing.v1beta3.EventTypeList":{"description":"EventTypeList is a list of EventType","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of eventtypes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.eventing.v1beta3.EventType"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eventing.knative.dev","kind":"EventTypeList","version":"v1beta3"}]},"dev.knative.flows.v1.Parallel":{"description":"Parallel defines conditional branches that will be wired in series through Channels and Subscriptions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the Parallel.","type":"object","properties":{"branches":{"description":"Branches is the list of Filter/Subscribers pairs.","type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"channelTemplate":{"description":"ChannelTemplate specifies which Channel CRD to use. If left unspecified, it is set to the default Channel CRD for the namespace (or cluster, in case there are no defaults for the namespace).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"Spec defines the Spec to use for each channel created. Passed in verbatim to the Channel CRD as Spec section.","x-kubernetes-preserve-unknown-fields":true}}},"reply":{"description":"Reply is a Reference to where the result of a case Subscriber gets sent to when the case does not have a Reply","type":"object","properties":{"CACerts":{"description":"Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}}}},"status":{"description":"Status represents the current state of the Parallel. This data may be out of date.","type":"object","properties":{"address":{"description":"Parallel is Addressable. It exposes the endpoint as an URI to get events delivered into the Parallel.","type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}},"addresses":{"description":"Parallel is Addressable. It exposes the endpoints as URIs to get events delivered into the Parallel.","type":"array","items":{"type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}}},"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"branchStatuses":{"description":"BranchStatuses is an array of corresponding to branch statuses. Matches the Spec.Branches array in the order.","type":"array","items":{"type":"object","properties":{"filterChannelStatus":{"description":"FilterChannelStatus corresponds to the filter channel status.","type":"object","properties":{"channel":{"description":"Channel is the reference to the underlying channel.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}}},"ready":{"description":"ReadyCondition indicates whether the Channel is ready or not.","x-kubernetes-preserve-unknown-fields":true}}},"filterSubscriptionStatus":{"description":"FilterSubscriptionStatus corresponds to the filter subscription status.","type":"object","properties":{"ready":{"description":"ReadyCondition indicates whether the Subscription is ready or not.","type":"object","properties":{"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}},"subscription":{"description":"Subscription is the reference to the underlying Subscription.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}}}}},"subscriberSubscriptionStatus":{"description":"SubscriptionStatus corresponds to the subscriber subscription status.","type":"object","properties":{"ready":{"description":"ReadyCondition indicates whether the Subscription is ready or not.","type":"object","properties":{"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}},"subscription":{"description":"Subscription is the reference to the underlying Subscription.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}}}}}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","properties":{"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"ingressChannelStatus":{"description":"IngressChannelStatus corresponds to the ingress channel status.","type":"object","properties":{"channel":{"description":"Channel is the reference to the underlying channel.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}}},"ready":{"description":"ReadyCondition indicates whether the Channel is ready or not.","x-kubernetes-preserve-unknown-fields":true}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"policies":{"description":"List of applied EventPolicies","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"The API version of the applied EventPolicy. This indicates, which version of EventPolicy is supported by the resource.","type":"string"},"name":{"description":"The name of the applied EventPolicy","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"flows.knative.dev","kind":"Parallel","version":"v1"}]},"dev.knative.flows.v1.ParallelList":{"description":"ParallelList is a list of Parallel","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of parallels. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.flows.v1.Parallel"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"flows.knative.dev","kind":"ParallelList","version":"v1"}]},"dev.knative.flows.v1.Sequence":{"description":"Sequence defines a sequence of Subscribers that will be wired in series through Channels and Subscriptions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the Sequence.","type":"object","properties":{"channelTemplate":{"description":"ChannelTemplate specifies which Channel CRD to use. If left unspecified, it is set to the default Channel CRD for the namespace (or cluster, in case there are no defaults for the namespace).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"Spec defines the Spec to use for each channel created. Passed in verbatim to the Channel CRD as Spec section.","x-kubernetes-preserve-unknown-fields":true}}},"reply":{"description":"Reply is a Reference to where the result of the last Subscriber gets sent to.","type":"object","properties":{"CACerts":{"description":"Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the reply.","type":"string"},"audience":{"description":"Audience is the OIDC audience of the reply. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}},"steps":{"description":"Steps is the list of Destinations (processors / functions) that will be called in the order provided. Each step has its own delivery options","type":"array","items":{"type":"object","properties":{"CACerts":{"description":"Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence.","type":"string"},"delivery":{"description":"Delivery is the delivery specification for events to the subscriber This includes things like retries, DLQ, etc.","x-kubernetes-preserve-unknown-fields":true},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}}}}},"status":{"description":"Status represents the current state of the Sequence. This data may be out of date.","type":"object","properties":{"address":{"description":"Sequence is Addressable. It exposes the endpoint as an URI to get events delivered into the Sequence.","type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}},"addresses":{"description":"Sequence is Addressable. It exposes the endpoints as URIs to get events delivered into the Sequence.","type":"array","items":{"type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}}},"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"channelStatuses":{"description":"ChannelStatuses is an array of corresponding Channel statuses. Matches the Spec.Steps array in the order.","type":"array","items":{"type":"object","properties":{"channel":{"description":"Channel is the reference to the underlying channel.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}}},"ready":{"description":"ReadyCondition indicates whether the Channel is ready or not.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"policies":{"description":"List of applied EventPolicies","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"The API version of the applied EventPolicy. This indicates, which version of EventPolicy is supported by the resource.","type":"string"},"name":{"description":"The name of the applied EventPolicy","type":"string"}}}},"subscriptionStatuses":{"description":"SubscriptionStatuses is an array of corresponding Subscription statuses. Matches the Spec.Steps array in the order.","type":"array","items":{"type":"object","properties":{"ready":{"description":"ReadyCondition indicates whether the Subscription is ready or not.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}},"subscription":{"description":"Subscription is the reference to the underlying Subscription.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"flows.knative.dev","kind":"Sequence","version":"v1"}]},"dev.knative.flows.v1.SequenceList":{"description":"SequenceList is a list of Sequence","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of sequences. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.flows.v1.Sequence"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"flows.knative.dev","kind":"SequenceList","version":"v1"}]},"dev.knative.messaging.v1.Channel":{"description":"Channel represents a generic Channel. It is normally used when we want a Channel, but do not need a specific Channel implementation.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the Channel.","type":"object","properties":{"channelTemplate":{"description":"ChannelTemplate specifies which Channel CRD to use to create the CRD Channel backing this Channel. This is immutable after creation. Normally this is set by the Channel defaulter, not directly by the user.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"spec":{"description":"Spec defines the Spec to use for each channel created. Passed in verbatim to the Channel CRD as Spec section.","x-kubernetes-preserve-unknown-fields":true}}},"delivery":{"description":"DeliverySpec contains the default delivery spec for each subscription to this Channelable. Each subscription delivery spec, if any, overrides this global delivery spec.","x-kubernetes-preserve-unknown-fields":true},"subscribers":{"description":"This is the list of subscriptions for this subscribable.","type":"array","items":{"type":"object","properties":{"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"delivery":{"description":"DeliverySpec contains options controlling the event delivery","x-kubernetes-preserve-unknown-fields":true},"generation":{"description":"Generation of the origin of the subscriber with uid:UID.","type":"integer","format":"int64"},"name":{"description":"The name of the subscription","type":"string"},"replyAudience":{"description":"ReplyAudience is the OIDC audience for the replyUri.","type":"string"},"replyCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"replyUri":{"description":"ReplyURI is the endpoint for the reply","type":"string"},"subscriberAudience":{"description":"SubscriberAudience is the OIDC audience for the subscriberUri.","type":"string"},"subscriberCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"subscriberUri":{"description":"SubscriberURI is the endpoint for the subscriber","type":"string"},"uid":{"description":"UID is used to understand the origin of the subscriber.","type":"string"}}}}}},"status":{"description":"Status represents the current state of the Channel. This data may be out of date.","type":"object","properties":{"address":{"description":"Channel is Addressable. It exposes the endpoint as an URI to get events delivered into the Channel mesh.","type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}},"addresses":{"description":"Channel is Addressable. It exposes the endpoints as URIs to get events delivered into the Channel mesh.","type":"array","items":{"type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}}},"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"channel":{"description":"Channel is an KReference to the Channel CRD backing this Channel.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"deadLetterChannel":{"description":"DeadLetterChannel is a KReference and is set by the channel when it supports native error handling via a channel Failed messages are delivered here.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"deadLetterSinkAudience":{"description":"OIDC audience of the dead letter sink.","type":"string"},"deadLetterSinkCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"deadLetterSinkUri":{"description":"DeadLetterSinkURI is the resolved URI of the dead letter sink that will be used as a fallback when not specified by Triggers.","type":"string"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"policies":{"description":"List of applied EventPolicies","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"The API version of the applied EventPolicy. This indicates, which version of EventPolicy is supported by the resource.","type":"string"},"name":{"description":"The name of the applied EventPolicy","type":"string"}}}},"subscribers":{"description":"This is the list of subscription's statuses for this channel.","type":"array","items":{"type":"object","properties":{"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"message":{"description":"A human readable message indicating details of Ready status.","type":"string"},"observedGeneration":{"description":"Generation of the origin of the subscriber with uid:UID.","type":"integer","format":"int64"},"ready":{"description":"Status of the subscriber.","type":"string"},"uid":{"description":"UID is used to understand the origin of the subscriber.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"messaging.knative.dev","kind":"Channel","version":"v1"}]},"dev.knative.messaging.v1.ChannelList":{"description":"ChannelList is a list of Channel","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of channels. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.messaging.v1.Channel"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"messaging.knative.dev","kind":"ChannelList","version":"v1"}]},"dev.knative.messaging.v1.InMemoryChannel":{"description":"InMemoryChannel is a resource representing an in memory channel","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the Channel.","type":"object","properties":{"delivery":{"description":"DeliverySpec contains the default delivery spec for each subscription to this Channelable. Each subscription delivery spec, if any, overrides this global delivery spec.","x-kubernetes-preserve-unknown-fields":true},"subscribers":{"description":"This is the list of subscriptions for this subscribable.","type":"array","items":{"type":"object","properties":{"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"delivery":{"description":"DeliverySpec contains options controlling the event delivery","x-kubernetes-preserve-unknown-fields":true},"generation":{"description":"Generation of the origin of the subscriber with uid:UID.","type":"integer","format":"int64"},"name":{"description":"The name of the subscription","type":"string"},"namespace":{"description":"The namespace of the subscription","type":"string"},"replyAudience":{"description":"ReplyAudience is the OIDC audience for the replyUri.","type":"string"},"replyCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"replyUri":{"description":"ReplyURI is the endpoint for the reply","type":"string"},"subscriberAudience":{"description":"SubscriberAudience is the OIDC audience for the subscriberUri.","type":"string"},"subscriberCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"subscriberUri":{"description":"SubscriberURI is the endpoint for the subscriber","type":"string"},"uid":{"description":"UID is used to understand the origin of the subscriber.","type":"string"}}}}}},"status":{"description":"Status represents the current state of the Channel. This data may be out of date.","type":"object","properties":{"address":{"description":"InMemoryChannel is Addressable. It exposes the endpoint as an URI to get events delivered into the channel mesh.","type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}},"addresses":{"description":"InMemoryChannel is Addressable. It exposes the endpoints as URIs to get events delivered into the channel mesh.","type":"array","items":{"type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}}},"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"deadLetterChannel":{"description":"DeadLetterChannel is a KReference and is set by the channel when it supports native error handling via a channel Failed messages are delivered here.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"deadLetterSinkAudience":{"description":"OIDC audience of the dead letter sink.","type":"string"},"deadLetterSinkCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"deadLetterSinkUri":{"description":"DeadLetterSinkURI is the resolved URI of the dead letter ref if one is specified in the Spec.Delivery.","type":"string"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"policies":{"description":"List of applied EventPolicies","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"The API version of the applied EventPolicy. This indicates, which version of EventPolicy is supported by the resource.","type":"string"},"name":{"description":"The name of the applied EventPolicy","type":"string"}}}},"subscribers":{"description":"This is the list of subscription's statuses for this channel.","type":"array","items":{"type":"object","properties":{"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"message":{"description":"A human readable message indicating details of Ready status.","type":"string"},"observedGeneration":{"description":"Generation of the origin of the subscriber with uid:UID.","type":"integer","format":"int64"},"ready":{"description":"Status of the subscriber.","type":"string"},"uid":{"description":"UID is used to understand the origin of the subscriber.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"messaging.knative.dev","kind":"InMemoryChannel","version":"v1"}]},"dev.knative.messaging.v1.InMemoryChannelList":{"description":"InMemoryChannelList is a list of InMemoryChannel","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of inmemorychannels. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.messaging.v1.InMemoryChannel"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"messaging.knative.dev","kind":"InMemoryChannelList","version":"v1"}]},"dev.knative.messaging.v1.Subscription":{"description":"Subscription routes events received on a Channel to a DNS name and corresponds to the subscriptions.channels.knative.dev CRD.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"channel":{"description":"Reference to a channel that will be used to create the subscription. You can specify only the following fields of the KReference: kind, apiVersion, name and namespace. The resource pointed by this KReference must meet the contract to the ChannelableSpec duck type. If the resource does not meet this contract it will be reflected in the Subscription's status.  This field is immutable. We have no good answer on what happens to the events that are currently in the channel being consumed from and what the semantics there should be. For now, you can always delete the Subscription and recreate it to point to a different channel, giving the user more control over what semantics should be used (drain the channel first, possibly have events dropped, etc.)","x-kubernetes-preserve-unknown-fields":true},"delivery":{"description":"Delivery configuration","x-kubernetes-preserve-unknown-fields":true},"reply":{"description":"Reply specifies (optionally) how to handle events returned from the Subscriber target.","type":"object","properties":{"CACerts":{"description":"Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}},"subscriber":{"description":"Subscriber is reference to (optional) function for processing events. Events from the Channel will be delivered here and replies are sent to a Destination as specified by the Reply.","type":"object","properties":{"CACerts":{"description":"Certification Authority (CA) certificates in PEM format that the subscription trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","x-kubernetes-preserve-unknown-fields":true},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}}}},"status":{"type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"physicalSubscription":{"description":"PhysicalSubscription is the fully resolved values that this Subscription represents.","type":"object","properties":{"deadLetterSinkAudience":{"description":"OIDC audience of the dead letter sink.","type":"string"},"deadLetterSinkCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"deadLetterSinkUri":{"description":"ReplyURI is the fully resolved URI for the spec.delivery.deadLetterSink.","type":"string"},"replyAudience":{"description":"ReplyAudience is the OIDC audience for the replyUri.","type":"string"},"replyCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"replyUri":{"description":"ReplyURI is the fully resolved URI for the spec.reply.","type":"string"},"subscriberAudience":{"description":"SubscriberAudience is the OIDC audience for the subscriberUri.","type":"string"},"subscriberCACerts":{"description":"Certification Authority (CA) certificates in PEM format according to https://www.rfc-editor.org/rfc/rfc7468.","type":"string"},"subscriberUri":{"description":"SubscriberURI is the fully resolved URI for spec.subscriber.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"messaging.knative.dev","kind":"Subscription","version":"v1"}]},"dev.knative.messaging.v1.SubscriptionList":{"description":"SubscriptionList is a list of Subscription","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of subscriptions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.messaging.v1.Subscription"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"messaging.knative.dev","kind":"SubscriptionList","version":"v1"}]},"dev.knative.sinks.v1alpha1.JobSink":{"description":"JobSink triggers long-running jobs when an event occur.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired state of the JobSink.","type":"object","properties":{"job":{"description":"Full Job resource object, see https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.30/#job-v1-batch for more details.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"Status represents the current state of the JobSink. This data may be out of date.","type":"object","properties":{"address":{"description":"JobSink is Addressable. It exposes the endpoint as an URI to schedule long running jobs when an even occurs.","type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}},"addresses":{"description":"JobSink is Addressable. It exposes the endpoint as an URI to schedule long running jobs when an even occurs.","type":"array","items":{"type":"object","properties":{"CACerts":{"type":"string"},"audience":{"type":"string"},"name":{"type":"string"},"url":{"type":"string"}}}},"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"job":{"type":"object","properties":{"selector":{"description":"Label selector for all scheduled jobs","type":"string"}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"policies":{"description":"List of applied EventPolicies","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"The API version of the applied EventPolicy. This indicates, which version of EventPolicy is supported by the resource.","type":"string"},"name":{"description":"The name of the applied EventPolicy","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"sinks.knative.dev","kind":"JobSink","version":"v1alpha1"}]},"dev.knative.sinks.v1alpha1.JobSinkList":{"description":"JobSinkList is a list of JobSink","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of jobsinks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.sinks.v1alpha1.JobSink"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"sinks.knative.dev","kind":"JobSinkList","version":"v1alpha1"}]},"dev.knative.sources.v1.ApiServerSource":{"description":"ApiServerSource is an event source that brings Kubernetes API server events into Knative.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"required":["resources"],"x-kubernetes-preserve-unknown-fields":true},"status":{"type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"ceAttributes":{"description":"CloudEventAttributes are the specific attributes that the Source uses as part of its CloudEvents.","type":"array","items":{"type":"object","properties":{"source":{"description":"Source is the CloudEvents source attribute.","type":"string"},"type":{"description":"Type refers to the CloudEvent type attribute.","type":"string"}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"namespaces":{"description":"Namespaces show the namespaces currently watched by the ApiServerSource","type":"array","items":{"type":"string"}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"sinkAudience":{"description":"Audience is the OIDC audience of the sink. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the Addressable itself. If the target is an Addressable and specifies an Audience, the target's Audience takes precedence.","type":"string"},"sinkCACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"sinkUri":{"description":"SinkURI is the current active sink URI that has been configured for the Source.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"ApiServerSource","version":"v1"}]},"dev.knative.sources.v1.ApiServerSourceList":{"description":"ApiServerSourceList is a list of ApiServerSource","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of apiserversources. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.sources.v1.ApiServerSource"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"ApiServerSourceList","version":"v1"}]},"dev.knative.sources.v1.ContainerSource":{"description":"ContainerSource is an event source that starts a container image which generates events under certain situations and sends messages to a sink URI","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"ceOverrides":{"description":"CloudEventOverrides defines overrides to control the output format and modifications of the event sent to the sink.","type":"object","properties":{"extensions":{"description":"Extensions specify what attribute are added or overridden on the outbound event. Each `Extensions` key-value pair are set on the event as an attribute extension independently.","x-kubernetes-preserve-unknown-fields":true}}},"sink":{"description":"Sink is a reference to an object that will resolve to a uri to use as the sink.","type":"object","properties":{"CACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}},"template":{"description":"A template in the shape of `Deployment.spec.template` to be used for this ContainerSource. More info: https://kubernetes.io/docs/concepts/workloads/controllers/deployment/","x-kubernetes-preserve-unknown-fields":true}}},"status":{"type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"ceAttributes":{"description":"CloudEventAttributes are the specific attributes that the Source uses as part of its CloudEvents.","type":"array","items":{"type":"object","properties":{"source":{"description":"Source is the CloudEvents source attribute.","type":"string"},"type":{"description":"Type refers to the CloudEvent type attribute.","type":"string"}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"sinkAudience":{"description":"Audience is the OIDC audience of the sink.","type":"string"},"sinkCACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"sinkUri":{"description":"SinkURI is the current active sink URI that has been configured for the Source.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"ContainerSource","version":"v1"}]},"dev.knative.sources.v1.ContainerSourceList":{"description":"ContainerSourceList is a list of ContainerSource","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of containersources. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.sources.v1.ContainerSource"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"ContainerSourceList","version":"v1"}]},"dev.knative.sources.v1.PingSource":{"description":"PingSource describes an event source with a fixed payload produced on a specified cron schedule.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PingSourceSpec defines the desired state of the PingSource (from the client).","type":"object","properties":{"ceOverrides":{"description":"CloudEventOverrides defines overrides to control the output format and modifications of the event sent to the sink.","type":"object","properties":{"extensions":{"description":"Extensions specify what attribute are added or overridden on the outbound event. Each `Extensions` key-value pair are set on the event as an attribute extension independently.","additionalProperties":{"type":"string"},"x-kubernetes-preserve-unknown-fields":true}}},"contentType":{"description":"ContentType is the media type of `data` or `dataBase64`. Default is empty.","type":"string"},"data":{"description":"Data is data used as the body of the event posted to the sink. Default is empty. Mutually exclusive with `dataBase64`.","type":"string"},"dataBase64":{"description":"DataBase64 is the base64-encoded string of the actual event's body posted to the sink. Default is empty. Mutually exclusive with `data`.","type":"string"},"schedule":{"description":"Schedule is the cron schedule. Defaults to `* * * * *`.","type":"string"},"sink":{"description":"Sink is a reference to an object that will resolve to a uri to use as the sink.","type":"object","properties":{"CACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}},"timezone":{"description":"Timezone modifies the actual time relative to the specified timezone. Defaults to the system time zone. More general information about time zones: https://www.iana.org/time-zones List of valid timezone values: https://en.wikipedia.org/wiki/List_of_tz_database_time_zones","type":"string"}}},"status":{"description":"PingSourceStatus defines the observed state of PingSource (from the controller).","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"ceAttributes":{"description":"CloudEventAttributes are the specific attributes that the Source uses as part of its CloudEvents.","type":"array","items":{"type":"object","properties":{"source":{"description":"Source is the CloudEvents source attribute.","type":"string"},"type":{"description":"Type refers to the CloudEvent type attribute.","type":"string"}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the \"Generation\" of the Service that was last processed by the controller.","type":"integer","format":"int64"},"sinkAudience":{"description":"sinkAudience is the OIDC audience of the sink.","type":"string"},"sinkCACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"sinkUri":{"description":"SinkURI is the current active sink URI that has been configured for the Source.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"PingSource","version":"v1"}]},"dev.knative.sources.v1.PingSourceList":{"description":"PingSourceList is a list of PingSource","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pingsources. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.sources.v1.PingSource"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"PingSourceList","version":"v1"}]},"dev.knative.sources.v1.SinkBinding":{"description":"SinkBinding describes a Binding that is also a Source. The `sink` (from the Source duck) is resolved to a URL and then projected into the `subject` by augmenting the runtime contract of the referenced containers to have a `K_SINK` environment variable holding the endpoint to which to send cloud events.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"ceOverrides":{"description":"CloudEventOverrides defines overrides to control the output format and modifications of the event sent to the sink.","type":"object","properties":{"extensions":{"description":"Extensions specify what attribute are added or overridden on the outbound event. Each `Extensions` key-value pair are set on the event as an attribute extension independently.","x-kubernetes-preserve-unknown-fields":true}}},"sink":{"description":"Sink is a reference to an object that will resolve to a uri to use as the sink.","type":"object","properties":{"CACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}},"subject":{"description":"Subject references the resource(s) whose \"runtime contract\" should be augmented by Binding implementations.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the referent. Mutually exclusive with Selector.","type":"string"},"namespace":{"description":"Namespace of the referent.","type":"string"},"selector":{"description":"Selector of the referents. Mutually exclusive with Name.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"type":"object","properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"status":{"type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"ceAttributes":{"description":"CloudEventAttributes are the specific attributes that the Source uses as part of its CloudEvents.","type":"array","items":{"type":"object","properties":{"source":{"description":"Source is the CloudEvents source attribute.","type":"string"},"type":{"description":"Type refers to the CloudEvent type attribute.","type":"string"}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.","type":"integer","format":"int64"},"oidcTokenSecretName":{"description":"Name of the secret with the OIDC token for the sink.","type":"string"},"sinkAudience":{"description":"Audience is the OIDC audience of the sink.","type":"string"},"sinkCACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"sinkUri":{"description":"SinkURI is the current active sink URI that has been configured for the Source.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"SinkBinding","version":"v1"}]},"dev.knative.sources.v1.SinkBindingList":{"description":"SinkBindingList is a list of SinkBinding","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of sinkbindings. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.sources.v1.SinkBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"SinkBindingList","version":"v1"}]},"dev.knative.sources.v1beta2.PingSource":{"description":"PingSource describes an event source with a fixed payload produced on a specified cron schedule.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PingSourceSpec defines the desired state of the PingSource (from the client).","type":"object","properties":{"ceOverrides":{"description":"CloudEventOverrides defines overrides to control the output format and modifications of the event sent to the sink.","type":"object","properties":{"extensions":{"description":"Extensions specify what attribute are added or overridden on the outbound event. Each `Extensions` key-value pair are set on the event as an attribute extension independently.","additionalProperties":{"type":"string"},"x-kubernetes-preserve-unknown-fields":true}}},"contentType":{"description":"ContentType is the media type of `data` or `dataBase64`. Default is empty.","type":"string"},"data":{"description":"Data is data used as the body of the event posted to the sink. Default is empty. Mutually exclusive with `dataBase64`.","type":"string"},"dataBase64":{"description":"DataBase64 is the base64-encoded string of the actual event's body posted to the sink. Default is empty. Mutually exclusive with `data`.","type":"string"},"schedule":{"description":"Schedule is the cron schedule. Defaults to `* * * * *`.","type":"string"},"sink":{"description":"Sink is a reference to an object that will resolve to a uri to use as the sink.","type":"object","properties":{"CACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"audience":{"description":"Audience is the OIDC audience. This only needs to be set if the target is not an Addressable and thus the Audience can't be received from the target itself. If specified, it takes precedence over the target's Audience.","type":"string"},"ref":{"description":"Ref points to an Addressable.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ This is optional field, it gets defaulted to the object holding it if left out.","type":"string"}}},"uri":{"description":"URI can be an absolute URL(non-empty scheme and non-empty host) pointing to the target or a relative URI. Relative URIs will be resolved using the base URI retrieved from Ref.","type":"string"}}},"timezone":{"description":"Timezone modifies the actual time relative to the specified timezone. Defaults to the system time zone. More general information about time zones: https://www.iana.org/time-zones List of valid timezone values: https://en.wikipedia.org/wiki/List_of_tz_database_time_zones","type":"string"}}},"status":{"description":"PingSourceStatus defines the observed state of PingSource (from the controller).","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.","x-kubernetes-preserve-unknown-fields":true},"auth":{"description":"Auth provides the relevant information for OIDC authentication.","type":"object","properties":{"serviceAccountName":{"description":"ServiceAccountName is the name of the generated service account used for this components OIDC authentication.","type":"string"},"serviceAccountNames":{"description":"ServiceAccountNames is the list of names of the generated service accounts used for this components OIDC authentication.","type":"array","items":{"type":"string"}}}},"ceAttributes":{"description":"CloudEventAttributes are the specific attributes that the Source uses as part of its CloudEvents.","type":"array","items":{"type":"object","properties":{"source":{"description":"Source is the CloudEvents source attribute.","type":"string"},"type":{"description":"Type refers to the CloudEvent type attribute.","type":"string"}}}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another. We use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic differences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition. When this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the \"Generation\" of the Service that was last processed by the controller.","type":"integer","format":"int64"},"sinkAudience":{"description":"sinkAudience is the OIDC audience of the sink.","type":"string"},"sinkCACerts":{"description":"CACerts is the Certification Authority (CA) certificates in PEM format that the source trusts when sending events to the sink.","type":"string"},"sinkUri":{"description":"SinkURI is the current active sink URI that has been configured for the Source.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"PingSource","version":"v1beta2"}]},"dev.knative.sources.v1beta2.PingSourceList":{"description":"PingSourceList is a list of PingSource","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pingsources. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.knative.sources.v1beta2.PingSource"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"sources.knative.dev","kind":"PingSourceList","version":"v1beta2"}]},"dev.konflux-ci.eaas.v1alpha1.Namespace":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"compositeDeletePolicy":{"type":"string","enum":["Background","Foreground"]},"compositionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionUpdatePolicy":{"type":"string","enum":["Automatic","Manual"]},"resourceRef":{"type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"}}},"writeConnectionSecretToRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}}}},"status":{"type":"object","properties":{"claimConditionTypes":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"observedGeneration":{"type":"integer","format":"int64"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"connectionDetails":{"type":"object","properties":{"lastPublishedTime":{"type":"string","format":"date-time"}}}}}},"x-kubernetes-group-version-kind":[{"group":"eaas.konflux-ci.dev","kind":"Namespace","version":"v1alpha1"}]},"dev.konflux-ci.eaas.v1alpha1.NamespaceList":{"description":"NamespaceList is a list of Namespace","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of namespaces. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.Namespace"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eaas.konflux-ci.dev","kind":"NamespaceList","version":"v1alpha1"}]},"dev.konflux-ci.eaas.v1alpha1.XNamespace":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"claimRef":{"type":"object","required":["apiVersion","kind","namespace","name"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"compositionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionUpdatePolicy":{"type":"string","enum":["Automatic","Manual"]},"resourceRefs":{"type":"array","items":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"writeConnectionSecretToRef":{"type":"object","required":["name","namespace"],"properties":{"name":{"type":"string"},"namespace":{"type":"string"}}}}},"status":{"type":"object","properties":{"claimConditionTypes":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"observedGeneration":{"type":"integer","format":"int64"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"connectionDetails":{"type":"object","properties":{"lastPublishedTime":{"type":"string","format":"date-time"}}}}}},"x-kubernetes-group-version-kind":[{"group":"eaas.konflux-ci.dev","kind":"XNamespace","version":"v1alpha1"}]},"dev.konflux-ci.eaas.v1alpha1.XNamespaceList":{"description":"XNamespaceList is a list of XNamespace","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of xnamespaces. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.konflux-ci.eaas.v1alpha1.XNamespace"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"eaas.konflux-ci.dev","kind":"XNamespaceList","version":"v1alpha1"}]},"dev.konflux.projctl.v1beta1.Project":{"description":"Project represents a Konflux project for organizing related development streams.\nNo custom labels or annotations on Project alter controller behavior.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ProjectSpec defines the desired state of a Project.\nA Project groups related development streams and provides metadata for display.","type":"object","properties":{"description":{"description":"A text describing the project, its purpose, etc.","type":"string"},"displayName":{"description":"A nice human-readable name to be displayed in the UI","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"projctl.konflux.dev","kind":"Project","version":"v1beta1"}]},"dev.konflux.projctl.v1beta1.ProjectDevelopmentStream":{"description":"ProjectDevelopmentStream represents an independent stream of development.\nNo custom labels or annotations on the object alter controller behavior.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ProjectDevelopmentStreamSpec defines the desired state of ProjectDevelopmentStream\nA development stream typically represents a version or environment branch.","type":"object","properties":{"project":{"description":"The name of the project this stream belongs to","type":"string"},"template":{"description":"An optional template to use for creating resources owned by this\nProjectDevelopmentStream","type":"object","required":["name"],"properties":{"name":{"description":"The name of the ProjectDevelopmentStreamTemplate to use","type":"string"},"values":{"description":"Values for template variables","type":"array","items":{"description":"Provide a value for a variable specified in an associated\nProjectDevelopmentStreamTemplate\nUse values to customize generated resources per development stream.","type":"object","required":["name","value"],"properties":{"name":{"description":"The name of the template variable to provide a value for","type":"string"},"value":{"description":"The value to be placed in the template variable","type":"string"}}}}}}}},"status":{"description":"ProjectDevelopmentStreamStatus defines the observed state of ProjectDevelopmentStream\nConditions include:\n- Ready (reasons: Reconciling, UpdatingOwnerRef, NoTemplate, TemplateFetchFailed, TemplateGenerationFailed, ResourcesApplied, ApplyingResources)","type":"object","properties":{"conditions":{"description":"Represents the observations of a ProjectDevelopmentStream's current state.\nKnown .status.conditions.type are: \"Ready\"","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStream","version":"v1beta1"}]},"dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamList":{"description":"ProjectDevelopmentStreamList is a list of ProjectDevelopmentStream","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of projectdevelopmentstreams. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStream"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamList","version":"v1beta1"}]},"dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate":{"description":"ProjectDevelopmentStreamTemplate defines a reusable set of resources\nthat a ProjectDevelopmentStream can instantiate using variable values.\nNo custom labels or annotations on the object alter controller behavior.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ProjectDevelopmentStreamTemplateSpec defines the resources to be generated\nusing a ProjectDevelopmentStreamTemplate\nResources can interpolate variables (e.g., {{.version}}) and functions like hyphenize.","type":"object","properties":{"project":{"description":"The name of the project this stream template belongs to","type":"string"},"resources":{"description":"List of resources to be created for version made from this template\ncertain values for resource properties may include references to\nvariables using the Go-text/template syntax","type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"variables":{"description":"List of variables to allow customizing the template results. The order\nvariables in the list is significant as earlier variables can be\nreferenced by the default values for later variables","type":"array","items":{"description":"Settings for a variable to be used to customize the template results\nVariables are processed in order; later defaults can reference earlier variables.","type":"object","required":["name"],"properties":{"defaultValue":{"description":"Optional default value for use when a value for the variable is not given\ncan reference values of other previously defined variables using the Go\ntext/template syntax","type":"string"},"description":{"description":"Optional description for the variable for display in the UI","type":"string"},"name":{"description":"Variable name","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplate","version":"v1beta1"}]},"dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplateList":{"description":"ProjectDevelopmentStreamTemplateList is a list of ProjectDevelopmentStreamTemplate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of projectdevelopmentstreamtemplates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.ProjectDevelopmentStreamTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"projctl.konflux.dev","kind":"ProjectDevelopmentStreamTemplateList","version":"v1beta1"}]},"dev.konflux.projctl.v1beta1.ProjectList":{"description":"ProjectList is a list of Project","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of projects. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.konflux.projctl.v1beta1.Project"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"projctl.konflux.dev","kind":"ProjectList","version":"v1beta1"}]},"dev.tekton.operator.v1alpha1.ManualApprovalGate":{"description":"ManualApprovalGate is the Schema for the ManualApprovalGate API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["options"],"properties":{"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"ManualApprovalGateStatus defines the observed state of ManualApprovalGate","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tektonInstallerSet":{"description":"The current installer set name for ManualApprovalGate","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"ManualApprovalGate","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.ManualApprovalGateList":{"description":"ManualApprovalGateList is a list of ManualApprovalGate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of manualapprovalgates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.ManualApprovalGate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"ManualApprovalGateList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode":{"type":"object","x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCode","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCodeList":{"description":"OpenShiftPipelinesAsCodeList is a list of OpenShiftPipelinesAsCode","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of openshiftpipelinesascodes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.OpenShiftPipelinesAsCode"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"OpenShiftPipelinesAsCodeList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.SyncerService":{"description":"SyncerService is the Schema for the syncerservices API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"SyncerServiceSpec defines the desired state of SyncerService","type":"object","properties":{"config":{"description":"Config holds the configuration for resources created by SyncerService","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"options":{"description":"Options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"SyncerServiceStatus defines the observed state of SyncerService","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"syncerServiceInstallerSet":{"description":"The current installer set name for SyncerService","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"SyncerService","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.SyncerServiceList":{"description":"SyncerServiceList is a list of SyncerService","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of syncerservices. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.SyncerService"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"SyncerServiceList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonAddon":{"description":"TektonAddon is the Schema for the tektonaddons API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TektonAddonSpec defines the desired state of TektonAddon","type":"object","properties":{"config":{"description":"Config holds the configuration for resources created by Addon","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"enablePipelinesAsCode":{"description":"Deprecated, will be removed in further release\nEnablePAC field defines whether to install PAC","type":"boolean"},"params":{"description":"Params is the list of params passed for Addon customization","type":"array","items":{"description":"Param declares an string value to use for the parameter called name.","type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"TektonAddonStatus defines the observed state of TektonAddon","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"installerSets":{"description":"TektonInstallerSet created to install addons","type":"object","additionalProperties":{"type":"string"}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonAddon","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonAddonList":{"description":"TektonAddonList is a list of TektonAddon","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonaddons. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonAddon"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonAddonList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonChain":{"description":"TektonChain is the Schema for the tektonchain API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TektonChainSpec defines the desired state of TektonChain","type":"object","required":["disabled","options"],"properties":{"artifacts.oci.format":{"description":"oci artifacts config","type":"string"},"artifacts.oci.signer":{"type":"string"},"artifacts.oci.storage":{"type":"string"},"artifacts.pipelinerun.enable-deep-inspection":{"type":"string"},"artifacts.pipelinerun.format":{"description":"pipelinerun artifacts config","type":"string"},"artifacts.pipelinerun.signer":{"type":"string"},"artifacts.pipelinerun.storage":{"type":"string"},"artifacts.taskrun.format":{"description":"taskrun artifacts config","type":"string"},"artifacts.taskrun.signer":{"type":"string"},"artifacts.taskrun.storage":{"type":"string"},"builddefinition.buildtype":{"type":"string"},"builder.id":{"description":"builder config","type":"string"},"config":{"description":"Config holds the configuration for resources created by TektonChain","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"controllerEnvs":{"type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"disabled":{"description":"enable or disable chains feature","type":"boolean"},"generateSigningSecret":{"description":"generate signing key","type":"boolean"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"performance":{"description":"PerformanceProperties defines the fields which are configurable\nto tune the performance of component controller","type":"object","required":["disable-ha"],"properties":{"buckets":{"type":"integer"},"disable-ha":{"description":"if it is true, disables the HA feature","type":"boolean"},"kube-api-burst":{"type":"integer"},"kube-api-qps":{"description":"queries per second (QPS) and burst to the master from rest API client\nactually the number multiplied by 2\nhttps://github.com/pierretasci/pipeline/blob/05d67e427c722a2a57e58328d7097e21429b7524/cmd/controller/main.go#L85-L87\ndefaults: https://github.com/tektoncd/pipeline/blob/34618964300620dca44d10a595e4af84e9903a55/vendor/k8s.io/client-go/rest/config.go#L45-L46","type":"number"},"replicas":{"type":"integer","format":"int32"},"statefulset-ordinals":{"description":"if is true, enable StatefulsetOrdinals mode","type":"boolean"},"threads-per-controller":{"description":"The number of workers to use when processing the component controller's work queue","type":"integer"}}},"signers.kms.auth.address":{"type":"string"},"signers.kms.auth.oidc.path":{"type":"string"},"signers.kms.auth.oidc.role":{"type":"string"},"signers.kms.auth.spire.audience":{"type":"string"},"signers.kms.auth.spire.sock":{"type":"string"},"signers.kms.auth.token":{"type":"string"},"signers.kms.auth.token-path":{"type":"string"},"signers.kms.kmsref":{"description":"kms signer config","type":"string"},"signers.x509.fulcio.address":{"type":"string"},"signers.x509.fulcio.enabled":{"description":"x509 signer config","type":"boolean"},"signers.x509.fulcio.issuer":{"type":"string"},"signers.x509.fulcio.provider":{"type":"string"},"signers.x509.identity.token.file":{"type":"string"},"signers.x509.tuf.mirror.url":{"type":"string"},"storage.docdb.mongo-server-url":{"type":"string"},"storage.docdb.mongo-server-url-dir":{"type":"string"},"storage.docdb.url":{"type":"string"},"storage.gcs.bucket":{"description":"storage configs","type":"string"},"storage.grafeas.notehint":{"type":"string"},"storage.grafeas.noteid":{"type":"string"},"storage.grafeas.projectid":{"type":"string"},"storage.oci.repository":{"type":"string"},"storage.oci.repository.insecure":{"type":"boolean"},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"},"transparency.enabled":{"type":"string"},"transparency.url":{"type":"string"}}},"status":{"description":"TektonChainStatus defines the observed state of TektonChain","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tektonInstallerSet":{"description":"The current installer set name for TektonChain","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonChain","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonChainList":{"description":"TektonChainList is a list of TektonChain","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonchains. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonChain"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonChainList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonConfig":{"description":"TektonConfig is the Schema for the TektonConfigs API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TektonConfigSpec defines the desired state of TektonConfig","type":"object","properties":{"addon":{"description":"Addon holds the addons config","type":"object","properties":{"enablePipelinesAsCode":{"description":"Deprecated, will be removed in further release\nEnablePAC field defines whether to install PAC","type":"boolean"},"params":{"description":"Params is the list of params passed for Addon customization","type":"array","items":{"description":"Param declares an string value to use for the parameter called name.","type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}}}},"chain":{"description":"Chain holds the customizable option for chains component","type":"object","required":["disabled","options"],"properties":{"artifacts.oci.format":{"description":"oci artifacts config","type":"string"},"artifacts.oci.signer":{"type":"string"},"artifacts.oci.storage":{"type":"string"},"artifacts.pipelinerun.enable-deep-inspection":{"type":"string"},"artifacts.pipelinerun.format":{"description":"pipelinerun artifacts config","type":"string"},"artifacts.pipelinerun.signer":{"type":"string"},"artifacts.pipelinerun.storage":{"type":"string"},"artifacts.taskrun.format":{"description":"taskrun artifacts config","type":"string"},"artifacts.taskrun.signer":{"type":"string"},"artifacts.taskrun.storage":{"type":"string"},"builddefinition.buildtype":{"type":"string"},"builder.id":{"description":"builder config","type":"string"},"controllerEnvs":{"type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"disabled":{"description":"enable or disable chains feature","type":"boolean"},"generateSigningSecret":{"description":"generate signing key","type":"boolean"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"performance":{"description":"PerformanceProperties defines the fields which are configurable\nto tune the performance of component controller","type":"object","required":["disable-ha"],"properties":{"buckets":{"type":"integer"},"disable-ha":{"description":"if it is true, disables the HA feature","type":"boolean"},"kube-api-burst":{"type":"integer"},"kube-api-qps":{"description":"queries per second (QPS) and burst to the master from rest API client\nactually the number multiplied by 2\nhttps://github.com/pierretasci/pipeline/blob/05d67e427c722a2a57e58328d7097e21429b7524/cmd/controller/main.go#L85-L87\ndefaults: https://github.com/tektoncd/pipeline/blob/34618964300620dca44d10a595e4af84e9903a55/vendor/k8s.io/client-go/rest/config.go#L45-L46","type":"number"},"replicas":{"type":"integer","format":"int32"},"statefulset-ordinals":{"description":"if is true, enable StatefulsetOrdinals mode","type":"boolean"},"threads-per-controller":{"description":"The number of workers to use when processing the component controller's work queue","type":"integer"}}},"signers.kms.auth.address":{"type":"string"},"signers.kms.auth.oidc.path":{"type":"string"},"signers.kms.auth.oidc.role":{"type":"string"},"signers.kms.auth.spire.audience":{"type":"string"},"signers.kms.auth.spire.sock":{"type":"string"},"signers.kms.auth.token":{"type":"string"},"signers.kms.auth.token-path":{"type":"string"},"signers.kms.kmsref":{"description":"kms signer config","type":"string"},"signers.x509.fulcio.address":{"type":"string"},"signers.x509.fulcio.enabled":{"description":"x509 signer config","type":"boolean"},"signers.x509.fulcio.issuer":{"type":"string"},"signers.x509.fulcio.provider":{"type":"string"},"signers.x509.identity.token.file":{"type":"string"},"signers.x509.tuf.mirror.url":{"type":"string"},"storage.docdb.mongo-server-url":{"type":"string"},"storage.docdb.mongo-server-url-dir":{"type":"string"},"storage.docdb.url":{"type":"string"},"storage.gcs.bucket":{"description":"storage configs","type":"string"},"storage.grafeas.notehint":{"type":"string"},"storage.grafeas.noteid":{"type":"string"},"storage.grafeas.projectid":{"type":"string"},"storage.oci.repository":{"type":"string"},"storage.oci.repository.insecure":{"type":"boolean"},"transparency.enabled":{"type":"string"},"transparency.url":{"type":"string"}}},"config":{"description":"Config holds the configuration for resources created by TektonConfig","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"dashboard":{"description":"Dashboard holds the customizable options for dashboards component","type":"object","required":["options","readonly"],"properties":{"external-logs":{"type":"string"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"readonly":{"description":"Readonly when set to true configures the Tekton dashboard in read-only mode","type":"boolean"}}},"hub":{"description":"Hub holds the hub config","type":"object","required":["options"],"properties":{"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"params":{"description":"Params is the list of params passed for Hub customization","type":"array","items":{"description":"Param declares an string value to use for the parameter called name.","type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}}}},"multiclusterProxyAAE":{"description":"MulticlusterProxyAAE holds the customizable options for the multicluster-proxy-aae component","type":"object","required":["options"],"properties":{"options":{"description":"options holds additional fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}}}},"params":{"description":"Params is the list of params passed for all platforms","type":"array","items":{"description":"Param declares an string value to use for the parameter called name.","type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"pipeline":{"description":"Pipeline holds the customizable option for pipeline component","type":"object","required":["options"],"properties":{"await-sidecar-readiness":{"type":"boolean"},"bundles-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"cluster-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"coschedule":{"type":"string"},"default-affinity-assistant-pod-template":{"type":"string"},"default-cloud-events-sink":{"type":"string"},"default-forbidden-env":{"type":"string"},"default-managed-by-label-value":{"type":"string"},"default-max-matrix-combinations-count":{"type":"string"},"default-pod-template":{"type":"string"},"default-resolver-type":{"type":"string"},"default-service-account":{"type":"string"},"default-task-run-workspace-binding":{"type":"string"},"default-timeout-minutes":{"type":"integer"},"disable-affinity-assistant":{"description":"Deprecated: DisableAffinityAssistant is deprecated and no longer used.\nThis field is removed from pipeline component.\nKeeping here to maintain API compatibility during upgrades.","type":"boolean"},"disable-creds-init":{"type":"boolean"},"disable-inline-spec":{"type":"string"},"embedded-status":{"type":"string"},"enable-api-fields":{"type":"string"},"enable-bundles-resolver":{"type":"boolean"},"enable-cel-in-whenexpression":{"type":"boolean"},"enable-cluster-resolver":{"type":"boolean"},"enable-custom-tasks":{"type":"boolean"},"enable-git-resolver":{"type":"boolean"},"enable-hub-resolver":{"type":"boolean"},"enable-param-enum":{"type":"boolean"},"enable-provenance-in-status":{"type":"boolean"},"enable-step-actions":{"type":"boolean"},"enable-tekton-oci-bundles":{"description":"not in use, see: https://github.com/tektoncd/pipeline/pull/7789\nthis field is removed from pipeline component\nkeeping here to maintain the API compatibility","type":"boolean"},"enforce-nonfalsifiability":{"type":"string"},"git-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"hub-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"keep-pod-on-cancel":{"type":"boolean"},"max-result-size":{"type":"integer","format":"int32"},"metrics.count.enable-reason":{"type":"boolean"},"metrics.pipelinerun.duration-type":{"type":"string"},"metrics.pipelinerun.level":{"type":"string"},"metrics.taskrun.duration-type":{"type":"string"},"metrics.taskrun.level":{"type":"string"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"params":{"description":"The params to customize different components of Pipelines","type":"array","items":{"description":"Param declares an string value to use for the parameter called name.","type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"performance":{"description":"PerformanceProperties defines the fields which are configurable\nto tune the performance of component controller","type":"object","required":["disable-ha"],"properties":{"buckets":{"type":"integer"},"disable-ha":{"description":"if it is true, disables the HA feature","type":"boolean"},"kube-api-burst":{"type":"integer"},"kube-api-qps":{"description":"queries per second (QPS) and burst to the master from rest API client\nactually the number multiplied by 2\nhttps://github.com/pierretasci/pipeline/blob/05d67e427c722a2a57e58328d7097e21429b7524/cmd/controller/main.go#L85-L87\ndefaults: https://github.com/tektoncd/pipeline/blob/34618964300620dca44d10a595e4af84e9903a55/vendor/k8s.io/client-go/rest/config.go#L45-L46","type":"number"},"replicas":{"type":"integer","format":"int32"},"statefulset-ordinals":{"description":"if is true, enable StatefulsetOrdinals mode","type":"boolean"},"threads-per-controller":{"description":"The number of workers to use when processing the component controller's work queue","type":"integer"}}},"require-git-ssh-secret-known-hosts":{"type":"boolean"},"results-from":{"type":"string"},"running-in-environment-with-injected-sidecars":{"type":"boolean"},"scope-when-expressions-to-task":{"description":"ScopeWhenExpressionsToTask is deprecated and never used.","type":"boolean"},"send-cloudevents-for-runs":{"type":"boolean"},"set-security-context":{"type":"boolean"},"traces.credentialsSecret":{"description":"CredentialsSecret is the name of the secret containing credentials for the tracing endpoint","type":"string"},"traces.enabled":{"description":"Enabled controls whether tracing is enabled or not","type":"boolean"},"traces.endpoint":{"description":"Endpoint is the URL for the OpenTelemetry trace collector","type":"string"},"trusted-resources-verification-no-match-policy":{"type":"string"},"verification-mode":{"type":"string"}}},"platforms":{"description":"Platforms allows configuring platform specific configurations","type":"object","properties":{"kubernetes":{"description":"Kubernetes allows configuring kubernetes specific components and configurations","type":"object","properties":{"pipelinesAsCode":{"description":"PipelinesAsCode allows configuring PipelinesAsCode configurations","type":"object","required":["options"],"properties":{"additionalPACControllers":{"description":"AdditionalPACControllers allows to deploy additional PAC controller","type":"object","additionalProperties":{"description":"AdditionalPACControllerConfig contains config for additionalPACControllers","type":"object","properties":{"configMapName":{"description":"Name of the additional controller configMap","type":"string"},"enable":{"description":"Enable or disable this additional pipelines as code instance by changing this bool","type":"boolean"},"secretName":{"description":"Name of the additional controller Secret","type":"string"},"settings":{"description":"Setting will contains the configMap data","type":"object","additionalProperties":{"type":"string"}}}}},"enable":{"description":"Enable or disable pipelines as code by changing this bool","type":"boolean"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"settings":{"type":"object","additionalProperties":{"type":"string"}}}}}},"openshift":{"description":"OpenShift allows configuring openshift specific components and configurations","type":"object","properties":{"enableCentralTLSConfig":{"description":"EnableCentralTLSConfig enables TLS configuration inheritance from\nthe cluster's APIServer TLS security profile. When enabled, TLS settings\n(minimum version, cipher suites, curve preferences) are automatically\nderived from the cluster-wide security policy and injected into Tekton\ncomponent containers that support TLS configuration.\nIf the APIServer does not have a TLS profile configured, user-specified\nTLS settings in component configurations will be used as fallback.\nDefault: false (opt-in)","type":"boolean"},"pipelinesAsCode":{"description":"PipelinesAsCode allows configuring PipelinesAsCode configurations","type":"object","required":["options"],"properties":{"additionalPACControllers":{"description":"AdditionalPACControllers allows to deploy additional PAC controller","type":"object","additionalProperties":{"description":"AdditionalPACControllerConfig contains config for additionalPACControllers","type":"object","properties":{"configMapName":{"description":"Name of the additional controller configMap","type":"string"},"enable":{"description":"Enable or disable this additional pipelines as code instance by changing this bool","type":"boolean"},"secretName":{"description":"Name of the additional controller Secret","type":"string"},"settings":{"description":"Setting will contains the configMap data","type":"object","additionalProperties":{"type":"string"}}}}},"enable":{"description":"Enable or disable pipelines as code by changing this bool","type":"boolean"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"settings":{"type":"object","additionalProperties":{"type":"string"}}}},"scc":{"description":"SCC allows configuring security context constraints used by workloads","type":"object","properties":{"default":{"description":"Default contains the default SCC that will be attached to the service\naccount used for workloads (`pipeline` SA by default) and defined in\nPipelineProperties.OptionalPipelineProperties.DefaultServiceAccount","type":"string"},"maxAllowed":{"description":"MaxAllowed specifies the highest SCC that can be requested for in a\nnamespace or in the Default field.","type":"string"}}}}}}},"profile":{"type":"string"},"pruner":{"description":"Pruner holds the prune config","type":"object","required":["disabled"],"properties":{"disabled":{"description":"enable or disable pruner feature","type":"boolean"},"keep":{"description":"The number of resource to keep\nYou dont want to delete all the pipelinerun/taskrun's by a cron","type":"integer"},"keep-since":{"description":"KeepSince keeps the resources younger than the specified value\nIts value is taken in minutes","type":"integer"},"prune-per-resource":{"description":"apply the prune job to the individual resources","type":"boolean"},"resources":{"description":"The resources which need to be pruned","type":"array","items":{"type":"string"}},"schedule":{"description":"How frequent pruning should happen","type":"string"},"startingDeadlineSeconds":{"description":"Optional deadline in seconds for starting the job if it misses scheduled time for any reason.\nMissed jobs executions will be counted as failed ones.","type":"integer","format":"int64"}}},"result":{"description":"Result holds the customize option for results component","type":"object","required":["disabled","is_external_db","options"],"properties":{"auth_disable":{"type":"boolean"},"auth_impersonate":{"type":"boolean"},"db_enable_auto_migration":{"type":"boolean"},"db_host":{"type":"string"},"db_name":{"type":"string"},"db_port":{"type":"integer","format":"int64"},"db_secret_name":{"type":"string"},"db_secret_password_key":{"type":"string"},"db_secret_user_key":{"type":"string"},"db_sslmode":{"type":"string"},"db_sslrootcert":{"type":"string"},"disabled":{"description":"enable or disable Result Component","type":"boolean"},"gcs_bucket_name":{"type":"string"},"gcs_creds_secret_key":{"type":"string"},"gcs_creds_secret_name":{"type":"string"},"is_external_db":{"type":"boolean"},"log_level":{"type":"string"},"logging_plugin_api_url":{"type":"string"},"logging_plugin_ca_cert":{"type":"string"},"logging_plugin_forwarder_delay_duration":{"type":"integer"},"logging_plugin_multipart_regex":{"type":"string"},"logging_plugin_namespace_key":{"type":"string"},"logging_plugin_proxy_path":{"type":"string"},"logging_plugin_query_limit":{"type":"integer"},"logging_plugin_query_params":{"type":"string"},"logging_plugin_static_labels":{"type":"string"},"logging_plugin_tls_verification_disable":{"type":"boolean"},"logging_plugin_token_path":{"type":"string"},"logging_pvc_name":{"type":"string"},"logs_api":{"type":"boolean"},"logs_buffer_size":{"type":"integer","format":"int64"},"logs_path":{"type":"string"},"logs_type":{"type":"string"},"loki_stack_name":{"type":"string"},"loki_stack_namespace":{"type":"string"},"options":{"description":"Options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"performance":{"description":"PerformanceProperties defines the fields which are configurable\nto tune the performance of component controller","type":"object","required":["disable-ha"],"properties":{"buckets":{"type":"integer"},"disable-ha":{"description":"if it is true, disables the HA feature","type":"boolean"},"kube-api-burst":{"type":"integer"},"kube-api-qps":{"description":"queries per second (QPS) and burst to the master from rest API client\nactually the number multiplied by 2\nhttps://github.com/pierretasci/pipeline/blob/05d67e427c722a2a57e58328d7097e21429b7524/cmd/controller/main.go#L85-L87\ndefaults: https://github.com/tektoncd/pipeline/blob/34618964300620dca44d10a595e4af84e9903a55/vendor/k8s.io/client-go/rest/config.go#L45-L46","type":"number"},"replicas":{"type":"integer","format":"int32"},"statefulset-ordinals":{"description":"if is true, enable StatefulsetOrdinals mode","type":"boolean"},"threads-per-controller":{"description":"The number of workers to use when processing the component controller's work queue","type":"integer"}}},"prometheus_histogram":{"type":"boolean"},"prometheus_port":{"type":"integer","format":"int64"},"route_enabled":{"description":"Route configuration for Results API service exposure","type":"boolean"},"route_host":{"type":"string"},"route_path":{"type":"string"},"route_tls_termination":{"type":"string"},"secret_name":{"description":"name of the secret used to get S3 credentials and\npass it as environment variables to the \"tekton-results-api\" deployment under \"api\" container","type":"string"},"server_port":{"type":"integer","format":"int64"},"storage_emulator_host":{"type":"string"},"tls_hostname_override":{"type":"string"}}},"scheduler":{"description":"To enable Pipeline Scheduling on Single Cluster or Multiple Clusters","type":"object","required":["config.yaml","disabled","multi-cluster-disabled","multi-cluster-role","options"],"properties":{"config.yaml":{"description":"This hold the config data from tekton-kueue. ConfigMap in tekton kueue is loaded as config.yaml so we need to\nmatch the key here","x-kubernetes-preserve-unknown-fields":true},"disabled":{"description":"enable or disable TektonScheduler Component","type":"boolean"},"multi-cluster-disabled":{"type":"boolean"},"multi-cluster-role":{"description":"MultiClusterRole Define the role of current cluster in multi-cluster environment. The MultiClusterRole\ncan be one of Hub or Spoke","type":"string"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"},"targetNamespaceMetadata":{"description":"holds target namespace metadata","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"tektonpruner":{"description":"New EventBasedPruner which provides more granular control over TaskRun and PipelineRuns","type":"object","required":["disabled","global-config","options"],"properties":{"disabled":{"description":"enable or disable TektonPruner Component","type":"boolean"},"global-config":{"x-kubernetes-preserve-unknown-fields":true},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}}}},"trigger":{"description":"Trigger holds the customizable option for triggers component","type":"object","required":["disabled","options"],"properties":{"default-service-account":{"type":"string"},"disabled":{"description":"enable or disable Trigger Component","type":"boolean"},"enable-api-fields":{"type":"string"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}}}}}},"status":{"description":"TektonConfigStatus defines the observed state of TektonConfig","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"profile":{"description":"The profile installed","type":"string"},"tektonInstallerSets":{"description":"The current installer set name","type":"object","additionalProperties":{"type":"string"}},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonConfig","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonConfigList":{"description":"TektonConfigList is a list of TektonConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonConfigList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonHub":{"description":"TektonHub is the Schema for the tektonhub API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["options"],"properties":{"api":{"type":"object","properties":{"catalogRefreshInterval":{"type":"string"},"hubConfigUrl":{"description":"Deprecated, will be removed in further release","type":"string"},"routeHostUrl":{"type":"string"},"secret":{"type":"string"}}},"catalogs":{"type":"array","items":{"type":"object","properties":{"contextDir":{"type":"string"},"name":{"type":"string"},"org":{"type":"string"},"provider":{"type":"string"},"revision":{"type":"string"},"sshUrl":{"type":"string"},"type":{"type":"string"},"url":{"type":"string"}}}},"categories":{"type":"array","items":{"type":"string"}},"customLogo":{"description":"The Base64 Encode data and mediaType of the Custom Logo","type":"object","properties":{"base64Data":{"type":"string"},"mediaType":{"type":"string"}}},"db":{"type":"object","properties":{"secret":{"type":"string"}}},"default":{"type":"object","properties":{"scopes":{"type":"array","items":{"type":"string"}}}},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"params":{"description":"Params is the list of params passed for Hub customization","type":"array","items":{"description":"Param declares an string value to use for the parameter called name.","type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"scopes":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"users":{"type":"array","items":{"type":"string"}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"TektonHubStatus defines the observed state of TektonHub","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"apiUrl":{"description":"The URL route for API which needs to be exposed","type":"string"},"authUrl":{"description":"The URL route for Auth server","type":"string"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"hubInstallerSets":{"description":"The current installer set name","type":"object","additionalProperties":{"type":"string"}},"manifests":{"description":"The url links of the manifests, separated by comma","type":"array","items":{"type":"string"}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"uiUrl":{"description":"The URL route for UI which needs to be exposed","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonHub","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonHubList":{"description":"TektonHubList is a list of TektonHub","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonhubs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonHub"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonHubList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonInstallerSet":{"description":"TektonInstallerSet is the Schema for the TektonInstallerSet API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TektonInstallerSetSpec defines the desired state of TektonInstallerSet","type":"object","properties":{"manifests":{"x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"TektonInstallerSetStatus defines the observed state of TektonInstallerSet","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonInstallerSet","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonInstallerSetList":{"description":"TektonInstallerSetList is a list of TektonInstallerSet","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektoninstallersets. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonInstallerSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonInstallerSetList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE":{"description":"TektonMulticlusterProxyAAE is the Schema for the TektonMulticlusterProxyAAE API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["options"],"properties":{"options":{"description":"options holds additional fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"TektonMulticlusterProxyAAEStatus defines the observed state of TektonMulticlusterProxyAAE","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tektonInstallerSet":{"description":"The current installer set name for TektonMulticlusterProxyAAE","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAE","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAEList":{"description":"TektonMulticlusterProxyAAEList is a list of TektonMulticlusterProxyAAE","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonmulticlusterproxyaaes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonMulticlusterProxyAAE"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonMulticlusterProxyAAEList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonPipeline":{"description":"TektonPipeline is the Schema for the tektonpipelines API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TektonPipelineSpec defines the desired state of TektonPipeline","type":"object","required":["options"],"properties":{"await-sidecar-readiness":{"type":"boolean"},"bundles-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"cluster-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"config":{"description":"Config holds the configuration for resources created by TektonPipeline","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"coschedule":{"type":"string"},"default-affinity-assistant-pod-template":{"type":"string"},"default-cloud-events-sink":{"type":"string"},"default-forbidden-env":{"type":"string"},"default-managed-by-label-value":{"type":"string"},"default-max-matrix-combinations-count":{"type":"string"},"default-pod-template":{"type":"string"},"default-resolver-type":{"type":"string"},"default-service-account":{"type":"string"},"default-task-run-workspace-binding":{"type":"string"},"default-timeout-minutes":{"type":"integer"},"disable-affinity-assistant":{"description":"Deprecated: DisableAffinityAssistant is deprecated and no longer used.\nThis field is removed from pipeline component.\nKeeping here to maintain API compatibility during upgrades.","type":"boolean"},"disable-creds-init":{"type":"boolean"},"disable-inline-spec":{"type":"string"},"embedded-status":{"type":"string"},"enable-api-fields":{"type":"string"},"enable-bundles-resolver":{"type":"boolean"},"enable-cel-in-whenexpression":{"type":"boolean"},"enable-cluster-resolver":{"type":"boolean"},"enable-custom-tasks":{"type":"boolean"},"enable-git-resolver":{"type":"boolean"},"enable-hub-resolver":{"type":"boolean"},"enable-param-enum":{"type":"boolean"},"enable-provenance-in-status":{"type":"boolean"},"enable-step-actions":{"type":"boolean"},"enable-tekton-oci-bundles":{"description":"not in use, see: https://github.com/tektoncd/pipeline/pull/7789\nthis field is removed from pipeline component\nkeeping here to maintain the API compatibility","type":"boolean"},"enforce-nonfalsifiability":{"type":"string"},"git-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"hub-resolver-config":{"type":"object","additionalProperties":{"type":"string"}},"keep-pod-on-cancel":{"type":"boolean"},"max-result-size":{"type":"integer","format":"int32"},"metrics.count.enable-reason":{"type":"boolean"},"metrics.pipelinerun.duration-type":{"type":"string"},"metrics.pipelinerun.level":{"type":"string"},"metrics.taskrun.duration-type":{"type":"string"},"metrics.taskrun.level":{"type":"string"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"params":{"description":"The params to customize different components of Pipelines","type":"array","items":{"description":"Param declares an string value to use for the parameter called name.","type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"performance":{"description":"PerformanceProperties defines the fields which are configurable\nto tune the performance of component controller","type":"object","required":["disable-ha"],"properties":{"buckets":{"type":"integer"},"disable-ha":{"description":"if it is true, disables the HA feature","type":"boolean"},"kube-api-burst":{"type":"integer"},"kube-api-qps":{"description":"queries per second (QPS) and burst to the master from rest API client\nactually the number multiplied by 2\nhttps://github.com/pierretasci/pipeline/blob/05d67e427c722a2a57e58328d7097e21429b7524/cmd/controller/main.go#L85-L87\ndefaults: https://github.com/tektoncd/pipeline/blob/34618964300620dca44d10a595e4af84e9903a55/vendor/k8s.io/client-go/rest/config.go#L45-L46","type":"number"},"replicas":{"type":"integer","format":"int32"},"statefulset-ordinals":{"description":"if is true, enable StatefulsetOrdinals mode","type":"boolean"},"threads-per-controller":{"description":"The number of workers to use when processing the component controller's work queue","type":"integer"}}},"require-git-ssh-secret-known-hosts":{"type":"boolean"},"results-from":{"type":"string"},"running-in-environment-with-injected-sidecars":{"type":"boolean"},"scope-when-expressions-to-task":{"description":"ScopeWhenExpressionsToTask is deprecated and never used.","type":"boolean"},"send-cloudevents-for-runs":{"type":"boolean"},"set-security-context":{"type":"boolean"},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"},"traces.credentialsSecret":{"description":"CredentialsSecret is the name of the secret containing credentials for the tracing endpoint","type":"string"},"traces.enabled":{"description":"Enabled controls whether tracing is enabled or not","type":"boolean"},"traces.endpoint":{"description":"Endpoint is the URL for the OpenTelemetry trace collector","type":"string"},"trusted-resources-verification-no-match-policy":{"type":"string"},"verification-mode":{"type":"string"}}},"status":{"description":"TektonPipelineStatus defines the observed state of TektonPipeline","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"extTektonInstallerSets":{"description":"The installer sets created for extension components","type":"object","additionalProperties":{"type":"string"}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tektonInstallerSet":{"description":"The current installer set name for TektonPipeline","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonPipeline","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonPipelineList":{"description":"TektonPipelineList is a list of TektonPipeline","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonpipelines. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPipeline"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonPipelineList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonPruner":{"description":"TektonPruner is the Schema for the TektonPruner API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["disabled","global-config","options"],"properties":{"config":{"description":"Config holds the configuration for resources created by TektonPruner","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"disabled":{"description":"enable or disable TektonPruner Component","type":"boolean"},"global-config":{"x-kubernetes-preserve-unknown-fields":true},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"TektonPrunerStatus defines the observed state of TektonPruner","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tektonInstallerSet":{"description":"The current installer set name for TektonPruner","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonPruner","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonPrunerList":{"description":"TektonPrunerList is a list of TektonPruner","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonpruners. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonPruner"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonPrunerList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonResult":{"description":"TektonResult is the Schema for the tektonresults API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TektonResultSpec defines the desired state of TektonResult","type":"object","required":["disabled","is_external_db","options"],"properties":{"auth_disable":{"type":"boolean"},"auth_impersonate":{"type":"boolean"},"config":{"description":"Config holds the configuration for resources created by TektonResult","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"db_enable_auto_migration":{"type":"boolean"},"db_host":{"type":"string"},"db_name":{"type":"string"},"db_port":{"type":"integer","format":"int64"},"db_secret_name":{"type":"string"},"db_secret_password_key":{"type":"string"},"db_secret_user_key":{"type":"string"},"db_sslmode":{"type":"string"},"db_sslrootcert":{"type":"string"},"disabled":{"description":"enable or disable Result Component","type":"boolean"},"gcs_bucket_name":{"type":"string"},"gcs_creds_secret_key":{"type":"string"},"gcs_creds_secret_name":{"type":"string"},"is_external_db":{"type":"boolean"},"log_level":{"type":"string"},"logging_plugin_api_url":{"type":"string"},"logging_plugin_ca_cert":{"type":"string"},"logging_plugin_forwarder_delay_duration":{"type":"integer"},"logging_plugin_multipart_regex":{"type":"string"},"logging_plugin_namespace_key":{"type":"string"},"logging_plugin_proxy_path":{"type":"string"},"logging_plugin_query_limit":{"type":"integer"},"logging_plugin_query_params":{"type":"string"},"logging_plugin_static_labels":{"type":"string"},"logging_plugin_tls_verification_disable":{"type":"boolean"},"logging_plugin_token_path":{"type":"string"},"logging_pvc_name":{"type":"string"},"logs_api":{"type":"boolean"},"logs_buffer_size":{"type":"integer","format":"int64"},"logs_path":{"type":"string"},"logs_type":{"type":"string"},"loki_stack_name":{"type":"string"},"loki_stack_namespace":{"type":"string"},"options":{"description":"Options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"performance":{"description":"PerformanceProperties defines the fields which are configurable\nto tune the performance of component controller","type":"object","required":["disable-ha"],"properties":{"buckets":{"type":"integer"},"disable-ha":{"description":"if it is true, disables the HA feature","type":"boolean"},"kube-api-burst":{"type":"integer"},"kube-api-qps":{"description":"queries per second (QPS) and burst to the master from rest API client\nactually the number multiplied by 2\nhttps://github.com/pierretasci/pipeline/blob/05d67e427c722a2a57e58328d7097e21429b7524/cmd/controller/main.go#L85-L87\ndefaults: https://github.com/tektoncd/pipeline/blob/34618964300620dca44d10a595e4af84e9903a55/vendor/k8s.io/client-go/rest/config.go#L45-L46","type":"number"},"replicas":{"type":"integer","format":"int32"},"statefulset-ordinals":{"description":"if is true, enable StatefulsetOrdinals mode","type":"boolean"},"threads-per-controller":{"description":"The number of workers to use when processing the component controller's work queue","type":"integer"}}},"prometheus_histogram":{"type":"boolean"},"prometheus_port":{"type":"integer","format":"int64"},"route_enabled":{"description":"Route configuration for Results API service exposure","type":"boolean"},"route_host":{"type":"string"},"route_path":{"type":"string"},"route_tls_termination":{"type":"string"},"secret_name":{"description":"name of the secret used to get S3 credentials and\npass it as environment variables to the \"tekton-results-api\" deployment under \"api\" container","type":"string"},"server_port":{"type":"integer","format":"int64"},"storage_emulator_host":{"type":"string"},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"},"tls_hostname_override":{"type":"string"}}},"status":{"description":"TektonResultStatus defines the observed state of TektonResult","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tektonInstallerSet":{"description":"The current installer set name for TektonResult","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonResult","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonResultList":{"description":"TektonResultList is a list of TektonResult","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonresults. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonResult"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonResultList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonScheduler":{"description":"TektonScheduler is the Schema for the TektonScheduler API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["config.yaml","disabled","multi-cluster-disabled","multi-cluster-role","options"],"properties":{"config.yaml":{"description":"This hold the config data from tekton-kueue. ConfigMap in tekton kueue is loaded as config.yaml so we need to\nmatch the key here","x-kubernetes-preserve-unknown-fields":true},"disabled":{"description":"enable or disable TektonScheduler Component","type":"boolean"},"multi-cluster-disabled":{"type":"boolean"},"multi-cluster-role":{"description":"MultiClusterRole Define the role of current cluster in multi-cluster environment. The MultiClusterRole\ncan be one of Hub or Spoke","type":"string"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"TektonSchedulerStatus defines the observed state of TektonScheduler","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tekton-scheduler":{"description":"The current installer set name for TektonScheduler","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonScheduler","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonSchedulerList":{"description":"TektonSchedulerList is a list of TektonScheduler","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektonschedulers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonScheduler"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonSchedulerList","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonTrigger":{"description":"TektonTrigger is the Schema for the tektontriggers API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TektonTriggerSpec defines the desired state of TektonTrigger","type":"object","required":["disabled","options"],"properties":{"config":{"description":"Config holds the configuration for resources created by TektonTrigger","type":"object","properties":{"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"PriorityClassName holds the priority class to be set to pod template","type":"string"},"tolerations":{"type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"default-service-account":{"type":"string"},"disabled":{"description":"enable or disable Trigger Component","type":"boolean"},"enable-api-fields":{"type":"string"},"options":{"description":"options holds additions fields and these fields will be updated on the manifests","type":"object","properties":{"configMaps":{"x-kubernetes-preserve-unknown-fields":true},"deployments":{"x-kubernetes-preserve-unknown-fields":true},"disabled":{"type":"boolean"},"horizontalPodAutoscalers":{"x-kubernetes-preserve-unknown-fields":true},"statefulSets":{"x-kubernetes-preserve-unknown-fields":true},"webhookConfigurationOptions":{"type":"object","additionalProperties":{"description":"WebhookOptions defines options for webhooks","type":"object","properties":{"failurePolicy":{"description":"FailurePolicyType specifies a failure policy that defines how unrecognized errors from the admission endpoint are handled.","type":"string"},"sideEffects":{"description":"SideEffectClass specifies the types of side effects a webhook may have.","type":"string"},"timeoutSeconds":{"type":"integer","format":"int32"}}}}}},"targetNamespace":{"description":"TargetNamespace is where resources will be installed","type":"string"}}},"status":{"description":"TektonTriggerStatus defines the observed state of TektonTrigger","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"tektonInstallerSet":{"description":"The current installer set name","type":"string"},"version":{"description":"The version of the installed release","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonTrigger","version":"v1alpha1"}]},"dev.tekton.operator.v1alpha1.TektonTriggerList":{"description":"TektonTriggerList is a list of TektonTrigger","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tektontriggers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.operator.v1alpha1.TektonTrigger"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.tekton.dev","kind":"TektonTriggerList","version":"v1alpha1"}]},"dev.tekton.pipelinesascode.v1alpha1.Repository":{"description":"Repository is the representation of a Git repository from a Git provider platform.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"pipelinerun_status":{"type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"completionTime":{"description":"CompletionTime is the time the PipelineRun completed.","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"event_type":{"description":"EventType is the event type of that run","type":"string"},"failure_reason":{"description":"CollectedTaskInfos is the information about tasks","type":"object","additionalProperties":{"description":"TaskInfos contains information about a task.","type":"object","required":["name"],"properties":{"completion_time":{"type":"string","format":"date-time"},"display_name":{"type":"string"},"log_snippet":{"type":"string"},"message":{"type":"string"},"name":{"type":"string"},"reason":{"type":"string"}}}},"logurl":{"description":"LogURL is the full URL to the log for this run.","type":"string"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"pipelineRunName":{"description":"PipelineRunName is the name of the PipelineRun","type":"string"},"sha":{"description":"SHA is the name of the SHA that has been tested","type":"string"},"sha_url":{"description":"SHA the URL of the SHA to view it","type":"string"},"startTime":{"description":"StartTime is the time the PipelineRun is actually started.","type":"string","format":"date-time"},"target_branch":{"description":"TargetBranch is the target branch of that run","type":"string"},"title":{"description":"Title is the title of the commit SHA that has been tested","type":"string"}}}},"spec":{"description":"RepositorySpec defines the desired state of a Repository, including its URL,\nGit provider configuration, and operational settings.","type":"object","properties":{"concurrency_limit":{"description":"ConcurrencyLimit defines the maximum number of concurrent pipelineruns that can\nrun for this repository. This helps prevent resource exhaustion when many events trigger\npipelines simultaneously.","type":"integer","minimum":1},"git_provider":{"description":"GitProvider details specific to a git provider configuration. Contains authentication,\nAPI endpoints, and provider type information needed to interact with the Git service.","type":"object","properties":{"secret":{"description":"Secret reference for authentication with the Git provider. Contains the token,\npassword, or private key used to authenticate requests to the Git provider API.","type":"object","required":["name"],"properties":{"key":{"description":"Key in the secret","type":"string"},"name":{"description":"Name of the secret","type":"string"}}},"type":{"description":"Type of git provider. Determines which Git provider API and authentication flow to use.\nSupported values:\n- 'github': GitHub.com or GitHub Enterprise\n- 'gitlab': GitLab.com or self-hosted GitLab\n- 'bitbucket-datacenter': Bitbucket Data Center (self-hosted)\n- 'bitbucket-cloud': Bitbucket Cloud (bitbucket.org)\n- 'forgejo': Forgejo instances\n- 'gitea': Gitea instances (alias for forgejo, kept for backwards compatibility)","type":"string","enum":["github","gitlab","bitbucket-datacenter","bitbucket-cloud","gitea","forgejo"]},"url":{"description":"URL of the git provider API endpoint. This is the base URL for API requests to the\nGit provider (e.g., 'https://api.github.com' for GitHub or a custom GitLab instance URL).","type":"string"},"user":{"description":"User of the git provider. Username to use for authentication when using basic auth\nor token-based authentication methods. Not used for GitHub Apps authentication.","type":"string"},"webhook_secret":{"description":"WebhookSecret reference for webhook validation. Contains the shared secret used to\nvalidate that incoming webhooks are legitimate and coming from the Git provider.","type":"object","required":["name"],"properties":{"key":{"description":"Key in the secret","type":"string"},"name":{"description":"Name of the secret","type":"string"}}}}},"incoming":{"description":"Incomings defines incoming webhook configurations. Each configuration specifies how to\nhandle external webhook requests that don't come directly from the primary Git provider.","type":"array","items":{"type":"object","required":["secret","type"],"properties":{"params":{"description":"Params defines parameter names to extract from the webhook payload. These parameters\nwill be made available to the PipelineRuns triggered by this webhook.","type":"array","items":{"type":"string"}},"secret":{"description":"Secret for the incoming webhook authentication. This secret is used to validate\nthat webhook requests are coming from authorized sources.","type":"object","required":["name"],"properties":{"key":{"description":"Key in the secret","type":"string"},"name":{"description":"Name of the secret","type":"string"}}},"targets":{"description":"Targets defines target branches for this webhook. When specified, only webhook\nevents targeting these branches will trigger PipelineRuns.","type":"array","items":{"type":"string"}},"type":{"description":"Type of the incoming webhook. Currently only 'webhook-url' is supported, which allows\nexternal systems to trigger PipelineRuns via generic webhook requests.","type":"string","enum":["webhook-url"]}}}},"params":{"description":"Params defines repository level parameters that can be referenced in PipelineRuns.\nThese parameters can be used as default values or configured for specific events.","type":"array","items":{"type":"object","required":["name"],"properties":{"filter":{"description":"Filter defines when this parameter applies. It can be used to conditionally\napply parameters based on the event type, branch name, or other attributes.","type":"string"},"name":{"description":"Name of the parameter. This is the key that will be used to reference this parameter\nin PipelineRun definitions through via the {{ name }} syntax.","type":"string"},"secret_ref":{"description":"SecretRef references a secret for the parameter value. Use this when the parameter\ncontains sensitive information that should not be stored directly in the Repository CR.\nThis field is mutually exclusive with Value.","type":"object","required":["name"],"properties":{"key":{"description":"Key in the secret","type":"string"},"name":{"description":"Name of the secret","type":"string"}}},"value":{"description":"Value of the parameter. The literal value to be provided to the PipelineRun.\nThis field is mutually exclusive with SecretRef.","type":"string"}}}},"settings":{"description":"Settings contains the configuration settings for the repository, including\nauthorization policies, provider-specific configuration, and provenance settings.","type":"object","properties":{"ai":{"description":"AIAnalysis contains AI/LLM analysis configuration for automated CI/CD pipeline analysis.","type":"object","required":["enabled","provider","roles","secret_ref"],"properties":{"api_url":{"description":"APIURL is an optional base URL to override the default API endpoint of the LLM provider.\nIf not specified, provider-specific defaults are used:\n- OpenAI: https://api.openai.com/v1\n- Gemini: https://generativelanguage.googleapis.com/v1beta\nUse this to configure self-hosted LLM instances, proxy services, or alternative endpoints.","type":"string"},"enabled":{"description":"Enabled controls whether AI analysis is active for this repository","type":"boolean"},"max_tokens":{"description":"MaxTokens limits the response length from the LLM (default: 1000)","type":"integer","maximum":4000,"minimum":1},"provider":{"description":"Provider specifies which LLM provider to use for analysis","type":"string","enum":["openai","gemini"]},"roles":{"description":"Roles defines different analysis scenarios and their configurations","type":"array","minItems":1,"items":{"description":"AnalysisRole defines a specific analysis scenario with its prompt, conditions, and output configuration.","type":"object","required":["name","prompt"],"properties":{"context_items":{"description":"ContextItems defines what context data to include in the analysis","type":"object","properties":{"commit_content":{"description":"CommitContent includes commit message and diff information","type":"boolean"},"container_logs":{"description":"ContainerLogs configures inclusion of container/task logs","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled controls whether container logs are included","type":"boolean"},"max_lines":{"description":"MaxLines limits the number of log lines to include (default: 50)","type":"integer","maximum":1000,"minimum":1}}},"error_content":{"description":"ErrorContent includes error messages and failure summaries","type":"boolean"},"pr_content":{"description":"PRContent includes pull request title, description, and metadata","type":"boolean"}}},"model":{"description":"Model specifies which LLM model to use for this role (optional).\nYou can specify any model supported by your provider.\nIf not specified, provider-specific defaults are used:\n- OpenAI: gpt-5.4-mini\n- Gemini: gemini-3.1-flash-lite-preview","type":"string"},"name":{"description":"Name is a unique identifier for this analysis role","type":"string"},"on_cel":{"description":"OnCEL is a CEL expression that determines when this role should be triggered","type":"string"},"output":{"description":"Output specifies where the analysis results should be sent (default: pr-comment)","type":"string","enum":["pr-comment"]},"prompt":{"description":"Prompt is the base prompt template sent to the LLM for analysis","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"secret_ref":{"description":"TokenSecretRef references the Kubernetes secret containing the LLM provider API token","type":"object","required":["name"],"properties":{"key":{"description":"Key in the secret","type":"string"},"name":{"description":"Name of the secret","type":"string"}}},"timeout_seconds":{"description":"TimeoutSeconds sets the maximum time to wait for LLM analysis (default: 30)","type":"integer","maximum":300,"minimum":1}}},"forgejo":{"description":"Forgejo contains Forgejo/Gitea-specific settings.","type":"object","properties":{"comment_strategy":{"description":"CommentStrategy defines how Forgejo/Gitea comments are handled for pipeline results.\nOptions:\n- 'disable_all': Disables all comments on pull requests\n- 'update': Updates a single comment per PipelineRun on every trigger.","type":"string","enum":["","disable_all","update"]},"user_agent":{"description":"UserAgent sets the User-Agent header on API requests to the Gitea/Forgejo instance.\nThis is useful when the instance is behind an AI scraping protection proxy (e.g. Anubis)\nthat blocks requests without a recognized User-Agent.\nDefaults to \"pipelines-as-code/<version>\" when left empty.","type":"string"}}},"github":{"type":"object","properties":{"comment_strategy":{"description":"CommentStrategy defines how GitHub comments are handled for pipeline results.\nOptions:\n- 'disable_all': Disables all comments on merge requests\n- 'update': Updates a single comment per PipelineRun on every trigger.","type":"string","enum":["","disable_all","update"]}}},"github_app_token_scope_repos":{"description":"GithubAppTokenScopeRepos lists repositories that can access the GitHub App token when using the\nGitHub App authentication method. This allows specific repositories to use tokens generated for\nthe GitHub App installation, useful for cross-repository access.","type":"array","items":{"type":"string"}},"gitlab":{"description":"Gitlab contains GitLab-specific settings for repositories hosted on GitLab.","type":"object","properties":{"comment_strategy":{"description":"CommentStrategy defines how GitLab comments are handled for pipeline results.\nOptions:\n- 'disable_all': Disables all comments on merge requests\n- 'update': Updates a single comment per PipelineRun on every trigger.","type":"string","enum":["","disable_all","update"]}}},"gitops_command_prefix":{"description":"GitOpsCommandPrefix configures the prefix for the GitOps command.\nThis is used to identify the GitOps command in the PipelineRun.","type":"string"},"pipelinerun_provenance":{"description":"PipelineRunProvenance configures how PipelineRun definitions are fetched.\nOptions:\n- 'source': Fetch definitions from the event source branch/SHA (default)\n- 'default_branch': Fetch definitions from the repository default branch","type":"string","enum":["source","default_branch"]},"policy":{"description":"Policy defines authorization policies for the repository, controlling who can\ntrigger PipelineRuns under different conditions.","type":"object","properties":{"ok_to_test":{"description":"OkToTest defines a list of usernames that are allowed to trigger pipeline runs on pull requests\nfrom external contributors by commenting \"/ok-to-test\" on the PR. These users are typically\nrepository maintainers or trusted contributors who can vouch for external contributions.","type":"array","items":{"type":"string"}},"pull_request":{"description":"PullRequest defines a list of usernames that are explicitly allowed to execute\npipelines on their pull requests, even if they wouldn't normally have permission.\nThis is useful for allowing specific external contributors to trigger pipeline runs.","type":"array","items":{"type":"string"}}}}}},"url":{"description":"URL of the repository we are building. Must be a valid HTTP/HTTPS Git repository URL\nthat PAC will use to clone and fetch pipeline definitions from.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pipelinesascode.tekton.dev","kind":"Repository","version":"v1alpha1"}]},"dev.tekton.pipelinesascode.v1alpha1.RepositoryList":{"description":"RepositoryList is a list of Repository","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of repositories. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.pipelinesascode.v1alpha1.Repository"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pipelinesascode.tekton.dev","kind":"RepositoryList","version":"v1alpha1"}]},"dev.tekton.resolution.v1alpha1.ResolutionRequest":{"description":"ResolutionRequest is an object for requesting the content of\na Tekton resource like a pipeline.yaml.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds the information for the request part of the resource request.","type":"object","properties":{"params":{"description":"Parameters are the runtime attributes passed to\nthe resolver to help it figure out how to resolve the\nresource being requested. For example: repo URL, commit SHA,\npath to file, the kind of authentication to leverage, etc.","type":"object","additionalProperties":{"type":"string"}}}},"status":{"description":"Status communicates the state of the request and, ultimately,\nthe content of the resolved resource.","type":"object","required":["data","refSource"],"properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"data":{"description":"Data is a string representation of the resolved content\nof the requested resource in-lined into the ResolutionRequest\nobject.","type":"string"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"refSource":{"description":"RefSource is the source reference of the remote data that records where the remote\nfile came from including the url, digest and the entrypoint.","x-kubernetes-preserve-unknown-fields":true}}}},"x-kubernetes-group-version-kind":[{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1alpha1"}]},"dev.tekton.resolution.v1alpha1.ResolutionRequestList":{"description":"ResolutionRequestList is a list of ResolutionRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of resolutionrequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.resolution.v1alpha1.ResolutionRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"resolution.tekton.dev","kind":"ResolutionRequestList","version":"v1alpha1"}]},"dev.tekton.resolution.v1beta1.ResolutionRequest":{"description":"ResolutionRequest is an object for requesting the content of\na Tekton resource like a pipeline.yaml.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds the information for the request part of the resource request.","type":"object","properties":{"params":{"description":"Parameters are the runtime attributes passed to\nthe resolver to help it figure out how to resolve the\nresource being requested. For example: repo URL, commit SHA,\npath to file, the kind of authentication to leverage, etc.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"url":{"description":"URL is the runtime url passed to the resolver\nto help it figure out how to resolver the resource being\nrequested.\nThis is currently at an ALPHA stability level and subject to\nalpha API compatibility policies.","type":"string"}}},"status":{"description":"Status communicates the state of the request and, ultimately,\nthe content of the resolved resource.","type":"object","required":["data","refSource","source"],"properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"data":{"description":"Data is a string representation of the resolved content\nof the requested resource in-lined into the ResolutionRequest\nobject.","type":"string"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"refSource":{"description":"RefSource is the source reference of the remote data that records the url, digest\nand the entrypoint.","x-kubernetes-preserve-unknown-fields":true},"source":{"description":"Deprecated: Use RefSource instead","x-kubernetes-preserve-unknown-fields":true}}}},"x-kubernetes-group-version-kind":[{"group":"resolution.tekton.dev","kind":"ResolutionRequest","version":"v1beta1"}]},"dev.tekton.resolution.v1beta1.ResolutionRequestList":{"description":"ResolutionRequestList is a list of ResolutionRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of resolutionrequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.resolution.v1beta1.ResolutionRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"resolution.tekton.dev","kind":"ResolutionRequestList","version":"v1beta1"}]},"dev.tekton.triggers.v1alpha1.ClusterInterceptor":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"ClusterInterceptor","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.ClusterInterceptorList":{"description":"ClusterInterceptorList is a list of ClusterInterceptor","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterinterceptors. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterInterceptor"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"ClusterInterceptorList","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.ClusterTriggerBinding":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.ClusterTriggerBindingList":{"description":"ClusterTriggerBindingList is a list of ClusterTriggerBinding","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clustertriggerbindings. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.ClusterTriggerBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"ClusterTriggerBindingList","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.EventListener":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.EventListenerList":{"description":"EventListenerList is a list of EventListener","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of eventlisteners. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.EventListener"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"EventListenerList","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.Interceptor":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"Interceptor","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.InterceptorList":{"description":"InterceptorList is a list of Interceptor","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of interceptors. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Interceptor"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"InterceptorList","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.Trigger":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.TriggerBinding":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.TriggerBindingList":{"description":"TriggerBindingList is a list of TriggerBinding","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of triggerbindings. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerBindingList","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.TriggerList":{"description":"TriggerList is a list of Trigger","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of triggers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.Trigger"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerList","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.TriggerTemplate":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1alpha1"}]},"dev.tekton.triggers.v1alpha1.TriggerTemplateList":{"description":"TriggerTemplateList is a list of TriggerTemplate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of triggertemplates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1alpha1.TriggerTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerTemplateList","version":"v1alpha1"}]},"dev.tekton.triggers.v1beta1.ClusterTriggerBinding":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"ClusterTriggerBinding","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.ClusterTriggerBindingList":{"description":"ClusterTriggerBindingList is a list of ClusterTriggerBinding","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clustertriggerbindings. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.ClusterTriggerBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"ClusterTriggerBindingList","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.EventListener":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"EventListener","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.EventListenerList":{"description":"EventListenerList is a list of EventListener","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of eventlisteners. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.EventListener"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"EventListenerList","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.Trigger":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"Trigger","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.TriggerBinding":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerBinding","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.TriggerBindingList":{"description":"TriggerBindingList is a list of TriggerBinding","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of triggerbindings. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerBindingList","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.TriggerList":{"description":"TriggerList is a list of Trigger","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of triggers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.Trigger"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerList","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.TriggerTemplate":{"type":"object","x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerTemplate","version":"v1beta1"}]},"dev.tekton.triggers.v1beta1.TriggerTemplateList":{"description":"TriggerTemplateList is a list of TriggerTemplate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of triggertemplates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.triggers.v1beta1.TriggerTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"triggers.tekton.dev","kind":"TriggerTemplateList","version":"v1beta1"}]},"dev.tekton.v1.Pipeline":{"description":"Pipeline describes a list of Tasks to execute. It expresses how outputs\nof tasks feed into inputs of subsequent tasks.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds the desired state of the Pipeline from the client","type":"object","properties":{"description":{"description":"Description is a user-facing description of the pipeline that may be\nused to populate a UI.","type":"string"},"displayName":{"description":"DisplayName is a user-facing name of the pipeline that may be\nused to populate a UI.","type":"string"},"finally":{"description":"Finally declares the list of Tasks that execute just before leaving the Pipeline\ni.e. either after all Tasks are finished executing successfully\nor after a failure which would result in ending the Pipeline","type":"array","items":{"description":"PipelineTask defines a task in a Pipeline, passing inputs from both\nParams and from the output of previous tasks.","type":"object","properties":{"description":{"description":"Description is the description of this task within the context of a Pipeline.\nThis description may be used to populate a UI.","type":"string"},"displayName":{"description":"DisplayName is the display name of this task within the context of a Pipeline.\nThis display name may be used to populate a UI.","type":"string"},"matrix":{"description":"Matrix declares parameters used to fan out this task.","type":"object","properties":{"include":{"description":"Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.","type":"array","items":{"description":"IncludeParams allows passing in a specific combinations of Parameters into the Matrix.","type":"object","properties":{"name":{"description":"Name the specified combination","type":"string"},"params":{"description":"Params takes only `Parameters` of type `\"string\"`\nThe names of the `params` must match the names of the `params` in the underlying `Task`","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"params":{"description":"Params is a list of parameters used to fan out the pipelineTask\nParams takes only `Parameters` of type `\"array\"`\nEach array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`.\nThe names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"name":{"description":"Name is the name of this task within the context of a Pipeline. Name is\nused as a coordinate with the `from` and `runAfter` fields to establish\nthe execution order of tasks relative to one another.","type":"string"},"onError":{"description":"OnError defines the exiting behavior of a PipelineRun on error\ncan be set to [ continue | stopAndFail ]","type":"string"},"params":{"description":"Parameters declares parameters passed to this task.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"pipelineRef":{"description":"PipelineRef is a reference to a pipeline definition\nNote: PipelineRef is in preview mode and not yet supported","type":"object","properties":{"apiVersion":{"description":"API version of the referent","type":"string"},"name":{"description":"Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"pipelineSpec":{"description":"PipelineSpec is a specification of a pipeline\nNote: PipelineSpec is in preview mode and not yet supported\nSpecifying PipelineSpec can be disabled by setting\n`disable-inline-spec` feature flag.\nSee Pipeline.spec (API version: tekton.dev/v1)","x-kubernetes-preserve-unknown-fields":true},"retries":{"description":"Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False","type":"integer"},"runAfter":{"description":"RunAfter is the list of PipelineTask names that should be executed before\nthis Task executes. (Used to force a specific ordering in graph execution.)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"taskRef":{"description":"TaskRef is a reference to a task definition.","type":"object","properties":{"apiVersion":{"description":"API version of the referent\nNote: A Task with non-empty APIVersion and Kind is considered a Custom Task","type":"string"},"kind":{"description":"TaskKind indicates the Kind of the Task:\n1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\".\n2. Custom Task when Kind is non-empty and APIVersion is non-empty","type":"string"},"name":{"description":"Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"taskSpec":{"description":"TaskSpec is a specification of a task\nSpecifying TaskSpec can be disabled by setting\n`disable-inline-spec` feature flag.\nSee Task.spec (API version: tekton.dev/v1)","x-kubernetes-preserve-unknown-fields":true},"timeout":{"description":"Duration after which the TaskRun times out. Defaults to 1 hour.\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"},"when":{"description":"When is a list of when expressions that need to be true for the task to run","type":"array","items":{"description":"WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run\nto determine whether the Task should be executed or skipped","type":"object","properties":{"cel":{"description":"CEL is a string of Common Language Expression, which can be used to conditionally execute\nthe task based on the result of the expression evaluation\nMore info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md","type":"string"},"input":{"description":"Input is the string for guard checking which can be a static input or an output from a parent Task","type":"string"},"operator":{"description":"Operator that represents an Input's relationship to the values","type":"string"},"values":{"description":"Values is an array of strings, which is compared against the input, for guard checking\nIt must be non-empty","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"workspaces":{"description":"Workspaces maps workspaces from the pipeline spec to the workspaces\ndeclared in the Task.","type":"array","items":{"description":"WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be\nmapped to a task's declared workspace.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the workspace as declared by the task","type":"string"},"subPath":{"description":"SubPath is optionally a directory on the volume which should be used\nfor this binding (i.e. the volume will be mounted at this sub directory).","type":"string"},"workspace":{"description":"Workspace is the name of the workspace declared by the pipeline","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"params":{"description":"Params declares a list of input parameters that must be supplied when\nthis Pipeline is run.","type":"array","items":{"description":"ParamSpec defines arbitrary parameters needed beyond typed inputs (such as\nresources). Parameter values are provided by users as inputs on a TaskRun\nor PipelineRun.","type":"object","required":["name"],"properties":{"default":{"description":"Default is the value a parameter takes if no input value is supplied. If\ndefault is set, a Task may be executed without a supplied value for the\nparameter.","x-kubernetes-preserve-unknown-fields":true},"description":{"description":"Description is a user-facing description of the parameter that may be\nused to populate a UI.","type":"string"},"enum":{"description":"Enum declares a set of allowed param input values for tasks/pipelines that can be validated.\nIf Enum is not set, no input validation is performed for the param.","type":"array","items":{"type":"string"}},"name":{"description":"Name declares the name by which a parameter is referenced.","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs parameter.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"Type is the user-specified type of the parameter. The possible types\nare currently \"string\", \"array\" and \"object\", and \"string\" is the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"results":{"description":"Results are values that this pipeline can output once run","type":"array","items":{"description":"PipelineResult used to describe the results of a pipeline","type":"object","required":["name","value"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"type":{"description":"Type is the user-specified type of the result.\nThe possible types are 'string', 'array', and 'object', with 'string' as the default.\n'array' and 'object' types are alpha features.","type":"string"},"value":{"description":"Value the expression used to retrieve the value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"tasks":{"description":"Tasks declares the graph of Tasks that execute when this Pipeline is run.","type":"array","items":{"description":"PipelineTask defines a task in a Pipeline, passing inputs from both\nParams and from the output of previous tasks.","type":"object","properties":{"description":{"description":"Description is the description of this task within the context of a Pipeline.\nThis description may be used to populate a UI.","type":"string"},"displayName":{"description":"DisplayName is the display name of this task within the context of a Pipeline.\nThis display name may be used to populate a UI.","type":"string"},"matrix":{"description":"Matrix declares parameters used to fan out this task.","type":"object","properties":{"include":{"description":"Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.","type":"array","items":{"description":"IncludeParams allows passing in a specific combinations of Parameters into the Matrix.","type":"object","properties":{"name":{"description":"Name the specified combination","type":"string"},"params":{"description":"Params takes only `Parameters` of type `\"string\"`\nThe names of the `params` must match the names of the `params` in the underlying `Task`","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"params":{"description":"Params is a list of parameters used to fan out the pipelineTask\nParams takes only `Parameters` of type `\"array\"`\nEach array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`.\nThe names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"name":{"description":"Name is the name of this task within the context of a Pipeline. Name is\nused as a coordinate with the `from` and `runAfter` fields to establish\nthe execution order of tasks relative to one another.","type":"string"},"onError":{"description":"OnError defines the exiting behavior of a PipelineRun on error\ncan be set to [ continue | stopAndFail ]","type":"string"},"params":{"description":"Parameters declares parameters passed to this task.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"pipelineRef":{"description":"PipelineRef is a reference to a pipeline definition\nNote: PipelineRef is in preview mode and not yet supported","type":"object","properties":{"apiVersion":{"description":"API version of the referent","type":"string"},"name":{"description":"Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"pipelineSpec":{"description":"PipelineSpec is a specification of a pipeline\nNote: PipelineSpec is in preview mode and not yet supported\nSpecifying PipelineSpec can be disabled by setting\n`disable-inline-spec` feature flag.\nSee Pipeline.spec (API version: tekton.dev/v1)","x-kubernetes-preserve-unknown-fields":true},"retries":{"description":"Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False","type":"integer"},"runAfter":{"description":"RunAfter is the list of PipelineTask names that should be executed before\nthis Task executes. (Used to force a specific ordering in graph execution.)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"taskRef":{"description":"TaskRef is a reference to a task definition.","type":"object","properties":{"apiVersion":{"description":"API version of the referent\nNote: A Task with non-empty APIVersion and Kind is considered a Custom Task","type":"string"},"kind":{"description":"TaskKind indicates the Kind of the Task:\n1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\".\n2. Custom Task when Kind is non-empty and APIVersion is non-empty","type":"string"},"name":{"description":"Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"taskSpec":{"description":"TaskSpec is a specification of a task\nSpecifying TaskSpec can be disabled by setting\n`disable-inline-spec` feature flag.\nSee Task.spec (API version: tekton.dev/v1)","x-kubernetes-preserve-unknown-fields":true},"timeout":{"description":"Duration after which the TaskRun times out. Defaults to 1 hour.\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"},"when":{"description":"When is a list of when expressions that need to be true for the task to run","type":"array","items":{"description":"WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run\nto determine whether the Task should be executed or skipped","type":"object","properties":{"cel":{"description":"CEL is a string of Common Language Expression, which can be used to conditionally execute\nthe task based on the result of the expression evaluation\nMore info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md","type":"string"},"input":{"description":"Input is the string for guard checking which can be a static input or an output from a parent Task","type":"string"},"operator":{"description":"Operator that represents an Input's relationship to the values","type":"string"},"values":{"description":"Values is an array of strings, which is compared against the input, for guard checking\nIt must be non-empty","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"workspaces":{"description":"Workspaces maps workspaces from the pipeline spec to the workspaces\ndeclared in the Task.","type":"array","items":{"description":"WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be\nmapped to a task's declared workspace.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the workspace as declared by the task","type":"string"},"subPath":{"description":"SubPath is optionally a directory on the volume which should be used\nfor this binding (i.e. the volume will be mounted at this sub directory).","type":"string"},"workspace":{"description":"Workspace is the name of the workspace declared by the pipeline","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"workspaces":{"description":"Workspaces declares a set of named workspaces that are expected to be\nprovided by a PipelineRun.","type":"array","items":{"description":"PipelineWorkspaceDeclaration creates a named slot in a Pipeline that a PipelineRun\nis expected to populate with a workspace binding.","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human readable string describing how the workspace will be\nused in the Pipeline. It can be useful to include a bit of detail about which\ntasks are intended to have access to the data on the workspace.","type":"string"},"name":{"description":"Name is the name of a workspace to be provided by a PipelineRun.","type":"string"},"optional":{"description":"Optional marks a Workspace as not being required in PipelineRuns. By default\nthis field is false and so declared workspaces are required.","type":"boolean"}}},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"Pipeline","version":"v1"}]},"dev.tekton.v1.PipelineList":{"description":"PipelineList is a list of Pipeline","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pipelines. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1.Pipeline"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"PipelineList","version":"v1"}]},"dev.tekton.v1.PipelineRun":{"description":"PipelineRun represents a single execution of a Pipeline. PipelineRuns are how\nthe graph of Tasks declared in a Pipeline are executed; they specify inputs\nto Pipelines such as parameter values and capture operational aspects of the\nTasks execution such as service account and tolerations. Creating a\nPipelineRun creates TaskRuns for Tasks in the referenced Pipeline.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PipelineRunSpec defines the desired state of PipelineRun","type":"object","properties":{"managedBy":{"description":"ManagedBy indicates which controller is responsible for reconciling\nthis resource. If unset or set to \"tekton.dev/pipeline\", the default\nTekton controller will manage this resource.\nThis field is immutable.","type":"string"},"params":{"description":"Params is a list of parameter names and values.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"pipelineRef":{"description":"PipelineRef can be used to refer to a specific instance of a Pipeline.","type":"object","properties":{"apiVersion":{"description":"API version of the referent","type":"string"},"name":{"description":"Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"pipelineSpec":{"description":"Specifying PipelineSpec can be disabled by setting\n`disable-inline-spec` feature flag.\nSee Pipeline.spec (API version: tekton.dev/v1)","x-kubernetes-preserve-unknown-fields":true},"status":{"description":"Used for cancelling a pipelinerun (and maybe more later on)","type":"string"},"taskRunSpecs":{"description":"TaskRunSpecs holds a set of runtime specs","type":"array","items":{"description":"PipelineTaskRunSpec  can be used to configure specific\nspecs for a concrete Task","type":"object","properties":{"computeResources":{"description":"Compute resources to use for this TaskRun","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"metadata":{"description":"PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"pipelineTaskName":{"type":"string"},"podTemplate":{"description":"PodTemplate holds pod specific configuration","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"serviceAccountName":{"type":"string"},"sidecarSpecs":{"type":"array","items":{"description":"TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Sidecar.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Sidecar to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"stepSpecs":{"type":"array","items":{"description":"TaskRunStepSpec is used to override the values of a Step in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Step.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Step to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"timeout":{"description":"Duration after which the TaskRun times out. Overrides the timeout specified\non the Task's spec if specified. Takes lower precedence to PipelineRun's\n`spec.timeouts.tasks`\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"}}},"x-kubernetes-list-type":"atomic"},"taskRunTemplate":{"description":"TaskRunTemplate represent template of taskrun","type":"object","properties":{"podTemplate":{"description":"PodTemplate holds pod specific configuration","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"serviceAccountName":{"type":"string"}}},"timeouts":{"description":"Time after which the Pipeline times out.\nCurrently three keys are accepted in the map\npipeline, tasks and finally\nwith Timeouts.pipeline >= Timeouts.tasks + Timeouts.finally","type":"object","properties":{"finally":{"description":"Finally sets the maximum allowed duration of this pipeline's finally","type":"string"},"pipeline":{"description":"Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.","type":"string"},"tasks":{"description":"Tasks sets the maximum allowed duration of this pipeline's tasks","type":"string"}}},"workspaces":{"description":"Workspaces holds a set of workspace bindings that must match names\nwith those declared in the pipeline.","type":"array","items":{"description":"WorkspaceBinding maps a Task's declared workspace to a Volume.","type":"object","required":["name"],"properties":{"configMap":{"description":"ConfigMap represents a configMap that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"emptyDir":{"description":"EmptyDir represents a temporary directory that shares a Task's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir\nEither this OR PersistentVolumeClaim can be used.","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"name":{"description":"Name is the name of the workspace populated by the volume.","type":"string"},"persistentVolumeClaim":{"description":"PersistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace. Either this OR EmptyDir can be used.","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"projected":{"description":"Projected represents a projected volume that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podCertificate":{"description":"Projects an auto-rotating credential bundle (private key and certificate\nchain) that the pod can use either as a TLS client or server.\n\nKubelet generates a private key and uses it to send a\nPodCertificateRequest to the named signer.  Once the signer approves the\nrequest and issues a certificate chain, Kubelet writes the key and\ncertificate chain to the pod filesystem.  The pod does not start until\ncertificates have been issued for each podCertificate projected volume\nsource in its spec.\n\nKubelet will begin trying to rotate the certificate at the time indicated\nby the signer using the PodCertificateRequest.Status.BeginRefreshAt\ntimestamp.\n\nKubelet can write a single file, indicated by the credentialBundlePath\nfield, or separate files, indicated by the keyPath and\ncertificateChainPath fields.\n\nThe credential bundle is a single file in PEM format.  The first PEM\nentry is the private key (in PKCS#8 format), and the remaining PEM\nentries are the certificate chain issued by the signer (typically,\nsigners will return their certificate chain in leaf-to-root order).\n\nPrefer using the credential bundle format, since your application code\ncan read it atomically.  If you use keyPath and certificateChainPath,\nyour application must make two separate file reads. If these coincide\nwith a certificate rotation, it is possible that the private key and leaf\ncertificate you read may not correspond to each other.  Your application\nwill need to check for this condition, and re-read until they are\nconsistent.\n\nThe named signer controls chooses the format of the certificate it\nissues; consult the signer implementation's documentation to learn how to\nuse the certificates it issues.","type":"object","required":["keyType","signerName"],"properties":{"certificateChainPath":{"description":"Write the certificate chain at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"credentialBundlePath":{"description":"Write the credential bundle at this path in the projected volume.\n\nThe credential bundle is a single file that contains multiple PEM blocks.\nThe first PEM block is a PRIVATE KEY block, containing a PKCS#8 private\nkey.\n\nThe remaining blocks are CERTIFICATE blocks, containing the issued\ncertificate chain from the signer (leaf and any intermediates).\n\nUsing credentialBundlePath lets your Pod's application code make a single\natomic read that retrieves a consistent key and certificate chain.  If you\nproject them to separate files, your application code will need to\nadditionally check that the leaf certificate was issued to the key.","type":"string"},"keyPath":{"description":"Write the key at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"keyType":{"description":"The type of keypair Kubelet will generate for the pod.\n\nValid values are \"RSA3072\", \"RSA4096\", \"ECDSAP256\", \"ECDSAP384\",\n\"ECDSAP521\", and \"ED25519\".","type":"string"},"maxExpirationSeconds":{"description":"maxExpirationSeconds is the maximum lifetime permitted for the\ncertificate.\n\nKubelet copies this value verbatim into the PodCertificateRequests it\ngenerates for this projection.\n\nIf omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver\nwill reject values shorter than 3600 (1 hour).  The maximum allowable\nvalue is 7862400 (91 days).\n\nThe signer implementation is then free to issue a certificate with any\nlifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600\nseconds (1 hour).  This constraint is enforced by kube-apiserver.\n`kubernetes.io` signers will never issue certificates with a lifetime\nlonger than 24 hours.","type":"integer","format":"int32"},"signerName":{"description":"Kubelet's generated CSRs will be addressed to this signer.","type":"string"},"userAnnotations":{"description":"userAnnotations allow pod authors to pass additional information to\nthe signer implementation.  Kubernetes does not restrict or validate this\nmetadata in any way.\n\nThese values are copied verbatim into the `spec.unverifiedUserAnnotations` field of\nthe PodCertificateRequest objects that Kubelet creates.\n\nEntries are subject to the same validation as object metadata annotations,\nwith the addition that all keys must be domain-prefixed. No restrictions\nare placed on values, except an overall size limitation on the entire field.\n\nSigners should document the keys and values they support. Signers should\ndeny requests that contain keys they do not recognize.","type":"object","additionalProperties":{"type":"string"}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"Secret represents a secret that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"subPath":{"description":"SubPath is optionally a directory on the volume which should be used\nfor this binding (i.e. the volume will be mounted at this sub directory).","type":"string"},"volumeClaimTemplate":{"description":"VolumeClaimTemplate is a template for a claim that will be created in the same namespace.\nThe PipelineRun controller is responsible for creating a unique claim for each instance of PipelineRun.\nSee PersistentVolumeClaim (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"PipelineRunStatus defines the observed state of PipelineRun","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"childReferences":{"description":"list of TaskRun and Run names, PipelineTask names, and API versions/kinds for children of this PipelineRun.","type":"array","items":{"description":"ChildStatusReference is used to point to the statuses of individual TaskRuns and Runs within this PipelineRun.","type":"object","properties":{"apiVersion":{"type":"string"},"displayName":{"description":"DisplayName is a user-facing name of the pipelineTask that may be\nused to populate a UI.","type":"string"},"kind":{"type":"string"},"name":{"description":"Name is the name of the TaskRun or Run this is referencing.","type":"string"},"pipelineTaskName":{"description":"PipelineTaskName is the name of the PipelineTask this is referencing.","type":"string"},"whenExpressions":{"description":"WhenExpressions is the list of checks guarding the execution of the PipelineTask","type":"array","items":{"description":"WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run\nto determine whether the Task should be executed or skipped","type":"object","properties":{"cel":{"description":"CEL is a string of Common Language Expression, which can be used to conditionally execute\nthe task based on the result of the expression evaluation\nMore info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md","type":"string"},"input":{"description":"Input is the string for guard checking which can be a static input or an output from a parent Task","type":"string"},"operator":{"description":"Operator that represents an Input's relationship to the values","type":"string"},"values":{"description":"Values is an array of strings, which is compared against the input, for guard checking\nIt must be non-empty","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"completionTime":{"description":"CompletionTime is the time the PipelineRun completed.","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"finallyStartTime":{"description":"FinallyStartTime is when all non-finally tasks have been completed and only finally tasks are being executed.","type":"string","format":"date-time"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"pipelineSpec":{"description":"PipelineSpec contains the exact spec used to instantiate the run.\nSee Pipeline.spec (API version: tekton.dev/v1)","x-kubernetes-preserve-unknown-fields":true},"provenance":{"description":"Provenance contains some key authenticated metadata about how a software artifact was built (what sources, what inputs/outputs, etc.).","type":"object","properties":{"featureFlags":{"description":"FeatureFlags identifies the feature flags that were used during the task/pipeline run","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource identifies the source where a remote task/pipeline came from.","type":"object","properties":{"digest":{"description":"Digest is a collection of cryptographic digests for the contents of the artifact specified by URI.\nExample: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint identifies the entry point into the build. This is often a path to a\nbuild definition file and/or a target label within that file.\nExample: \"task/git-clone/0.10/git-clone.yaml\"","type":"string"},"uri":{"description":"URI indicates the identity of the source of the build definition.\nExample: \"https://github.com/tektoncd/catalog\"","type":"string"}}}}},"results":{"description":"Results are the list of results written out by the pipeline task's containers","type":"array","items":{"description":"PipelineRunResult used to describe the results of a pipeline","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the result's name as declared by the Pipeline","type":"string"},"value":{"description":"Value is the result returned from the execution of this PipelineRun","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"skippedTasks":{"description":"list of tasks that were skipped due to when expressions evaluating to false","type":"array","items":{"description":"SkippedTask is used to describe the Tasks that were skipped due to their When Expressions\nevaluating to False. This is a struct because we are looking into including more details\nabout the When Expressions that caused this Task to be skipped.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the Pipeline Task name","type":"string"},"reason":{"description":"Reason is the cause of the PipelineTask being skipped.","type":"string"},"whenExpressions":{"description":"WhenExpressions is the list of checks guarding the execution of the PipelineTask","type":"array","items":{"description":"WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run\nto determine whether the Task should be executed or skipped","type":"object","properties":{"cel":{"description":"CEL is a string of Common Language Expression, which can be used to conditionally execute\nthe task based on the result of the expression evaluation\nMore info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md","type":"string"},"input":{"description":"Input is the string for guard checking which can be a static input or an output from a parent Task","type":"string"},"operator":{"description":"Operator that represents an Input's relationship to the values","type":"string"},"values":{"description":"Values is an array of strings, which is compared against the input, for guard checking\nIt must be non-empty","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"spanContext":{"description":"SpanContext contains tracing span context fields","type":"object","additionalProperties":{"type":"string"}},"startTime":{"description":"StartTime is the time the PipelineRun is actually started.","type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"PipelineRun","version":"v1"}]},"dev.tekton.v1.PipelineRunList":{"description":"PipelineRunList is a list of PipelineRun","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pipelineruns. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1.PipelineRun"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"PipelineRunList","version":"v1"}]},"dev.tekton.v1.Task":{"description":"Task represents a collection of sequential steps that are run as part of a\nPipeline using a set of inputs and producing a set of outputs. Tasks execute\nwhen TaskRuns are created that provide the input parameters and resources and\noutput resources the Task requires.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds the desired state of the Task from the client","type":"object","properties":{"description":{"description":"Description is a user-facing description of the task that may be\nused to populate a UI.","type":"string"},"displayName":{"description":"DisplayName is a user-facing name of the task that may be\nused to populate a UI.","type":"string"},"params":{"description":"Params is a list of input parameters required to run the task. Params\nmust be supplied as inputs in TaskRuns unless they declare a default\nvalue.","type":"array","items":{"description":"ParamSpec defines arbitrary parameters needed beyond typed inputs (such as\nresources). Parameter values are provided by users as inputs on a TaskRun\nor PipelineRun.","type":"object","required":["name"],"properties":{"default":{"description":"Default is the value a parameter takes if no input value is supplied. If\ndefault is set, a Task may be executed without a supplied value for the\nparameter.","x-kubernetes-preserve-unknown-fields":true},"description":{"description":"Description is a user-facing description of the parameter that may be\nused to populate a UI.","type":"string"},"enum":{"description":"Enum declares a set of allowed param input values for tasks/pipelines that can be validated.\nIf Enum is not set, no input validation is performed for the param.","type":"array","items":{"type":"string"}},"name":{"description":"Name declares the name by which a parameter is referenced.","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs parameter.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"Type is the user-specified type of the parameter. The possible types\nare currently \"string\", \"array\" and \"object\", and \"string\" is the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"results":{"description":"Results are values that this Task can output","type":"array","items":{"description":"TaskResult used to describe the results of a task","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs results.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"Type is the user-specified type of the result. The possible type\nis currently \"string\" and will support \"array\" in following work.","type":"string"},"value":{"description":"Value the expression used to retrieve the value of the result from an underlying Step.","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"sidecars":{"description":"Sidecars are run alongside the Task's step containers. They begin before\nthe steps start and end after the steps complete.","type":"array","items":{"description":"Sidecar has nearly the same data structure as Step but does not have the ability to timeout.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"computeResources":{"description":"ComputeResources required by this Sidecar.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"env":{"description":"List of environment variables to set in the Sidecar.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"List of sources to populate environment variables in the Sidecar.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image reference name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to Sidecar lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of Sidecar liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the Sidecar specified as a DNS_LABEL.\nEach Sidecar in a Task must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the Sidecar. Exposing a port here gives\nthe system additional information about the network connections a\ncontainer uses, but is primarily informational. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of Sidecar service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"restartPolicy":{"description":"RestartPolicy refers to kubernetes RestartPolicy. It can only be set for an\ninitContainer and must have it's policy set to \"Always\". It is currently\nleft optional to help support Kubernetes versions prior to 1.29 when this feature\nwas introduced.","type":"string"},"script":{"description":"Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the Sidecar should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the Sidecar will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the Sidecar is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the Sidecar's termination message\nwill be written is mounted into the Sidecar's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the Sidecar status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of Sidecar log output if the termination\nmessage file is empty and the Sidecar exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the Sidecar.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"Volumes to mount into the Sidecar's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"Sidecar's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"},"workspaces":{"description":"This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\"\nfor this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants\nexclusive access to. Adding a workspace to this list means that any\nother Step or Sidecar that does not also request this Workspace will\nnot have access to it.","type":"array","items":{"description":"WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access\nto a Workspace defined in a Task.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"MountPath is the path that the workspace should be mounted to inside the Step or Sidecar,\noverriding any MountPath specified in the Task's WorkspaceDeclaration.","type":"string"},"name":{"description":"Name is the name of the workspace this Step or Sidecar wants access to.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"stepTemplate":{"description":"StepTemplate can be used as the basis for all step containers within the\nTask, so that the steps inherit settings on the base container.","type":"object","properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Step's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Step's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"computeResources":{"description":"ComputeResources required by this Step.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"env":{"description":"List of environment variables to set in the Step.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"List of sources to populate environment variables in the Step.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the Step is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image reference name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the Step should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the Step.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"Volumes to mount into the Step's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"Step's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"steps":{"description":"Steps are the steps of the build; each step is run sequentially with the\nsource mounted into /workspace.","type":"array","items":{"description":"Step runs a subcomponent of a Task","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"computeResources":{"description":"ComputeResources required by this Step.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"displayName":{"description":"DisplayName is a user-facing name of the step that may be\nused to populate a UI.","type":"string"},"env":{"description":"List of environment variables to set in the Step.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"List of sources to populate environment variables in the Step.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the Step is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Docker image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"name":{"description":"Name of the Step specified as a DNS_LABEL.\nEach Step in a Task must have a unique name.","type":"string"},"onError":{"description":"OnError defines the exiting behavior of a container on error\ncan be set to [ continue | stopAndFail ]","type":"string"},"params":{"description":"Params declares parameters passed to this step action.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"ref":{"description":"Contains the reference to an existing StepAction.","type":"object","properties":{"name":{"description":"Name of the referenced step","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"results":{"description":"Results declares StepResults produced by the Step.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path).\nIt cannot be used when referencing StepActions using [v1.Step.Ref].\nThe Results declared by the StepActions will be stored here instead.","type":"array","items":{"description":"StepResult used to describe the Results of a Step.","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs results.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"The possible types are 'string', 'array', and 'object', with 'string' as the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"script":{"description":"Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the Step should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"stderrConfig":{"description":"Stores configuration for the stderr stream of the step.","type":"object","properties":{"path":{"description":"Path to duplicate stdout stream to on container's local filesystem.","type":"string"}}},"stdoutConfig":{"description":"Stores configuration for the stdout stream of the step.","type":"object","properties":{"path":{"description":"Path to duplicate stdout stream to on container's local filesystem.","type":"string"}}},"timeout":{"description":"Timeout is the time after which the step times out. Defaults to never.\nRefer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the Step.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"Volumes to mount into the Step's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"when":{"description":"When is a list of when expressions that need to be true for the task to run","type":"array","items":{"description":"WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run\nto determine whether the Task should be executed or skipped","type":"object","properties":{"cel":{"description":"CEL is a string of Common Language Expression, which can be used to conditionally execute\nthe task based on the result of the expression evaluation\nMore info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md","type":"string"},"input":{"description":"Input is the string for guard checking which can be a static input or an output from a parent Task","type":"string"},"operator":{"description":"Operator that represents an Input's relationship to the values","type":"string"},"values":{"description":"Values is an array of strings, which is compared against the input, for guard checking\nIt must be non-empty","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"workingDir":{"description":"Step's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"},"workspaces":{"description":"This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\"\nfor this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants\nexclusive access to. Adding a workspace to this list means that any\nother Step or Sidecar that does not also request this Workspace will\nnot have access to it.","type":"array","items":{"description":"WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access\nto a Workspace defined in a Task.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"MountPath is the path that the workspace should be mounted to inside the Step or Sidecar,\noverriding any MountPath specified in the Task's WorkspaceDeclaration.","type":"string"},"name":{"description":"Name is the name of the workspace this Step or Sidecar wants access to.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"Volumes is a collection of volumes that are available to mount into the\nsteps of the build.\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"workspaces":{"description":"Workspaces are the volumes that this Task requires.","type":"array","items":{"description":"WorkspaceDeclaration is a declaration of a volume that a Task requires.","type":"object","required":["name"],"properties":{"description":{"description":"Description is an optional human readable description of this volume.","type":"string"},"mountPath":{"description":"MountPath overrides the directory that the volume will be made available at.","type":"string"},"name":{"description":"Name is the name by which you can bind the volume at runtime.","type":"string"},"optional":{"description":"Optional marks a Workspace as not being required in TaskRuns. By default\nthis field is false and so declared workspaces are required.","type":"boolean"},"readOnly":{"description":"ReadOnly dictates whether a mounted volume is writable. By default this\nfield is false and so mounted volumes are writable.","type":"boolean"}}},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"Task","version":"v1"}]},"dev.tekton.v1.TaskList":{"description":"TaskList is a list of Task","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tasks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1.Task"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"TaskList","version":"v1"}]},"dev.tekton.v1.TaskRun":{"description":"TaskRun represents a single execution of a Task. TaskRuns are how the steps\nspecified in a Task are executed; they specify the parameters and resources\nused to run the steps in a Task.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"TaskRunSpec defines the desired state of TaskRun","type":"object","properties":{"computeResources":{"description":"Compute resources to use for this TaskRun","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"debug":{"description":"TaskRunDebug defines the breakpoint config for a particular TaskRun","type":"object","properties":{"breakpoints":{"description":"TaskBreakpoints defines the breakpoint config for a particular Task","type":"object","properties":{"beforeSteps":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"onFailure":{"description":"if enabled, pause TaskRun on failure of a step\nfailed step will not exit","type":"string"}}}}},"managedBy":{"description":"ManagedBy indicates which controller is responsible for reconciling\nthis resource. If unset or set to \"tekton.dev/pipeline\", the default\nTekton controller will manage this resource.\nThis field is immutable.","type":"string"},"params":{"description":"Params is a list of Param","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"podTemplate":{"description":"PodTemplate holds pod specific configuration","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"retries":{"description":"Retries represents how many times this TaskRun should be retried in the event of task failure.","type":"integer"},"serviceAccountName":{"type":"string"},"sidecarSpecs":{"description":"Specs to apply to Sidecars in this TaskRun.\nIf a field is specified in both a Sidecar and a SidecarSpec,\nthe value from the SidecarSpec will be used.\nThis field is only supported when the alpha feature gate is enabled.","type":"array","items":{"description":"TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Sidecar.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Sidecar to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"status":{"description":"Used for cancelling a TaskRun (and maybe more later on)","type":"string"},"statusMessage":{"description":"Status message for cancellation.","type":"string"},"stepSpecs":{"description":"Specs to apply to Steps in this TaskRun.\nIf a field is specified in both a Step and a StepSpec,\nthe value from the StepSpec will be used.\nThis field is only supported when the alpha feature gate is enabled.","type":"array","items":{"description":"TaskRunStepSpec is used to override the values of a Step in the corresponding Task.","type":"object","required":["computeResources","name"],"properties":{"computeResources":{"description":"The resource requirements to apply to the Step.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"name":{"description":"The name of the Step to override.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"taskRef":{"description":"no more than one of the TaskRef and TaskSpec may be specified.","type":"object","properties":{"apiVersion":{"description":"API version of the referent\nNote: A Task with non-empty APIVersion and Kind is considered a Custom Task","type":"string"},"kind":{"description":"TaskKind indicates the Kind of the Task:\n1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\".\n2. Custom Task when Kind is non-empty and APIVersion is non-empty","type":"string"},"name":{"description":"Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"taskSpec":{"description":"Specifying TaskSpec can be disabled by setting\n`disable-inline-spec` feature flag.\nSee Task.spec (API version: tekton.dev/v1)","x-kubernetes-preserve-unknown-fields":true},"timeout":{"description":"Time after which one retry attempt times out. Defaults to 1 hour.\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"},"workspaces":{"description":"Workspaces is a list of WorkspaceBindings from volumes to workspaces.","type":"array","items":{"description":"WorkspaceBinding maps a Task's declared workspace to a Volume.","type":"object","required":["name"],"properties":{"configMap":{"description":"ConfigMap represents a configMap that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"emptyDir":{"description":"EmptyDir represents a temporary directory that shares a Task's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir\nEither this OR PersistentVolumeClaim can be used.","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"name":{"description":"Name is the name of the workspace populated by the volume.","type":"string"},"persistentVolumeClaim":{"description":"PersistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace. Either this OR EmptyDir can be used.","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"projected":{"description":"Projected represents a projected volume that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podCertificate":{"description":"Projects an auto-rotating credential bundle (private key and certificate\nchain) that the pod can use either as a TLS client or server.\n\nKubelet generates a private key and uses it to send a\nPodCertificateRequest to the named signer.  Once the signer approves the\nrequest and issues a certificate chain, Kubelet writes the key and\ncertificate chain to the pod filesystem.  The pod does not start until\ncertificates have been issued for each podCertificate projected volume\nsource in its spec.\n\nKubelet will begin trying to rotate the certificate at the time indicated\nby the signer using the PodCertificateRequest.Status.BeginRefreshAt\ntimestamp.\n\nKubelet can write a single file, indicated by the credentialBundlePath\nfield, or separate files, indicated by the keyPath and\ncertificateChainPath fields.\n\nThe credential bundle is a single file in PEM format.  The first PEM\nentry is the private key (in PKCS#8 format), and the remaining PEM\nentries are the certificate chain issued by the signer (typically,\nsigners will return their certificate chain in leaf-to-root order).\n\nPrefer using the credential bundle format, since your application code\ncan read it atomically.  If you use keyPath and certificateChainPath,\nyour application must make two separate file reads. If these coincide\nwith a certificate rotation, it is possible that the private key and leaf\ncertificate you read may not correspond to each other.  Your application\nwill need to check for this condition, and re-read until they are\nconsistent.\n\nThe named signer controls chooses the format of the certificate it\nissues; consult the signer implementation's documentation to learn how to\nuse the certificates it issues.","type":"object","required":["keyType","signerName"],"properties":{"certificateChainPath":{"description":"Write the certificate chain at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"credentialBundlePath":{"description":"Write the credential bundle at this path in the projected volume.\n\nThe credential bundle is a single file that contains multiple PEM blocks.\nThe first PEM block is a PRIVATE KEY block, containing a PKCS#8 private\nkey.\n\nThe remaining blocks are CERTIFICATE blocks, containing the issued\ncertificate chain from the signer (leaf and any intermediates).\n\nUsing credentialBundlePath lets your Pod's application code make a single\natomic read that retrieves a consistent key and certificate chain.  If you\nproject them to separate files, your application code will need to\nadditionally check that the leaf certificate was issued to the key.","type":"string"},"keyPath":{"description":"Write the key at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"keyType":{"description":"The type of keypair Kubelet will generate for the pod.\n\nValid values are \"RSA3072\", \"RSA4096\", \"ECDSAP256\", \"ECDSAP384\",\n\"ECDSAP521\", and \"ED25519\".","type":"string"},"maxExpirationSeconds":{"description":"maxExpirationSeconds is the maximum lifetime permitted for the\ncertificate.\n\nKubelet copies this value verbatim into the PodCertificateRequests it\ngenerates for this projection.\n\nIf omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver\nwill reject values shorter than 3600 (1 hour).  The maximum allowable\nvalue is 7862400 (91 days).\n\nThe signer implementation is then free to issue a certificate with any\nlifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600\nseconds (1 hour).  This constraint is enforced by kube-apiserver.\n`kubernetes.io` signers will never issue certificates with a lifetime\nlonger than 24 hours.","type":"integer","format":"int32"},"signerName":{"description":"Kubelet's generated CSRs will be addressed to this signer.","type":"string"},"userAnnotations":{"description":"userAnnotations allow pod authors to pass additional information to\nthe signer implementation.  Kubernetes does not restrict or validate this\nmetadata in any way.\n\nThese values are copied verbatim into the `spec.unverifiedUserAnnotations` field of\nthe PodCertificateRequest objects that Kubelet creates.\n\nEntries are subject to the same validation as object metadata annotations,\nwith the addition that all keys must be domain-prefixed. No restrictions\nare placed on values, except an overall size limitation on the entire field.\n\nSigners should document the keys and values they support. Signers should\ndeny requests that contain keys they do not recognize.","type":"object","additionalProperties":{"type":"string"}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"Secret represents a secret that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"subPath":{"description":"SubPath is optionally a directory on the volume which should be used\nfor this binding (i.e. the volume will be mounted at this sub directory).","type":"string"},"volumeClaimTemplate":{"description":"VolumeClaimTemplate is a template for a claim that will be created in the same namespace.\nThe PipelineRun controller is responsible for creating a unique claim for each instance of PipelineRun.\nSee PersistentVolumeClaim (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"TaskRunStatus defines the observed state of TaskRun","type":"object","required":["podName"],"properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"artifacts":{"description":"Artifacts are the list of artifacts written out by the task's containers","type":"object","properties":{"inputs":{"type":"array","items":{"description":"Artifact represents an artifact within a system, potentially containing multiple values\nassociated with it.","type":"object","properties":{"buildOutput":{"description":"Indicate if the artifact is a build output or a by-product","type":"boolean"},"name":{"description":"The artifact's identifying category name","type":"string"},"values":{"description":"A collection of values related to the artifact","type":"array","items":{"description":"ArtifactValue represents a specific value or data element within an Artifact.","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}},"x-kubernetes-list-type":"atomic"},"outputs":{"type":"array","items":{"description":"Artifact represents an artifact within a system, potentially containing multiple values\nassociated with it.","type":"object","properties":{"buildOutput":{"description":"Indicate if the artifact is a build output or a by-product","type":"boolean"},"name":{"description":"The artifact's identifying category name","type":"string"},"values":{"description":"A collection of values related to the artifact","type":"array","items":{"description":"ArtifactValue represents a specific value or data element within an Artifact.","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}},"x-kubernetes-list-type":"atomic"}}},"completionTime":{"description":"CompletionTime is the time the build completed.","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"podName":{"description":"PodName is the name of the pod responsible for executing this task's steps.","type":"string"},"provenance":{"description":"Provenance contains some key authenticated metadata about how a software artifact was built (what sources, what inputs/outputs, etc.).","type":"object","properties":{"featureFlags":{"description":"FeatureFlags identifies the feature flags that were used during the task/pipeline run","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource identifies the source where a remote task/pipeline came from.","type":"object","properties":{"digest":{"description":"Digest is a collection of cryptographic digests for the contents of the artifact specified by URI.\nExample: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint identifies the entry point into the build. This is often a path to a\nbuild definition file and/or a target label within that file.\nExample: \"task/git-clone/0.10/git-clone.yaml\"","type":"string"},"uri":{"description":"URI indicates the identity of the source of the build definition.\nExample: \"https://github.com/tektoncd/catalog\"","type":"string"}}}}},"results":{"description":"Results are the list of results written out by the task's containers","type":"array","items":{"description":"TaskRunResult used to describe the results of a task","type":"object","required":["name","value"],"properties":{"name":{"description":"Name the given name","type":"string"},"type":{"description":"Type is the user-specified type of the result. The possible type\nis currently \"string\" and will support \"array\" in following work.","type":"string"},"value":{"description":"Value the given value of the result","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"retriesStatus":{"description":"RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures.\nAll TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.","x-kubernetes-preserve-unknown-fields":true},"sidecars":{"description":"The list has one entry per sidecar in the manifest. Each entry is\nrepresents the imageid of the corresponding sidecar.","type":"array","items":{"description":"SidecarState reports the results of running a sidecar in a Task.","type":"object","properties":{"container":{"type":"string"},"imageID":{"type":"string"},"name":{"type":"string"},"running":{"description":"Details about a running container","type":"object","properties":{"startedAt":{"description":"Time at which the container was last (re-)started","type":"string","format":"date-time"}}},"terminated":{"description":"Details about a terminated container","type":"object","required":["exitCode"],"properties":{"containerID":{"description":"Container's ID in the format '<type>://<container_id>'","type":"string"},"exitCode":{"description":"Exit status from the last termination of the container","type":"integer","format":"int32"},"finishedAt":{"description":"Time at which the container last terminated","type":"string","format":"date-time"},"message":{"description":"Message regarding the last termination of the container","type":"string"},"reason":{"description":"(brief) reason from the last termination of the container","type":"string"},"signal":{"description":"Signal from the last termination of the container","type":"integer","format":"int32"},"startedAt":{"description":"Time at which previous execution of the container started","type":"string","format":"date-time"}}},"waiting":{"description":"Details about a waiting container","type":"object","properties":{"message":{"description":"Message regarding why the container is not yet running.","type":"string"},"reason":{"description":"(brief) reason the container is not yet running.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"spanContext":{"description":"SpanContext contains tracing span context fields","type":"object","additionalProperties":{"type":"string"}},"startTime":{"description":"StartTime is the time the build is actually started.","type":"string","format":"date-time"},"steps":{"description":"Steps describes the state of each build step container.","type":"array","items":{"description":"StepState reports the results of running a step in a Task.","type":"object","properties":{"container":{"type":"string"},"imageID":{"type":"string"},"inputs":{"type":"array","items":{"description":"Artifact represents an artifact within a system, potentially containing multiple values\nassociated with it.","type":"object","properties":{"buildOutput":{"description":"Indicate if the artifact is a build output or a by-product","type":"boolean"},"name":{"description":"The artifact's identifying category name","type":"string"},"values":{"description":"A collection of values related to the artifact","type":"array","items":{"description":"ArtifactValue represents a specific value or data element within an Artifact.","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}}},"name":{"type":"string"},"outputs":{"type":"array","items":{"description":"Artifact represents an artifact within a system, potentially containing multiple values\nassociated with it.","type":"object","properties":{"buildOutput":{"description":"Indicate if the artifact is a build output or a by-product","type":"boolean"},"name":{"description":"The artifact's identifying category name","type":"string"},"values":{"description":"A collection of values related to the artifact","type":"array","items":{"description":"ArtifactValue represents a specific value or data element within an Artifact.","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}}},"provenance":{"description":"Provenance contains metadata about resources used in the TaskRun/PipelineRun\nsuch as the source from where a remote build definition was fetched.\nThis field aims to carry minimum amoumt of metadata in *Run status so that\nTekton Chains can capture them in the provenance.","type":"object","properties":{"featureFlags":{"description":"FeatureFlags identifies the feature flags that were used during the task/pipeline run","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource identifies the source where a remote task/pipeline came from.","type":"object","properties":{"digest":{"description":"Digest is a collection of cryptographic digests for the contents of the artifact specified by URI.\nExample: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint identifies the entry point into the build. This is often a path to a\nbuild definition file and/or a target label within that file.\nExample: \"task/git-clone/0.10/git-clone.yaml\"","type":"string"},"uri":{"description":"URI indicates the identity of the source of the build definition.\nExample: \"https://github.com/tektoncd/catalog\"","type":"string"}}}}},"results":{"type":"array","items":{"description":"TaskRunResult used to describe the results of a task","type":"object","required":["name","value"],"properties":{"name":{"description":"Name the given name","type":"string"},"type":{"description":"Type is the user-specified type of the result. The possible type\nis currently \"string\" and will support \"array\" in following work.","type":"string"},"value":{"description":"Value the given value of the result","x-kubernetes-preserve-unknown-fields":true}}}},"running":{"description":"Details about a running container","type":"object","properties":{"startedAt":{"description":"Time at which the container was last (re-)started","type":"string","format":"date-time"}}},"terminated":{"description":"Details about a terminated container","type":"object","required":["exitCode"],"properties":{"containerID":{"description":"Container's ID in the format '<type>://<container_id>'","type":"string"},"exitCode":{"description":"Exit status from the last termination of the container","type":"integer","format":"int32"},"finishedAt":{"description":"Time at which the container last terminated","type":"string","format":"date-time"},"message":{"description":"Message regarding the last termination of the container","type":"string"},"reason":{"description":"(brief) reason from the last termination of the container","type":"string"},"signal":{"description":"Signal from the last termination of the container","type":"integer","format":"int32"},"startedAt":{"description":"Time at which previous execution of the container started","type":"string","format":"date-time"}}},"terminationReason":{"type":"string"},"waiting":{"description":"Details about a waiting container","type":"object","properties":{"message":{"description":"Message regarding why the container is not yet running.","type":"string"},"reason":{"description":"(brief) reason the container is not yet running.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"taskSpec":{"description":"TaskSpec contains the Spec from the dereferenced Task definition used to instantiate this TaskRun.","type":"object","properties":{"description":{"description":"Description is a user-facing description of the task that may be\nused to populate a UI.","type":"string"},"displayName":{"description":"DisplayName is a user-facing name of the task that may be\nused to populate a UI.","type":"string"},"params":{"description":"Params is a list of input parameters required to run the task. Params\nmust be supplied as inputs in TaskRuns unless they declare a default\nvalue.","type":"array","items":{"description":"ParamSpec defines arbitrary parameters needed beyond typed inputs (such as\nresources). Parameter values are provided by users as inputs on a TaskRun\nor PipelineRun.","type":"object","required":["name"],"properties":{"default":{"description":"Default is the value a parameter takes if no input value is supplied. If\ndefault is set, a Task may be executed without a supplied value for the\nparameter.","x-kubernetes-preserve-unknown-fields":true},"description":{"description":"Description is a user-facing description of the parameter that may be\nused to populate a UI.","type":"string"},"enum":{"description":"Enum declares a set of allowed param input values for tasks/pipelines that can be validated.\nIf Enum is not set, no input validation is performed for the param.","type":"array","items":{"type":"string"}},"name":{"description":"Name declares the name by which a parameter is referenced.","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs parameter.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"Type is the user-specified type of the parameter. The possible types\nare currently \"string\", \"array\" and \"object\", and \"string\" is the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"results":{"description":"Results are values that this Task can output","type":"array","items":{"description":"TaskResult used to describe the results of a task","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs results.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"Type is the user-specified type of the result. The possible type\nis currently \"string\" and will support \"array\" in following work.","type":"string"},"value":{"description":"Value the expression used to retrieve the value of the result from an underlying Step.","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"sidecars":{"description":"Sidecars are run alongside the Task's step containers. They begin before\nthe steps start and end after the steps complete.","type":"array","items":{"description":"Sidecar has nearly the same data structure as Step but does not have the ability to timeout.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"computeResources":{"description":"ComputeResources required by this Sidecar.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"env":{"description":"List of environment variables to set in the Sidecar.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"List of sources to populate environment variables in the Sidecar.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image reference name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to Sidecar lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of Sidecar liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the Sidecar specified as a DNS_LABEL.\nEach Sidecar in a Task must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the Sidecar. Exposing a port here gives\nthe system additional information about the network connections a\ncontainer uses, but is primarily informational. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of Sidecar service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"restartPolicy":{"description":"RestartPolicy refers to kubernetes RestartPolicy. It can only be set for an\ninitContainer and must have it's policy set to \"Always\". It is currently\nleft optional to help support Kubernetes versions prior to 1.29 when this feature\nwas introduced.","type":"string"},"script":{"description":"Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the Sidecar should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the Sidecar will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the Sidecar is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the Sidecar's termination message\nwill be written is mounted into the Sidecar's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the Sidecar status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of Sidecar log output if the termination\nmessage file is empty and the Sidecar exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the Sidecar.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"Volumes to mount into the Sidecar's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"Sidecar's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"},"workspaces":{"description":"This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\"\nfor this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants\nexclusive access to. Adding a workspace to this list means that any\nother Step or Sidecar that does not also request this Workspace will\nnot have access to it.","type":"array","items":{"description":"WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access\nto a Workspace defined in a Task.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"MountPath is the path that the workspace should be mounted to inside the Step or Sidecar,\noverriding any MountPath specified in the Task's WorkspaceDeclaration.","type":"string"},"name":{"description":"Name is the name of the workspace this Step or Sidecar wants access to.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"stepTemplate":{"description":"StepTemplate can be used as the basis for all step containers within the\nTask, so that the steps inherit settings on the base container.","type":"object","properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Step's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the Step's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"computeResources":{"description":"ComputeResources required by this Step.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"env":{"description":"List of environment variables to set in the Step.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"List of sources to populate environment variables in the Step.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the Step is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image reference name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the Step should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the Step.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"Volumes to mount into the Step's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"Step's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"steps":{"description":"Steps are the steps of the build; each step is run sequentially with the\nsource mounted into /workspace.","type":"array","items":{"description":"Step runs a subcomponent of a Task","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"computeResources":{"description":"ComputeResources required by this Step.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"displayName":{"description":"DisplayName is a user-facing name of the step that may be\nused to populate a UI.","type":"string"},"env":{"description":"List of environment variables to set in the Step.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"List of sources to populate environment variables in the Step.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the Step is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Docker image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"name":{"description":"Name of the Step specified as a DNS_LABEL.\nEach Step in a Task must have a unique name.","type":"string"},"onError":{"description":"OnError defines the exiting behavior of a container on error\ncan be set to [ continue | stopAndFail ]","type":"string"},"params":{"description":"Params declares parameters passed to this step action.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"ref":{"description":"Contains the reference to an existing StepAction.","type":"object","properties":{"name":{"description":"Name of the referenced step","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"results":{"description":"Results declares StepResults produced by the Step.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path).\nIt cannot be used when referencing StepActions using [v1.Step.Ref].\nThe Results declared by the StepActions will be stored here instead.","type":"array","items":{"description":"StepResult used to describe the Results of a Step.","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs results.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"The possible types are 'string', 'array', and 'object', with 'string' as the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"script":{"description":"Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the Step should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"stderrConfig":{"description":"Stores configuration for the stderr stream of the step.","type":"object","properties":{"path":{"description":"Path to duplicate stdout stream to on container's local filesystem.","type":"string"}}},"stdoutConfig":{"description":"Stores configuration for the stdout stream of the step.","type":"object","properties":{"path":{"description":"Path to duplicate stdout stream to on container's local filesystem.","type":"string"}}},"timeout":{"description":"Timeout is the time after which the step times out. Defaults to never.\nRefer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the Step.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"Volumes to mount into the Step's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"when":{"description":"When is a list of when expressions that need to be true for the task to run","type":"array","items":{"description":"WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run\nto determine whether the Task should be executed or skipped","type":"object","properties":{"cel":{"description":"CEL is a string of Common Language Expression, which can be used to conditionally execute\nthe task based on the result of the expression evaluation\nMore info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md","type":"string"},"input":{"description":"Input is the string for guard checking which can be a static input or an output from a parent Task","type":"string"},"operator":{"description":"Operator that represents an Input's relationship to the values","type":"string"},"values":{"description":"Values is an array of strings, which is compared against the input, for guard checking\nIt must be non-empty","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"workingDir":{"description":"Step's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"},"workspaces":{"description":"This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\"\nfor this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants\nexclusive access to. Adding a workspace to this list means that any\nother Step or Sidecar that does not also request this Workspace will\nnot have access to it.","type":"array","items":{"description":"WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access\nto a Workspace defined in a Task.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"MountPath is the path that the workspace should be mounted to inside the Step or Sidecar,\noverriding any MountPath specified in the Task's WorkspaceDeclaration.","type":"string"},"name":{"description":"Name is the name of the workspace this Step or Sidecar wants access to.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"Volumes is a collection of volumes that are available to mount into the\nsteps of the build.\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"workspaces":{"description":"Workspaces are the volumes that this Task requires.","type":"array","items":{"description":"WorkspaceDeclaration is a declaration of a volume that a Task requires.","type":"object","required":["name"],"properties":{"description":{"description":"Description is an optional human readable description of this volume.","type":"string"},"mountPath":{"description":"MountPath overrides the directory that the volume will be made available at.","type":"string"},"name":{"description":"Name is the name by which you can bind the volume at runtime.","type":"string"},"optional":{"description":"Optional marks a Workspace as not being required in TaskRuns. By default\nthis field is false and so declared workspaces are required.","type":"boolean"},"readOnly":{"description":"ReadOnly dictates whether a mounted volume is writable. By default this\nfield is false and so mounted volumes are writable.","type":"boolean"}}},"x-kubernetes-list-type":"atomic"}}}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"TaskRun","version":"v1"}]},"dev.tekton.v1.TaskRunList":{"description":"TaskRunList is a list of TaskRun","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of taskruns. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1.TaskRun"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"TaskRunList","version":"v1"}]},"dev.tekton.v1alpha1.StepAction":{"description":"StepAction represents the actionable components of Step.\nThe Step can only reference it from the cluster or using remote resolution.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds the desired state of the Step from the client","type":"object","properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"description":{"description":"Description is a user-facing description of the stepaction that may be\nused to populate a UI.","type":"string"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image reference name to run for this StepAction.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"params":{"description":"Params is a list of input parameters required to run the stepAction.\nParams must be supplied as inputs in Steps unless they declare a defaultvalue.","type":"array","items":{"description":"ParamSpec defines arbitrary parameters needed beyond typed inputs (such as\nresources). Parameter values are provided by users as inputs on a TaskRun\nor PipelineRun.","type":"object","required":["name"],"properties":{"default":{"description":"Default is the value a parameter takes if no input value is supplied. If\ndefault is set, a Task may be executed without a supplied value for the\nparameter.","x-kubernetes-preserve-unknown-fields":true},"description":{"description":"Description is a user-facing description of the parameter that may be\nused to populate a UI.","type":"string"},"enum":{"description":"Enum declares a set of allowed param input values for tasks/pipelines that can be validated.\nIf Enum is not set, no input validation is performed for the param.","type":"array","items":{"type":"string"}},"name":{"description":"Name declares the name by which a parameter is referenced.","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs parameter.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"Type is the user-specified type of the parameter. The possible types\nare currently \"string\", \"array\" and \"object\", and \"string\" is the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"results":{"description":"Results are values that this StepAction can output","type":"array","items":{"description":"StepResult used to describe the Results of a Step.","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs results.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"The possible types are 'string', 'array', and 'object', with 'string' as the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"script":{"description":"Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the Step should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/\nThe value set in StepAction will take precedence over the value from Task.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"volumeMounts":{"description":"Volumes to mount into the Step's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"Step's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"StepAction","version":"v1alpha1"}]},"dev.tekton.v1alpha1.StepActionList":{"description":"StepActionList is a list of StepAction","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of stepactions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1alpha1.StepAction"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"StepActionList","version":"v1alpha1"}]},"dev.tekton.v1alpha1.VerificationPolicy":{"description":"VerificationPolicy defines the rules to verify Tekton resources.\nVerificationPolicy can config the mapping from resources to a list of public\nkeys, so when verifying the resources we can use the corresponding public keys.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds the desired state of the VerificationPolicy.","type":"object","required":["authorities","resources"],"properties":{"authorities":{"description":"Authorities defines the rules for validating signatures.","type":"array","items":{"description":"The Authority block defines the keys for validating signatures.","type":"object","required":["name"],"properties":{"key":{"description":"Key contains the public key to validate the resource.","type":"object","properties":{"data":{"description":"Data contains the inline public key.","type":"string"},"hashAlgorithm":{"description":"HashAlgorithm always defaults to sha256 if the algorithm hasn't been explicitly set","type":"string"},"kms":{"description":"KMS contains the KMS url of the public key\nSupported formats differ based on the KMS system used.\nOne example of a KMS url could be:\ngcpkms://projects/[PROJECT]/locations/[LOCATION]>/keyRings/[KEYRING]/cryptoKeys/[KEY]/cryptoKeyVersions/[KEY_VERSION]\nFor more examples please refer https://docs.sigstore.dev/cosign/kms_support.\nNote that the KMS is not supported yet.","type":"string"},"secretRef":{"description":"SecretRef sets a reference to a secret with the key.","type":"object","properties":{"name":{"description":"name is unique within a namespace to reference a secret resource.","type":"string"},"namespace":{"description":"namespace defines the space within which the secret name must be unique.","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"name":{"description":"Name is the name for this authority.","type":"string"}}}},"mode":{"description":"Mode controls whether a failing policy will fail the taskrun/pipelinerun, or only log the warnings\nenforce - fail the taskrun/pipelinerun if verification fails (default)\nwarn - don't fail the taskrun/pipelinerun if verification fails but log warnings","type":"string"},"resources":{"description":"Resources defines the patterns of resources sources that should be subject to this policy.\nFor example, we may want to apply this Policy from a certain GitHub repo.\nThen the ResourcesPattern should be valid regex. E.g. If using gitresolver, and we want to config keys from a certain git repo.\n`ResourcesPattern` can be `https://github.com/tektoncd/catalog.git`, we will use regex to filter out those resources.","type":"array","items":{"description":"ResourcePattern defines the pattern of the resource source","type":"object","required":["pattern"],"properties":{"pattern":{"description":"Pattern defines a resource pattern. Regex is created to filter resources based on `Pattern`\nExample patterns:\nGitHub resource: https://github.com/tektoncd/catalog.git, https://github.com/tektoncd/*\nBundle resource: gcr.io/tekton-releases/catalog/upstream/git-clone, gcr.io/tekton-releases/catalog/upstream/*\nHub resource: https://artifacthub.io/*,","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"VerificationPolicy","version":"v1alpha1"}]},"dev.tekton.v1alpha1.VerificationPolicyList":{"description":"VerificationPolicyList is a list of VerificationPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of verificationpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1alpha1.VerificationPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"VerificationPolicyList","version":"v1alpha1"}]},"dev.tekton.v1beta1.CustomRun":{"description":"CustomRun represents a single execution of a Custom Task.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CustomRunSpec defines the desired state of CustomRun","type":"object","properties":{"customRef":{"description":"TaskRef can be used to refer to a specific instance of a task.","type":"object","properties":{"apiVersion":{"description":"API version of the referent\nNote: A Task with non-empty APIVersion and Kind is considered a Custom Task","type":"string"},"bundle":{"description":"Bundle url reference to a Tekton Bundle.\n\nDeprecated: Please use ResolverRef with the bundles resolver instead.\nThe field is staying there for go client backward compatibility, but is not used/allowed anymore.","type":"string"},"kind":{"description":"TaskKind indicates the Kind of the Task:\n1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\".\n2. Custom Task when Kind is non-empty and APIVersion is non-empty","type":"string"},"name":{"description":"Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names","type":"string"},"params":{"description":"Params contains the parameters used to identify the\nreferenced Tekton resource. Example entries might include\n\"repo\" or \"path\" but the set of params ultimately depends on\nthe chosen resolver.","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver is the name of the resolver that should perform\nresolution of the referenced Tekton resource, such as \"git\".","type":"string"}}},"customSpec":{"description":"Spec is a specification of a custom task","type":"object","properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"metadata":{"description":"PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"description":"Spec is a specification of a custom task","x-kubernetes-preserve-unknown-fields":true}}},"params":{"description":"Params is a list of Param","type":"array","items":{"description":"Param declares an ParamValues to use for the parameter called name.","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"retries":{"description":"Used for propagating retries count to custom tasks","type":"integer"},"serviceAccountName":{"type":"string"},"status":{"description":"Used for cancelling a customrun (and maybe more later on)","type":"string"},"statusMessage":{"description":"Status message for cancellation.","type":"string"},"timeout":{"description":"Time after which the custom-task times out.\nRefer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration","type":"string"},"workspaces":{"description":"Workspaces is a list of WorkspaceBindings from volumes to workspaces.","type":"array","items":{"description":"WorkspaceBinding maps a Task's declared workspace to a Volume.","type":"object","required":["name"],"properties":{"configMap":{"description":"ConfigMap represents a configMap that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"emptyDir":{"description":"EmptyDir represents a temporary directory that shares a Task's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir\nEither this OR PersistentVolumeClaim can be used.","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"name":{"description":"Name is the name of the workspace populated by the volume.","type":"string"},"persistentVolumeClaim":{"description":"PersistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace. Either this OR EmptyDir can be used.","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"projected":{"description":"Projected represents a projected volume that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"Secret represents a secret that should populate this workspace.","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"subPath":{"description":"SubPath is optionally a directory on the volume which should be used\nfor this binding (i.e. the volume will be mounted at this sub directory).","type":"string"},"volumeClaimTemplate":{"description":"VolumeClaimTemplate is a template for a claim that will be created in the same namespace.\nThe PipelineRun controller is responsible for creating a unique claim for each instance of PipelineRun.\nSee PersistentVolumeClaim (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"CustomRunStatus defines the observed state of CustomRun","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"completionTime":{"description":"CompletionTime is the time the build completed.","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"extraFields":{"description":"ExtraFields holds arbitrary fields provided by the custom task\ncontroller.","x-kubernetes-preserve-unknown-fields":true},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"results":{"description":"Results reports any output result values to be consumed by later\ntasks in a pipeline.","type":"array","items":{"description":"CustomRunResult used to describe the results of a task","type":"object","required":["name","value"],"properties":{"name":{"description":"Name the given name","type":"string"},"value":{"description":"Value the given value of the result","type":"string"}}}},"retriesStatus":{"description":"RetriesStatus contains the history of CustomRunStatus, in case of a retry.\nSee CustomRun.status (API version: tekton.dev/v1beta1)","x-kubernetes-preserve-unknown-fields":true},"startTime":{"description":"StartTime is the time the build is actually started.","type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"CustomRun","version":"v1beta1"}]},"dev.tekton.v1beta1.CustomRunList":{"description":"CustomRunList is a list of CustomRun","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of customruns. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1beta1.CustomRun"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"CustomRunList","version":"v1beta1"}]},"dev.tekton.v1beta1.Pipeline":{"description":"Pipeline\nDeprecated: Please use v1.Pipeline instead.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec","type":"object","properties":{"description":{"description":"Description","type":"string"},"displayName":{"description":"DisplayName","type":"string"},"finally":{"description":"Finally","type":"array","items":{"description":"PipelineTask","type":"object","properties":{"description":{"description":"Description","type":"string"},"displayName":{"description":"DisplayName","type":"string"},"matrix":{"description":"Matrix","type":"object","properties":{"include":{"description":"Include","type":"array","items":{"description":"IncludeParams","type":"object","properties":{"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"name":{"description":"Name","type":"string"},"onError":{"description":"OnError","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"pipelineRef":{"description":"PipelineRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"bundle":{"description":"Deprecated: Please use ResolverRef with the bundles resolver instead.\nBundle","type":"string"},"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver","type":"string"}}},"pipelineSpec":{"description":"PipelineSpec","x-kubernetes-preserve-unknown-fields":true},"resources":{"description":"Resources\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","properties":{"inputs":{"description":"Inputs","type":"array","items":{"description":"PipelineTaskInputResource\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","resource"],"properties":{"from":{"description":"From","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name","type":"string"},"resource":{"description":"Resource","type":"string"}}},"x-kubernetes-list-type":"atomic"},"outputs":{"description":"Outputs","type":"array","items":{"description":"PipelineTaskOutputResource\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","resource"],"properties":{"name":{"description":"Name","type":"string"},"resource":{"description":"Resource","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"retries":{"description":"Retries","type":"integer"},"runAfter":{"description":"RunAfter","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"taskRef":{"description":"TaskRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"bundle":{"description":"Deprecated: Please use ResolverRef with the bundles resolver instead.\nBundle","type":"string"},"kind":{"description":"Kind","type":"string"},"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver","type":"string"}}},"taskSpec":{"description":"TaskSpec","x-kubernetes-preserve-unknown-fields":true},"timeout":{"description":"Timeout","type":"string"},"when":{"description":"WhenExpressions","type":"array","items":{"description":"WhenExpression","type":"object","properties":{"cel":{"description":"CEL","type":"string"},"input":{"description":"Input","type":"string"},"operator":{"description":"Operator","type":"string"},"values":{"description":"Values","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"WorkspacePipelineTaskBinding","type":"object","required":["name"],"properties":{"name":{"description":"Name","type":"string"},"subPath":{"description":"SubPath","type":"string"},"workspace":{"description":"Workspace","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"params":{"description":"Params","type":"array","items":{"description":"ParamSpec","type":"object","required":["name"],"properties":{"default":{"description":"Default","x-kubernetes-preserve-unknown-fields":true},"description":{"description":"Description","type":"string"},"enum":{"description":"Enum","type":"array","items":{"type":"string"}},"name":{"description":"Name","type":"string"},"properties":{"description":"Properties","type":"object","additionalProperties":{"description":"PropertySpec","type":"object","properties":{"type":{"description":"ParamType","type":"string"}}}},"type":{"description":"Type","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources\nDeprecated: Unused, preserved only for backwards compatibility","type":"array","items":{"description":"PipelineDeclaredResource\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","type"],"properties":{"name":{"description":"Name","type":"string"},"optional":{"description":"Optional","type":"boolean"},"type":{"description":"Type","type":"string"}}},"x-kubernetes-list-type":"atomic"},"results":{"description":"Results","type":"array","items":{"description":"PipelineResult","type":"object","required":["name","value"],"properties":{"description":{"description":"Description","type":"string"},"name":{"description":"Name","type":"string"},"type":{"description":"Type","type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"tasks":{"description":"Tasks","type":"array","items":{"description":"PipelineTask","type":"object","properties":{"description":{"description":"Description","type":"string"},"displayName":{"description":"DisplayName","type":"string"},"matrix":{"description":"Matrix","type":"object","properties":{"include":{"description":"Include","type":"array","items":{"description":"IncludeParams","type":"object","properties":{"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"name":{"description":"Name","type":"string"},"onError":{"description":"OnError","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"pipelineRef":{"description":"PipelineRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"bundle":{"description":"Deprecated: Please use ResolverRef with the bundles resolver instead.\nBundle","type":"string"},"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver","type":"string"}}},"pipelineSpec":{"description":"PipelineSpec","x-kubernetes-preserve-unknown-fields":true},"resources":{"description":"Resources\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","properties":{"inputs":{"description":"Inputs","type":"array","items":{"description":"PipelineTaskInputResource\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","resource"],"properties":{"from":{"description":"From","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name","type":"string"},"resource":{"description":"Resource","type":"string"}}},"x-kubernetes-list-type":"atomic"},"outputs":{"description":"Outputs","type":"array","items":{"description":"PipelineTaskOutputResource\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","resource"],"properties":{"name":{"description":"Name","type":"string"},"resource":{"description":"Resource","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"retries":{"description":"Retries","type":"integer"},"runAfter":{"description":"RunAfter","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"taskRef":{"description":"TaskRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"bundle":{"description":"Deprecated: Please use ResolverRef with the bundles resolver instead.\nBundle","type":"string"},"kind":{"description":"Kind","type":"string"},"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver","type":"string"}}},"taskSpec":{"description":"TaskSpec","x-kubernetes-preserve-unknown-fields":true},"timeout":{"description":"Timeout","type":"string"},"when":{"description":"WhenExpressions","type":"array","items":{"description":"WhenExpression","type":"object","properties":{"cel":{"description":"CEL","type":"string"},"input":{"description":"Input","type":"string"},"operator":{"description":"Operator","type":"string"},"values":{"description":"Values","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"WorkspacePipelineTaskBinding","type":"object","required":["name"],"properties":{"name":{"description":"Name","type":"string"},"subPath":{"description":"SubPath","type":"string"},"workspace":{"description":"Workspace","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"PipelineWorkspaceDeclaration","type":"object","required":["name"],"properties":{"description":{"description":"Description","type":"string"},"name":{"description":"Name","type":"string"},"optional":{"description":"Optional","type":"boolean"}}},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"Pipeline","version":"v1beta1"}]},"dev.tekton.v1beta1.PipelineList":{"description":"PipelineList is a list of Pipeline","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pipelines. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1beta1.Pipeline"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"PipelineList","version":"v1beta1"}]},"dev.tekton.v1beta1.PipelineRun":{"description":"PipelineRun\nDeprecated: Please use v1.PipelineRun instead.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec","type":"object","properties":{"managedBy":{"description":"ManagedBy","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"pipelineRef":{"description":"PipelineRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"bundle":{"description":"Deprecated: Please use ResolverRef with the bundles resolver instead.\nBundle","type":"string"},"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver","type":"string"}}},"pipelineSpec":{"description":"PipelineSpec","x-kubernetes-preserve-unknown-fields":true},"podTemplate":{"description":"PodTemplate","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"resources":{"description":"Resources\nDeprecated: Unused, preserved only for backwards compatibility","type":"array","items":{"description":"PipelineResourceBinding\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","properties":{"name":{"description":"Name","type":"string"},"resourceRef":{"description":"ResourceRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"name":{"description":"Name","type":"string"}}},"resourceSpec":{"description":"ResourceSpec","type":"object","required":["params","type"],"properties":{"description":{"description":"Description is a user-facing description of the resource that may be\nused to populate a UI.","type":"string"},"params":{"type":"array","items":{"description":"ResourceParam declares a string value to use for the parameter called Name, and is used in\nthe specific context of PipelineResources.\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"secrets":{"description":"Secrets to fetch to populate some of resource fields","type":"array","items":{"description":"SecretParam indicates which secret can be used to populate a field of the resource\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["fieldName","secretKey","secretName"],"properties":{"fieldName":{"type":"string"},"secretKey":{"type":"string"},"secretName":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"type":{"description":"PipelineResourceType represents the type of endpoint the pipelineResource is, so that the\ncontroller will know this pipelineResource shouldx be fetched and optionally what\nadditional metatdata should be provided for it.\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"serviceAccountName":{"description":"ServiceAccountName","type":"string"},"status":{"description":"Status","type":"string"},"taskRunSpecs":{"description":"TaskRunSpecs","type":"array","items":{"description":"PipelineTaskRunSpec","type":"object","properties":{"computeResources":{"description":"ComputeResources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"metadata":{"description":"Metadata","type":"object","properties":{"annotations":{"description":"Annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels","type":"object","additionalProperties":{"type":"string"}}}},"pipelineTaskName":{"type":"string"},"sidecarOverrides":{"description":"SidecarOverrides","type":"array","items":{"description":"TaskRunSidecarOverride","type":"object","required":["name","resources"],"properties":{"name":{"description":"Name","type":"string"},"resources":{"description":"Resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"x-kubernetes-list-type":"atomic"},"stepOverrides":{"description":"StepOverrides","type":"array","items":{"description":"TaskRunStepOverride","type":"object","required":["name","resources"],"properties":{"name":{"description":"Name","type":"string"},"resources":{"description":"Resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"x-kubernetes-list-type":"atomic"},"taskPodTemplate":{"description":"PodTemplate holds pod specific configuration","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"taskServiceAccountName":{"type":"string"},"timeout":{"description":"Timeout","type":"string"}}},"x-kubernetes-list-type":"atomic"},"timeout":{"description":"Deprecated: use pipelineRunSpec.Timeouts.Pipeline instead\nTimeout","type":"string"},"timeouts":{"description":"Timeouts","type":"object","properties":{"finally":{"description":"Finally","type":"string"},"pipeline":{"description":"Pipeline","type":"string"},"tasks":{"description":"Tasks","type":"string"}}},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"WorkspaceBinding","type":"object","required":["name"],"properties":{"configMap":{"description":"ConfigMap","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"CSI","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"emptyDir":{"description":"EmptyDir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"name":{"description":"Name","type":"string"},"persistentVolumeClaim":{"description":"PersistentVolumeClaim","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"projected":{"description":"Projected","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podCertificate":{"description":"Projects an auto-rotating credential bundle (private key and certificate\nchain) that the pod can use either as a TLS client or server.\n\nKubelet generates a private key and uses it to send a\nPodCertificateRequest to the named signer.  Once the signer approves the\nrequest and issues a certificate chain, Kubelet writes the key and\ncertificate chain to the pod filesystem.  The pod does not start until\ncertificates have been issued for each podCertificate projected volume\nsource in its spec.\n\nKubelet will begin trying to rotate the certificate at the time indicated\nby the signer using the PodCertificateRequest.Status.BeginRefreshAt\ntimestamp.\n\nKubelet can write a single file, indicated by the credentialBundlePath\nfield, or separate files, indicated by the keyPath and\ncertificateChainPath fields.\n\nThe credential bundle is a single file in PEM format.  The first PEM\nentry is the private key (in PKCS#8 format), and the remaining PEM\nentries are the certificate chain issued by the signer (typically,\nsigners will return their certificate chain in leaf-to-root order).\n\nPrefer using the credential bundle format, since your application code\ncan read it atomically.  If you use keyPath and certificateChainPath,\nyour application must make two separate file reads. If these coincide\nwith a certificate rotation, it is possible that the private key and leaf\ncertificate you read may not correspond to each other.  Your application\nwill need to check for this condition, and re-read until they are\nconsistent.\n\nThe named signer controls chooses the format of the certificate it\nissues; consult the signer implementation's documentation to learn how to\nuse the certificates it issues.","type":"object","required":["keyType","signerName"],"properties":{"certificateChainPath":{"description":"Write the certificate chain at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"credentialBundlePath":{"description":"Write the credential bundle at this path in the projected volume.\n\nThe credential bundle is a single file that contains multiple PEM blocks.\nThe first PEM block is a PRIVATE KEY block, containing a PKCS#8 private\nkey.\n\nThe remaining blocks are CERTIFICATE blocks, containing the issued\ncertificate chain from the signer (leaf and any intermediates).\n\nUsing credentialBundlePath lets your Pod's application code make a single\natomic read that retrieves a consistent key and certificate chain.  If you\nproject them to separate files, your application code will need to\nadditionally check that the leaf certificate was issued to the key.","type":"string"},"keyPath":{"description":"Write the key at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"keyType":{"description":"The type of keypair Kubelet will generate for the pod.\n\nValid values are \"RSA3072\", \"RSA4096\", \"ECDSAP256\", \"ECDSAP384\",\n\"ECDSAP521\", and \"ED25519\".","type":"string"},"maxExpirationSeconds":{"description":"maxExpirationSeconds is the maximum lifetime permitted for the\ncertificate.\n\nKubelet copies this value verbatim into the PodCertificateRequests it\ngenerates for this projection.\n\nIf omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver\nwill reject values shorter than 3600 (1 hour).  The maximum allowable\nvalue is 7862400 (91 days).\n\nThe signer implementation is then free to issue a certificate with any\nlifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600\nseconds (1 hour).  This constraint is enforced by kube-apiserver.\n`kubernetes.io` signers will never issue certificates with a lifetime\nlonger than 24 hours.","type":"integer","format":"int32"},"signerName":{"description":"Kubelet's generated CSRs will be addressed to this signer.","type":"string"},"userAnnotations":{"description":"userAnnotations allow pod authors to pass additional information to\nthe signer implementation.  Kubernetes does not restrict or validate this\nmetadata in any way.\n\nThese values are copied verbatim into the `spec.unverifiedUserAnnotations` field of\nthe PodCertificateRequest objects that Kubelet creates.\n\nEntries are subject to the same validation as object metadata annotations,\nwith the addition that all keys must be domain-prefixed. No restrictions\nare placed on values, except an overall size limitation on the entire field.\n\nSigners should document the keys and values they support. Signers should\ndeny requests that contain keys they do not recognize.","type":"object","additionalProperties":{"type":"string"}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"Secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"subPath":{"description":"SubPath","type":"string"},"volumeClaimTemplate":{"description":"VolumeClaimTemplate","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"Status","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"childReferences":{"description":"ChildReferences","type":"array","items":{"description":"ChildStatusReference","type":"object","properties":{"apiVersion":{"type":"string"},"displayName":{"description":"DisplayName","type":"string"},"kind":{"type":"string"},"name":{"description":"Name","type":"string"},"pipelineTaskName":{"description":"PipelineTaskName","type":"string"},"whenExpressions":{"description":"WhenExpressions","type":"array","items":{"description":"WhenExpression","type":"object","properties":{"cel":{"description":"CEL","type":"string"},"input":{"description":"Input","type":"string"},"operator":{"description":"Operator","type":"string"},"values":{"description":"Values","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"completionTime":{"description":"CompletionTime","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"finallyStartTime":{"description":"FinallyStartTime","type":"string","format":"date-time"},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"pipelineResults":{"description":"PipelineResults","type":"array","items":{"description":"PipelineRunResult","type":"object","required":["name","value"],"properties":{"name":{"description":"Name","type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"pipelineSpec":{"description":"PipelineSpec","x-kubernetes-preserve-unknown-fields":true},"provenance":{"description":"Provenance","type":"object","properties":{"configSource":{"description":"ConfigSource\nDeprecated: Use RefSource instead","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}},"featureFlags":{"description":"FeatureFlags","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}}}},"runs":{"description":"Runs","type":"object","additionalProperties":{"description":"PipelineRunRunStatus","type":"object","properties":{"pipelineTaskName":{"description":"PipelineTaskName","type":"string"},"status":{"description":"Status","type":"object","properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"completionTime":{"description":"CompletionTime is the time the build completed.","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"extraFields":{"description":"ExtraFields holds arbitrary fields provided by the custom task\ncontroller.","x-kubernetes-preserve-unknown-fields":true},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"results":{"description":"Results reports any output result values to be consumed by later\ntasks in a pipeline.","type":"array","items":{"description":"CustomRunResult used to describe the results of a task","type":"object","required":["name","value"],"properties":{"name":{"description":"Name the given name","type":"string"},"value":{"description":"Value the given value of the result","type":"string"}}}},"retriesStatus":{"description":"RetriesStatus contains the history of CustomRunStatus, in case of a retry.\nSee CustomRun.status (API version: tekton.dev/v1beta1)","x-kubernetes-preserve-unknown-fields":true},"startTime":{"description":"StartTime is the time the build is actually started.","type":"string","format":"date-time"}}},"whenExpressions":{"description":"WhenExpressions","type":"array","items":{"description":"WhenExpression","type":"object","properties":{"cel":{"description":"CEL","type":"string"},"input":{"description":"Input","type":"string"},"operator":{"description":"Operator","type":"string"},"values":{"description":"Values","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}}},"skippedTasks":{"description":"SkippedTasks","type":"array","items":{"description":"SkippedTask","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name","type":"string"},"reason":{"description":"Reason","type":"string"},"whenExpressions":{"description":"WhenExpressions","type":"array","items":{"description":"WhenExpression","type":"object","properties":{"cel":{"description":"CEL","type":"string"},"input":{"description":"Input","type":"string"},"operator":{"description":"Operator","type":"string"},"values":{"description":"Values","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"spanContext":{"description":"SpanContext","type":"object","additionalProperties":{"type":"string"}},"startTime":{"description":"StartTime","type":"string","format":"date-time"},"taskRuns":{"description":"TaskRuns","type":"object","additionalProperties":{"description":"PipelineRunTaskRunStatus","type":"object","properties":{"pipelineTaskName":{"description":"PipelineTaskName","type":"string"},"status":{"description":"Status","type":"object","required":["podName"],"properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"cloudEvents":{"description":"CloudEvents","type":"array","items":{"description":"CloudEventDelivery","type":"object","properties":{"status":{"description":"CloudEventDeliveryState","type":"object","required":["message","retryCount"],"properties":{"condition":{"description":"Condition","type":"string"},"message":{"description":"Error","type":"string"},"retryCount":{"description":"RetryCount","type":"integer","format":"int32"},"sentAt":{"description":"SentAt","type":"string","format":"date-time"}}},"target":{"description":"Target","type":"string"}}},"x-kubernetes-list-type":"atomic"},"completionTime":{"description":"CompletionTime","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"podName":{"description":"PodName","type":"string"},"provenance":{"description":"Provenance","type":"object","properties":{"configSource":{"description":"ConfigSource\nDeprecated: Use RefSource instead","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}},"featureFlags":{"description":"FeatureFlags","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}}}},"resourcesResult":{"description":"ResourcesResult\nDeprecated: this field is not populated and is preserved only for backwards compatibility","type":"array","items":{"description":"RunResult is used to write key/value pairs to TaskRun pod termination messages.\nThe key/value pairs may come from the entrypoint binary, or represent a TaskRunResult.\nIf they represent a TaskRunResult, the key is the name of the result and the value is the\nJSON-serialized value of the result.","type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"resourceName":{"description":"ResourceName may be used in tests, but it is not populated in termination messages.\nIt is preserved here for backwards compatibility and will not be ported to v1.","type":"string"},"type":{"description":"ResultType used to find out whether a RunResult is from a task result or not\nNote that ResultsType is another type which is used to define the data type\n(e.g. string, array, etc) we used for Results","type":"integer"},"value":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"retriesStatus":{"description":"RetriesStatus","x-kubernetes-preserve-unknown-fields":true},"sidecars":{"description":"Sidecars","type":"array","items":{"description":"SidecarState","type":"object","properties":{"container":{"type":"string"},"imageID":{"type":"string"},"name":{"type":"string"},"running":{"description":"Details about a running container","type":"object","properties":{"startedAt":{"description":"Time at which the container was last (re-)started","type":"string","format":"date-time"}}},"terminated":{"description":"Details about a terminated container","type":"object","required":["exitCode"],"properties":{"containerID":{"description":"Container's ID in the format '<type>://<container_id>'","type":"string"},"exitCode":{"description":"Exit status from the last termination of the container","type":"integer","format":"int32"},"finishedAt":{"description":"Time at which the container last terminated","type":"string","format":"date-time"},"message":{"description":"Message regarding the last termination of the container","type":"string"},"reason":{"description":"(brief) reason from the last termination of the container","type":"string"},"signal":{"description":"Signal from the last termination of the container","type":"integer","format":"int32"},"startedAt":{"description":"Time at which previous execution of the container started","type":"string","format":"date-time"}}},"waiting":{"description":"Details about a waiting container","type":"object","properties":{"message":{"description":"Message regarding why the container is not yet running.","type":"string"},"reason":{"description":"(brief) reason the container is not yet running.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"spanContext":{"description":"SpanContext","type":"object","additionalProperties":{"type":"string"}},"startTime":{"description":"StartTime","type":"string","format":"date-time"},"steps":{"description":"Steps","type":"array","items":{"description":"StepState","type":"object","properties":{"container":{"type":"string"},"imageID":{"type":"string"},"inputs":{"type":"array","items":{"description":"Artifact","type":"object","properties":{"buildOutput":{"description":"BuildOutput","type":"boolean"},"name":{"description":"Name","type":"string"},"values":{"description":"Values","type":"array","items":{"description":"ArtifactValue","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}}},"name":{"type":"string"},"outputs":{"type":"array","items":{"description":"Artifact","type":"object","properties":{"buildOutput":{"description":"BuildOutput","type":"boolean"},"name":{"description":"Name","type":"string"},"values":{"description":"Values","type":"array","items":{"description":"ArtifactValue","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}}},"provenance":{"description":"Provenance","type":"object","properties":{"configSource":{"description":"ConfigSource\nDeprecated: Use RefSource instead","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}},"featureFlags":{"description":"FeatureFlags","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}}}},"results":{"type":"array","items":{"description":"TaskRunResult","type":"object","required":["name","value"],"properties":{"name":{"description":"Name","type":"string"},"type":{"description":"Type","type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}}},"running":{"description":"Details about a running container","type":"object","properties":{"startedAt":{"description":"Time at which the container was last (re-)started","type":"string","format":"date-time"}}},"terminated":{"description":"Details about a terminated container","type":"object","required":["exitCode"],"properties":{"containerID":{"description":"Container's ID in the format '<type>://<container_id>'","type":"string"},"exitCode":{"description":"Exit status from the last termination of the container","type":"integer","format":"int32"},"finishedAt":{"description":"Time at which the container last terminated","type":"string","format":"date-time"},"message":{"description":"Message regarding the last termination of the container","type":"string"},"reason":{"description":"(brief) reason from the last termination of the container","type":"string"},"signal":{"description":"Signal from the last termination of the container","type":"integer","format":"int32"},"startedAt":{"description":"Time at which previous execution of the container started","type":"string","format":"date-time"}}},"waiting":{"description":"Details about a waiting container","type":"object","properties":{"message":{"description":"Message regarding why the container is not yet running.","type":"string"},"reason":{"description":"(brief) reason the container is not yet running.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"taskResults":{"description":"TaskRunResults","type":"array","items":{"description":"TaskRunResult","type":"object","required":["name","value"],"properties":{"name":{"description":"Name","type":"string"},"type":{"description":"Type","type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"taskSpec":{"description":"TaskSpec","x-kubernetes-preserve-unknown-fields":true}}},"whenExpressions":{"description":"WhenExpressions","type":"array","items":{"description":"WhenExpression","type":"object","properties":{"cel":{"description":"CEL","type":"string"},"input":{"description":"Input","type":"string"},"operator":{"description":"Operator","type":"string"},"values":{"description":"Values","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"PipelineRun","version":"v1beta1"}]},"dev.tekton.v1beta1.PipelineRunList":{"description":"PipelineRunList is a list of PipelineRun","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pipelineruns. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1beta1.PipelineRun"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"PipelineRunList","version":"v1beta1"}]},"dev.tekton.v1beta1.StepAction":{"description":"StepAction","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec","type":"object","properties":{"args":{"description":"Args","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Command","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"description":{"description":"Description","type":"string"},"env":{"description":"Env","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"ParamSpec defines arbitrary parameters needed beyond typed inputs (such as\nresources). Parameter values are provided by users as inputs on a TaskRun\nor PipelineRun.","type":"object","required":["name"],"properties":{"default":{"description":"Default is the value a parameter takes if no input value is supplied. If\ndefault is set, a Task may be executed without a supplied value for the\nparameter.","x-kubernetes-preserve-unknown-fields":true},"description":{"description":"Description is a user-facing description of the parameter that may be\nused to populate a UI.","type":"string"},"enum":{"description":"Enum declares a set of allowed param input values for tasks/pipelines that can be validated.\nIf Enum is not set, no input validation is performed for the param.","type":"array","items":{"type":"string"}},"name":{"description":"Name declares the name by which a parameter is referenced.","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs parameter.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"Type is the user-specified type of the parameter. The possible types\nare currently \"string\", \"array\" and \"object\", and \"string\" is the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"results":{"description":"Results","type":"array","items":{"description":"StepResult used to describe the Results of a Step.","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs results.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"The possible types are 'string', 'array', and 'object', with 'string' as the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"script":{"description":"Script","type":"string"},"securityContext":{"description":"SecurityContext","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"volumeMounts":{"description":"VolumeMounts","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"WorkingDir","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"StepAction","version":"v1beta1"}]},"dev.tekton.v1beta1.StepActionList":{"description":"StepActionList is a list of StepAction","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of stepactions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1beta1.StepAction"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"StepActionList","version":"v1beta1"}]},"dev.tekton.v1beta1.Task":{"description":"Task\nDeprecated: Please use v1.Task instead.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec","type":"object","properties":{"description":{"description":"Description","type":"string"},"displayName":{"description":"DisplayName","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"ParamSpec","type":"object","required":["name"],"properties":{"default":{"description":"Default","x-kubernetes-preserve-unknown-fields":true},"description":{"description":"Description","type":"string"},"enum":{"description":"Enum","type":"array","items":{"type":"string"}},"name":{"description":"Name","type":"string"},"properties":{"description":"Properties","type":"object","additionalProperties":{"description":"PropertySpec","type":"object","properties":{"type":{"description":"ParamType","type":"string"}}}},"type":{"description":"Type","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","properties":{"inputs":{"description":"Inputs","type":"array","items":{"description":"TaskResource\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","type"],"properties":{"description":{"description":"Description is a user-facing description of the declared resource that may be\nused to populate a UI.","type":"string"},"name":{"description":"Name declares the name by which a resource is referenced in the\ndefinition. Resources may be referenced by name in the definition of a\nTask's steps.","type":"string"},"optional":{"description":"Optional declares the resource as optional.\nBy default optional is set to false which makes a resource required.\noptional: true - the resource is considered optional\noptional: false - the resource is considered required (equivalent of not specifying it)","type":"boolean"},"targetPath":{"description":"TargetPath is the path in workspace directory where the resource\nwill be copied.","type":"string"},"type":{"description":"Type is the type of this resource;","type":"string"}}},"x-kubernetes-list-type":"atomic"},"outputs":{"description":"Outputs","type":"array","items":{"description":"TaskResource\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","type"],"properties":{"description":{"description":"Description is a user-facing description of the declared resource that may be\nused to populate a UI.","type":"string"},"name":{"description":"Name declares the name by which a resource is referenced in the\ndefinition. Resources may be referenced by name in the definition of a\nTask's steps.","type":"string"},"optional":{"description":"Optional declares the resource as optional.\nBy default optional is set to false which makes a resource required.\noptional: true - the resource is considered optional\noptional: false - the resource is considered required (equivalent of not specifying it)","type":"boolean"},"targetPath":{"description":"TargetPath is the path in workspace directory where the resource\nwill be copied.","type":"string"},"type":{"description":"Type is the type of this resource;","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"results":{"description":"Results","type":"array","items":{"description":"TaskResult","type":"object","required":["name"],"properties":{"description":{"description":"Description","type":"string"},"name":{"description":"Name","type":"string"},"properties":{"description":"Properties","type":"object","additionalProperties":{"description":"PropertySpec","type":"object","properties":{"type":{"description":"ParamType","type":"string"}}}},"type":{"description":"Type","type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"sidecars":{"description":"Sidecars","type":"array","items":{"description":"Sidecar","type":"object","required":["name"],"properties":{"args":{"description":"Args","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Command","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"Env","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"EnvFrom","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image","type":"string"},"imagePullPolicy":{"description":"ImagePullPolicy","type":"string"},"lifecycle":{"description":"Lifecycle","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"LivenessProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name","type":"string"},"ports":{"description":"Ports","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"ReadinessProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resources":{"description":"Resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy","type":"string"},"script":{"description":"Script","type":"string"},"securityContext":{"description":"SecurityContext","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Stdin","type":"boolean"},"stdinOnce":{"description":"StdinOnce","type":"boolean"},"terminationMessagePath":{"description":"TerminationMessagePath","type":"string"},"terminationMessagePolicy":{"description":"TerminationMessagePolicy","type":"string"},"tty":{"description":"TTY","type":"boolean"},"volumeDevices":{"description":"VolumeDevices","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"VolumeMounts","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"WorkingDir","type":"string"},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"WorkspaceUsage","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"MountPath","type":"string"},"name":{"description":"Name","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"stepTemplate":{"description":"StepTemplate","type":"object","required":["name"],"properties":{"args":{"description":"Args","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Command","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"Env","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"EnvFrom","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image","type":"string"},"imagePullPolicy":{"description":"ImagePullPolicy","type":"string"},"lifecycle":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedLifecycle","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedLivenessProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedName","type":"string"},"ports":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedPorts","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedReadinessProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resources":{"description":"Resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"description":"SecurityContext","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedStartupProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedStdin","type":"boolean"},"stdinOnce":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedStdinOnce","type":"boolean"},"terminationMessagePath":{"description":"DeprecatedTerminationMessagePath\nDeprecated: This field will be removed in a future release and cannot be meaningfully used.","type":"string"},"terminationMessagePolicy":{"description":"DeprecatedTerminationMessagePolicy\nDeprecated: This field will be removed in a future release and cannot be meaningfully used.","type":"string"},"tty":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedTTY","type":"boolean"},"volumeDevices":{"description":"VolumeDevices","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"VolumeMounts","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"workingDir":{"description":"WorkingDir","type":"string"}}},"steps":{"description":"Steps","type":"array","items":{"description":"Step","type":"object","required":["name"],"properties":{"args":{"description":"Args","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Command","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"displayName":{"description":"DisplayName","type":"string"},"env":{"description":"Env","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"envFrom":{"description":"EnvFrom","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Image","type":"string"},"imagePullPolicy":{"description":"ImagePullPolicy","type":"string"},"lifecycle":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedLifecycle","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedLivenessProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name","type":"string"},"onError":{"description":"OnError","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"ports":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedPorts","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedReadinessProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"ref":{"description":"Ref","type":"object","properties":{"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver","type":"string"}}},"resources":{"description":"Resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"results":{"description":"Results","type":"array","items":{"description":"StepResult used to describe the Results of a Step.","type":"object","required":["name"],"properties":{"description":{"description":"Description is a human-readable description of the result","type":"string"},"name":{"description":"Name the given name","type":"string"},"properties":{"description":"Properties is the JSON Schema properties to support key-value pairs results.","type":"object","additionalProperties":{"description":"PropertySpec defines the struct for object keys","type":"object","properties":{"type":{"description":"ParamType indicates the type of an input parameter;\nUsed to distinguish between a single string and an array of strings.","type":"string"}}}},"type":{"description":"The possible types are 'string', 'array', and 'object', with 'string' as the default.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"script":{"description":"Script","type":"string"},"securityContext":{"description":"SecurityContext","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedStartupProbe","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stderrConfig":{"description":"StderrConfig","type":"object","properties":{"path":{"description":"Path","type":"string"}}},"stdin":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedStdin","type":"boolean"},"stdinOnce":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedStdinOnce","type":"boolean"},"stdoutConfig":{"description":"StdoutConfig","type":"object","properties":{"path":{"description":"Path","type":"string"}}},"terminationMessagePath":{"description":"DeprecatedTerminationMessagePath\nDeprecated: This field will be removed in a future release and can't be meaningfully used.","type":"string"},"terminationMessagePolicy":{"description":"DeprecatedTerminationMessagePolicy\nDeprecated: This field will be removed in a future release and can't be meaningfully used.","type":"string"},"timeout":{"description":"Timeout","type":"string"},"tty":{"description":"Deprecated: This field will be removed in a future release.\nDeprecatedTTY","type":"boolean"},"volumeDevices":{"description":"VolumeDevices","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumeMounts":{"description":"VolumeMounts","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"when":{"description":"WhenExpressions","type":"array","items":{"description":"WhenExpression","type":"object","properties":{"cel":{"description":"CEL","type":"string"},"input":{"description":"Input","type":"string"},"operator":{"description":"Operator","type":"string"},"values":{"description":"Values","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"workingDir":{"description":"WorkingDir","type":"string"},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"WorkspaceUsage","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"MountPath","type":"string"},"name":{"description":"Name","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"Volumes","x-kubernetes-preserve-unknown-fields":true},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"WorkspaceDeclaration","type":"object","required":["name"],"properties":{"description":{"description":"Description","type":"string"},"mountPath":{"description":"MountPath","type":"string"},"name":{"description":"Name","type":"string"},"optional":{"description":"Optional","type":"boolean"},"readOnly":{"description":"ReadOnly","type":"boolean"}}},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"Task","version":"v1beta1"}]},"dev.tekton.v1beta1.TaskList":{"description":"TaskList is a list of Task","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tasks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1beta1.Task"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"TaskList","version":"v1beta1"}]},"dev.tekton.v1beta1.TaskRun":{"description":"TaskRun\nDeprecated: Please use v1.TaskRun instead.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec","type":"object","properties":{"computeResources":{"description":"ComputeResources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"debug":{"description":"Debug","type":"object","properties":{"breakpoints":{"description":"Breakpoints","type":"object","properties":{"beforeSteps":{"description":"BeforeSteps","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"onFailure":{"description":"OnFailure","type":"string"}}}}},"managedBy":{"description":"ManagedBy","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"podTemplate":{"description":"PodTemplate","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints.\nSee Pod.spec.affinity (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this\nservice account should have an API token automatically mounted.","type":"boolean"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are\n'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig\nwill be merged with the policy selected with DNSPolicy.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"env":{"description":"List of environment variables that can be provided to the containers belonging to the pod.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-type":"atomic"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"hostNetwork":{"description":"HostNetwork specifies whether the pod may use the node network namespace","type":"boolean"},"hostUsers":{"description":"HostUsers indicates whether the pod will use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new user namespace is created for the pod. Setting false\nis useful to mitigating container breakout vulnerabilities such as allowing\ncontainers to run as root without their user having root privileges on the host.\nThis field depends on the kubernetes feature gate UserNamespacesSupport being enabled.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io\ngroup, which should be used to run this pod. If no RuntimeClass resource\nmatches the named class, the pod will not be run. If unset or empty, the\n\"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md\nThis is a beta feature as of Kubernetes v1.14.","type":"string"},"schedulerName":{"description":"SchedulerName specifies the scheduler to be used to dispatch the Pod","type":"string"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.\nSee Pod.spec.securityContext (API version: v1)","x-kubernetes-preserve-unknown-fields":true},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints controls how Pods are spread across your cluster among\nfailure-domains such as regions, zones, nodes, and other user-defined topology domains.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes\nSee Pod.spec.volumes (API version: v1)","x-kubernetes-preserve-unknown-fields":true}}},"resources":{"description":"Resources\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","properties":{"inputs":{"description":"Inputs","type":"array","items":{"description":"TaskResourceBinding\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","properties":{"name":{"description":"Name","type":"string"},"paths":{"description":"Paths","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resourceRef":{"description":"ResourceRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"name":{"description":"Name","type":"string"}}},"resourceSpec":{"description":"ResourceSpec","type":"object","required":["params","type"],"properties":{"description":{"description":"Description is a user-facing description of the resource that may be\nused to populate a UI.","type":"string"},"params":{"type":"array","items":{"description":"ResourceParam declares a string value to use for the parameter called Name, and is used in\nthe specific context of PipelineResources.\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"secrets":{"description":"Secrets to fetch to populate some of resource fields","type":"array","items":{"description":"SecretParam indicates which secret can be used to populate a field of the resource\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["fieldName","secretKey","secretName"],"properties":{"fieldName":{"type":"string"},"secretKey":{"type":"string"},"secretName":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"type":{"description":"PipelineResourceType represents the type of endpoint the pipelineResource is, so that the\ncontroller will know this pipelineResource shouldx be fetched and optionally what\nadditional metatdata should be provided for it.\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"outputs":{"description":"Outputs","type":"array","items":{"description":"TaskResourceBinding\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","properties":{"name":{"description":"Name","type":"string"},"paths":{"description":"Paths","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resourceRef":{"description":"ResourceRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"name":{"description":"Name","type":"string"}}},"resourceSpec":{"description":"ResourceSpec","type":"object","required":["params","type"],"properties":{"description":{"description":"Description is a user-facing description of the resource that may be\nused to populate a UI.","type":"string"},"params":{"type":"array","items":{"description":"ResourceParam declares a string value to use for the parameter called Name, and is used in\nthe specific context of PipelineResources.\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"secrets":{"description":"Secrets to fetch to populate some of resource fields","type":"array","items":{"description":"SecretParam indicates which secret can be used to populate a field of the resource\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"object","required":["fieldName","secretKey","secretName"],"properties":{"fieldName":{"type":"string"},"secretKey":{"type":"string"},"secretName":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"type":{"description":"PipelineResourceType represents the type of endpoint the pipelineResource is, so that the\ncontroller will know this pipelineResource shouldx be fetched and optionally what\nadditional metatdata should be provided for it.\n\nDeprecated: Unused, preserved only for backwards compatibility","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"retries":{"description":"Retries","type":"integer"},"serviceAccountName":{"description":"ServiceAccountName","type":"string"},"sidecarOverrides":{"description":"SidecarOverrides","type":"array","items":{"description":"TaskRunSidecarOverride","type":"object","required":["name","resources"],"properties":{"name":{"description":"Name","type":"string"},"resources":{"description":"Resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"x-kubernetes-list-type":"atomic"},"status":{"description":"Status","type":"string"},"statusMessage":{"description":"StatusMessage","type":"string"},"stepOverrides":{"description":"StepOverrides","type":"array","items":{"description":"TaskRunStepOverride","type":"object","required":["name","resources"],"properties":{"name":{"description":"Name","type":"string"},"resources":{"description":"Resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"x-kubernetes-list-type":"atomic"},"taskRef":{"description":"TaskRef","type":"object","properties":{"apiVersion":{"description":"APIVersion","type":"string"},"bundle":{"description":"Deprecated: Please use ResolverRef with the bundles resolver instead.\nBundle","type":"string"},"kind":{"description":"Kind","type":"string"},"name":{"description":"Name","type":"string"},"params":{"description":"Params","type":"array","items":{"description":"Param","type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"resolver":{"description":"Resolver","type":"string"}}},"taskSpec":{"description":"TaskSpec","x-kubernetes-preserve-unknown-fields":true},"timeout":{"description":"Timeout","type":"string"},"workspaces":{"description":"Workspaces","type":"array","items":{"description":"WorkspaceBinding","type":"object","required":["name"],"properties":{"configMap":{"description":"ConfigMap","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"CSI","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"emptyDir":{"description":"EmptyDir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"name":{"description":"Name","type":"string"},"persistentVolumeClaim":{"description":"PersistentVolumeClaim","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"projected":{"description":"Projected","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podCertificate":{"description":"Projects an auto-rotating credential bundle (private key and certificate\nchain) that the pod can use either as a TLS client or server.\n\nKubelet generates a private key and uses it to send a\nPodCertificateRequest to the named signer.  Once the signer approves the\nrequest and issues a certificate chain, Kubelet writes the key and\ncertificate chain to the pod filesystem.  The pod does not start until\ncertificates have been issued for each podCertificate projected volume\nsource in its spec.\n\nKubelet will begin trying to rotate the certificate at the time indicated\nby the signer using the PodCertificateRequest.Status.BeginRefreshAt\ntimestamp.\n\nKubelet can write a single file, indicated by the credentialBundlePath\nfield, or separate files, indicated by the keyPath and\ncertificateChainPath fields.\n\nThe credential bundle is a single file in PEM format.  The first PEM\nentry is the private key (in PKCS#8 format), and the remaining PEM\nentries are the certificate chain issued by the signer (typically,\nsigners will return their certificate chain in leaf-to-root order).\n\nPrefer using the credential bundle format, since your application code\ncan read it atomically.  If you use keyPath and certificateChainPath,\nyour application must make two separate file reads. If these coincide\nwith a certificate rotation, it is possible that the private key and leaf\ncertificate you read may not correspond to each other.  Your application\nwill need to check for this condition, and re-read until they are\nconsistent.\n\nThe named signer controls chooses the format of the certificate it\nissues; consult the signer implementation's documentation to learn how to\nuse the certificates it issues.","type":"object","required":["keyType","signerName"],"properties":{"certificateChainPath":{"description":"Write the certificate chain at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"credentialBundlePath":{"description":"Write the credential bundle at this path in the projected volume.\n\nThe credential bundle is a single file that contains multiple PEM blocks.\nThe first PEM block is a PRIVATE KEY block, containing a PKCS#8 private\nkey.\n\nThe remaining blocks are CERTIFICATE blocks, containing the issued\ncertificate chain from the signer (leaf and any intermediates).\n\nUsing credentialBundlePath lets your Pod's application code make a single\natomic read that retrieves a consistent key and certificate chain.  If you\nproject them to separate files, your application code will need to\nadditionally check that the leaf certificate was issued to the key.","type":"string"},"keyPath":{"description":"Write the key at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"keyType":{"description":"The type of keypair Kubelet will generate for the pod.\n\nValid values are \"RSA3072\", \"RSA4096\", \"ECDSAP256\", \"ECDSAP384\",\n\"ECDSAP521\", and \"ED25519\".","type":"string"},"maxExpirationSeconds":{"description":"maxExpirationSeconds is the maximum lifetime permitted for the\ncertificate.\n\nKubelet copies this value verbatim into the PodCertificateRequests it\ngenerates for this projection.\n\nIf omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver\nwill reject values shorter than 3600 (1 hour).  The maximum allowable\nvalue is 7862400 (91 days).\n\nThe signer implementation is then free to issue a certificate with any\nlifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600\nseconds (1 hour).  This constraint is enforced by kube-apiserver.\n`kubernetes.io` signers will never issue certificates with a lifetime\nlonger than 24 hours.","type":"integer","format":"int32"},"signerName":{"description":"Kubelet's generated CSRs will be addressed to this signer.","type":"string"},"userAnnotations":{"description":"userAnnotations allow pod authors to pass additional information to\nthe signer implementation.  Kubernetes does not restrict or validate this\nmetadata in any way.\n\nThese values are copied verbatim into the `spec.unverifiedUserAnnotations` field of\nthe PodCertificateRequest objects that Kubelet creates.\n\nEntries are subject to the same validation as object metadata annotations,\nwith the addition that all keys must be domain-prefixed. No restrictions\nare placed on values, except an overall size limitation on the entire field.\n\nSigners should document the keys and values they support. Signers should\ndeny requests that contain keys they do not recognize.","type":"object","additionalProperties":{"type":"string"}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"secret":{"description":"Secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"subPath":{"description":"SubPath","type":"string"},"volumeClaimTemplate":{"description":"VolumeClaimTemplate","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"Status","type":"object","required":["podName"],"properties":{"annotations":{"description":"Annotations is additional Status fields for the Resource to save some\nadditional State as well as convey more information to the user. This is\nroughly akin to Annotations on any k8s resource, just the reconciler conveying\nricher information outwards.","type":"object","additionalProperties":{"type":"string"}},"cloudEvents":{"description":"CloudEvents","type":"array","items":{"description":"CloudEventDelivery","type":"object","properties":{"status":{"description":"CloudEventDeliveryState","type":"object","required":["message","retryCount"],"properties":{"condition":{"description":"Condition","type":"string"},"message":{"description":"Error","type":"string"},"retryCount":{"description":"RetryCount","type":"integer","format":"int32"},"sentAt":{"description":"SentAt","type":"string","format":"date-time"}}},"target":{"description":"Target","type":"string"}}},"x-kubernetes-list-type":"atomic"},"completionTime":{"description":"CompletionTime","type":"string","format":"date-time"},"conditions":{"description":"Conditions the latest available observations of a resource's current state.","type":"array","items":{"description":"Condition defines a readiness condition for a Knative resource.\nSee: https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#typical-status-properties","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.\nWe use VolatileTime in place of metav1.Time to exclude this from creating equality.Semantic\ndifferences (all other things held constant).","type":"string"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"severity":{"description":"Severity with which to treat failures of this type of condition.\nWhen this is not specified, it defaults to Error.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of condition.","type":"string"}}}},"observedGeneration":{"description":"ObservedGeneration is the 'Generation' of the Service that\nwas last processed by the controller.","type":"integer","format":"int64"},"podName":{"description":"PodName","type":"string"},"provenance":{"description":"Provenance","type":"object","properties":{"configSource":{"description":"ConfigSource\nDeprecated: Use RefSource instead","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}},"featureFlags":{"description":"FeatureFlags","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}}}},"resourcesResult":{"description":"ResourcesResult\nDeprecated: this field is not populated and is preserved only for backwards compatibility","type":"array","items":{"description":"RunResult is used to write key/value pairs to TaskRun pod termination messages.\nThe key/value pairs may come from the entrypoint binary, or represent a TaskRunResult.\nIf they represent a TaskRunResult, the key is the name of the result and the value is the\nJSON-serialized value of the result.","type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"resourceName":{"description":"ResourceName may be used in tests, but it is not populated in termination messages.\nIt is preserved here for backwards compatibility and will not be ported to v1.","type":"string"},"type":{"description":"ResultType used to find out whether a RunResult is from a task result or not\nNote that ResultsType is another type which is used to define the data type\n(e.g. string, array, etc) we used for Results","type":"integer"},"value":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"retriesStatus":{"description":"RetriesStatus","x-kubernetes-preserve-unknown-fields":true},"sidecars":{"description":"Sidecars","type":"array","items":{"description":"SidecarState","type":"object","properties":{"container":{"type":"string"},"imageID":{"type":"string"},"name":{"type":"string"},"running":{"description":"Details about a running container","type":"object","properties":{"startedAt":{"description":"Time at which the container was last (re-)started","type":"string","format":"date-time"}}},"terminated":{"description":"Details about a terminated container","type":"object","required":["exitCode"],"properties":{"containerID":{"description":"Container's ID in the format '<type>://<container_id>'","type":"string"},"exitCode":{"description":"Exit status from the last termination of the container","type":"integer","format":"int32"},"finishedAt":{"description":"Time at which the container last terminated","type":"string","format":"date-time"},"message":{"description":"Message regarding the last termination of the container","type":"string"},"reason":{"description":"(brief) reason from the last termination of the container","type":"string"},"signal":{"description":"Signal from the last termination of the container","type":"integer","format":"int32"},"startedAt":{"description":"Time at which previous execution of the container started","type":"string","format":"date-time"}}},"waiting":{"description":"Details about a waiting container","type":"object","properties":{"message":{"description":"Message regarding why the container is not yet running.","type":"string"},"reason":{"description":"(brief) reason the container is not yet running.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"spanContext":{"description":"SpanContext","type":"object","additionalProperties":{"type":"string"}},"startTime":{"description":"StartTime","type":"string","format":"date-time"},"steps":{"description":"Steps","type":"array","items":{"description":"StepState","type":"object","properties":{"container":{"type":"string"},"imageID":{"type":"string"},"inputs":{"type":"array","items":{"description":"Artifact","type":"object","properties":{"buildOutput":{"description":"BuildOutput","type":"boolean"},"name":{"description":"Name","type":"string"},"values":{"description":"Values","type":"array","items":{"description":"ArtifactValue","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}}},"name":{"type":"string"},"outputs":{"type":"array","items":{"description":"Artifact","type":"object","properties":{"buildOutput":{"description":"BuildOutput","type":"boolean"},"name":{"description":"Name","type":"string"},"values":{"description":"Values","type":"array","items":{"description":"ArtifactValue","type":"object","properties":{"digest":{"type":"object","additionalProperties":{"type":"string"}},"uri":{"type":"string"}}}}}}},"provenance":{"description":"Provenance","type":"object","properties":{"configSource":{"description":"ConfigSource\nDeprecated: Use RefSource instead","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}},"featureFlags":{"description":"FeatureFlags","type":"object","properties":{"awaitSidecarReadiness":{"type":"boolean"},"coschedule":{"type":"string"},"disableCredsInit":{"type":"boolean"},"disableInlineSpec":{"type":"string"},"enableAPIFields":{"type":"string"},"enableArtifacts":{"type":"boolean"},"enableCELInWhenExpression":{"type":"boolean"},"enableConciseResolverSyntax":{"type":"boolean"},"enableKeepPodOnCancel":{"type":"boolean"},"enableKubernetesSidecar":{"type":"boolean"},"enableParamEnum":{"type":"boolean"},"enableProvenanceInStatus":{"type":"boolean"},"enableStepActions":{"description":"EnableStepActions is a no-op flag since StepActions are stable","type":"boolean"},"enableTektonOCIBundles":{"description":"DeprecatedEnableTektonOCIBundles is maintained for backward compatibility\nto allow deletion of PipelineRuns created before v0.62.x.\nThis field is not used and can be removed in a future release\nonce we're confident old PipelineRuns have been cleaned up.\nSee issue #8359 for context.","type":"boolean"},"enableWaitExponentialBackoff":{"type":"boolean"},"enforceNonfalsifiability":{"type":"string"},"maxResultSize":{"type":"integer"},"requireGitSSHSecretKnownHosts":{"type":"boolean"},"resultExtractionMethod":{"type":"string"},"runningInEnvWithInjectedSidecars":{"type":"boolean"},"sendCloudEventsForRuns":{"type":"boolean"},"setSecurityContext":{"type":"boolean"},"setSecurityContextReadOnlyRootFilesystem":{"type":"boolean"},"verificationNoMatchPolicy":{"description":"VerificationNoMatchPolicy is the feature flag for \"trusted-resources-verification-no-match-policy\"\nVerificationNoMatchPolicy can be set to \"ignore\", \"warn\" and \"fail\" values.\nignore: skip trusted resources verification when no matching verification policies found\nwarn: skip trusted resources verification when no matching verification policies found and log a warning\nfail: fail the taskrun or pipelines run if no matching verification policies found","type":"string"}}},"refSource":{"description":"RefSource","type":"object","properties":{"digest":{"description":"Digest","type":"object","additionalProperties":{"type":"string"}},"entryPoint":{"description":"EntryPoint","type":"string"},"uri":{"description":"URI","type":"string"}}}}},"results":{"type":"array","items":{"description":"TaskRunResult","type":"object","required":["name","value"],"properties":{"name":{"description":"Name","type":"string"},"type":{"description":"Type","type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}}},"running":{"description":"Details about a running container","type":"object","properties":{"startedAt":{"description":"Time at which the container was last (re-)started","type":"string","format":"date-time"}}},"terminated":{"description":"Details about a terminated container","type":"object","required":["exitCode"],"properties":{"containerID":{"description":"Container's ID in the format '<type>://<container_id>'","type":"string"},"exitCode":{"description":"Exit status from the last termination of the container","type":"integer","format":"int32"},"finishedAt":{"description":"Time at which the container last terminated","type":"string","format":"date-time"},"message":{"description":"Message regarding the last termination of the container","type":"string"},"reason":{"description":"(brief) reason from the last termination of the container","type":"string"},"signal":{"description":"Signal from the last termination of the container","type":"integer","format":"int32"},"startedAt":{"description":"Time at which previous execution of the container started","type":"string","format":"date-time"}}},"waiting":{"description":"Details about a waiting container","type":"object","properties":{"message":{"description":"Message regarding why the container is not yet running.","type":"string"},"reason":{"description":"(brief) reason the container is not yet running.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"},"taskResults":{"description":"TaskRunResults","type":"array","items":{"description":"TaskRunResult","type":"object","required":["name","value"],"properties":{"name":{"description":"Name","type":"string"},"type":{"description":"Type","type":"string"},"value":{"description":"Value","x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-list-type":"atomic"},"taskSpec":{"description":"TaskSpec","x-kubernetes-preserve-unknown-fields":true}}}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"TaskRun","version":"v1beta1"}]},"dev.tekton.v1beta1.TaskRunList":{"description":"TaskRunList is a list of TaskRun","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of taskruns. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/dev.tekton.v1beta1.TaskRun"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tekton.dev","kind":"TaskRunList","version":"v1beta1"}]},"io.argoproj.v1alpha1.AnalysisRun":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["metrics"],"properties":{"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"secretKeyRef":{"type":"object","required":["key","name"],"properties":{"key":{"type":"string"},"name":{"type":"string"}}}}}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"metrics":{"type":"array","items":{"type":"object","required":["name","provider"],"properties":{"consecutiveErrorLimit":{"x-kubernetes-int-or-string":true},"count":{"x-kubernetes-int-or-string":true},"failureCondition":{"type":"string"},"failureLimit":{"x-kubernetes-int-or-string":true},"inconclusiveLimit":{"x-kubernetes-int-or-string":true},"initialDelay":{"type":"string"},"interval":{"type":"string"},"name":{"type":"string"},"provider":{"type":"object","properties":{"cloudWatch":{"type":"object","required":["metricDataQueries"],"properties":{"interval":{"type":"string"},"metricDataQueries":{"type":"array","items":{"type":"object","properties":{"expression":{"type":"string"},"id":{"type":"string"},"label":{"type":"string"},"metricStat":{"type":"object","properties":{"metric":{"type":"object","properties":{"dimensions":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"metricName":{"type":"string"},"namespace":{"type":"string"}}},"period":{"x-kubernetes-int-or-string":true},"stat":{"type":"string"},"unit":{"type":"string"}}},"period":{"x-kubernetes-int-or-string":true},"returnData":{"type":"boolean"}}}}}},"datadog":{"type":"object","properties":{"aggregator":{"type":"string","enum":["avg","min","max","sum","last","percentile","mean","l2norm","area"]},"apiVersion":{"type":"string","enum":["v1","v2"]},"formula":{"type":"string"},"interval":{"type":"string"},"queries":{"type":"object","additionalProperties":{"type":"string"}},"query":{"type":"string"}}},"graphite":{"type":"object","properties":{"address":{"type":"string"},"query":{"type":"string"}}},"influxdb":{"type":"object","properties":{"profile":{"type":"string"},"query":{"type":"string"}}},"job":{"type":"object","required":["spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["template"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"backoffLimit":{"type":"integer","format":"int32"},"backoffLimitPerIndex":{"type":"integer","format":"int32"},"completionMode":{"type":"string"},"completions":{"type":"integer","format":"int32"},"manualSelector":{"type":"boolean"},"maxFailedIndexes":{"type":"integer","format":"int32"},"parallelism":{"type":"integer","format":"int32"},"podFailurePolicy":{"type":"object","required":["rules"],"properties":{"rules":{"type":"array","items":{"type":"object","required":["action"],"properties":{"action":{"type":"string"},"onExitCodes":{"type":"object","required":["operator","values"],"properties":{"containerName":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}},"onPodConditions":{"type":"array","items":{"type":"object","required":["status","type"],"properties":{"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podReplacementPolicy":{"type":"string"},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"suspend":{"type":"boolean"},"template":{"type":"object","properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"affinity":{"type":"object","properties":{"nodeAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["preference","weight"],"properties":{"preference":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}},"podAntiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}}}},"automountServiceAccountToken":{"type":"boolean"},"containers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"dnsConfig":{"type":"object","properties":{"nameservers":{"type":"array","items":{"type":"string"}},"options":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"searches":{"type":"array","items":{"type":"string"}}}},"dnsPolicy":{"type":"string"},"enableServiceLinks":{"type":"boolean"},"ephemeralContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"targetContainerName":{"type":"string"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"hostAliases":{"type":"array","items":{"type":"object","properties":{"hostnames":{"type":"array","items":{"type":"string"}},"ip":{"type":"string"}}}},"hostIPC":{"type":"boolean"},"hostNetwork":{"type":"boolean"},"hostPID":{"type":"boolean"},"hostUsers":{"type":"boolean"},"hostname":{"type":"string"},"imagePullSecrets":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"nodeName":{"type":"string"},"nodeSelector":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"overhead":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"type":"string"},"priority":{"type":"integer","format":"int32"},"priorityClassName":{"type":"string"},"readinessGates":{"type":"array","items":{"type":"object","required":["conditionType"],"properties":{"conditionType":{"type":"string"}}}},"resourceClaims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"source":{"type":"object","properties":{"resourceClaimName":{"type":"string"},"resourceClaimTemplateName":{"type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"restartPolicy":{"type":"string"},"runtimeClassName":{"type":"string"},"schedulerName":{"type":"string"},"schedulingGates":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"type":"object","properties":{"fsGroup":{"type":"integer","format":"int64"},"fsGroupChangePolicy":{"type":"string"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"supplementalGroups":{"type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"serviceAccount":{"type":"string"},"serviceAccountName":{"type":"string"},"setHostnameAsFQDN":{"type":"boolean"},"shareProcessNamespace":{"type":"boolean"},"subdomain":{"type":"string"},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"tolerations":{"type":"array","items":{"type":"object","properties":{"effect":{"type":"string"},"key":{"type":"string"},"operator":{"type":"string"},"tolerationSeconds":{"type":"integer","format":"int64"},"value":{"type":"string"}}}},"topologySpreadConstraints":{"type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"type":"integer","format":"int32"},"minDomains":{"type":"integer","format":"int32"},"nodeAffinityPolicy":{"type":"string"},"nodeTaintsPolicy":{"type":"string"},"topologyKey":{"type":"string"},"whenUnsatisfiable":{"type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"x-kubernetes-preserve-unknown-fields":true}}}}},"ttlSecondsAfterFinished":{"type":"integer","format":"int32"}}}}},"kayenta":{"type":"object","required":["address","application","canaryConfigName","configurationAccountName","metricsAccountName","scopes","storageAccountName","threshold"],"properties":{"address":{"type":"string"},"application":{"type":"string"},"canaryConfigName":{"type":"string"},"configurationAccountName":{"type":"string"},"metricsAccountName":{"type":"string"},"scopes":{"type":"array","items":{"type":"object","required":["controlScope","experimentScope","name"],"properties":{"controlScope":{"type":"object","required":["end","region","scope","start","step"],"properties":{"end":{"type":"string"},"region":{"type":"string"},"scope":{"type":"string"},"start":{"type":"string"},"step":{"type":"integer","format":"int64"}}},"experimentScope":{"type":"object","required":["end","region","scope","start","step"],"properties":{"end":{"type":"string"},"region":{"type":"string"},"scope":{"type":"string"},"start":{"type":"string"},"step":{"type":"integer","format":"int64"}}},"name":{"type":"string"}}}},"storageAccountName":{"type":"string"},"threshold":{"type":"object","required":["marginal","pass"],"properties":{"marginal":{"type":"integer","format":"int64"},"pass":{"type":"integer","format":"int64"}}}}},"newRelic":{"type":"object","required":["query"],"properties":{"profile":{"type":"string"},"query":{"type":"string"}}},"plugin":{"x-kubernetes-preserve-unknown-fields":true},"prometheus":{"type":"object","properties":{"address":{"type":"string"},"authentication":{"type":"object","properties":{"oauth2":{"type":"object","properties":{"clientId":{"type":"string"},"clientSecret":{"type":"string"},"scopes":{"type":"array","items":{"type":"string"}},"tokenUrl":{"type":"string"}}},"sigv4":{"type":"object","properties":{"profile":{"type":"string"},"region":{"type":"string"},"roleArn":{"type":"string"}}}}},"headers":{"type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}},"insecure":{"type":"boolean"},"query":{"type":"string"},"timeout":{"type":"integer","format":"int64"}}},"skywalking":{"type":"object","properties":{"address":{"type":"string"},"interval":{"type":"string"},"query":{"type":"string"}}},"wavefront":{"type":"object","properties":{"address":{"type":"string"},"query":{"type":"string"}}},"web":{"type":"object","required":["url"],"properties":{"authentication":{"type":"object","properties":{"oauth2":{"type":"object","properties":{"clientId":{"type":"string"},"clientSecret":{"type":"string"},"scopes":{"type":"array","items":{"type":"string"}},"tokenUrl":{"type":"string"}}},"sigv4":{"type":"object","properties":{"profile":{"type":"string"},"region":{"type":"string"},"roleArn":{"type":"string"}}}}},"body":{"type":"string"},"headers":{"type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}},"insecure":{"type":"boolean"},"jsonBody":{"x-kubernetes-preserve-unknown-fields":true},"jsonPath":{"type":"string"},"method":{"type":"string"},"timeoutSeconds":{"type":"integer","format":"int64"},"url":{"type":"string"}}}}},"successCondition":{"type":"string"}}}},"terminate":{"type":"boolean"},"ttlStrategy":{"type":"object","properties":{"secondsAfterCompletion":{"type":"integer","format":"int32"},"secondsAfterFailure":{"type":"integer","format":"int32"},"secondsAfterSuccess":{"type":"integer","format":"int32"}}}}},"status":{"type":"object","required":["phase"],"properties":{"completedAt":{"type":"string","format":"date-time"},"dryRunSummary":{"type":"object","properties":{"count":{"type":"integer","format":"int32"},"error":{"type":"integer","format":"int32"},"failed":{"type":"integer","format":"int32"},"inconclusive":{"type":"integer","format":"int32"},"successful":{"type":"integer","format":"int32"}}},"message":{"type":"string"},"metricResults":{"type":"array","items":{"type":"object","required":["name","phase"],"properties":{"consecutiveError":{"type":"integer","format":"int32"},"count":{"type":"integer","format":"int32"},"dryRun":{"type":"boolean"},"error":{"type":"integer","format":"int32"},"failed":{"type":"integer","format":"int32"},"inconclusive":{"type":"integer","format":"int32"},"measurements":{"type":"array","items":{"type":"object","required":["phase"],"properties":{"finishedAt":{"type":"string","format":"date-time"},"message":{"type":"string"},"metadata":{"type":"object","additionalProperties":{"type":"string"}},"phase":{"type":"string"},"resumeAt":{"type":"string","format":"date-time"},"startedAt":{"type":"string","format":"date-time"},"value":{"type":"string"}}}},"message":{"type":"string"},"metadata":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"phase":{"type":"string"},"successful":{"type":"integer","format":"int32"}}}},"phase":{"type":"string"},"runSummary":{"type":"object","properties":{"count":{"type":"integer","format":"int32"},"error":{"type":"integer","format":"int32"},"failed":{"type":"integer","format":"int32"},"inconclusive":{"type":"integer","format":"int32"},"successful":{"type":"integer","format":"int32"}}},"startedAt":{"type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"AnalysisRun","version":"v1alpha1"}]},"io.argoproj.v1alpha1.AnalysisRunList":{"description":"AnalysisRunList is a list of AnalysisRun","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of analysisruns. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisRun"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"AnalysisRunList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.AnalysisTemplate":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"secretKeyRef":{"type":"object","required":["key","name"],"properties":{"key":{"type":"string"},"name":{"type":"string"}}}}}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"metrics":{"type":"array","items":{"type":"object","required":["name","provider"],"properties":{"consecutiveErrorLimit":{"x-kubernetes-int-or-string":true},"count":{"x-kubernetes-int-or-string":true},"failureCondition":{"type":"string"},"failureLimit":{"x-kubernetes-int-or-string":true},"inconclusiveLimit":{"x-kubernetes-int-or-string":true},"initialDelay":{"type":"string"},"interval":{"type":"string"},"name":{"type":"string"},"provider":{"type":"object","properties":{"cloudWatch":{"type":"object","required":["metricDataQueries"],"properties":{"interval":{"type":"string"},"metricDataQueries":{"type":"array","items":{"type":"object","properties":{"expression":{"type":"string"},"id":{"type":"string"},"label":{"type":"string"},"metricStat":{"type":"object","properties":{"metric":{"type":"object","properties":{"dimensions":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"metricName":{"type":"string"},"namespace":{"type":"string"}}},"period":{"x-kubernetes-int-or-string":true},"stat":{"type":"string"},"unit":{"type":"string"}}},"period":{"x-kubernetes-int-or-string":true},"returnData":{"type":"boolean"}}}}}},"datadog":{"type":"object","properties":{"aggregator":{"type":"string","enum":["avg","min","max","sum","last","percentile","mean","l2norm","area"]},"apiVersion":{"type":"string","enum":["v1","v2"]},"formula":{"type":"string"},"interval":{"type":"string"},"queries":{"type":"object","additionalProperties":{"type":"string"}},"query":{"type":"string"}}},"graphite":{"type":"object","properties":{"address":{"type":"string"},"query":{"type":"string"}}},"influxdb":{"type":"object","properties":{"profile":{"type":"string"},"query":{"type":"string"}}},"job":{"type":"object","required":["spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["template"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"backoffLimit":{"type":"integer","format":"int32"},"backoffLimitPerIndex":{"type":"integer","format":"int32"},"completionMode":{"type":"string"},"completions":{"type":"integer","format":"int32"},"manualSelector":{"type":"boolean"},"maxFailedIndexes":{"type":"integer","format":"int32"},"parallelism":{"type":"integer","format":"int32"},"podFailurePolicy":{"type":"object","required":["rules"],"properties":{"rules":{"type":"array","items":{"type":"object","required":["action"],"properties":{"action":{"type":"string"},"onExitCodes":{"type":"object","required":["operator","values"],"properties":{"containerName":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}},"onPodConditions":{"type":"array","items":{"type":"object","required":["status","type"],"properties":{"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podReplacementPolicy":{"type":"string"},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"suspend":{"type":"boolean"},"template":{"type":"object","properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"affinity":{"type":"object","properties":{"nodeAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["preference","weight"],"properties":{"preference":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}},"podAntiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}}}},"automountServiceAccountToken":{"type":"boolean"},"containers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"dnsConfig":{"type":"object","properties":{"nameservers":{"type":"array","items":{"type":"string"}},"options":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"searches":{"type":"array","items":{"type":"string"}}}},"dnsPolicy":{"type":"string"},"enableServiceLinks":{"type":"boolean"},"ephemeralContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"targetContainerName":{"type":"string"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"hostAliases":{"type":"array","items":{"type":"object","properties":{"hostnames":{"type":"array","items":{"type":"string"}},"ip":{"type":"string"}}}},"hostIPC":{"type":"boolean"},"hostNetwork":{"type":"boolean"},"hostPID":{"type":"boolean"},"hostUsers":{"type":"boolean"},"hostname":{"type":"string"},"imagePullSecrets":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"nodeName":{"type":"string"},"nodeSelector":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"overhead":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"type":"string"},"priority":{"type":"integer","format":"int32"},"priorityClassName":{"type":"string"},"readinessGates":{"type":"array","items":{"type":"object","required":["conditionType"],"properties":{"conditionType":{"type":"string"}}}},"resourceClaims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"source":{"type":"object","properties":{"resourceClaimName":{"type":"string"},"resourceClaimTemplateName":{"type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"restartPolicy":{"type":"string"},"runtimeClassName":{"type":"string"},"schedulerName":{"type":"string"},"schedulingGates":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"type":"object","properties":{"fsGroup":{"type":"integer","format":"int64"},"fsGroupChangePolicy":{"type":"string"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"supplementalGroups":{"type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"serviceAccount":{"type":"string"},"serviceAccountName":{"type":"string"},"setHostnameAsFQDN":{"type":"boolean"},"shareProcessNamespace":{"type":"boolean"},"subdomain":{"type":"string"},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"tolerations":{"type":"array","items":{"type":"object","properties":{"effect":{"type":"string"},"key":{"type":"string"},"operator":{"type":"string"},"tolerationSeconds":{"type":"integer","format":"int64"},"value":{"type":"string"}}}},"topologySpreadConstraints":{"type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"type":"integer","format":"int32"},"minDomains":{"type":"integer","format":"int32"},"nodeAffinityPolicy":{"type":"string"},"nodeTaintsPolicy":{"type":"string"},"topologyKey":{"type":"string"},"whenUnsatisfiable":{"type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"x-kubernetes-preserve-unknown-fields":true}}}}},"ttlSecondsAfterFinished":{"type":"integer","format":"int32"}}}}},"kayenta":{"type":"object","required":["address","application","canaryConfigName","configurationAccountName","metricsAccountName","scopes","storageAccountName","threshold"],"properties":{"address":{"type":"string"},"application":{"type":"string"},"canaryConfigName":{"type":"string"},"configurationAccountName":{"type":"string"},"metricsAccountName":{"type":"string"},"scopes":{"type":"array","items":{"type":"object","required":["controlScope","experimentScope","name"],"properties":{"controlScope":{"type":"object","required":["end","region","scope","start","step"],"properties":{"end":{"type":"string"},"region":{"type":"string"},"scope":{"type":"string"},"start":{"type":"string"},"step":{"type":"integer","format":"int64"}}},"experimentScope":{"type":"object","required":["end","region","scope","start","step"],"properties":{"end":{"type":"string"},"region":{"type":"string"},"scope":{"type":"string"},"start":{"type":"string"},"step":{"type":"integer","format":"int64"}}},"name":{"type":"string"}}}},"storageAccountName":{"type":"string"},"threshold":{"type":"object","required":["marginal","pass"],"properties":{"marginal":{"type":"integer","format":"int64"},"pass":{"type":"integer","format":"int64"}}}}},"newRelic":{"type":"object","required":["query"],"properties":{"profile":{"type":"string"},"query":{"type":"string"}}},"plugin":{"x-kubernetes-preserve-unknown-fields":true},"prometheus":{"type":"object","properties":{"address":{"type":"string"},"authentication":{"type":"object","properties":{"oauth2":{"type":"object","properties":{"clientId":{"type":"string"},"clientSecret":{"type":"string"},"scopes":{"type":"array","items":{"type":"string"}},"tokenUrl":{"type":"string"}}},"sigv4":{"type":"object","properties":{"profile":{"type":"string"},"region":{"type":"string"},"roleArn":{"type":"string"}}}}},"headers":{"type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}},"insecure":{"type":"boolean"},"query":{"type":"string"},"timeout":{"type":"integer","format":"int64"}}},"skywalking":{"type":"object","properties":{"address":{"type":"string"},"interval":{"type":"string"},"query":{"type":"string"}}},"wavefront":{"type":"object","properties":{"address":{"type":"string"},"query":{"type":"string"}}},"web":{"type":"object","required":["url"],"properties":{"authentication":{"type":"object","properties":{"oauth2":{"type":"object","properties":{"clientId":{"type":"string"},"clientSecret":{"type":"string"},"scopes":{"type":"array","items":{"type":"string"}},"tokenUrl":{"type":"string"}}},"sigv4":{"type":"object","properties":{"profile":{"type":"string"},"region":{"type":"string"},"roleArn":{"type":"string"}}}}},"body":{"type":"string"},"headers":{"type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}},"insecure":{"type":"boolean"},"jsonBody":{"x-kubernetes-preserve-unknown-fields":true},"jsonPath":{"type":"string"},"method":{"type":"string"},"timeoutSeconds":{"type":"integer","format":"int64"},"url":{"type":"string"}}}}},"successCondition":{"type":"string"}}}},"templates":{"type":"array","items":{"type":"object","properties":{"clusterScope":{"type":"boolean"},"templateName":{"type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"AnalysisTemplate","version":"v1alpha1"}]},"io.argoproj.v1alpha1.AnalysisTemplateList":{"description":"AnalysisTemplateList is a list of AnalysisTemplate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of analysistemplates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.AnalysisTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"AnalysisTemplateList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.AppProject":{"description":"AppProject provides a logical grouping of applications, providing controls for:\n* where the apps may deploy to (cluster whitelist)\n* what may be deployed (repository whitelist, resource whitelist/blacklist)\n* who can access these applications (roles, OIDC group claims bindings)\n* and what they can do (RBAC policies)\n* automation access to these roles (JWT tokens)","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"AppProjectSpec is the specification of an AppProject","type":"object","properties":{"clusterResourceBlacklist":{"description":"ClusterResourceBlacklist contains list of blacklisted cluster level resources","type":"array","items":{"description":"GroupKind specifies a Group and a Kind, but does not force a version.  This is useful for identifying\nconcepts during lookup stages without having partially valid types","type":"object","required":["group","kind"],"properties":{"group":{"type":"string"},"kind":{"type":"string"}}}},"clusterResourceWhitelist":{"description":"ClusterResourceWhitelist contains list of whitelisted cluster level resources","type":"array","items":{"description":"GroupKind specifies a Group and a Kind, but does not force a version.  This is useful for identifying\nconcepts during lookup stages without having partially valid types","type":"object","required":["group","kind"],"properties":{"group":{"type":"string"},"kind":{"type":"string"}}}},"description":{"description":"Description contains optional project description","type":"string"},"destinationServiceAccounts":{"description":"DestinationServiceAccounts holds information about the service accounts to be impersonated for the application sync operation for each destination.","type":"array","items":{"description":"ApplicationDestinationServiceAccount holds information about the service account to be impersonated for the application sync operation.","type":"object","required":["defaultServiceAccount","server"],"properties":{"defaultServiceAccount":{"description":"DefaultServiceAccount to be used for impersonation during the sync operation","type":"string"},"namespace":{"description":"Namespace specifies the target namespace for the application's resources.","type":"string"},"server":{"description":"Server specifies the URL of the target cluster's Kubernetes control plane API.","type":"string"}}}},"destinations":{"description":"Destinations contains list of destinations available for deployment","type":"array","items":{"description":"ApplicationDestination holds information about the application's destination","type":"object","properties":{"name":{"description":"Name is an alternate way of specifying the target cluster by its symbolic name. This must be set if Server is not set.","type":"string"},"namespace":{"description":"Namespace specifies the target namespace for the application's resources.\nThe namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace","type":"string"},"server":{"description":"Server specifies the URL of the target cluster's Kubernetes control plane API. This must be set if Name is not set.","type":"string"}}}},"namespaceResourceBlacklist":{"description":"NamespaceResourceBlacklist contains list of blacklisted namespace level resources","type":"array","items":{"description":"GroupKind specifies a Group and a Kind, but does not force a version.  This is useful for identifying\nconcepts during lookup stages without having partially valid types","type":"object","required":["group","kind"],"properties":{"group":{"type":"string"},"kind":{"type":"string"}}}},"namespaceResourceWhitelist":{"description":"NamespaceResourceWhitelist contains list of whitelisted namespace level resources","type":"array","items":{"description":"GroupKind specifies a Group and a Kind, but does not force a version.  This is useful for identifying\nconcepts during lookup stages without having partially valid types","type":"object","required":["group","kind"],"properties":{"group":{"type":"string"},"kind":{"type":"string"}}}},"orphanedResources":{"description":"OrphanedResources specifies if controller should monitor orphaned resources of apps in this project","type":"object","properties":{"ignore":{"description":"Ignore contains a list of resources that are to be excluded from orphaned resources monitoring","type":"array","items":{"description":"OrphanedResourceKey is a reference to a resource to be ignored from","type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"}}}},"warn":{"description":"Warn indicates if warning condition should be created for apps which have orphaned resources","type":"boolean"}}},"permitOnlyProjectScopedClusters":{"description":"PermitOnlyProjectScopedClusters determines whether destinations can only reference clusters which are project-scoped","type":"boolean"},"roles":{"description":"Roles are user defined RBAC roles associated with this project","type":"array","items":{"description":"ProjectRole represents a role that has access to a project","type":"object","required":["name"],"properties":{"description":{"description":"Description is a description of the role","type":"string"},"groups":{"description":"Groups are a list of OIDC group claims bound to this role","type":"array","items":{"type":"string"}},"jwtTokens":{"description":"JWTTokens are a list of generated JWT tokens bound to this role","type":"array","items":{"description":"JWTToken holds the issuedAt and expiresAt values of a token","type":"object","required":["iat"],"properties":{"exp":{"type":"integer","format":"int64"},"iat":{"type":"integer","format":"int64"},"id":{"type":"string"}}}},"name":{"description":"Name is a name for this role","type":"string"},"policies":{"description":"Policies Stores a list of casbin formatted strings that define access policies for the role in the project","type":"array","items":{"type":"string"}}}}},"signatureKeys":{"description":"SignatureKeys contains a list of PGP key IDs that commits in Git must be signed with in order to be allowed for sync","type":"array","items":{"description":"SignatureKey is the specification of a key required to verify commit signatures with","type":"object","required":["keyID"],"properties":{"keyID":{"description":"The ID of the key in hexadecimal notation","type":"string"}}}},"sourceNamespaces":{"description":"SourceNamespaces defines the namespaces application resources are allowed to be created in","type":"array","items":{"type":"string"}},"sourceRepos":{"description":"SourceRepos contains list of repository URLs which can be used for deployment","type":"array","items":{"type":"string"}},"syncWindows":{"description":"SyncWindows controls when syncs can be run for apps in this project","type":"array","items":{"description":"SyncWindow contains the kind, time, duration and attributes that are used to assign the syncWindows to apps","type":"object","properties":{"applications":{"description":"Applications contains a list of applications that the window will apply to","type":"array","items":{"type":"string"}},"clusters":{"description":"Clusters contains a list of clusters that the window will apply to","type":"array","items":{"type":"string"}},"duration":{"description":"Duration is the amount of time the sync window will be open","type":"string"},"kind":{"description":"Kind defines if the window allows or blocks syncs","type":"string"},"manualSync":{"description":"ManualSync enables manual syncs when they would otherwise be blocked","type":"boolean"},"namespaces":{"description":"Namespaces contains a list of namespaces that the window will apply to","type":"array","items":{"type":"string"}},"schedule":{"description":"Schedule is the time the window will begin, specified in cron format","type":"string"},"timeZone":{"description":"TimeZone of the sync that will be applied to the schedule","type":"string"}}}}}},"status":{"description":"AppProjectStatus contains status information for AppProject CRs","type":"object","properties":{"jwtTokensByRole":{"description":"JWTTokensByRole contains a list of JWT tokens issued for a given role","type":"object","additionalProperties":{"description":"JWTTokens represents a list of JWT tokens","type":"object","properties":{"items":{"type":"array","items":{"description":"JWTToken holds the issuedAt and expiresAt values of a token","type":"object","required":["iat"],"properties":{"exp":{"type":"integer","format":"int64"},"iat":{"type":"integer","format":"int64"},"id":{"type":"string"}}}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"AppProject","version":"v1alpha1"}]},"io.argoproj.v1alpha1.AppProjectList":{"description":"AppProjectList is a list of AppProject","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of appprojects. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.AppProject"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"AppProjectList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.Application":{"description":"Application is a definition of Application resource.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"operation":{"description":"Operation contains information about a requested or running operation","type":"object","properties":{"info":{"description":"Info is a list of informational items for this operation","type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"initiatedBy":{"description":"InitiatedBy contains information about who initiated the operations","type":"object","properties":{"automated":{"description":"Automated is set to true if operation was initiated automatically by the application controller.","type":"boolean"},"username":{"description":"Username contains the name of a user who started operation","type":"string"}}},"retry":{"description":"Retry controls the strategy to apply if a sync fails","type":"object","properties":{"backoff":{"description":"Backoff controls how to backoff on subsequent retries of failed syncs","type":"object","properties":{"duration":{"description":"Duration is the amount to back off. Default unit is seconds, but could also be a duration (e.g. \"2m\", \"1h\")","type":"string"},"factor":{"description":"Factor is a factor to multiply the base duration after each failed retry","type":"integer","format":"int64"},"maxDuration":{"description":"MaxDuration is the maximum amount of time allowed for the backoff strategy","type":"string"}}},"limit":{"description":"Limit is the maximum number of attempts for retrying a failed sync. If set to 0, no retries will be performed.","type":"integer","format":"int64"}}},"sync":{"description":"Sync contains parameters for the operation","type":"object","properties":{"autoHealAttemptsCount":{"description":"SelfHealAttemptsCount contains the number of auto-heal attempts","type":"integer","format":"int64"},"dryRun":{"description":"DryRun specifies to perform a `kubectl apply --dry-run` without actually performing the sync","type":"boolean"},"manifests":{"description":"Manifests is an optional field that overrides sync source with a local directory for development","type":"array","items":{"type":"string"}},"prune":{"description":"Prune specifies to delete resources from the cluster that are no longer tracked in git","type":"boolean"},"resources":{"description":"Resources describes which resources shall be part of the sync","type":"array","items":{"description":"SyncOperationResource contains resources to sync.","type":"object","required":["kind","name"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}}},"revision":{"description":"Revision is the revision (Git) or chart version (Helm) which to sync the application to\nIf omitted, will use the revision specified in app spec.","type":"string"},"revisions":{"description":"Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to\nIf omitted, will use the revision specified in app spec.","type":"array","items":{"type":"string"}},"source":{"description":"Source overrides the source definition set in the application.\nThis is typically set in a Rollback operation and is nil during a Sync operation","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}},"sources":{"description":"Sources overrides the source definition set in the application.\nThis is typically set in a Rollback operation and is nil during a Sync operation","type":"array","items":{"description":"ApplicationSource contains all required information about the source of an application","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}}},"syncOptions":{"description":"SyncOptions provide per-sync sync-options, e.g. Validate=false","type":"array","items":{"type":"string"}},"syncStrategy":{"description":"SyncStrategy describes how to perform the sync","type":"object","properties":{"apply":{"description":"Apply will perform a `kubectl apply` to perform the sync.","type":"object","properties":{"force":{"description":"Force indicates whether or not to supply the --force flag to `kubectl apply`.\nThe --force flag deletes and re-create the resource, when PATCH encounters conflict and has\nretried for 5 times.","type":"boolean"}}},"hook":{"description":"Hook will submit any referenced resources to perform the sync. This is the default strategy","type":"object","properties":{"force":{"description":"Force indicates whether or not to supply the --force flag to `kubectl apply`.\nThe --force flag deletes and re-create the resource, when PATCH encounters conflict and has\nretried for 5 times.","type":"boolean"}}}}}}}}},"spec":{"description":"ApplicationSpec represents desired application state. Contains link to repository with application definition and additional parameters link definition revision.","type":"object","required":["destination","project"],"properties":{"destination":{"description":"Destination is a reference to the target Kubernetes server and namespace","type":"object","properties":{"name":{"description":"Name is an alternate way of specifying the target cluster by its symbolic name. This must be set if Server is not set.","type":"string"},"namespace":{"description":"Namespace specifies the target namespace for the application's resources.\nThe namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace","type":"string"},"server":{"description":"Server specifies the URL of the target cluster's Kubernetes control plane API. This must be set if Name is not set.","type":"string"}}},"ignoreDifferences":{"description":"IgnoreDifferences is a list of resources and their fields which should be ignored during comparison","type":"array","items":{"description":"ResourceIgnoreDifferences contains resource filter and list of json paths which should be ignored during comparison with live state.","type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"description":"ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the\ndesired state defined in the SCM and won't be displayed in diffs","type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"description":"Info contains a list of information (URLs, email addresses, and plain text) that relates to the application","type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"description":"Project is a reference to the project this application belongs to.\nThe empty string means that application belongs to the 'default' project.","type":"string"},"revisionHistoryLimit":{"description":"RevisionHistoryLimit limits the number of items kept in the application's revision history, which is used for informational purposes as well as for rollbacks to previous versions.\nThis should only be changed in exceptional circumstances.\nSetting to zero will store no history. This will reduce storage used.\nIncreasing will increase the space used to store the history, so we do not recommend increasing it.\nDefault is 10.","type":"integer","format":"int64"},"source":{"description":"Source is a reference to the location of the application's manifests or chart","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}},"sources":{"description":"Sources is a reference to the location of the application's manifests or chart","type":"array","items":{"description":"ApplicationSource contains all required information about the source of an application","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}}},"syncPolicy":{"description":"SyncPolicy controls when and how a sync will be performed","type":"object","properties":{"automated":{"description":"Automated will keep an application synced to the target revision","type":"object","properties":{"allowEmpty":{"description":"AllowEmpty allows apps have zero live resources (default: false)","type":"boolean"},"prune":{"description":"Prune specifies whether to delete resources from the cluster that are not found in the sources anymore as part of automated sync (default: false)","type":"boolean"},"selfHeal":{"description":"SelfHeal specifies whether to revert resources back to their desired state upon modification in the cluster (default: false)","type":"boolean"}}},"managedNamespaceMetadata":{"description":"ManagedNamespaceMetadata controls metadata in the given namespace (if CreateNamespace=true)","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"description":"Retry controls failed sync retry behavior","type":"object","properties":{"backoff":{"description":"Backoff controls how to backoff on subsequent retries of failed syncs","type":"object","properties":{"duration":{"description":"Duration is the amount to back off. Default unit is seconds, but could also be a duration (e.g. \"2m\", \"1h\")","type":"string"},"factor":{"description":"Factor is a factor to multiply the base duration after each failed retry","type":"integer","format":"int64"},"maxDuration":{"description":"MaxDuration is the maximum amount of time allowed for the backoff strategy","type":"string"}}},"limit":{"description":"Limit is the maximum number of attempts for retrying a failed sync. If set to 0, no retries will be performed.","type":"integer","format":"int64"}}},"syncOptions":{"description":"Options allow you to specify whole app sync-options","type":"array","items":{"type":"string"}}}}}},"status":{"description":"ApplicationStatus contains status information for the application","type":"object","properties":{"conditions":{"description":"Conditions is a list of currently observed application conditions","type":"array","items":{"description":"ApplicationCondition contains details about an application condition, which is usually an error or warning","type":"object","required":["message","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the time the condition was last observed","type":"string","format":"date-time"},"message":{"description":"Message contains human-readable message indicating details about condition","type":"string"},"type":{"description":"Type is an application condition type","type":"string"}}}},"controllerNamespace":{"description":"ControllerNamespace indicates the namespace in which the application controller is located","type":"string"},"health":{"description":"Health contains information about the application's current health status","type":"object","properties":{"message":{"description":"Message is a human-readable informational message describing the health status","type":"string"},"status":{"description":"Status holds the status code of the application or resource","type":"string"}}},"history":{"description":"History contains information about the application's sync history","type":"array","items":{"description":"RevisionHistory contains history information about a previous sync","type":"object","required":["deployedAt","id"],"properties":{"deployStartedAt":{"description":"DeployStartedAt holds the time the sync operation started","type":"string","format":"date-time"},"deployedAt":{"description":"DeployedAt holds the time the sync operation completed","type":"string","format":"date-time"},"id":{"description":"ID is an auto incrementing identifier of the RevisionHistory","type":"integer","format":"int64"},"initiatedBy":{"description":"InitiatedBy contains information about who initiated the operations","type":"object","properties":{"automated":{"description":"Automated is set to true if operation was initiated automatically by the application controller.","type":"boolean"},"username":{"description":"Username contains the name of a user who started operation","type":"string"}}},"revision":{"description":"Revision holds the revision the sync was performed against","type":"string"},"revisions":{"description":"Revisions holds the revision of each source in sources field the sync was performed against","type":"array","items":{"type":"string"}},"source":{"description":"Source is a reference to the application source used for the sync operation","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}},"sources":{"description":"Sources is a reference to the application sources used for the sync operation","type":"array","items":{"description":"ApplicationSource contains all required information about the source of an application","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}}}}}},"observedAt":{"description":"ObservedAt indicates when the application state was updated without querying latest git state\nDeprecated: controller no longer updates ObservedAt field","type":"string","format":"date-time"},"operationState":{"description":"OperationState contains information about any ongoing operations, such as a sync","type":"object","required":["operation","phase","startedAt"],"properties":{"finishedAt":{"description":"FinishedAt contains time of operation completion","type":"string","format":"date-time"},"message":{"description":"Message holds any pertinent messages when attempting to perform operation (typically errors).","type":"string"},"operation":{"description":"Operation is the original requested operation","type":"object","properties":{"info":{"description":"Info is a list of informational items for this operation","type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"initiatedBy":{"description":"InitiatedBy contains information about who initiated the operations","type":"object","properties":{"automated":{"description":"Automated is set to true if operation was initiated automatically by the application controller.","type":"boolean"},"username":{"description":"Username contains the name of a user who started operation","type":"string"}}},"retry":{"description":"Retry controls the strategy to apply if a sync fails","type":"object","properties":{"backoff":{"description":"Backoff controls how to backoff on subsequent retries of failed syncs","type":"object","properties":{"duration":{"description":"Duration is the amount to back off. Default unit is seconds, but could also be a duration (e.g. \"2m\", \"1h\")","type":"string"},"factor":{"description":"Factor is a factor to multiply the base duration after each failed retry","type":"integer","format":"int64"},"maxDuration":{"description":"MaxDuration is the maximum amount of time allowed for the backoff strategy","type":"string"}}},"limit":{"description":"Limit is the maximum number of attempts for retrying a failed sync. If set to 0, no retries will be performed.","type":"integer","format":"int64"}}},"sync":{"description":"Sync contains parameters for the operation","type":"object","properties":{"autoHealAttemptsCount":{"description":"SelfHealAttemptsCount contains the number of auto-heal attempts","type":"integer","format":"int64"},"dryRun":{"description":"DryRun specifies to perform a `kubectl apply --dry-run` without actually performing the sync","type":"boolean"},"manifests":{"description":"Manifests is an optional field that overrides sync source with a local directory for development","type":"array","items":{"type":"string"}},"prune":{"description":"Prune specifies to delete resources from the cluster that are no longer tracked in git","type":"boolean"},"resources":{"description":"Resources describes which resources shall be part of the sync","type":"array","items":{"description":"SyncOperationResource contains resources to sync.","type":"object","required":["kind","name"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}}},"revision":{"description":"Revision is the revision (Git) or chart version (Helm) which to sync the application to\nIf omitted, will use the revision specified in app spec.","type":"string"},"revisions":{"description":"Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to\nIf omitted, will use the revision specified in app spec.","type":"array","items":{"type":"string"}},"source":{"description":"Source overrides the source definition set in the application.\nThis is typically set in a Rollback operation and is nil during a Sync operation","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}},"sources":{"description":"Sources overrides the source definition set in the application.\nThis is typically set in a Rollback operation and is nil during a Sync operation","type":"array","items":{"description":"ApplicationSource contains all required information about the source of an application","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}}},"syncOptions":{"description":"SyncOptions provide per-sync sync-options, e.g. Validate=false","type":"array","items":{"type":"string"}},"syncStrategy":{"description":"SyncStrategy describes how to perform the sync","type":"object","properties":{"apply":{"description":"Apply will perform a `kubectl apply` to perform the sync.","type":"object","properties":{"force":{"description":"Force indicates whether or not to supply the --force flag to `kubectl apply`.\nThe --force flag deletes and re-create the resource, when PATCH encounters conflict and has\nretried for 5 times.","type":"boolean"}}},"hook":{"description":"Hook will submit any referenced resources to perform the sync. This is the default strategy","type":"object","properties":{"force":{"description":"Force indicates whether or not to supply the --force flag to `kubectl apply`.\nThe --force flag deletes and re-create the resource, when PATCH encounters conflict and has\nretried for 5 times.","type":"boolean"}}}}}}}}},"phase":{"description":"Phase is the current phase of the operation","type":"string"},"retryCount":{"description":"RetryCount contains time of operation retries","type":"integer","format":"int64"},"startedAt":{"description":"StartedAt contains time of operation start","type":"string","format":"date-time"},"syncResult":{"description":"SyncResult is the result of a Sync operation","type":"object","required":["revision"],"properties":{"managedNamespaceMetadata":{"description":"ManagedNamespaceMetadata contains the current sync state of managed namespace metadata","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"resources":{"description":"Resources contains a list of sync result items for each individual resource in a sync operation","type":"array","items":{"description":"ResourceResult holds the operation result details of a specific resource","type":"object","required":["group","kind","name","namespace","version"],"properties":{"group":{"description":"Group specifies the API group of the resource","type":"string"},"hookPhase":{"description":"HookPhase contains the state of any operation associated with this resource OR hook\nThis can also contain values for non-hook resources.","type":"string"},"hookType":{"description":"HookType specifies the type of the hook. Empty for non-hook resources","type":"string"},"kind":{"description":"Kind specifies the API kind of the resource","type":"string"},"message":{"description":"Message contains an informational or error message for the last sync OR operation","type":"string"},"name":{"description":"Name specifies the name of the resource","type":"string"},"namespace":{"description":"Namespace specifies the target namespace of the resource","type":"string"},"status":{"description":"Status holds the final result of the sync. Will be empty if the resources is yet to be applied/pruned and is always zero-value for hooks","type":"string"},"syncPhase":{"description":"SyncPhase indicates the particular phase of the sync that this result was acquired in","type":"string"},"version":{"description":"Version specifies the API version of the resource","type":"string"}}}},"revision":{"description":"Revision holds the revision this sync operation was performed to","type":"string"},"revisions":{"description":"Revisions holds the revision this sync operation was performed for respective indexed source in sources field","type":"array","items":{"type":"string"}},"source":{"description":"Source records the application source information of the sync, used for comparing auto-sync","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}},"sources":{"description":"Source records the application source information of the sync, used for comparing auto-sync","type":"array","items":{"description":"ApplicationSource contains all required information about the source of an application","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}}}}}}},"reconciledAt":{"description":"ReconciledAt indicates when the application state was reconciled using the latest git version","type":"string","format":"date-time"},"resourceHealthSource":{"description":"ResourceHealthSource indicates where the resource health status is stored: inline if not set or appTree","type":"string"},"resources":{"description":"Resources is a list of Kubernetes resources managed by this application","type":"array","items":{"description":"ResourceStatus holds the current sync and health status of a resource\nTODO: describe members of this type","type":"object","properties":{"group":{"type":"string"},"health":{"description":"HealthStatus contains information about the currently observed health state of an application or resource","type":"object","properties":{"message":{"description":"Message is a human-readable informational message describing the health status","type":"string"},"status":{"description":"Status holds the status code of the application or resource","type":"string"}}},"hook":{"type":"boolean"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"requiresPruning":{"type":"boolean"},"status":{"description":"SyncStatusCode is a type which represents possible comparison results","type":"string"},"syncWave":{"type":"integer","format":"int64"},"version":{"type":"string"}}}},"sourceType":{"description":"SourceType specifies the type of this application","type":"string"},"sourceTypes":{"description":"SourceTypes specifies the type of the sources included in the application","type":"array","items":{"description":"ApplicationSourceType specifies the type of the application's source","type":"string"}},"summary":{"description":"Summary contains a list of URLs and container images used by this application","type":"object","properties":{"externalURLs":{"description":"ExternalURLs holds all external URLs of application child resources.","type":"array","items":{"type":"string"}},"images":{"description":"Images holds all images of application child resources.","type":"array","items":{"type":"string"}}}},"sync":{"description":"Sync contains information about the application's current sync status","type":"object","required":["status"],"properties":{"comparedTo":{"description":"ComparedTo contains information about what has been compared","type":"object","required":["destination"],"properties":{"destination":{"description":"Destination is a reference to the application's destination used for comparison","type":"object","properties":{"name":{"description":"Name is an alternate way of specifying the target cluster by its symbolic name. This must be set if Server is not set.","type":"string"},"namespace":{"description":"Namespace specifies the target namespace for the application's resources.\nThe namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace","type":"string"},"server":{"description":"Server specifies the URL of the target cluster's Kubernetes control plane API. This must be set if Name is not set.","type":"string"}}},"ignoreDifferences":{"description":"IgnoreDifferences is a reference to the application's ignored differences used for comparison","type":"array","items":{"description":"ResourceIgnoreDifferences contains resource filter and list of json paths which should be ignored during comparison with live state.","type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"description":"ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the\ndesired state defined in the SCM and won't be displayed in diffs","type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"source":{"description":"Source is a reference to the application's source used for comparison","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}},"sources":{"description":"Sources is a reference to the application's multiple sources used for comparison","type":"array","items":{"description":"ApplicationSource contains all required information about the source of an application","type":"object","required":["repoURL"],"properties":{"chart":{"description":"Chart is a Helm chart name, and must be specified for applications sourced from a Helm repo.","type":"string"},"directory":{"description":"Directory holds path/directory specific options","type":"object","properties":{"exclude":{"description":"Exclude contains a glob pattern to match paths against that should be explicitly excluded from being used during manifest generation","type":"string"},"include":{"description":"Include contains a glob pattern to match paths against that should be explicitly included during manifest generation","type":"string"},"jsonnet":{"description":"Jsonnet holds options specific to Jsonnet","type":"object","properties":{"extVars":{"description":"ExtVars is a list of Jsonnet External Variables","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"description":"Additional library search dirs","type":"array","items":{"type":"string"}},"tlas":{"description":"TLAS is a list of Jsonnet Top-level Arguments","type":"array","items":{"description":"JsonnetVar represents a variable to be passed to jsonnet during manifest generation","type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"description":"Recurse specifies whether to scan a directory recursively for manifests","type":"boolean"}}},"helm":{"description":"Helm holds helm specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"fileParameters":{"description":"FileParameters are file parameters to the helm template","type":"array","items":{"description":"HelmFileParameter is a file parameter that's passed to helm template during manifest generation","type":"object","properties":{"name":{"description":"Name is the name of the Helm parameter","type":"string"},"path":{"description":"Path is the path to the file containing the values for the Helm parameter","type":"string"}}}},"ignoreMissingValueFiles":{"description":"IgnoreMissingValueFiles prevents helm template from failing when valueFiles do not exist locally by not appending them to helm template --values","type":"boolean"},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"namespace":{"description":"Namespace is an optional namespace to template with. If left empty, defaults to the app's destination namespace.","type":"string"},"parameters":{"description":"Parameters is a list of Helm parameters which are passed to the helm template command upon manifest generation","type":"array","items":{"description":"HelmParameter is a parameter that's passed to helm template during manifest generation","type":"object","properties":{"forceString":{"description":"ForceString determines whether to tell Helm to interpret booleans and numbers as strings","type":"boolean"},"name":{"description":"Name is the name of the Helm parameter","type":"string"},"value":{"description":"Value is the value for the Helm parameter","type":"string"}}}},"passCredentials":{"description":"PassCredentials pass credentials to all domains (Helm's --pass-credentials)","type":"boolean"},"releaseName":{"description":"ReleaseName is the Helm release name to use. If omitted it will use the application name","type":"string"},"skipCrds":{"description":"SkipCrds skips custom resource definition installation step (Helm's --skip-crds)","type":"boolean"},"valueFiles":{"description":"ValuesFiles is a list of Helm value files to use when generating a template","type":"array","items":{"type":"string"}},"values":{"description":"Values specifies Helm values to be passed to helm template, typically defined as a block. ValuesObject takes precedence over Values, so use one or the other.","type":"string"},"valuesObject":{"description":"ValuesObject specifies Helm values to be passed to helm template, defined as a map. This takes precedence over Values.","x-kubernetes-preserve-unknown-fields":true},"version":{"description":"Version is the Helm version to use for templating (\"3\")","type":"string"}}},"kustomize":{"description":"Kustomize holds kustomize specific options","type":"object","properties":{"apiVersions":{"description":"APIVersions specifies the Kubernetes resource API versions to pass to Helm when templating manifests. By default,\nArgo CD uses the API versions of the target cluster. The format is [group/]version/kind.","type":"array","items":{"type":"string"}},"commonAnnotations":{"description":"CommonAnnotations is a list of additional annotations to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"description":"CommonAnnotationsEnvsubst specifies whether to apply env variables substitution for annotation values","type":"boolean"},"commonLabels":{"description":"CommonLabels is a list of additional labels to add to rendered manifests","type":"object","additionalProperties":{"type":"string"}},"components":{"description":"Components specifies a list of kustomize components to add to the kustomization before building","type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"description":"ForceCommonAnnotations specifies whether to force applying common annotations to resources for Kustomize apps","type":"boolean"},"forceCommonLabels":{"description":"ForceCommonLabels specifies whether to force applying common labels to resources for Kustomize apps","type":"boolean"},"images":{"description":"Images is a list of Kustomize image override specifications","type":"array","items":{"description":"KustomizeImage represents a Kustomize image definition in the format [old_image_name=]<image_name>:<image_tag>","type":"string"}},"kubeVersion":{"description":"KubeVersion specifies the Kubernetes API version to pass to Helm when templating manifests. By default, Argo CD\nuses the Kubernetes version of the target cluster.","type":"string"},"labelWithoutSelector":{"description":"LabelWithoutSelector specifies whether to apply common labels to resource selectors or not","type":"boolean"},"namePrefix":{"description":"NamePrefix is a prefix appended to resources for Kustomize apps","type":"string"},"nameSuffix":{"description":"NameSuffix is a suffix appended to resources for Kustomize apps","type":"string"},"namespace":{"description":"Namespace sets the namespace that Kustomize adds to all resources","type":"string"},"patches":{"description":"Patches is a list of Kustomize patches","type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"description":"Replicas is a list of Kustomize Replicas override specifications","type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"Number of replicas","x-kubernetes-int-or-string":true},"name":{"description":"Name of Deployment or StatefulSet","type":"string"}}}},"version":{"description":"Version controls which version of Kustomize to use for rendering manifests","type":"string"}}},"path":{"description":"Path is a directory path within the Git repository, and is only valid for applications sourced from Git.","type":"string"},"plugin":{"description":"Plugin holds config management plugin specific options","type":"object","properties":{"env":{"description":"Env is a list of environment variable entries","type":"array","items":{"description":"EnvEntry represents an entry in the application's environment","type":"object","required":["name","value"],"properties":{"name":{"description":"Name is the name of the variable, usually expressed in uppercase","type":"string"},"value":{"description":"Value is the value of the variable","type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"description":"Array is the value of an array type parameter.","type":"array","items":{"type":"string"}},"map":{"description":"Map is the value of a map type parameter.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name identifying a parameter.","type":"string"},"string":{"description":"String_ is the value of a string type parameter.","type":"string"}}}}}},"ref":{"description":"Ref is reference to another source within sources field. This field will not be used if used with a `source` tag.","type":"string"},"repoURL":{"description":"RepoURL is the URL to the repository (Git or Helm) that contains the application manifests","type":"string"},"targetRevision":{"description":"TargetRevision defines the revision of the source to sync the application to.\nIn case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD.\nIn case of Helm, this is a semver tag for the Chart's version.","type":"string"}}}}}},"revision":{"description":"Revision contains information about the revision the comparison has been performed to","type":"string"},"revisions":{"description":"Revisions contains information about the revisions of multiple sources the comparison has been performed to","type":"array","items":{"type":"string"}},"status":{"description":"Status is the sync state of the comparison","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"Application","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ApplicationList":{"description":"ApplicationList is a list of Application","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of applications. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.Application"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ApplicationList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ApplicationSet":{"type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["generators","template"],"properties":{"applyNestedSelectors":{"type":"boolean"},"generators":{"type":"array","items":{"type":"object","properties":{"clusterDecisionResource":{"type":"object","required":["configMapRef"],"properties":{"configMapRef":{"type":"string"},"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"type":"string"},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"clusters":{"type":"object","properties":{"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"git":{"type":"object","required":["repoURL","revision"],"properties":{"directories":{"type":"array","items":{"type":"object","required":["path"],"properties":{"exclude":{"type":"boolean"},"path":{"type":"string"}}}},"files":{"type":"array","items":{"type":"object","required":["path"],"properties":{"path":{"type":"string"}}}},"pathParamPrefix":{"type":"string"},"repoURL":{"type":"string"},"requeueAfterSeconds":{"type":"integer","format":"int64"},"revision":{"type":"string"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"list":{"type":"object","properties":{"elements":{"type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"elementsYaml":{"type":"string"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"matrix":{"type":"object","required":["generators"],"properties":{"generators":{"type":"array","items":{"type":"object","properties":{"clusterDecisionResource":{"type":"object","required":["configMapRef"],"properties":{"configMapRef":{"type":"string"},"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"type":"string"},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"clusters":{"type":"object","properties":{"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"git":{"type":"object","required":["repoURL","revision"],"properties":{"directories":{"type":"array","items":{"type":"object","required":["path"],"properties":{"exclude":{"type":"boolean"},"path":{"type":"string"}}}},"files":{"type":"array","items":{"type":"object","required":["path"],"properties":{"path":{"type":"string"}}}},"pathParamPrefix":{"type":"string"},"repoURL":{"type":"string"},"requeueAfterSeconds":{"type":"integer","format":"int64"},"revision":{"type":"string"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"list":{"type":"object","properties":{"elements":{"type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"elementsYaml":{"type":"string"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"matrix":{"x-kubernetes-preserve-unknown-fields":true},"merge":{"x-kubernetes-preserve-unknown-fields":true},"plugin":{"type":"object","required":["configMapRef"],"properties":{"configMapRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"input":{"type":"object","properties":{"parameters":{"type":"object","additionalProperties":{"x-kubernetes-preserve-unknown-fields":true}}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"pullRequest":{"type":"object","properties":{"azuredevops":{"type":"object","required":["organization","project","repo"],"properties":{"api":{"type":"string"},"labels":{"type":"array","items":{"type":"string"}},"organization":{"type":"string"},"project":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"bitbucket":{"type":"object","required":["owner","repo"],"properties":{"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"owner":{"type":"string"},"repo":{"type":"string"}}},"bitbucketServer":{"type":"object","required":["api","project","repo"],"properties":{"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"project":{"type":"string"},"repo":{"type":"string"}}},"filters":{"type":"array","items":{"type":"object","properties":{"branchMatch":{"type":"string"},"targetBranchMatch":{"type":"string"}}}},"gitea":{"type":"object","required":["api","owner","repo"],"properties":{"api":{"type":"string"},"insecure":{"type":"boolean"},"owner":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"github":{"type":"object","required":["owner","repo"],"properties":{"api":{"type":"string"},"appSecretName":{"type":"string"},"labels":{"type":"array","items":{"type":"string"}},"owner":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"gitlab":{"type":"object","required":["project"],"properties":{"api":{"type":"string"},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"labels":{"type":"array","items":{"type":"string"}},"project":{"type":"string"},"pullRequestState":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"scmProvider":{"type":"object","properties":{"awsCodeCommit":{"type":"object","properties":{"allBranches":{"type":"boolean"},"region":{"type":"string"},"role":{"type":"string"},"tagFilters":{"type":"array","items":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}}}},"azureDevOps":{"type":"object","required":["accessTokenRef","organization","teamProject"],"properties":{"accessTokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"allBranches":{"type":"boolean"},"api":{"type":"string"},"organization":{"type":"string"},"teamProject":{"type":"string"}}},"bitbucket":{"type":"object","required":["appPasswordRef","owner","user"],"properties":{"allBranches":{"type":"boolean"},"appPasswordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"owner":{"type":"string"},"user":{"type":"string"}}},"bitbucketServer":{"type":"object","required":["api","project"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"project":{"type":"string"}}},"cloneProtocol":{"type":"string"},"filters":{"type":"array","items":{"type":"object","properties":{"branchMatch":{"type":"string"},"labelMatch":{"type":"string"},"pathsDoNotExist":{"type":"array","items":{"type":"string"}},"pathsExist":{"type":"array","items":{"type":"string"}},"repositoryMatch":{"type":"string"}}}},"gitea":{"type":"object","required":["api","owner"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"insecure":{"type":"boolean"},"owner":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"github":{"type":"object","required":["organization"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"appSecretName":{"type":"string"},"organization":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"gitlab":{"type":"object","required":["group"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"group":{"type":"string"},"includeSharedProjects":{"type":"boolean"},"includeSubgroups":{"type":"boolean"},"insecure":{"type":"boolean"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"topic":{"type":"string"}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"merge":{"type":"object","required":["generators","mergeKeys"],"properties":{"generators":{"type":"array","items":{"type":"object","properties":{"clusterDecisionResource":{"type":"object","required":["configMapRef"],"properties":{"configMapRef":{"type":"string"},"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"type":"string"},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"clusters":{"type":"object","properties":{"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"git":{"type":"object","required":["repoURL","revision"],"properties":{"directories":{"type":"array","items":{"type":"object","required":["path"],"properties":{"exclude":{"type":"boolean"},"path":{"type":"string"}}}},"files":{"type":"array","items":{"type":"object","required":["path"],"properties":{"path":{"type":"string"}}}},"pathParamPrefix":{"type":"string"},"repoURL":{"type":"string"},"requeueAfterSeconds":{"type":"integer","format":"int64"},"revision":{"type":"string"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"list":{"type":"object","properties":{"elements":{"type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"elementsYaml":{"type":"string"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"matrix":{"x-kubernetes-preserve-unknown-fields":true},"merge":{"x-kubernetes-preserve-unknown-fields":true},"plugin":{"type":"object","required":["configMapRef"],"properties":{"configMapRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"input":{"type":"object","properties":{"parameters":{"type":"object","additionalProperties":{"x-kubernetes-preserve-unknown-fields":true}}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"pullRequest":{"type":"object","properties":{"azuredevops":{"type":"object","required":["organization","project","repo"],"properties":{"api":{"type":"string"},"labels":{"type":"array","items":{"type":"string"}},"organization":{"type":"string"},"project":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"bitbucket":{"type":"object","required":["owner","repo"],"properties":{"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"owner":{"type":"string"},"repo":{"type":"string"}}},"bitbucketServer":{"type":"object","required":["api","project","repo"],"properties":{"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"project":{"type":"string"},"repo":{"type":"string"}}},"filters":{"type":"array","items":{"type":"object","properties":{"branchMatch":{"type":"string"},"targetBranchMatch":{"type":"string"}}}},"gitea":{"type":"object","required":["api","owner","repo"],"properties":{"api":{"type":"string"},"insecure":{"type":"boolean"},"owner":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"github":{"type":"object","required":["owner","repo"],"properties":{"api":{"type":"string"},"appSecretName":{"type":"string"},"labels":{"type":"array","items":{"type":"string"}},"owner":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"gitlab":{"type":"object","required":["project"],"properties":{"api":{"type":"string"},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"labels":{"type":"array","items":{"type":"string"}},"project":{"type":"string"},"pullRequestState":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"scmProvider":{"type":"object","properties":{"awsCodeCommit":{"type":"object","properties":{"allBranches":{"type":"boolean"},"region":{"type":"string"},"role":{"type":"string"},"tagFilters":{"type":"array","items":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}}}},"azureDevOps":{"type":"object","required":["accessTokenRef","organization","teamProject"],"properties":{"accessTokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"allBranches":{"type":"boolean"},"api":{"type":"string"},"organization":{"type":"string"},"teamProject":{"type":"string"}}},"bitbucket":{"type":"object","required":["appPasswordRef","owner","user"],"properties":{"allBranches":{"type":"boolean"},"appPasswordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"owner":{"type":"string"},"user":{"type":"string"}}},"bitbucketServer":{"type":"object","required":["api","project"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"project":{"type":"string"}}},"cloneProtocol":{"type":"string"},"filters":{"type":"array","items":{"type":"object","properties":{"branchMatch":{"type":"string"},"labelMatch":{"type":"string"},"pathsDoNotExist":{"type":"array","items":{"type":"string"}},"pathsExist":{"type":"array","items":{"type":"string"}},"repositoryMatch":{"type":"string"}}}},"gitea":{"type":"object","required":["api","owner"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"insecure":{"type":"boolean"},"owner":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"github":{"type":"object","required":["organization"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"appSecretName":{"type":"string"},"organization":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"gitlab":{"type":"object","required":["group"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"group":{"type":"string"},"includeSharedProjects":{"type":"boolean"},"includeSubgroups":{"type":"boolean"},"insecure":{"type":"boolean"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"topic":{"type":"string"}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}},"mergeKeys":{"type":"array","items":{"type":"string"}},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"plugin":{"type":"object","required":["configMapRef"],"properties":{"configMapRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"input":{"type":"object","properties":{"parameters":{"type":"object","additionalProperties":{"x-kubernetes-preserve-unknown-fields":true}}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"pullRequest":{"type":"object","properties":{"azuredevops":{"type":"object","required":["organization","project","repo"],"properties":{"api":{"type":"string"},"labels":{"type":"array","items":{"type":"string"}},"organization":{"type":"string"},"project":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"bitbucket":{"type":"object","required":["owner","repo"],"properties":{"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"owner":{"type":"string"},"repo":{"type":"string"}}},"bitbucketServer":{"type":"object","required":["api","project","repo"],"properties":{"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"project":{"type":"string"},"repo":{"type":"string"}}},"filters":{"type":"array","items":{"type":"object","properties":{"branchMatch":{"type":"string"},"targetBranchMatch":{"type":"string"}}}},"gitea":{"type":"object","required":["api","owner","repo"],"properties":{"api":{"type":"string"},"insecure":{"type":"boolean"},"owner":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"github":{"type":"object","required":["owner","repo"],"properties":{"api":{"type":"string"},"appSecretName":{"type":"string"},"labels":{"type":"array","items":{"type":"string"}},"owner":{"type":"string"},"repo":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"gitlab":{"type":"object","required":["project"],"properties":{"api":{"type":"string"},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"labels":{"type":"array","items":{"type":"string"}},"project":{"type":"string"},"pullRequestState":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}}}},"scmProvider":{"type":"object","properties":{"awsCodeCommit":{"type":"object","properties":{"allBranches":{"type":"boolean"},"region":{"type":"string"},"role":{"type":"string"},"tagFilters":{"type":"array","items":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}}}},"azureDevOps":{"type":"object","required":["accessTokenRef","organization","teamProject"],"properties":{"accessTokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"allBranches":{"type":"boolean"},"api":{"type":"string"},"organization":{"type":"string"},"teamProject":{"type":"string"}}},"bitbucket":{"type":"object","required":["appPasswordRef","owner","user"],"properties":{"allBranches":{"type":"boolean"},"appPasswordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"owner":{"type":"string"},"user":{"type":"string"}}},"bitbucketServer":{"type":"object","required":["api","project"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"basicAuth":{"type":"object","required":["passwordRef","username"],"properties":{"passwordRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"username":{"type":"string"}}},"bearerToken":{"type":"object","required":["tokenRef"],"properties":{"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"insecure":{"type":"boolean"},"project":{"type":"string"}}},"cloneProtocol":{"type":"string"},"filters":{"type":"array","items":{"type":"object","properties":{"branchMatch":{"type":"string"},"labelMatch":{"type":"string"},"pathsDoNotExist":{"type":"array","items":{"type":"string"}},"pathsExist":{"type":"array","items":{"type":"string"}},"repositoryMatch":{"type":"string"}}}},"gitea":{"type":"object","required":["api","owner"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"insecure":{"type":"boolean"},"owner":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"github":{"type":"object","required":["organization"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"appSecretName":{"type":"string"},"organization":{"type":"string"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}}}},"gitlab":{"type":"object","required":["group"],"properties":{"allBranches":{"type":"boolean"},"api":{"type":"string"},"caRef":{"type":"object","required":["configMapName","key"],"properties":{"configMapName":{"type":"string"},"key":{"type":"string"}}},"group":{"type":"string"},"includeSharedProjects":{"type":"boolean"},"includeSubgroups":{"type":"boolean"},"insecure":{"type":"boolean"},"tokenRef":{"type":"object","required":["key","secretName"],"properties":{"key":{"type":"string"},"secretName":{"type":"string"}}},"topic":{"type":"string"}}},"requeueAfterSeconds":{"type":"integer","format":"int64"},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"values":{"type":"object","additionalProperties":{"type":"string"}}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}},"goTemplate":{"type":"boolean"},"goTemplateOptions":{"type":"array","items":{"type":"string"}},"ignoreApplicationDifferences":{"type":"array","items":{"type":"object","properties":{"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"}}}},"preservedFields":{"type":"object","properties":{"annotations":{"type":"array","items":{"type":"string"}},"labels":{"type":"array","items":{"type":"string"}}}},"strategy":{"type":"object","properties":{"rollingSync":{"type":"object","properties":{"steps":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"maxUpdate":{"x-kubernetes-int-or-string":true}}}}}},"type":{"type":"string"}}},"syncPolicy":{"type":"object","properties":{"applicationsSync":{"type":"string","enum":["create-only","create-update","create-delete","sync"]},"preserveResourcesOnDeletion":{"type":"boolean"}}},"template":{"type":"object","required":["metadata","spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","required":["destination","project"],"properties":{"destination":{"type":"object","properties":{"name":{"type":"string"},"namespace":{"type":"string"},"server":{"type":"string"}}},"ignoreDifferences":{"type":"array","items":{"type":"object","required":["kind"],"properties":{"group":{"type":"string"},"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"kind":{"type":"string"},"managedFieldsManagers":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}}},"info":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"project":{"type":"string"},"revisionHistoryLimit":{"type":"integer","format":"int64"},"source":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}},"sources":{"type":"array","items":{"type":"object","required":["repoURL"],"properties":{"chart":{"type":"string"},"directory":{"type":"object","properties":{"exclude":{"type":"string"},"include":{"type":"string"},"jsonnet":{"type":"object","properties":{"extVars":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"libs":{"type":"array","items":{"type":"string"}},"tlas":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"code":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}}}},"recurse":{"type":"boolean"}}},"helm":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"fileParameters":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"path":{"type":"string"}}}},"ignoreMissingValueFiles":{"type":"boolean"},"kubeVersion":{"type":"string"},"namespace":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"forceString":{"type":"boolean"},"name":{"type":"string"},"value":{"type":"string"}}}},"passCredentials":{"type":"boolean"},"releaseName":{"type":"string"},"skipCrds":{"type":"boolean"},"valueFiles":{"type":"array","items":{"type":"string"}},"values":{"type":"string"},"valuesObject":{"x-kubernetes-preserve-unknown-fields":true},"version":{"type":"string"}}},"kustomize":{"type":"object","properties":{"apiVersions":{"type":"array","items":{"type":"string"}},"commonAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"commonAnnotationsEnvsubst":{"type":"boolean"},"commonLabels":{"type":"object","additionalProperties":{"type":"string"}},"components":{"type":"array","items":{"type":"string"}},"forceCommonAnnotations":{"type":"boolean"},"forceCommonLabels":{"type":"boolean"},"images":{"type":"array","items":{"type":"string"}},"kubeVersion":{"type":"string"},"labelWithoutSelector":{"type":"boolean"},"namePrefix":{"type":"string"},"nameSuffix":{"type":"string"},"namespace":{"type":"string"},"patches":{"type":"array","items":{"type":"object","properties":{"options":{"type":"object","additionalProperties":{"type":"boolean"}},"patch":{"type":"string"},"path":{"type":"string"},"target":{"type":"object","properties":{"annotationSelector":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"},"labelSelector":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}},"replicas":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"x-kubernetes-int-or-string":true},"name":{"type":"string"}}}},"version":{"type":"string"}}},"path":{"type":"string"},"plugin":{"type":"object","properties":{"env":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"name":{"type":"string"},"parameters":{"type":"array","items":{"type":"object","properties":{"array":{"type":"array","items":{"type":"string"}},"map":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"string":{"type":"string"}}}}}},"ref":{"type":"string"},"repoURL":{"type":"string"},"targetRevision":{"type":"string"}}}},"syncPolicy":{"type":"object","properties":{"automated":{"type":"object","properties":{"allowEmpty":{"type":"boolean"},"prune":{"type":"boolean"},"selfHeal":{"type":"boolean"}}},"managedNamespaceMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"retry":{"type":"object","properties":{"backoff":{"type":"object","properties":{"duration":{"type":"string"},"factor":{"type":"integer","format":"int64"},"maxDuration":{"type":"string"}}},"limit":{"type":"integer","format":"int64"}}},"syncOptions":{"type":"array","items":{"type":"string"}}}}}}}},"templatePatch":{"type":"string"}}},"status":{"type":"object","properties":{"applicationStatus":{"type":"array","items":{"type":"object","required":["application","message","status","step","targetRevisions"],"properties":{"application":{"type":"string"},"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"status":{"type":"string"},"step":{"type":"string"},"targetRevisions":{"type":"array","items":{"type":"string"}}}}},"conditions":{"type":"array","items":{"type":"object","required":["message","reason","status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}}},"resources":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"health":{"type":"object","properties":{"message":{"type":"string"},"status":{"type":"string"}}},"hook":{"type":"boolean"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"requiresPruning":{"type":"boolean"},"status":{"type":"string"},"syncWave":{"type":"integer","format":"int64"},"version":{"type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ApplicationSet","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ApplicationSetList":{"description":"ApplicationSetList is a list of ApplicationSet","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of applicationsets. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.ApplicationSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ApplicationSetList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ArgoCD":{"description":"ArgoCD is the Schema for the argocds API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ArgoCDSpec defines the desired state of ArgoCD","type":"object","properties":{"aggregatedClusterRoles":{"description":"AggregatedClusterRoles will allow users to have aggregated ClusterRoles for a cluster scoped instance.","type":"boolean"},"applicationInstanceLabelKey":{"description":"ApplicationInstanceLabelKey is the key name where Argo CD injects the app name as a tracking label.","type":"string"},"applicationSet":{"description":"ArgoCDApplicationSet defines whether the Argo CD ApplicationSet controller should be installed.","type":"object","properties":{"env":{"description":"Env lets you specify environment for applicationSet controller pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"extraCommandArgs":{"description":"ExtraCommandArgs allows users to pass command line arguments to ApplicationSet controller.\nThey get added to default command line arguments provided by the operator.\nPlease note that the command line arguments provided as part of ExtraCommandArgs\nwill not overwrite the default command line arguments.","type":"array","items":{"type":"string"}},"image":{"description":"Image is the Argo CD ApplicationSet image (optional)","type":"string"},"logLevel":{"description":"LogLevel describes the log level that should be used by the ApplicationSet controller. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug,info, error, and warn.","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for ApplicationSet.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Argo CD ApplicationSet image tag. (optional)","type":"string"},"webhookServer":{"description":"WebhookServerSpec defines the options for the ApplicationSet Webhook Server component.","type":"object","properties":{"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Application set webhook component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Application set webhook component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}}}}}},"banner":{"description":"Banner defines an additional banner to be displayed in Argo CD UI","type":"object","required":["content"],"properties":{"content":{"description":"Content defines the banner message content to display","type":"string"},"url":{"description":"URL defines an optional URL to be used as banner message link","type":"string"}}},"configManagementPlugins":{"description":"ConfigManagementPlugins is used to specify additional config management plugins.","type":"string"},"controller":{"description":"Controller defines the Application Controller options for ArgoCD.","type":"object","properties":{"appSync":{"description":"AppSync is used to control the sync frequency, by default the ArgoCD\ncontroller polls Git every 3m.\n\n\nSet this to a duration, e.g. 10m or 600s to control the synchronisation\nfrequency.","type":"string"},"env":{"description":"Env lets you specify environment for application controller pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"logFormat":{"description":"LogFormat refers to the log format used by the Application Controller component. Defaults to ArgoCDDefaultLogFormat if not configured. Valid options are text or json.","type":"string"},"logLevel":{"description":"LogLevel refers to the log level used by the Application Controller component. Defaults to ArgoCDDefaultLogLevel if not configured. Valid options are debug, info, error, and warn.","type":"string"},"parallelismLimit":{"description":"ParallelismLimit defines the limit for parallel kubectl operations","type":"integer","format":"int32"},"processors":{"description":"Processors contains the options for the Application Controller processors.","type":"object","properties":{"operation":{"description":"Operation is the number of application operation processors.","type":"integer","format":"int32"},"status":{"description":"Status is the number of application status processors.","type":"integer","format":"int32"}}},"resources":{"description":"Resources defines the Compute Resources required by the container for the Application Controller.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"sharding":{"description":"Sharding contains the options for the Application Controller sharding configuration.","type":"object","properties":{"clustersPerShard":{"description":"ClustersPerShard defines the maximum number of clusters managed by each argocd shard","type":"integer","format":"int32","minimum":1},"dynamicScalingEnabled":{"description":"DynamicScalingEnabled defines whether dynamic scaling should be enabled for Application Controller component","type":"boolean"},"enabled":{"description":"Enabled defines whether sharding should be enabled on the Application Controller component.","type":"boolean"},"maxShards":{"description":"MaxShards defines the maximum number of shards at any given point","type":"integer","format":"int32"},"minShards":{"description":"MinShards defines the minimum number of shards at any given point","type":"integer","format":"int32","minimum":1},"replicas":{"description":"Replicas defines the number of replicas to run in the Application controller shard.","type":"integer","format":"int32"}}}}},"defaultClusterScopedRoleDisabled":{"description":"DefaultClusterScopedRoleDisabled will disable creation of default ClusterRoles for a cluster scoped instance.","type":"boolean"},"dex":{"description":"Deprecated field. Support dropped in v1beta1 version.\nDex defines the Dex server options for ArgoCD.","type":"object","properties":{"config":{"description":"Config is the dex connector configuration.","type":"string"},"groups":{"description":"Optional list of required groups a user must be a member of","type":"array","items":{"type":"string"}},"image":{"description":"Image is the Dex container image.","type":"string"},"openShiftOAuth":{"description":"OpenShiftOAuth enables OpenShift OAuth authentication for the Dex server.","type":"boolean"},"resources":{"description":"Resources defines the Compute Resources required by the container for Dex.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Dex container image tag.","type":"string"}}},"disableAdmin":{"description":"DisableAdmin will disable the admin user.","type":"boolean"},"extraConfig":{"description":"ExtraConfig can be used to add fields to Argo CD configmap that are not supported by Argo CD CRD.\n\n\nNote: ExtraConfig takes precedence over Argo CD CRD.\nFor example, A user sets `argocd.Spec.DisableAdmin` = true and also\n`a.Spec.ExtraConfig[\"admin.enabled\"]` = true. In this case, operator updates\nArgo CD Configmap as follows -> argocd-cm.Data[\"admin.enabled\"] = true.","type":"object","additionalProperties":{"type":"string"}},"gaAnonymizeUsers":{"description":"GAAnonymizeUsers toggles user IDs being hashed before sending to google analytics.","type":"boolean"},"gaTrackingID":{"description":"GATrackingID is the google analytics tracking ID to use.","type":"string"},"grafana":{"description":"Deprecated: Grafana defines the Grafana server options for ArgoCD.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle Grafana support globally for ArgoCD.","type":"boolean"},"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"image":{"description":"Image is the Grafana container image.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Grafana component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"resources":{"description":"Resources defines the Compute Resources required by the container for Grafana.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Grafana component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}},"size":{"description":"Size is the replica count for the Grafana Deployment.","type":"integer","format":"int32"},"version":{"description":"Version is the Grafana container image tag.","type":"string"}}},"ha":{"description":"HA options for High Availability support for the Redis component.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle HA support globally for Argo CD.","type":"boolean"},"redisProxyImage":{"description":"RedisProxyImage is the Redis HAProxy container image.","type":"string"},"redisProxyVersion":{"description":"RedisProxyVersion is the Redis HAProxy container image tag.","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for HA.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"helpChatText":{"description":"HelpChatText is the text for getting chat help, defaults to \"Chat now!\"","type":"string"},"helpChatURL":{"description":"HelpChatURL is the URL for getting chat help, this will typically be your Slack channel for support.","type":"string"},"image":{"description":"Image is the ArgoCD container image for all ArgoCD components.","type":"string"},"import":{"description":"Import is the import/restore options for ArgoCD.","type":"object","required":["name"],"properties":{"name":{"description":"Name of an ArgoCDExport from which to import data.","type":"string"},"namespace":{"description":"Namespace for the ArgoCDExport, defaults to the same namespace as the ArgoCD.","type":"string"}}},"initialRepositories":{"description":"InitialRepositories to configure Argo CD with upon creation of the cluster.","type":"string"},"initialSSHKnownHosts":{"description":"InitialSSHKnownHosts defines the SSH known hosts data upon creation of the cluster for connecting Git repositories via SSH.","type":"object","properties":{"excludedefaulthosts":{"description":"ExcludeDefaultHosts describes whether you would like to include the default\nlist of SSH Known Hosts provided by ArgoCD.","type":"boolean"},"keys":{"description":"Keys describes a custom set of SSH Known Hosts that you would like to\nhave included in your ArgoCD server.","type":"string"}}},"kustomizeBuildOptions":{"description":"KustomizeBuildOptions is used to specify build options/parameters to use with `kustomize build`.","type":"string"},"kustomizeVersions":{"description":"KustomizeVersions is a listing of configured versions of Kustomize to be made available within ArgoCD.","type":"array","items":{"description":"KustomizeVersionSpec is used to specify information about a kustomize version to be used within ArgoCD.","type":"object","properties":{"path":{"description":"Path is the path to a configured kustomize version on the filesystem of your repo server.","type":"string"},"version":{"description":"Version is a configured kustomize version in the format of vX.Y.Z","type":"string"}}}},"monitoring":{"description":"Monitoring defines whether workload status monitoring configuration for this instance.","type":"object","required":["enabled"],"properties":{"disableMetrics":{"description":"DisableMetrics field can be used to enable or disable the collection of Metrics on Openshift","type":"boolean"},"enabled":{"description":"Enabled defines whether workload status monitoring is enabled for this instance or not","type":"boolean"}}},"nodePlacement":{"description":"NodePlacement defines NodeSelectors and Taints for Argo CD workloads","type":"object","properties":{"nodeSelector":{"description":"NodeSelector is a field of PodSpec, it is a map of key value pairs used for node selection","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"Tolerations allow the pods to schedule onto nodes with matching taints","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"notifications":{"description":"Notifications defines whether the Argo CD Notifications controller should be installed.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled defines whether argocd-notifications controller should be deployed or not","type":"boolean"},"env":{"description":"Env let you specify environment variables for Notifications pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"image":{"description":"Image is the Argo CD Notifications image (optional)","type":"string"},"logLevel":{"description":"LogLevel describes the log level that should be used by the argocd-notifications. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug,info, error, and warn.","type":"string"},"replicas":{"description":"Replicas defines the number of replicas to run for notifications-controller","type":"integer","format":"int32"},"resources":{"description":"Resources defines the Compute Resources required by the container for Argo CD Notifications.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Argo CD Notifications image tag. (optional)","type":"string"}}},"oidcConfig":{"description":"OIDCConfig is the OIDC configuration as an alternative to dex.","type":"string"},"prometheus":{"description":"Prometheus defines the Prometheus server options for ArgoCD.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle Prometheus support globally for ArgoCD.","type":"boolean"},"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Prometheus component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Prometheus component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}},"size":{"description":"Size is the replica count for the Prometheus StatefulSet.","type":"integer","format":"int32"}}},"rbac":{"description":"RBAC defines the RBAC configuration for Argo CD.","type":"object","properties":{"defaultPolicy":{"description":"DefaultPolicy is the name of the default role which Argo CD will falls back to, when\nauthorizing API requests (optional). If omitted or empty, users may be still be able to login,\nbut will see no apps, projects, etc...","type":"string"},"policy":{"description":"Policy is CSV containing user-defined RBAC policies and role definitions.\nPolicy rules are in the form:\n  p, subject, resource, action, object, effect\nRole definitions and bindings are in the form:\n  g, subject, inherited-subject\nSee https://github.com/argoproj/argo-cd/blob/master/docs/operator-manual/rbac.md for additional information.","type":"string"},"policyMatcherMode":{"description":"PolicyMatcherMode configures the matchers function mode for casbin.\nThere are two options for this, 'glob' for glob matcher or 'regex' for regex matcher.","type":"string"},"scopes":{"description":"Scopes controls which OIDC scopes to examine during rbac enforcement (in addition to `sub` scope).\nIf omitted, defaults to: '[groups]'.","type":"string"}}},"redis":{"description":"Redis defines the Redis server options for ArgoCD.","type":"object","properties":{"autotls":{"description":"AutoTLS specifies the method to use for automatic TLS configuration for the redis server\nThe value specified here can currently be:\n- openshift - Use the OpenShift service CA to request TLS config","type":"string"},"disableTLSVerification":{"description":"DisableTLSVerification defines whether redis server API should be accessed using strict TLS validation","type":"boolean"},"image":{"description":"Image is the Redis container image.","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for Redis.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Redis container image tag.","type":"string"}}},"repo":{"description":"Repo defines the repo server options for Argo CD.","type":"object","properties":{"autotls":{"description":"AutoTLS specifies the method to use for automatic TLS configuration for the repo server\nThe value specified here can currently be:\n- openshift - Use the OpenShift service CA to request TLS config","type":"string"},"env":{"description":"Env lets you specify environment for repo server pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"execTimeout":{"description":"ExecTimeout specifies the timeout in seconds for tool execution","type":"integer"},"extraRepoCommandArgs":{"description":"Extra Command arguments allows users to pass command line arguments to repo server workload. They get added to default command line arguments provided\nby the operator.\nPlease note that the command line arguments provided as part of ExtraRepoCommandArgs will not overwrite the default command line arguments.","type":"array","items":{"type":"string"}},"image":{"description":"Image is the ArgoCD Repo Server container image.","type":"string"},"initContainers":{"description":"InitContainers defines the list of initialization containers for the repo server deployment","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"logFormat":{"description":"LogFormat describes the log format that should be used by the Repo Server. Defaults to ArgoCDDefaultLogFormat if not configured. Valid options are text or json.","type":"string"},"logLevel":{"description":"LogLevel describes the log level that should be used by the Repo Server. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug, info, error, and warn.","type":"string"},"mountsatoken":{"description":"MountSAToken describes whether you would like to have the Repo server mount the service account token","type":"boolean"},"replicas":{"description":"Replicas defines the number of replicas for argocd-repo-server. Value should be greater than or equal to 0. Default is nil.","type":"integer","format":"int32"},"resources":{"description":"Resources defines the Compute Resources required by the container for Redis.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"serviceaccount":{"description":"ServiceAccount defines the ServiceAccount user that you would like the Repo server to use","type":"string"},"sidecarContainers":{"description":"SidecarContainers defines the list of sidecar containers for the repo server deployment","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"verifytls":{"description":"VerifyTLS defines whether repo server API should be accessed using strict TLS validation","type":"boolean"},"version":{"description":"Version is the ArgoCD Repo Server container image tag.","type":"string"},"volumeMounts":{"description":"VolumeMounts adds volumeMounts to the repo server container","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes adds volumes to the repo server deployment","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"}},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"}},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"}}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath\n---\nTODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not\nmount host directories as read/write.","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"}},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections","type":"array","items":{"description":"Projection that may be projected along with other supported volume types","type":"object","properties":{"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}}}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}}}},"repositoryCredentials":{"description":"RepositoryCredentials are the Git pull credentials to configure Argo CD with upon creation of the cluster.","type":"string"},"resourceActions":{"description":"ResourceActions customizes resource action behavior.","type":"array","items":{"description":"Resource Customization for custom action","type":"object","properties":{"action":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"}}}},"resourceCustomizations":{"description":"Deprecated field. Support dropped in v1beta1 version.\nResourceCustomizations customizes resource behavior. Keys are in the form: group/Kind. Please note that this is being deprecated in favor of ResourceHealthChecks, ResourceIgnoreDifferences, and ResourceActions.","type":"string"},"resourceExclusions":{"description":"ResourceExclusions is used to completely ignore entire classes of resource group/kinds.","type":"string"},"resourceHealthChecks":{"description":"ResourceHealthChecks customizes resource health check behavior.","type":"array","items":{"description":"Resource Customization for custom health check","type":"object","properties":{"check":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"}}}},"resourceIgnoreDifferences":{"description":"ResourceIgnoreDifferences customizes resource ignore difference behavior.","type":"object","properties":{"all":{"type":"object","properties":{"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"managedFieldsManagers":{"type":"array","items":{"type":"string"}}}},"resourceIdentifiers":{"type":"array","items":{"description":"Resource Customization fields for ignore difference","type":"object","properties":{"customization":{"type":"object","properties":{"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"managedFieldsManagers":{"type":"array","items":{"type":"string"}}}},"group":{"type":"string"},"kind":{"type":"string"}}}}}},"resourceInclusions":{"description":"ResourceInclusions is used to only include specific group/kinds in the\nreconciliation process.","type":"string"},"resourceTrackingMethod":{"description":"ResourceTrackingMethod defines how Argo CD should track resources that it manages","type":"string"},"server":{"description":"Server defines the options for the ArgoCD Server component.","type":"object","properties":{"autoscale":{"description":"Autoscale defines the autoscale options for the Argo CD Server component.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle autoscaling support for the Argo CD Server component.","type":"boolean"},"hpa":{"description":"HPA defines the HorizontalPodAutoscaler options for the Argo CD Server component.","type":"object","required":["maxReplicas","scaleTargetRef"],"properties":{"maxReplicas":{"description":"maxReplicas is the upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas.","type":"integer","format":"int32"},"minReplicas":{"description":"minReplicas is the lower limit for the number of replicas to which the autoscaler\ncan scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the\nalpha feature gate HPAScaleToZero is enabled and at least one Object or External\nmetric is configured.  Scaling is active as long as at least one metric value is\navailable.","type":"integer","format":"int32"},"scaleTargetRef":{"description":"reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption\nand will set the desired number of pods by using its Scale subresource.","type":"object","required":["kind","name"],"properties":{"apiVersion":{"description":"apiVersion is the API version of the referent","type":"string"},"kind":{"description":"kind is the kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"name is the name of the referent; More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetCPUUtilizationPercentage":{"description":"targetCPUUtilizationPercentage is the target average CPU utilization (represented as a percentage of requested CPU) over all the pods;\nif not specified the default autoscaling policy will be used.","type":"integer","format":"int32"}}}}},"enableRolloutsUI":{"description":"EnableRolloutsUI will add the Argo Rollouts UI extension in ArgoCD Dashboard.","type":"boolean"},"env":{"description":"Env lets you specify environment for API server pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"extraCommandArgs":{"description":"Extra Command arguments that would append to the Argo CD server command.\nExtraCommandArgs will not be added, if one of these commands is already part of the server command\nwith same or different value.","type":"array","items":{"type":"string"}},"grpc":{"description":"GRPC defines the state for the Argo CD Server GRPC options.","type":"object","properties":{"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for the Argo CD Server GRPC Ingress.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}}}},"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Argo CD Server component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"insecure":{"description":"Insecure toggles the insecure flag.","type":"boolean"},"logFormat":{"description":"LogFormat refers to the log level to be used by the ArgoCD Server component. Defaults to ArgoCDDefaultLogFormat if not configured. Valid options are text or json.","type":"string"},"logLevel":{"description":"LogLevel refers to the log level to be used by the ArgoCD Server component. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug, info, error, and warn.","type":"string"},"replicas":{"description":"Replicas defines the number of replicas for argocd-server. Default is nil. Value should be greater than or equal to 0. Value will be ignored if Autoscaler is enabled.","type":"integer","format":"int32"},"resources":{"description":"Resources defines the Compute Resources required by the container for the Argo CD server component.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Argo CD Server component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}},"service":{"description":"Service defines the options for the Service backing the ArgoCD Server component.","type":"object","required":["type"],"properties":{"type":{"description":"Type is the ServiceType to use for the Service resource.","type":"string"}}}}},"sourceNamespaces":{"description":"SourceNamespaces defines the namespaces application resources are allowed to be created in","type":"array","items":{"type":"string"}},"sso":{"description":"SSO defines the Single Sign-on configuration for Argo CD","type":"object","properties":{"dex":{"description":"Dex contains the configuration for Argo CD dex authentication","type":"object","properties":{"config":{"description":"Config is the dex connector configuration.","type":"string"},"groups":{"description":"Optional list of required groups a user must be a member of","type":"array","items":{"type":"string"}},"image":{"description":"Image is the Dex container image.","type":"string"},"openShiftOAuth":{"description":"OpenShiftOAuth enables OpenShift OAuth authentication for the Dex server.","type":"boolean"},"resources":{"description":"Resources defines the Compute Resources required by the container for Dex.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Dex container image tag.","type":"string"}}},"image":{"description":"Deprecated field. Support dropped in v1beta1 version.\nImage is the SSO container image.","type":"string"},"keycloak":{"description":"Keycloak contains the configuration for Argo CD keycloak authentication","type":"object","properties":{"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"image":{"description":"Image is the Keycloak container image.","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for Keycloak.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"rootCA":{"description":"Custom root CA certificate for communicating with the Keycloak OIDC provider","type":"string"},"verifyTLS":{"description":"VerifyTLS set to false disables strict TLS validation.","type":"boolean"},"version":{"description":"Version is the Keycloak container image tag.","type":"string"}}},"provider":{"description":"Provider installs and configures the given SSO Provider with Argo CD.","type":"string"},"resources":{"description":"Deprecated field. Support dropped in v1beta1 version.\nResources defines the Compute Resources required by the container for SSO.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"verifyTLS":{"description":"Deprecated field. Support dropped in v1beta1 version.\nVerifyTLS set to false disables strict TLS validation.","type":"boolean"},"version":{"description":"Deprecated field. Support dropped in v1beta1 version.\nVersion is the SSO container image tag.","type":"string"}}},"statusBadgeEnabled":{"description":"StatusBadgeEnabled toggles application status badge feature.","type":"boolean"},"tls":{"description":"TLS defines the TLS options for ArgoCD.","type":"object","properties":{"ca":{"description":"CA defines the CA options.","type":"object","properties":{"configMapName":{"description":"ConfigMapName is the name of the ConfigMap containing the CA Certificate.","type":"string"},"secretName":{"description":"SecretName is the name of the Secret containing the CA Certificate and Key.","type":"string"}}},"initialCerts":{"description":"InitialCerts defines custom TLS certificates upon creation of the cluster for connecting Git repositories via HTTPS.","type":"object","additionalProperties":{"type":"string"}}}},"usersAnonymousEnabled":{"description":"UsersAnonymousEnabled toggles anonymous user access.\nThe anonymous users get default role permissions specified argocd-rbac-cm.","type":"boolean"},"version":{"description":"Version is the tag to use with the ArgoCD container image for all ArgoCD components.","type":"string"}}},"status":{"description":"ArgoCDStatus defines the observed state of ArgoCD","type":"object","properties":{"applicationController":{"description":"ApplicationController is a simple, high-level summary of where the Argo CD application controller component is in its lifecycle.\nThere are four possible ApplicationController values:\nPending: The Argo CD application controller component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD application controller component are in a Ready state.\nFailed: At least one of the  Argo CD application controller component Pods had a failure.\nUnknown: The state of the Argo CD application controller component could not be obtained.","type":"string"},"applicationSetController":{"description":"ApplicationSetController is a simple, high-level summary of where the Argo CD applicationSet controller component is in its lifecycle.\nThere are four possible ApplicationSetController values:\nPending: The Argo CD applicationSet controller component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD applicationSet controller component are in a Ready state.\nFailed: At least one of the  Argo CD applicationSet controller component Pods had a failure.\nUnknown: The state of the Argo CD applicationSet controller component could not be obtained.","type":"string"},"host":{"description":"Host is the hostname of the Ingress.","type":"string"},"notificationsController":{"description":"NotificationsController is a simple, high-level summary of where the Argo CD notifications controller component is in its lifecycle.\nThere are four possible NotificationsController values:\nPending: The Argo CD notifications controller component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD notifications controller component are in a Ready state.\nFailed: At least one of the  Argo CD notifications controller component Pods had a failure.\nUnknown: The state of the Argo CD notifications controller component could not be obtained.","type":"string"},"phase":{"description":"Phase is a simple, high-level summary of where the ArgoCD is in its lifecycle.\nThere are four possible phase values:\nPending: The ArgoCD has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nAvailable: All of the resources for the ArgoCD are ready.\nFailed: At least one resource has experienced a failure.\nUnknown: The state of the ArgoCD phase could not be obtained.","type":"string"},"redis":{"description":"Redis is a simple, high-level summary of where the Argo CD Redis component is in its lifecycle.\nThere are four possible redis values:\nPending: The Argo CD Redis component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD Redis component are in a Ready state.\nFailed: At least one of the  Argo CD Redis component Pods had a failure.\nUnknown: The state of the Argo CD Redis component could not be obtained.","type":"string"},"redisTLSChecksum":{"description":"RedisTLSChecksum contains the SHA256 checksum of the latest known state of tls.crt and tls.key in the argocd-operator-redis-tls secret.","type":"string"},"repo":{"description":"Repo is a simple, high-level summary of where the Argo CD Repo component is in its lifecycle.\nThere are four possible repo values:\nPending: The Argo CD Repo component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD Repo component are in a Ready state.\nFailed: At least one of the  Argo CD Repo component Pods had a failure.\nUnknown: The state of the Argo CD Repo component could not be obtained.","type":"string"},"repoTLSChecksum":{"description":"RepoTLSChecksum contains the SHA256 checksum of the latest known state of tls.crt and tls.key in the argocd-repo-server-tls secret.","type":"string"},"server":{"description":"Server is a simple, high-level summary of where the Argo CD server component is in its lifecycle.\nThere are four possible server values:\nPending: The Argo CD server component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD server component are in a Ready state.\nFailed: At least one of the  Argo CD server component Pods had a failure.\nUnknown: The state of the Argo CD server component could not be obtained.","type":"string"},"sso":{"description":"SSO is a simple, high-level summary of where the Argo CD SSO(Dex/Keycloak) component is in its lifecycle.\nThere are four possible sso values:\nPending: The Argo CD SSO component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD SSO component are in a Ready state.\nFailed: At least one of the  Argo CD SSO component Pods had a failure.\nUnknown: The state of the Argo CD SSO component could not be obtained.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ArgoCD","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ArgoCDList":{"description":"ArgoCDList is a list of ArgoCD","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of argocds. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.ArgoCD"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ArgoCDList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ClusterAnalysisTemplate":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"secretKeyRef":{"type":"object","required":["key","name"],"properties":{"key":{"type":"string"},"name":{"type":"string"}}}}}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"metrics":{"type":"array","items":{"type":"object","required":["name","provider"],"properties":{"consecutiveErrorLimit":{"x-kubernetes-int-or-string":true},"count":{"x-kubernetes-int-or-string":true},"failureCondition":{"type":"string"},"failureLimit":{"x-kubernetes-int-or-string":true},"inconclusiveLimit":{"x-kubernetes-int-or-string":true},"initialDelay":{"type":"string"},"interval":{"type":"string"},"name":{"type":"string"},"provider":{"type":"object","properties":{"cloudWatch":{"type":"object","required":["metricDataQueries"],"properties":{"interval":{"type":"string"},"metricDataQueries":{"type":"array","items":{"type":"object","properties":{"expression":{"type":"string"},"id":{"type":"string"},"label":{"type":"string"},"metricStat":{"type":"object","properties":{"metric":{"type":"object","properties":{"dimensions":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"metricName":{"type":"string"},"namespace":{"type":"string"}}},"period":{"x-kubernetes-int-or-string":true},"stat":{"type":"string"},"unit":{"type":"string"}}},"period":{"x-kubernetes-int-or-string":true},"returnData":{"type":"boolean"}}}}}},"datadog":{"type":"object","properties":{"aggregator":{"type":"string","enum":["avg","min","max","sum","last","percentile","mean","l2norm","area"]},"apiVersion":{"type":"string","enum":["v1","v2"]},"formula":{"type":"string"},"interval":{"type":"string"},"queries":{"type":"object","additionalProperties":{"type":"string"}},"query":{"type":"string"}}},"graphite":{"type":"object","properties":{"address":{"type":"string"},"query":{"type":"string"}}},"influxdb":{"type":"object","properties":{"profile":{"type":"string"},"query":{"type":"string"}}},"job":{"type":"object","required":["spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["template"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"backoffLimit":{"type":"integer","format":"int32"},"backoffLimitPerIndex":{"type":"integer","format":"int32"},"completionMode":{"type":"string"},"completions":{"type":"integer","format":"int32"},"manualSelector":{"type":"boolean"},"maxFailedIndexes":{"type":"integer","format":"int32"},"parallelism":{"type":"integer","format":"int32"},"podFailurePolicy":{"type":"object","required":["rules"],"properties":{"rules":{"type":"array","items":{"type":"object","required":["action"],"properties":{"action":{"type":"string"},"onExitCodes":{"type":"object","required":["operator","values"],"properties":{"containerName":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}},"onPodConditions":{"type":"array","items":{"type":"object","required":["status","type"],"properties":{"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podReplacementPolicy":{"type":"string"},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"suspend":{"type":"boolean"},"template":{"type":"object","properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"affinity":{"type":"object","properties":{"nodeAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["preference","weight"],"properties":{"preference":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}},"podAntiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}}}},"automountServiceAccountToken":{"type":"boolean"},"containers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"dnsConfig":{"type":"object","properties":{"nameservers":{"type":"array","items":{"type":"string"}},"options":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"searches":{"type":"array","items":{"type":"string"}}}},"dnsPolicy":{"type":"string"},"enableServiceLinks":{"type":"boolean"},"ephemeralContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"targetContainerName":{"type":"string"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"hostAliases":{"type":"array","items":{"type":"object","properties":{"hostnames":{"type":"array","items":{"type":"string"}},"ip":{"type":"string"}}}},"hostIPC":{"type":"boolean"},"hostNetwork":{"type":"boolean"},"hostPID":{"type":"boolean"},"hostUsers":{"type":"boolean"},"hostname":{"type":"string"},"imagePullSecrets":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"nodeName":{"type":"string"},"nodeSelector":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"overhead":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"type":"string"},"priority":{"type":"integer","format":"int32"},"priorityClassName":{"type":"string"},"readinessGates":{"type":"array","items":{"type":"object","required":["conditionType"],"properties":{"conditionType":{"type":"string"}}}},"resourceClaims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"source":{"type":"object","properties":{"resourceClaimName":{"type":"string"},"resourceClaimTemplateName":{"type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"restartPolicy":{"type":"string"},"runtimeClassName":{"type":"string"},"schedulerName":{"type":"string"},"schedulingGates":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"type":"object","properties":{"fsGroup":{"type":"integer","format":"int64"},"fsGroupChangePolicy":{"type":"string"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"supplementalGroups":{"type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"serviceAccount":{"type":"string"},"serviceAccountName":{"type":"string"},"setHostnameAsFQDN":{"type":"boolean"},"shareProcessNamespace":{"type":"boolean"},"subdomain":{"type":"string"},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"tolerations":{"type":"array","items":{"type":"object","properties":{"effect":{"type":"string"},"key":{"type":"string"},"operator":{"type":"string"},"tolerationSeconds":{"type":"integer","format":"int64"},"value":{"type":"string"}}}},"topologySpreadConstraints":{"type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"type":"integer","format":"int32"},"minDomains":{"type":"integer","format":"int32"},"nodeAffinityPolicy":{"type":"string"},"nodeTaintsPolicy":{"type":"string"},"topologyKey":{"type":"string"},"whenUnsatisfiable":{"type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"x-kubernetes-preserve-unknown-fields":true}}}}},"ttlSecondsAfterFinished":{"type":"integer","format":"int32"}}}}},"kayenta":{"type":"object","required":["address","application","canaryConfigName","configurationAccountName","metricsAccountName","scopes","storageAccountName","threshold"],"properties":{"address":{"type":"string"},"application":{"type":"string"},"canaryConfigName":{"type":"string"},"configurationAccountName":{"type":"string"},"metricsAccountName":{"type":"string"},"scopes":{"type":"array","items":{"type":"object","required":["controlScope","experimentScope","name"],"properties":{"controlScope":{"type":"object","required":["end","region","scope","start","step"],"properties":{"end":{"type":"string"},"region":{"type":"string"},"scope":{"type":"string"},"start":{"type":"string"},"step":{"type":"integer","format":"int64"}}},"experimentScope":{"type":"object","required":["end","region","scope","start","step"],"properties":{"end":{"type":"string"},"region":{"type":"string"},"scope":{"type":"string"},"start":{"type":"string"},"step":{"type":"integer","format":"int64"}}},"name":{"type":"string"}}}},"storageAccountName":{"type":"string"},"threshold":{"type":"object","required":["marginal","pass"],"properties":{"marginal":{"type":"integer","format":"int64"},"pass":{"type":"integer","format":"int64"}}}}},"newRelic":{"type":"object","required":["query"],"properties":{"profile":{"type":"string"},"query":{"type":"string"}}},"plugin":{"x-kubernetes-preserve-unknown-fields":true},"prometheus":{"type":"object","properties":{"address":{"type":"string"},"authentication":{"type":"object","properties":{"oauth2":{"type":"object","properties":{"clientId":{"type":"string"},"clientSecret":{"type":"string"},"scopes":{"type":"array","items":{"type":"string"}},"tokenUrl":{"type":"string"}}},"sigv4":{"type":"object","properties":{"profile":{"type":"string"},"region":{"type":"string"},"roleArn":{"type":"string"}}}}},"headers":{"type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}},"insecure":{"type":"boolean"},"query":{"type":"string"},"timeout":{"type":"integer","format":"int64"}}},"skywalking":{"type":"object","properties":{"address":{"type":"string"},"interval":{"type":"string"},"query":{"type":"string"}}},"wavefront":{"type":"object","properties":{"address":{"type":"string"},"query":{"type":"string"}}},"web":{"type":"object","required":["url"],"properties":{"authentication":{"type":"object","properties":{"oauth2":{"type":"object","properties":{"clientId":{"type":"string"},"clientSecret":{"type":"string"},"scopes":{"type":"array","items":{"type":"string"}},"tokenUrl":{"type":"string"}}},"sigv4":{"type":"object","properties":{"profile":{"type":"string"},"region":{"type":"string"},"roleArn":{"type":"string"}}}}},"body":{"type":"string"},"headers":{"type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"type":"string"},"value":{"type":"string"}}}},"insecure":{"type":"boolean"},"jsonBody":{"x-kubernetes-preserve-unknown-fields":true},"jsonPath":{"type":"string"},"method":{"type":"string"},"timeoutSeconds":{"type":"integer","format":"int64"},"url":{"type":"string"}}}}},"successCondition":{"type":"string"}}}},"templates":{"type":"array","items":{"type":"object","properties":{"clusterScope":{"type":"boolean"},"templateName":{"type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ClusterAnalysisTemplate","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ClusterAnalysisTemplateList":{"description":"ClusterAnalysisTemplateList is a list of ClusterAnalysisTemplate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusteranalysistemplates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.ClusterAnalysisTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ClusterAnalysisTemplateList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.Experiment":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["templates"],"properties":{"analyses":{"type":"array","items":{"type":"object","required":["name","templateName"],"properties":{"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"secretKeyRef":{"type":"object","required":["key","name"],"properties":{"key":{"type":"string"},"name":{"type":"string"}}}}}}}},"clusterScope":{"type":"boolean"},"name":{"type":"string"},"requiredForCompletion":{"type":"boolean"},"templateName":{"type":"string"}}}},"analysisRunMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"duration":{"type":"string"},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"progressDeadlineSeconds":{"type":"integer","format":"int32"},"scaleDownDelaySeconds":{"type":"integer","format":"int32"},"templates":{"type":"array","items":{"type":"object","required":["name","selector","template"],"properties":{"minReadySeconds":{"type":"integer","format":"int32"},"name":{"type":"string"},"replicas":{"type":"integer","format":"int32"},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"service":{"type":"object","properties":{"name":{"type":"string"}}},"template":{"type":"object","properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"affinity":{"type":"object","properties":{"nodeAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["preference","weight"],"properties":{"preference":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}},"podAntiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}}}},"automountServiceAccountToken":{"type":"boolean"},"containers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"dnsConfig":{"type":"object","properties":{"nameservers":{"type":"array","items":{"type":"string"}},"options":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"searches":{"type":"array","items":{"type":"string"}}}},"dnsPolicy":{"type":"string"},"enableServiceLinks":{"type":"boolean"},"ephemeralContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"targetContainerName":{"type":"string"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"hostAliases":{"type":"array","items":{"type":"object","properties":{"hostnames":{"type":"array","items":{"type":"string"}},"ip":{"type":"string"}}}},"hostIPC":{"type":"boolean"},"hostNetwork":{"type":"boolean"},"hostPID":{"type":"boolean"},"hostUsers":{"type":"boolean"},"hostname":{"type":"string"},"imagePullSecrets":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"nodeName":{"type":"string"},"nodeSelector":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"overhead":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"type":"string"},"priority":{"type":"integer","format":"int32"},"priorityClassName":{"type":"string"},"readinessGates":{"type":"array","items":{"type":"object","required":["conditionType"],"properties":{"conditionType":{"type":"string"}}}},"resourceClaims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"source":{"type":"object","properties":{"resourceClaimName":{"type":"string"},"resourceClaimTemplateName":{"type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"restartPolicy":{"type":"string"},"runtimeClassName":{"type":"string"},"schedulerName":{"type":"string"},"schedulingGates":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"type":"object","properties":{"fsGroup":{"type":"integer","format":"int64"},"fsGroupChangePolicy":{"type":"string"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"supplementalGroups":{"type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"serviceAccount":{"type":"string"},"serviceAccountName":{"type":"string"},"setHostnameAsFQDN":{"type":"boolean"},"shareProcessNamespace":{"type":"boolean"},"subdomain":{"type":"string"},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"tolerations":{"type":"array","items":{"type":"object","properties":{"effect":{"type":"string"},"key":{"type":"string"},"operator":{"type":"string"},"tolerationSeconds":{"type":"integer","format":"int64"},"value":{"type":"string"}}}},"topologySpreadConstraints":{"type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"type":"integer","format":"int32"},"minDomains":{"type":"integer","format":"int32"},"nodeAffinityPolicy":{"type":"string"},"nodeTaintsPolicy":{"type":"string"},"topologyKey":{"type":"string"},"whenUnsatisfiable":{"type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"x-kubernetes-preserve-unknown-fields":true}}}}}}}},"terminate":{"type":"boolean"}}},"status":{"type":"object","properties":{"analysisRuns":{"type":"array","items":{"type":"object","required":["analysisRun","name","phase"],"properties":{"analysisRun":{"type":"string"},"message":{"type":"string"},"name":{"type":"string"},"phase":{"type":"string"}}}},"availableAt":{"type":"string","format":"date-time"},"conditions":{"type":"array","items":{"type":"object","required":["lastTransitionTime","lastUpdateTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"lastUpdateTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}}},"message":{"type":"string"},"phase":{"type":"string"},"templateStatuses":{"type":"array","items":{"type":"object","required":["availableReplicas","name","readyReplicas","replicas","updatedReplicas"],"properties":{"availableReplicas":{"type":"integer","format":"int32"},"collisionCount":{"type":"integer","format":"int32"},"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"name":{"type":"string"},"podTemplateHash":{"type":"string"},"readyReplicas":{"type":"integer","format":"int32"},"replicas":{"type":"integer","format":"int32"},"serviceName":{"type":"string"},"status":{"type":"string"},"updatedReplicas":{"type":"integer","format":"int32"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"Experiment","version":"v1alpha1"}]},"io.argoproj.v1alpha1.ExperimentList":{"description":"ExperimentList is a list of Experiment","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of experiments. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.Experiment"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ExperimentList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.NotificationsConfiguration":{"description":"NotificationsConfiguration is the Schema for the NotificationsConfiguration API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"NotificationsConfigurationSpec allows users to define the triggers, templates, services, context and\nsubscriptions for the notifications","type":"object","properties":{"context":{"description":"Context is used to define some shared context between all notification templates","type":"object","additionalProperties":{"type":"string"}},"services":{"description":"Services are used to deliver message","type":"object","additionalProperties":{"type":"string"}},"subscriptions":{"description":"Subscriptions contain centrally managed global application subscriptions","type":"object","additionalProperties":{"type":"string"}},"templates":{"description":"Templates are used to generate the notification template message","type":"object","additionalProperties":{"type":"string"}},"triggers":{"description":"Triggers define the condition when the notification should be sent and list of templates required to generate the message\nRecipients can subscribe to the trigger and specify the required message template and destination notification service.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"NotificationsConfiguration","version":"v1alpha1"}]},"io.argoproj.v1alpha1.NotificationsConfigurationList":{"description":"NotificationsConfigurationList is a list of NotificationsConfiguration","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of notificationsconfigurations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.NotificationsConfiguration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"NotificationsConfigurationList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.Rollout":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"analysis":{"type":"object","properties":{"successfulRunHistoryLimit":{"type":"integer","format":"int32"},"unsuccessfulRunHistoryLimit":{"type":"integer","format":"int32"}}},"minReadySeconds":{"type":"integer","format":"int32"},"paused":{"type":"boolean"},"progressDeadlineAbort":{"type":"boolean"},"progressDeadlineSeconds":{"type":"integer","format":"int32"},"replicas":{"type":"integer","format":"int32"},"restartAt":{"type":"string","format":"date-time"},"revisionHistoryLimit":{"type":"integer","format":"int32"},"rollbackWindow":{"type":"object","properties":{"revisions":{"type":"integer","format":"int32"}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"strategy":{"type":"object","properties":{"blueGreen":{"type":"object","required":["activeService"],"properties":{"abortScaleDownDelaySeconds":{"type":"integer","format":"int32"},"activeMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"activeService":{"type":"string"},"antiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["weight"],"properties":{"weight":{"type":"integer","format":"int32"}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object"}}},"autoPromotionEnabled":{"type":"boolean"},"autoPromotionSeconds":{"type":"integer","format":"int32"},"maxUnavailable":{"x-kubernetes-int-or-string":true},"postPromotionAnalysis":{"type":"object","properties":{"analysisRunMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"podTemplateHashValue":{"type":"string"}}}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"templates":{"type":"array","items":{"type":"object","properties":{"clusterScope":{"type":"boolean"},"templateName":{"type":"string"}}}}}},"prePromotionAnalysis":{"type":"object","properties":{"analysisRunMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"podTemplateHashValue":{"type":"string"}}}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"templates":{"type":"array","items":{"type":"object","properties":{"clusterScope":{"type":"boolean"},"templateName":{"type":"string"}}}}}},"previewMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"previewReplicaCount":{"type":"integer","format":"int32"},"previewService":{"type":"string"},"scaleDownDelayRevisionLimit":{"type":"integer","format":"int32"},"scaleDownDelaySeconds":{"type":"integer","format":"int32"}}},"canary":{"type":"object","properties":{"abortScaleDownDelaySeconds":{"type":"integer","format":"int32"},"analysis":{"type":"object","properties":{"analysisRunMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"podTemplateHashValue":{"type":"string"}}}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"startingStep":{"type":"integer","format":"int32"},"templates":{"type":"array","items":{"type":"object","properties":{"clusterScope":{"type":"boolean"},"templateName":{"type":"string"}}}}}},"antiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["weight"],"properties":{"weight":{"type":"integer","format":"int32"}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object"}}},"canaryMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"canaryService":{"type":"string"},"dynamicStableScale":{"type":"boolean"},"maxSurge":{"x-kubernetes-int-or-string":true},"maxUnavailable":{"x-kubernetes-int-or-string":true},"minPodsPerReplicaSet":{"type":"integer","format":"int32"},"pingPong":{"type":"object","required":["pingService","pongService"],"properties":{"pingService":{"type":"string"},"pongService":{"type":"string"}}},"scaleDownDelayRevisionLimit":{"type":"integer","format":"int32"},"scaleDownDelaySeconds":{"type":"integer","format":"int32"},"stableMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"stableService":{"type":"string"},"steps":{"type":"array","items":{"type":"object","properties":{"analysis":{"type":"object","properties":{"analysisRunMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"podTemplateHashValue":{"type":"string"}}}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"measurementRetention":{"type":"array","items":{"type":"object","required":["limit","metricName"],"properties":{"limit":{"type":"integer","format":"int32"},"metricName":{"type":"string"}}}},"templates":{"type":"array","items":{"type":"object","properties":{"clusterScope":{"type":"boolean"},"templateName":{"type":"string"}}}}}},"experiment":{"type":"object","required":["templates"],"properties":{"analyses":{"type":"array","items":{"type":"object","required":["name","templateName"],"properties":{"args":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"fieldPath":{"type":"string"}}},"podTemplateHashValue":{"type":"string"}}}}}},"clusterScope":{"type":"boolean"},"name":{"type":"string"},"requiredForCompletion":{"type":"boolean"},"templateName":{"type":"string"}}}},"analysisRunMetadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"dryRun":{"type":"array","items":{"type":"object","required":["metricName"],"properties":{"metricName":{"type":"string"}}}},"duration":{"type":"string"},"templates":{"type":"array","items":{"type":"object","required":["name","specRef"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"name":{"type":"string"},"replicas":{"type":"integer","format":"int32"},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"service":{"type":"object","properties":{"name":{"type":"string"}}},"specRef":{"type":"string"},"weight":{"type":"integer","format":"int32"}}}}}},"pause":{"type":"object","properties":{"duration":{"x-kubernetes-int-or-string":true}}},"setCanaryScale":{"type":"object","properties":{"matchTrafficWeight":{"type":"boolean"},"replicas":{"type":"integer","format":"int32"},"weight":{"type":"integer","format":"int32"}}},"setHeaderRoute":{"type":"object","properties":{"match":{"type":"array","items":{"type":"object","required":["headerName","headerValue"],"properties":{"headerName":{"type":"string"},"headerValue":{"type":"object","properties":{"exact":{"type":"string"},"prefix":{"type":"string"},"regex":{"type":"string"}}}}}},"name":{"type":"string"}}},"setMirrorRoute":{"type":"object","required":["name"],"properties":{"match":{"type":"array","items":{"type":"object","properties":{"headers":{"type":"object","additionalProperties":{"type":"object","properties":{"exact":{"type":"string"},"prefix":{"type":"string"},"regex":{"type":"string"}}}},"method":{"type":"object","properties":{"exact":{"type":"string"},"prefix":{"type":"string"},"regex":{"type":"string"}}},"path":{"type":"object","properties":{"exact":{"type":"string"},"prefix":{"type":"string"},"regex":{"type":"string"}}}}}},"name":{"type":"string"},"percentage":{"type":"integer","format":"int32"}}},"setWeight":{"type":"integer","format":"int32"}}}},"trafficRouting":{"type":"object","properties":{"alb":{"type":"object","required":["servicePort"],"properties":{"annotationPrefix":{"type":"string"},"ingress":{"type":"string"},"ingresses":{"type":"array","items":{"type":"string"}},"rootService":{"type":"string"},"servicePort":{"type":"integer","format":"int32"},"stickinessConfig":{"type":"object","required":["durationSeconds","enabled"],"properties":{"durationSeconds":{"type":"integer","format":"int64"},"enabled":{"type":"boolean"}}}}},"ambassador":{"type":"object","required":["mappings"],"properties":{"mappings":{"type":"array","items":{"type":"string"}}}},"apisix":{"type":"object","properties":{"route":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"rules":{"type":"array","items":{"type":"string"}}}}}},"appMesh":{"type":"object","properties":{"virtualNodeGroup":{"type":"object","required":["canaryVirtualNodeRef","stableVirtualNodeRef"],"properties":{"canaryVirtualNodeRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"stableVirtualNodeRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}}}},"virtualService":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"routes":{"type":"array","items":{"type":"string"}}}}}},"istio":{"type":"object","properties":{"destinationRule":{"type":"object","required":["canarySubsetName","name","stableSubsetName"],"properties":{"canarySubsetName":{"type":"string"},"name":{"type":"string"},"stableSubsetName":{"type":"string"}}},"virtualService":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"routes":{"type":"array","items":{"type":"string"}},"tcpRoutes":{"type":"array","items":{"type":"object","properties":{"port":{"type":"integer","format":"int64"}}}},"tlsRoutes":{"type":"array","items":{"type":"object","properties":{"port":{"type":"integer","format":"int64"},"sniHosts":{"type":"array","items":{"type":"string"}}}}}}},"virtualServices":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"routes":{"type":"array","items":{"type":"string"}},"tcpRoutes":{"type":"array","items":{"type":"object","properties":{"port":{"type":"integer","format":"int64"}}}},"tlsRoutes":{"type":"array","items":{"type":"object","properties":{"port":{"type":"integer","format":"int64"},"sniHosts":{"type":"array","items":{"type":"string"}}}}}}}}}},"managedRoutes":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}}},"maxTrafficWeight":{"type":"integer","format":"int32"},"nginx":{"type":"object","properties":{"additionalIngressAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"annotationPrefix":{"type":"string"},"stableIngress":{"type":"string"},"stableIngresses":{"type":"array","items":{"type":"string"}}}},"plugins":{"x-kubernetes-preserve-unknown-fields":true},"smi":{"type":"object","properties":{"rootService":{"type":"string"},"trafficSplitName":{"type":"string"}}},"traefik":{"type":"object","required":["weightedTraefikServiceName"],"properties":{"weightedTraefikServiceName":{"type":"string"}}}}}}}}},"template":{"type":"object","properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"spec":{"type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"type":"integer","format":"int64"},"affinity":{"type":"object","properties":{"nodeAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["preference","weight"],"properties":{"preference":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}},"podAntiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}}}},"automountServiceAccountToken":{"type":"boolean"},"containers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"dnsConfig":{"type":"object","properties":{"nameservers":{"type":"array","items":{"type":"string"}},"options":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"searches":{"type":"array","items":{"type":"string"}}}},"dnsPolicy":{"type":"string"},"enableServiceLinks":{"type":"boolean"},"ephemeralContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"targetContainerName":{"type":"string"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"hostAliases":{"type":"array","items":{"type":"object","properties":{"hostnames":{"type":"array","items":{"type":"string"}},"ip":{"type":"string"}}}},"hostIPC":{"type":"boolean"},"hostNetwork":{"type":"boolean"},"hostPID":{"type":"boolean"},"hostUsers":{"type":"boolean"},"hostname":{"type":"string"},"imagePullSecrets":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}},"initContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"x-kubernetes-preserve-unknown-fields":true},"requests":{"x-kubernetes-preserve-unknown-fields":true}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"nodeName":{"type":"string"},"nodeSelector":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"overhead":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"type":"string"},"priority":{"type":"integer","format":"int32"},"priorityClassName":{"type":"string"},"readinessGates":{"type":"array","items":{"type":"object","required":["conditionType"],"properties":{"conditionType":{"type":"string"}}}},"resourceClaims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"source":{"type":"object","properties":{"resourceClaimName":{"type":"string"},"resourceClaimTemplateName":{"type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"restartPolicy":{"type":"string"},"runtimeClassName":{"type":"string"},"schedulerName":{"type":"string"},"schedulingGates":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"type":"object","properties":{"fsGroup":{"type":"integer","format":"int64"},"fsGroupChangePolicy":{"type":"string"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"supplementalGroups":{"type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"serviceAccount":{"type":"string"},"serviceAccountName":{"type":"string"},"setHostnameAsFQDN":{"type":"boolean"},"shareProcessNamespace":{"type":"boolean"},"subdomain":{"type":"string"},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"tolerations":{"type":"array","items":{"type":"object","properties":{"effect":{"type":"string"},"key":{"type":"string"},"operator":{"type":"string"},"tolerationSeconds":{"type":"integer","format":"int64"},"value":{"type":"string"}}}},"topologySpreadConstraints":{"type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"type":"integer","format":"int32"},"minDomains":{"type":"integer","format":"int32"},"nodeAffinityPolicy":{"type":"string"},"nodeTaintsPolicy":{"type":"string"},"topologyKey":{"type":"string"},"whenUnsatisfiable":{"type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}}}}}},"workloadRef":{"type":"object","properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"scaleDown":{"type":"string"}}}}},"status":{"type":"object","properties":{"HPAReplicas":{"type":"integer","format":"int32"},"abort":{"type":"boolean"},"abortedAt":{"type":"string","format":"date-time"},"alb":{"type":"object","properties":{"canaryTargetGroup":{"type":"object","required":["arn","name"],"properties":{"arn":{"type":"string"},"fullName":{"type":"string"},"name":{"type":"string"}}},"ingress":{"type":"string"},"loadBalancer":{"type":"object","required":["arn","name"],"properties":{"arn":{"type":"string"},"fullName":{"type":"string"},"name":{"type":"string"}}},"stableTargetGroup":{"type":"object","required":["arn","name"],"properties":{"arn":{"type":"string"},"fullName":{"type":"string"},"name":{"type":"string"}}}}},"albs":{"type":"array","items":{"type":"object","properties":{"canaryTargetGroup":{"type":"object","required":["arn","name"],"properties":{"arn":{"type":"string"},"fullName":{"type":"string"},"name":{"type":"string"}}},"ingress":{"type":"string"},"loadBalancer":{"type":"object","required":["arn","name"],"properties":{"arn":{"type":"string"},"fullName":{"type":"string"},"name":{"type":"string"}}},"stableTargetGroup":{"type":"object","required":["arn","name"],"properties":{"arn":{"type":"string"},"fullName":{"type":"string"},"name":{"type":"string"}}}}}},"availableReplicas":{"type":"integer","format":"int32"},"blueGreen":{"type":"object","properties":{"activeSelector":{"type":"string"},"postPromotionAnalysisRunStatus":{"type":"object","required":["name","status"],"properties":{"message":{"type":"string"},"name":{"type":"string"},"status":{"type":"string"}}},"prePromotionAnalysisRunStatus":{"type":"object","required":["name","status"],"properties":{"message":{"type":"string"},"name":{"type":"string"},"status":{"type":"string"}}},"previewSelector":{"type":"string"},"scaleUpPreviewCheckPoint":{"type":"boolean"}}},"canary":{"type":"object","properties":{"currentBackgroundAnalysisRunStatus":{"type":"object","required":["name","status"],"properties":{"message":{"type":"string"},"name":{"type":"string"},"status":{"type":"string"}}},"currentExperiment":{"type":"string"},"currentStepAnalysisRunStatus":{"type":"object","required":["name","status"],"properties":{"message":{"type":"string"},"name":{"type":"string"},"status":{"type":"string"}}},"stablePingPong":{"type":"string"},"weights":{"type":"object","required":["canary","stable"],"properties":{"additional":{"type":"array","items":{"type":"object","required":["weight"],"properties":{"podTemplateHash":{"type":"string"},"serviceName":{"type":"string"},"weight":{"type":"integer","format":"int32"}}}},"canary":{"type":"object","required":["weight"],"properties":{"podTemplateHash":{"type":"string"},"serviceName":{"type":"string"},"weight":{"type":"integer","format":"int32"}}},"stable":{"type":"object","required":["weight"],"properties":{"podTemplateHash":{"type":"string"},"serviceName":{"type":"string"},"weight":{"type":"integer","format":"int32"}}},"verified":{"type":"boolean"}}}}},"collisionCount":{"type":"integer","format":"int32"},"conditions":{"type":"array","items":{"type":"object","required":["lastTransitionTime","lastUpdateTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"lastUpdateTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}}},"controllerPause":{"type":"boolean"},"currentPodHash":{"type":"string"},"currentStepHash":{"type":"string"},"currentStepIndex":{"type":"integer","format":"int32"},"message":{"type":"string"},"observedGeneration":{"type":"string"},"pauseConditions":{"type":"array","items":{"type":"object","required":["reason","startTime"],"properties":{"reason":{"type":"string"},"startTime":{"type":"string","format":"date-time"}}}},"phase":{"type":"string"},"promoteFull":{"type":"boolean"},"readyReplicas":{"type":"integer","format":"int32"},"replicas":{"type":"integer","format":"int32"},"restartedAt":{"type":"string","format":"date-time"},"selector":{"type":"string"},"stableRS":{"type":"string"},"updatedReplicas":{"type":"integer","format":"int32"},"workloadObservedGeneration":{"type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"Rollout","version":"v1alpha1"}]},"io.argoproj.v1alpha1.RolloutList":{"description":"RolloutList is a list of Rollout","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of rollouts. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.Rollout"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"RolloutList","version":"v1alpha1"}]},"io.argoproj.v1alpha1.RolloutManager":{"description":"RolloutManager is the Schema for the RolloutManagers API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"RolloutManagerSpec defines the desired state of Argo Rollouts","type":"object","properties":{"additionalMetadata":{"description":"Metadata to apply to the generated resources","type":"object","properties":{"annotations":{"description":"Annotations to add to the resources during its creation.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels to add to the resources during its creation.","type":"object","additionalProperties":{"type":"string"}}}},"controllerResources":{"description":"Resources requests/limits for Argo Rollout controller","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"env":{"description":"Env lets you specify environment for Rollouts pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"extraCommandArgs":{"description":"Extra Command arguments that would append to the Rollouts\nExtraCommandArgs will not be added, if one of these commands is already part of the Rollouts command\nwith same or different value.","type":"array","items":{"type":"string"}},"ha":{"description":"HA options for High Availability support for Rollouts.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle HA support globally for RolloutManager.","type":"boolean"}}},"image":{"description":"Image defines Argo Rollouts controller image (optional)","type":"string"},"namespaceScoped":{"description":"NamespaceScoped lets you specify if RolloutManager has to watch a namespace or the whole cluster","type":"boolean"},"nodePlacement":{"description":"NodePlacement defines NodeSelectors and Taints for Rollouts workloads","type":"object","properties":{"nodeSelector":{"description":"NodeSelector is a field of PodSpec, it is a map of key value pairs used for node selection","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"Tolerations allow the pods to schedule onto nodes with matching taints","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"plugins":{"description":"Plugins specify the traffic and metric plugins in Argo Rollout","type":"object","properties":{"metric":{"description":"Metric holds a list of metric plugins used to gather and report metrics during rollouts.","type":"array","items":{"description":"Plugin is used to integrate traffic management and metric plugins into the Argo Rollouts controller. For more information on these plugins, see the upstream Argo Rollouts documentation.","type":"object","required":["location","name"],"properties":{"location":{"description":"Location supports http(s):// urls and file://, though file:// requires the plugin be available on the filesystem","type":"string"},"name":{"description":"Name of the plugin, it must match the name required by the plugin so it can find its configuration","type":"string"},"sha256":{"description":"SHA256 is an optional sha256 checksum of the plugin executable","type":"string"}}}},"trafficManagement":{"description":"TrafficManagement holds a list of traffic management plugins used to control traffic routing during rollouts.","type":"array","items":{"description":"Plugin is used to integrate traffic management and metric plugins into the Argo Rollouts controller. For more information on these plugins, see the upstream Argo Rollouts documentation.","type":"object","required":["location","name"],"properties":{"location":{"description":"Location supports http(s):// urls and file://, though file:// requires the plugin be available on the filesystem","type":"string"},"name":{"description":"Name of the plugin, it must match the name required by the plugin so it can find its configuration","type":"string"},"sha256":{"description":"SHA256 is an optional sha256 checksum of the plugin executable","type":"string"}}}}}},"skipNotificationSecretDeployment":{"description":"SkipNotificationSecretDeployment lets you specify if the argo notification secret should be deployed","type":"boolean"},"version":{"description":"Version defines Argo Rollouts controller tag (optional)","type":"string"}}},"status":{"description":"RolloutManagerStatus defines the observed state of RolloutManager","type":"object","properties":{"conditions":{"description":"Conditions is an array of the RolloutManager's status conditions","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.\n---\nThis struct is intended for direct use as an array at the field path .status.conditions.  For example,\n\n\n\ttype FooStatus struct{\n\t    // Represents the observations of a foo's current state.\n\t    // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\"\n\t    // +patchMergeKey=type\n\t    // +patchStrategy=merge\n\t    // +listType=map\n\t    // +listMapKey=type\n\t    Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t    // other fields\n\t}","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.\n---\nMany .condition.type values are consistent across resources like Available, but because arbitrary conditions can be\nuseful (see .node.status.conditions), the ability to deconflict is important.\nThe regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"phase":{"description":"Phase is a simple, high-level summary of where the RolloutManager is in its lifecycle.\nThere are three possible phase values:\nPending: The RolloutManager has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nAvailable: All of the resources for the RolloutManager are ready.\nUnknown: The state of the RolloutManager phase could not be obtained.","type":"string"},"rolloutController":{"description":"RolloutController is a simple, high-level summary of where the RolloutController component is in its lifecycle.\nThere are three possible RolloutController values:\nPending: The RolloutController component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the RolloutController component are in a Ready state.\nUnknown: The state of the RolloutController component could not be obtained.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"RolloutManager","version":"v1alpha1"}]},"io.argoproj.v1alpha1.RolloutManagerList":{"description":"RolloutManagerList is a list of RolloutManager","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of rolloutmanagers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1alpha1.RolloutManager"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"RolloutManagerList","version":"v1alpha1"}]},"io.argoproj.v1beta1.ArgoCD":{"description":"ArgoCD is the Schema for the argocds API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ArgoCDSpec defines the desired state of ArgoCD","type":"object","properties":{"aggregatedClusterRoles":{"description":"AggregatedClusterRoles will allow users to have aggregated ClusterRoles for a cluster scoped instance.","type":"boolean"},"applicationInstanceLabelKey":{"description":"ApplicationInstanceLabelKey is the key name where Argo CD injects the app name as a tracking label.","type":"string"},"applicationSet":{"description":"ArgoCDApplicationSet defines whether the Argo CD ApplicationSet controller should be installed.","type":"object","properties":{"annotations":{"description":"Custom annotations to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled is the flag to enable the Application Set Controller during ArgoCD installation. (optional, default `true`)","type":"boolean"},"env":{"description":"Env lets you specify environment for applicationSet controller pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"extraCommandArgs":{"description":"ExtraCommandArgs allows users to pass command line arguments to ApplicationSet controller.\nThey get added to default command line arguments provided by the operator.\nPlease note that the command line arguments provided as part of ExtraCommandArgs\nwill not overwrite the default command line arguments.","type":"array","items":{"type":"string"}},"image":{"description":"Image is the Argo CD ApplicationSet image (optional)","type":"string"},"labels":{"description":"Custom labels to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"logLevel":{"description":"LogLevel describes the log level that should be used by the ApplicationSet controller. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug,info, error, and warn.","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for ApplicationSet.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"scmProviders":{"description":"SCMProviders defines the list of allowed custom SCM provider API URLs","type":"array","items":{"type":"string"}},"scmRootCAConfigMap":{"description":"SCMRootCAConfigMap is the name of the config map that stores the Gitlab SCM Provider's TLS certificate which will be mounted on the ApplicationSet Controller (optional).","type":"string"},"sourceNamespaces":{"description":"SourceNamespaces defines the namespaces applicationset resources are allowed to be created in","type":"array","items":{"type":"string"}},"version":{"description":"Version is the Argo CD ApplicationSet image tag. (optional)","type":"string"},"volumeMounts":{"description":"VolumeMounts adds volumeMounts to the Argo CD ApplicationSet Controller container.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes adds volumes to the Argo CD ApplicationSet Controller container.","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"}},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"}},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"}}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath\n---\nTODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not\nmount host directories as read/write.","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"}},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections","type":"array","items":{"description":"Projection that may be projected along with other supported volume types","type":"object","properties":{"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}}}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}},"webhookServer":{"description":"WebhookServerSpec defines the options for the ApplicationSet Webhook Server component.","type":"object","properties":{"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Application set webhook component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Application set webhook component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}}}}}},"banner":{"description":"Banner defines an additional banner to be displayed in Argo CD UI","type":"object","required":["content"],"properties":{"content":{"description":"Content defines the banner message content to display","type":"string"},"url":{"description":"URL defines an optional URL to be used as banner message link","type":"string"}}},"configManagementPlugins":{"description":"ConfigManagementPlugins is used to specify additional config management plugins.","type":"string"},"controller":{"description":"Controller defines the Application Controller options for ArgoCD.","type":"object","properties":{"annotations":{"description":"Custom annotations to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"appSync":{"description":"AppSync is used to control the sync frequency, by default the ArgoCD\ncontroller polls Git every 3m.\n\n\nSet this to a duration, e.g. 10m or 600s to control the synchronisation\nfrequency.","type":"string"},"enabled":{"description":"Enabled is the flag to enable the Application Controller during ArgoCD installation. (optional, default `true`)","type":"boolean"},"env":{"description":"Env lets you specify environment for application controller pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"extraCommandArgs":{"description":"Extra Command arguments allows users to pass command line arguments to controller workload. They get added to default command line arguments provided\nby the operator.\nPlease note that the command line arguments provided as part of ExtraCommandArgs will not overwrite the default command line arguments.","type":"array","items":{"type":"string"}},"initContainers":{"description":"InitContainers defines the list of initialization containers for the Application Controller component.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"labels":{"description":"Custom labels to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"logFormat":{"description":"LogFormat refers to the log format used by the Application Controller component. Defaults to ArgoCDDefaultLogFormat if not configured. Valid options are text or json.","type":"string"},"logLevel":{"description":"LogLevel refers to the log level used by the Application Controller component. Defaults to ArgoCDDefaultLogLevel if not configured. Valid options are debug, info, error, and warn.","type":"string"},"parallelismLimit":{"description":"ParallelismLimit defines the limit for parallel kubectl operations","type":"integer","format":"int32"},"processors":{"description":"Processors contains the options for the Application Controller processors.","type":"object","properties":{"operation":{"description":"Operation is the number of application operation processors.","type":"integer","format":"int32"},"status":{"description":"Status is the number of application status processors.","type":"integer","format":"int32"}}},"resources":{"description":"Resources defines the Compute Resources required by the container for the Application Controller.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"sharding":{"description":"Sharding contains the options for the Application Controller sharding configuration.","type":"object","properties":{"clustersPerShard":{"description":"ClustersPerShard defines the maximum number of clusters managed by each argocd shard","type":"integer","format":"int32","minimum":1},"dynamicScalingEnabled":{"description":"DynamicScalingEnabled defines whether dynamic scaling should be enabled for Application Controller component","type":"boolean"},"enabled":{"description":"Enabled defines whether sharding should be enabled on the Application Controller component.","type":"boolean"},"maxShards":{"description":"MaxShards defines the maximum number of shards at any given point","type":"integer","format":"int32"},"minShards":{"description":"MinShards defines the minimum number of shards at any given point","type":"integer","format":"int32","minimum":1},"replicas":{"description":"Replicas defines the number of replicas to run in the Application controller shard.","type":"integer","format":"int32"}}},"sidecarContainers":{"description":"SidecarContainers defines the list of sidecar containers for the controller deployment","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"volumeMounts":{"description":"VolumeMounts adds volumeMounts to the Argo CD Controller container.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes adds volumes to the Argo CD Controller container.","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"}},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"}},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"}}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath\n---\nTODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not\nmount host directories as read/write.","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"}},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections","type":"array","items":{"description":"Projection that may be projected along with other supported volume types","type":"object","properties":{"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}}}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}}}},"defaultClusterScopedRoleDisabled":{"description":"DefaultClusterScopedRoleDisabled will disable creation of default ClusterRoles for a cluster scoped instance.","type":"boolean"},"disableAdmin":{"description":"DisableAdmin will disable the admin user.","type":"boolean"},"extraConfig":{"description":"ExtraConfig can be used to add fields to Argo CD configmap that are not supported by Argo CD CRD.\n\n\nNote: ExtraConfig takes precedence over Argo CD CRD.\nFor example, A user sets `argocd.Spec.DisableAdmin` = true and also\n`a.Spec.ExtraConfig[\"admin.enabled\"]` = true. In this case, operator updates\nArgo CD Configmap as follows -> argocd-cm.Data[\"admin.enabled\"] = true.","type":"object","additionalProperties":{"type":"string"}},"gaAnonymizeUsers":{"description":"GAAnonymizeUsers toggles user IDs being hashed before sending to google analytics.","type":"boolean"},"gaTrackingID":{"description":"GATrackingID is the google analytics tracking ID to use.","type":"string"},"grafana":{"description":"Deprecated: Grafana defines the Grafana server options for ArgoCD.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle Grafana support globally for ArgoCD.","type":"boolean"},"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"image":{"description":"Image is the Grafana container image.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Grafana component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"resources":{"description":"Resources defines the Compute Resources required by the container for Grafana.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Grafana component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}},"size":{"description":"Size is the replica count for the Grafana Deployment.","type":"integer","format":"int32"},"version":{"description":"Version is the Grafana container image tag.","type":"string"}}},"ha":{"description":"HA options for High Availability support for the Redis component.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle HA support globally for Argo CD.","type":"boolean"},"redisProxyImage":{"description":"RedisProxyImage is the Redis HAProxy container image.","type":"string"},"redisProxyVersion":{"description":"RedisProxyVersion is the Redis HAProxy container image tag.","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for HA.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"helpChatText":{"description":"HelpChatText is the text for getting chat help, defaults to \"Chat now!\"","type":"string"},"helpChatURL":{"description":"HelpChatURL is the URL for getting chat help, this will typically be your Slack channel for support.","type":"string"},"image":{"description":"Image is the ArgoCD container image for all ArgoCD components.","type":"string"},"import":{"description":"Import is the import/restore options for ArgoCD.","type":"object","required":["name"],"properties":{"name":{"description":"Name of an ArgoCDExport from which to import data.","type":"string"},"namespace":{"description":"Namespace for the ArgoCDExport, defaults to the same namespace as the ArgoCD.","type":"string"}}},"initialRepositories":{"description":"InitialRepositories to configure Argo CD with upon creation of the cluster.","type":"string"},"initialSSHKnownHosts":{"description":"InitialSSHKnownHosts defines the SSH known hosts data upon creation of the cluster for connecting Git repositories via SSH.","type":"object","properties":{"excludedefaulthosts":{"description":"ExcludeDefaultHosts describes whether you would like to include the default\nlist of SSH Known Hosts provided by ArgoCD.","type":"boolean"},"keys":{"description":"Keys describes a custom set of SSH Known Hosts that you would like to\nhave included in your ArgoCD server.","type":"string"}}},"kustomizeBuildOptions":{"description":"KustomizeBuildOptions is used to specify build options/parameters to use with `kustomize build`.","type":"string"},"kustomizeVersions":{"description":"KustomizeVersions is a listing of configured versions of Kustomize to be made available within ArgoCD.","type":"array","items":{"description":"KustomizeVersionSpec is used to specify information about a kustomize version to be used within ArgoCD.","type":"object","properties":{"path":{"description":"Path is the path to a configured kustomize version on the filesystem of your repo server.","type":"string"},"version":{"description":"Version is a configured kustomize version in the format of vX.Y.Z","type":"string"}}}},"monitoring":{"description":"Monitoring defines whether workload status monitoring configuration for this instance.","type":"object","required":["enabled"],"properties":{"disableMetrics":{"description":"DisableMetrics field can be used to enable or disable the collection of Metrics on Openshift","type":"boolean"},"enabled":{"description":"Enabled defines whether workload status monitoring is enabled for this instance or not","type":"boolean"}}},"nodePlacement":{"description":"NodePlacement defines NodeSelectors and Taints for Argo CD workloads","type":"object","properties":{"nodeSelector":{"description":"NodeSelector is a field of PodSpec, it is a map of key value pairs used for node selection","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"Tolerations allow the pods to schedule onto nodes with matching taints","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"notifications":{"description":"Notifications defines whether the Argo CD Notifications controller should be installed.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled defines whether argocd-notifications controller should be deployed or not","type":"boolean"},"env":{"description":"Env let you specify environment variables for Notifications pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"image":{"description":"Image is the Argo CD Notifications image (optional)","type":"string"},"logLevel":{"description":"LogLevel describes the log level that should be used by the argocd-notifications. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug,info, error, and warn.","type":"string"},"replicas":{"description":"Replicas defines the number of replicas to run for notifications-controller","type":"integer","format":"int32"},"resources":{"description":"Resources defines the Compute Resources required by the container for Argo CD Notifications.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Argo CD Notifications image tag. (optional)","type":"string"}}},"oidcConfig":{"description":"OIDCConfig is the OIDC configuration as an alternative to dex.","type":"string"},"prometheus":{"description":"Prometheus defines the Prometheus server options for ArgoCD.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle Prometheus support globally for ArgoCD.","type":"boolean"},"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Prometheus component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Prometheus component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}},"size":{"description":"Size is the replica count for the Prometheus StatefulSet.","type":"integer","format":"int32"}}},"rbac":{"description":"RBAC defines the RBAC configuration for Argo CD.","type":"object","properties":{"defaultPolicy":{"description":"DefaultPolicy is the name of the default role which Argo CD will falls back to, when\nauthorizing API requests (optional). If omitted or empty, users may be still be able to login,\nbut will see no apps, projects, etc...","type":"string"},"policy":{"description":"Policy is CSV containing user-defined RBAC policies and role definitions.\nPolicy rules are in the form:\n  p, subject, resource, action, object, effect\nRole definitions and bindings are in the form:\n  g, subject, inherited-subject\nSee https://github.com/argoproj/argo-cd/blob/master/docs/operator-manual/rbac.md for additional information.","type":"string"},"policyMatcherMode":{"description":"PolicyMatcherMode configures the matchers function mode for casbin.\nThere are two options for this, 'glob' for glob matcher or 'regex' for regex matcher.","type":"string"},"scopes":{"description":"Scopes controls which OIDC scopes to examine during rbac enforcement (in addition to `sub` scope).\nIf omitted, defaults to: '[groups]'.","type":"string"}}},"redis":{"description":"Redis defines the Redis server options for ArgoCD.","type":"object","properties":{"autotls":{"description":"AutoTLS specifies the method to use for automatic TLS configuration for the redis server\nThe value specified here can currently be:\n- openshift - Use the OpenShift service CA to request TLS config","type":"string"},"disableTLSVerification":{"description":"DisableTLSVerification defines whether redis server API should be accessed using strict TLS validation","type":"boolean"},"enabled":{"description":"Enabled is the flag to enable Redis during ArgoCD installation. (optional, default `true`)","type":"boolean"},"image":{"description":"Image is the Redis container image.","type":"string"},"remote":{"description":"Remote specifies the remote URL of the Redis container. (optional, by default, a local instance managed by the operator is used.)","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for Redis.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Redis container image tag.","type":"string"}}},"repo":{"description":"Repo defines the repo server options for Argo CD.","type":"object","properties":{"annotations":{"description":"Custom annotations to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"autotls":{"description":"AutoTLS specifies the method to use for automatic TLS configuration for the repo server\nThe value specified here can currently be:\n- openshift - Use the OpenShift service CA to request TLS config","type":"string"},"enabled":{"description":"Enabled is the flag to enable Repo Server during ArgoCD installation. (optional, default `true`)","type":"boolean"},"env":{"description":"Env lets you specify environment for repo server pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"execTimeout":{"description":"ExecTimeout specifies the timeout in seconds for tool execution","type":"integer"},"extraRepoCommandArgs":{"description":"Extra Command arguments allows users to pass command line arguments to repo server workload. They get added to default command line arguments provided\nby the operator.\nPlease note that the command line arguments provided as part of ExtraRepoCommandArgs will not overwrite the default command line arguments.","type":"array","items":{"type":"string"}},"image":{"description":"Image is the ArgoCD Repo Server container image.","type":"string"},"initContainers":{"description":"InitContainers defines the list of initialization containers for the repo server deployment","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"labels":{"description":"Custom labels to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"logFormat":{"description":"LogFormat describes the log format that should be used by the Repo Server. Defaults to ArgoCDDefaultLogFormat if not configured. Valid options are text or json.","type":"string"},"logLevel":{"description":"LogLevel describes the log level that should be used by the Repo Server. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug, info, error, and warn.","type":"string"},"mountsatoken":{"description":"MountSAToken describes whether you would like to have the Repo server mount the service account token","type":"boolean"},"remote":{"description":"Remote specifies the remote URL of the Repo Server container. (optional, by default, a local instance managed by the operator is used.)","type":"string"},"replicas":{"description":"Replicas defines the number of replicas for argocd-repo-server. Value should be greater than or equal to 0. Default is nil.","type":"integer","format":"int32"},"resources":{"description":"Resources defines the Compute Resources required by the container for Redis.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"serviceaccount":{"description":"ServiceAccount defines the ServiceAccount user that you would like the Repo server to use","type":"string"},"sidecarContainers":{"description":"SidecarContainers defines the list of sidecar containers for the repo server deployment","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"verifytls":{"description":"VerifyTLS defines whether repo server API should be accessed using strict TLS validation","type":"boolean"},"version":{"description":"Version is the ArgoCD Repo Server container image tag.","type":"string"},"volumeMounts":{"description":"VolumeMounts adds volumeMounts to the repo server container","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes adds volumes to the repo server deployment","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"}},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"}},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"}}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath\n---\nTODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not\nmount host directories as read/write.","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"}},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections","type":"array","items":{"description":"Projection that may be projected along with other supported volume types","type":"object","properties":{"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}}}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}}}},"repositoryCredentials":{"description":"RepositoryCredentials are the Git pull credentials to configure Argo CD with upon creation of the cluster.","type":"string"},"resourceActions":{"description":"ResourceActions customizes resource action behavior.","type":"array","items":{"description":"Resource Customization for custom action","type":"object","properties":{"action":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"}}}},"resourceExclusions":{"description":"ResourceExclusions is used to completely ignore entire classes of resource group/kinds.","type":"string"},"resourceHealthChecks":{"description":"ResourceHealthChecks customizes resource health check behavior.","type":"array","items":{"description":"Resource Customization for custom health check","type":"object","properties":{"check":{"type":"string"},"group":{"type":"string"},"kind":{"type":"string"}}}},"resourceIgnoreDifferences":{"description":"ResourceIgnoreDifferences customizes resource ignore difference behavior.","type":"object","properties":{"all":{"type":"object","properties":{"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"managedFieldsManagers":{"type":"array","items":{"type":"string"}}}},"resourceIdentifiers":{"type":"array","items":{"description":"Resource Customization fields for ignore difference","type":"object","properties":{"customization":{"type":"object","properties":{"jqPathExpressions":{"type":"array","items":{"type":"string"}},"jsonPointers":{"type":"array","items":{"type":"string"}},"managedFieldsManagers":{"type":"array","items":{"type":"string"}}}},"group":{"type":"string"},"kind":{"type":"string"}}}}}},"resourceInclusions":{"description":"ResourceInclusions is used to only include specific group/kinds in the\nreconciliation process.","type":"string"},"resourceTrackingMethod":{"description":"ResourceTrackingMethod defines how Argo CD should track resources that it manages","type":"string"},"server":{"description":"Server defines the options for the ArgoCD Server component.","type":"object","properties":{"annotations":{"description":"Custom annotations to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"autoscale":{"description":"Autoscale defines the autoscale options for the Argo CD Server component.","type":"object","required":["enabled"],"properties":{"enabled":{"description":"Enabled will toggle autoscaling support for the Argo CD Server component.","type":"boolean"},"hpa":{"description":"HPA defines the HorizontalPodAutoscaler options for the Argo CD Server component.","type":"object","required":["maxReplicas","scaleTargetRef"],"properties":{"maxReplicas":{"description":"maxReplicas is the upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas.","type":"integer","format":"int32"},"minReplicas":{"description":"minReplicas is the lower limit for the number of replicas to which the autoscaler\ncan scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the\nalpha feature gate HPAScaleToZero is enabled and at least one Object or External\nmetric is configured.  Scaling is active as long as at least one metric value is\navailable.","type":"integer","format":"int32"},"scaleTargetRef":{"description":"reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption\nand will set the desired number of pods by using its Scale subresource.","type":"object","required":["kind","name"],"properties":{"apiVersion":{"description":"apiVersion is the API version of the referent","type":"string"},"kind":{"description":"kind is the kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"name is the name of the referent; More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetCPUUtilizationPercentage":{"description":"targetCPUUtilizationPercentage is the target average CPU utilization (represented as a percentage of requested CPU) over all the pods;\nif not specified the default autoscaling policy will be used.","type":"integer","format":"int32"}}}}},"enableRolloutsUI":{"description":"EnableRolloutsUI will add the Argo Rollouts UI extension in ArgoCD Dashboard.","type":"boolean"},"enabled":{"description":"Enabled is the flag to enable ArgoCD Server during ArgoCD installation. (optional, default `true`)","type":"boolean"},"env":{"description":"Env lets you specify environment for API server pods","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"extraCommandArgs":{"description":"Extra Command arguments that would append to the Argo CD server command.\nExtraCommandArgs will not be added, if one of these commands is already part of the server command\nwith same or different value.","type":"array","items":{"type":"string"}},"grpc":{"description":"GRPC defines the state for the Argo CD Server GRPC options.","type":"object","properties":{"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for the Argo CD Server GRPC Ingress.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}}}},"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"ingress":{"description":"Ingress defines the desired state for an Ingress for the Argo CD Server component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to apply to the Ingress.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the Ingress.","type":"boolean"},"ingressClassName":{"description":"IngressClassName for the Ingress resource.","type":"string"},"path":{"description":"Path used for the Ingress resource.","type":"string"},"tls":{"description":"TLS configuration. Currently the Ingress only supports a single TLS\nport, 443. If multiple members of this list specify different hosts, they\nwill be multiplexed on the same port according to the hostname specified\nthrough the SNI TLS extension, if the ingress controller fulfilling the\ningress supports SNI.","type":"array","items":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in\nthis list must match the name/s used in the tlsSecret. Defaults to the\nwildcard host setting for the loadbalancer controller fulfilling this\nIngress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on\nport 443. Field is left optional to allow TLS routing based on SNI\nhostname alone. If the SNI host in a listener conflicts with the \"Host\"\nheader field used by an IngressRule, the SNI host is used for termination\nand value of the \"Host\" header is used for routing.","type":"string"}}}}}},"initContainers":{"description":"InitContainers defines the list of initialization containers for the Argo CD Server component.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"insecure":{"description":"Insecure toggles the insecure flag.","type":"boolean"},"labels":{"description":"Custom labels to pods deployed by the operator","type":"object","additionalProperties":{"type":"string"}},"logFormat":{"description":"LogFormat refers to the log level to be used by the ArgoCD Server component. Defaults to ArgoCDDefaultLogFormat if not configured. Valid options are text or json.","type":"string"},"logLevel":{"description":"LogLevel refers to the log level to be used by the ArgoCD Server component. Defaults to ArgoCDDefaultLogLevel if not set.  Valid options are debug, info, error, and warn.","type":"string"},"replicas":{"description":"Replicas defines the number of replicas for argocd-server. Default is nil. Value should be greater than or equal to 0. Value will be ignored if Autoscaler is enabled.","type":"integer","format":"int32"},"resources":{"description":"Resources defines the Compute Resources required by the container for the Argo CD server component.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"route":{"description":"Route defines the desired state for an OpenShift Route for the Argo CD Server component.","type":"object","required":["enabled"],"properties":{"annotations":{"description":"Annotations is the map of annotations to use for the Route resource.","type":"object","additionalProperties":{"type":"string"}},"enabled":{"description":"Enabled will toggle the creation of the OpenShift Route.","type":"boolean"},"labels":{"description":"Labels is the map of labels to use for the Route resource","type":"object","additionalProperties":{"type":"string"}},"path":{"description":"Path the router watches for, to route traffic for to the service.","type":"string"},"tls":{"description":"TLS provides the ability to configure certificates and termination for the Route.","type":"object","required":["termination"],"properties":{"caCertificate":{"description":"caCertificate provides the cert authority certificate contents","type":"string"},"certificate":{"description":"certificate provides certificate contents. This should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate.","type":"string"},"destinationCACertificate":{"description":"destinationCACertificate provides the contents of the ca certificate of the final destination.  When using reencrypt\ntermination this file should be provided in order to have routers use it for health checks on the secure connection.\nIf this field is not specified, the router may provide its own destination CA and perform hostname validation using\nthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automatically\nverify.","type":"string"},"externalCertificate":{"description":"externalCertificate provides certificate contents as a secret reference.\nThis should be a single serving certificate, not a certificate\nchain. Do not include a CA certificate. The secret referenced should\nbe present in the same namespace as that of the Route.\nForbidden when `certificate` is set.","type":"object","properties":{"name":{"description":"name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"insecureEdgeTerminationPolicy":{"description":"insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. While\neach router may make its own decisions on which ports to expose, this is normally port 80.\n\n\n* Allow - traffic is sent to the server on the insecure port (edge/reencrypt terminations only) (default).\n* None - no traffic is allowed on the insecure port.\n* Redirect - clients are redirected to the secure port.","type":"string","enum":["Allow","None","Redirect",""]},"key":{"description":"key provides key file contents","type":"string"},"termination":{"description":"termination indicates termination type.\n\n\n* edge - TLS termination is done by the router and http is used to communicate with the backend (default)\n* passthrough - Traffic is sent straight to the destination without the router providing TLS termination\n* reencrypt - TLS termination is done by the router and https is used to communicate with the backend\n\n\nNote: passthrough termination is incompatible with httpHeader actions","type":"string","enum":["edge","reencrypt","passthrough"]}},"x-kubernetes-validations":[{"message":"cannot have both spec.tls.termination: passthrough and spec.tls.insecureEdgeTerminationPolicy: Allow","rule":"has(self.termination) && has(self.insecureEdgeTerminationPolicy) ? !((self.termination=='passthrough') && (self.insecureEdgeTerminationPolicy=='Allow')) : true"}]},"wildcardPolicy":{"description":"WildcardPolicy if any for the route. Currently only 'Subdomain' or 'None' is allowed.","type":"string"}}},"service":{"description":"Service defines the options for the Service backing the ArgoCD Server component.","type":"object","required":["type"],"properties":{"type":{"description":"Type is the ServiceType to use for the Service resource.","type":"string"}}},"sidecarContainers":{"description":"SidecarContainers defines the list of sidecar containers for the server deployment","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source must be a C_IDENTIFIER. All invalid keys\nwill be reported as an event when the container is starting. When a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor the backward compatibility. There are no validation of this field and\nlifecycle hooks will fail in runtime when tcp handler is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis field may only be set for init containers, and the only allowed value is \"Always\".\nFor non-init containers or when this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nSetting the RestartPolicy as \"Always\" for the init container will have the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"}}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default is DefaultProcMount which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies the http request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}}},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}}},"volumeMounts":{"description":"VolumeMounts adds volumeMounts to the Argo CD Server container.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}}},"volumes":{"description":"Volumes adds volumes to the Argo CD Server container.","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"}},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nIf RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"}},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"}}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath\n---\nTODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not\nmount host directories as read/write.","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://examples.k8s.io/volumes/iscsi/README.md","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"}},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections","type":"array","items":{"description":"Projection that may be projected along with other supported volume types","type":"object","properties":{"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}}}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nMore info: https://examples.k8s.io/volumes/rbd/README.md","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd\nTODO: how do we prevent errors in the filesystem from compromising the machine","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}}},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}}}}},"sourceNamespaces":{"description":"SourceNamespaces defines the namespaces application resources are allowed to be created in","type":"array","items":{"type":"string"}},"sso":{"description":"SSO defines the Single Sign-on configuration for Argo CD","type":"object","properties":{"dex":{"description":"Dex contains the configuration for Argo CD dex authentication","type":"object","properties":{"config":{"description":"Config is the dex connector configuration.","type":"string"},"env":{"description":"Env lets you specify environment variables for Dex.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"groups":{"description":"Optional list of required groups a user must be a member of","type":"array","items":{"type":"string"}},"image":{"description":"Image is the Dex container image.","type":"string"},"openShiftOAuth":{"description":"OpenShiftOAuth enables OpenShift OAuth authentication for the Dex server.","type":"boolean"},"resources":{"description":"Resources defines the Compute Resources required by the container for Dex.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"version":{"description":"Version is the Dex container image tag.","type":"string"}}},"keycloak":{"description":"Keycloak contains the configuration for Argo CD keycloak authentication","type":"object","properties":{"host":{"description":"Host is the hostname to use for Ingress/Route resources.","type":"string"},"image":{"description":"Image is the Keycloak container image.","type":"string"},"resources":{"description":"Resources defines the Compute Resources required by the container for Keycloak.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"rootCA":{"description":"Custom root CA certificate for communicating with the Keycloak OIDC provider","type":"string"},"verifyTLS":{"description":"VerifyTLS set to false disables strict TLS validation.","type":"boolean"},"version":{"description":"Version is the Keycloak container image tag.","type":"string"}}},"provider":{"description":"Provider installs and configures the given SSO Provider with Argo CD.","type":"string"}}},"statusBadgeEnabled":{"description":"StatusBadgeEnabled toggles application status badge feature.","type":"boolean"},"tls":{"description":"TLS defines the TLS options for ArgoCD.","type":"object","properties":{"ca":{"description":"CA defines the CA options.","type":"object","properties":{"configMapName":{"description":"ConfigMapName is the name of the ConfigMap containing the CA Certificate.","type":"string"},"secretName":{"description":"SecretName is the name of the Secret containing the CA Certificate and Key.","type":"string"}}},"initialCerts":{"description":"InitialCerts defines custom TLS certificates upon creation of the cluster for connecting Git repositories via HTTPS.","type":"object","additionalProperties":{"type":"string"}}}},"usersAnonymousEnabled":{"description":"UsersAnonymousEnabled toggles anonymous user access.\nThe anonymous users get default role permissions specified argocd-rbac-cm.","type":"boolean"},"version":{"description":"Version is the tag to use with the ArgoCD container image for all ArgoCD components.","type":"string"}}},"status":{"description":"ArgoCDStatus defines the observed state of ArgoCD","type":"object","properties":{"applicationController":{"description":"ApplicationController is a simple, high-level summary of where the Argo CD application controller component is in its lifecycle.\nThere are four possible ApplicationController values:\nPending: The Argo CD application controller component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD application controller component are in a Ready state.\nFailed: At least one of the  Argo CD application controller component Pods had a failure.\nUnknown: The state of the Argo CD application controller component could not be obtained.","type":"string"},"applicationSetController":{"description":"ApplicationSetController is a simple, high-level summary of where the Argo CD applicationSet controller component is in its lifecycle.\nThere are four possible ApplicationSetController values:\nPending: The Argo CD applicationSet controller component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD applicationSet controller component are in a Ready state.\nFailed: At least one of the  Argo CD applicationSet controller component Pods had a failure.\nUnknown: The state of the Argo CD applicationSet controller component could not be obtained.","type":"string"},"host":{"description":"Host is the hostname of the Ingress.","type":"string"},"notificationsController":{"description":"NotificationsController is a simple, high-level summary of where the Argo CD notifications controller component is in its lifecycle.\nThere are four possible NotificationsController values:\nPending: The Argo CD notifications controller component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD notifications controller component are in a Ready state.\nFailed: At least one of the  Argo CD notifications controller component Pods had a failure.\nUnknown: The state of the Argo CD notifications controller component could not be obtained.","type":"string"},"phase":{"description":"Phase is a simple, high-level summary of where the ArgoCD is in its lifecycle.\nThere are four possible phase values:\nPending: The ArgoCD has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nAvailable: All of the resources for the ArgoCD are ready.\nFailed: At least one resource has experienced a failure.\nUnknown: The state of the ArgoCD phase could not be obtained.","type":"string"},"redis":{"description":"Redis is a simple, high-level summary of where the Argo CD Redis component is in its lifecycle.\nThere are four possible redis values:\nPending: The Argo CD Redis component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD Redis component are in a Ready state.\nFailed: At least one of the  Argo CD Redis component Pods had a failure.\nUnknown: The state of the Argo CD Redis component could not be obtained.","type":"string"},"redisTLSChecksum":{"description":"RedisTLSChecksum contains the SHA256 checksum of the latest known state of tls.crt and tls.key in the argocd-operator-redis-tls secret.","type":"string"},"repo":{"description":"Repo is a simple, high-level summary of where the Argo CD Repo component is in its lifecycle.\nThere are four possible repo values:\nPending: The Argo CD Repo component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD Repo component are in a Ready state.\nFailed: At least one of the  Argo CD Repo component Pods had a failure.\nUnknown: The state of the Argo CD Repo component could not be obtained.","type":"string"},"repoTLSChecksum":{"description":"RepoTLSChecksum contains the SHA256 checksum of the latest known state of tls.crt and tls.key in the argocd-repo-server-tls secret.","type":"string"},"server":{"description":"Server is a simple, high-level summary of where the Argo CD server component is in its lifecycle.\nThere are four possible server values:\nPending: The Argo CD server component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD server component are in a Ready state.\nFailed: At least one of the  Argo CD server component Pods had a failure.\nUnknown: The state of the Argo CD server component could not be obtained.","type":"string"},"sso":{"description":"SSO is a simple, high-level summary of where the Argo CD SSO(Dex/Keycloak) component is in its lifecycle.\nThere are four possible sso values:\nPending: The Argo CD SSO component has been accepted by the Kubernetes system, but one or more of the required resources have not been created.\nRunning: All of the required Pods for the Argo CD SSO component are in a Ready state.\nFailed: At least one of the  Argo CD SSO component Pods had a failure.\nUnknown: The state of the Argo CD SSO component could not be obtained.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ArgoCD","version":"v1beta1"}]},"io.argoproj.v1beta1.ArgoCDList":{"description":"ArgoCDList is a list of ArgoCD","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of argocds. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.argoproj.v1beta1.ArgoCD"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"argoproj.io","kind":"ArgoCDList","version":"v1beta1"}]},"io.cert-manager.acme.v1.Challenge":{"description":"Challenge is a type to represent a Challenge request with an ACME server","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["authorizationURL","dnsName","issuerRef","key","solver","token","type","url"],"properties":{"authorizationURL":{"description":"The URL to the ACME Authorization resource that this\nchallenge is a part of.","type":"string"},"dnsName":{"description":"dnsName is the identifier that this challenge is for, e.g., example.com.\nIf the requested DNSName is a 'wildcard', this field MUST be set to the\nnon-wildcard domain, e.g., for `*.example.com`, it must be `example.com`.","type":"string"},"issuerRef":{"description":"References a properly configured ACME-type Issuer which should\nbe used to create this Challenge.\nIf the Issuer does not exist, processing will be retried.\nIf the Issuer is not an 'ACME' Issuer, an error will be returned and the\nChallenge will be marked as failed.","type":"object","required":["name"],"properties":{"group":{"description":"Group of the issuer being referred to.\nDefaults to 'cert-manager.io'.","type":"string"},"kind":{"description":"Kind of the issuer being referred to.\nDefaults to 'Issuer'.","type":"string"},"name":{"description":"Name of the issuer being referred to.","type":"string"}}},"key":{"description":"The ACME challenge key for this challenge\nFor HTTP01 challenges, this is the value that must be responded with to\ncomplete the HTTP01 challenge in the format:\n`<private key JWK thumbprint>.<key from acme server for challenge>`.\nFor DNS01 challenges, this is the base64 encoded SHA256 sum of the\n`<private key JWK thumbprint>.<key from acme server for challenge>`\ntext that must be set as the TXT record content.","type":"string"},"solver":{"description":"Contains the domain solving configuration that should be used to\nsolve this challenge resource.","type":"object","properties":{"dns01":{"description":"Configures cert-manager to attempt to complete authorizations by\nperforming the DNS01 challenge flow.","type":"object","properties":{"acmeDNS":{"description":"Use the 'ACME DNS' (https://github.com/joohoi/acme-dns) API to manage\nDNS01 challenge records.","type":"object","required":["accountSecretRef","host"],"properties":{"accountSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"host":{"type":"string"}}},"akamai":{"description":"Use the Akamai DNS zone management API to manage DNS01 challenge records.","type":"object","required":["accessTokenSecretRef","clientSecretSecretRef","clientTokenSecretRef","serviceConsumerDomain"],"properties":{"accessTokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientSecretSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientTokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"serviceConsumerDomain":{"type":"string"}}},"azureDNS":{"description":"Use the Microsoft Azure DNS API to manage DNS01 challenge records.","type":"object","required":["resourceGroupName","subscriptionID"],"properties":{"clientID":{"description":"Auth: Azure Service Principal:\nThe ClientID of the Azure Service Principal used to authenticate with Azure DNS.\nIf set, ClientSecret and TenantID must also be set.","type":"string"},"clientSecretSecretRef":{"description":"Auth: Azure Service Principal:\nA reference to a Secret containing the password associated with the Service Principal.\nIf set, ClientID and TenantID must also be set.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"environment":{"description":"name of the Azure environment (default AzurePublicCloud)","type":"string","enum":["AzurePublicCloud","AzureChinaCloud","AzureGermanCloud","AzureUSGovernmentCloud"]},"hostedZoneName":{"description":"name of the DNS zone that should be used","type":"string"},"managedIdentity":{"description":"Auth: Azure Workload Identity or Azure Managed Service Identity:\nSettings to enable Azure Workload Identity or Azure Managed Service Identity\nIf set, ClientID, ClientSecret and TenantID must not be set.","type":"object","properties":{"clientID":{"description":"client ID of the managed identity, cannot be used at the same time as resourceID","type":"string"},"resourceID":{"description":"resource ID of the managed identity, cannot be used at the same time as clientID\nCannot be used for Azure Managed Service Identity","type":"string"},"tenantID":{"description":"tenant ID of the managed identity, cannot be used at the same time as resourceID","type":"string"}}},"resourceGroupName":{"description":"resource group the DNS zone is located in","type":"string"},"subscriptionID":{"description":"ID of the Azure subscription","type":"string"},"tenantID":{"description":"Auth: Azure Service Principal:\nThe TenantID of the Azure Service Principal used to authenticate with Azure DNS.\nIf set, ClientID and ClientSecret must also be set.","type":"string"}}},"cloudDNS":{"description":"Use the Google Cloud DNS API to manage DNS01 challenge records.","type":"object","required":["project"],"properties":{"hostedZoneName":{"description":"HostedZoneName is an optional field that tells cert-manager in which\nCloud DNS zone the challenge record has to be created.\nIf left empty cert-manager will automatically choose a zone.","type":"string"},"project":{"type":"string"},"serviceAccountSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"cloudflare":{"description":"Use the Cloudflare API to manage DNS01 challenge records.","type":"object","properties":{"apiKeySecretRef":{"description":"API key to use to authenticate with Cloudflare.\nNote: using an API token to authenticate is now the recommended method\nas it allows greater control of permissions.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"apiTokenSecretRef":{"description":"API token used to authenticate with Cloudflare.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"email":{"description":"Email of the account, only required when using API key based authentication.","type":"string"}}},"cnameStrategy":{"description":"CNAMEStrategy configures how the DNS01 provider should handle CNAME\nrecords when found in DNS zones.","type":"string","enum":["None","Follow"]},"digitalocean":{"description":"Use the DigitalOcean DNS API to manage DNS01 challenge records.","type":"object","required":["tokenSecretRef"],"properties":{"tokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"rfc2136":{"description":"Use RFC2136 (\"Dynamic Updates in the Domain Name System\") (https://datatracker.ietf.org/doc/rfc2136/)\nto manage DNS01 challenge records.","type":"object","required":["nameserver"],"properties":{"nameserver":{"description":"The IP address or hostname of an authoritative DNS server supporting\nRFC2136 in the form host:port. If the host is an IPv6 address it must be\nenclosed in square brackets (e.g [2001:db8::1]) ; port is optional.\nThis field is required.","type":"string"},"protocol":{"description":"Protocol to use for dynamic DNS update queries. Valid values are (case-sensitive) ``TCP`` and ``UDP``; ``UDP`` (default).","type":"string","enum":["TCP","UDP"]},"tsigAlgorithm":{"description":"The TSIG Algorithm configured in the DNS supporting RFC2136. Used only\nwhen ``tsigSecretSecretRef`` and ``tsigKeyName`` are defined.\nSupported values are (case-insensitive): ``HMACMD5`` (default),\n``HMACSHA1``, ``HMACSHA256`` or ``HMACSHA512``.","type":"string"},"tsigKeyName":{"description":"The TSIG Key name configured in the DNS.\nIf ``tsigSecretSecretRef`` is defined, this field is required.","type":"string"},"tsigSecretSecretRef":{"description":"The name of the secret containing the TSIG value.\nIf ``tsigKeyName`` is defined, this field is required.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"route53":{"description":"Use the AWS Route53 API to manage DNS01 challenge records.","type":"object","properties":{"accessKeyID":{"description":"The AccessKeyID is used for authentication.\nCannot be set when SecretAccessKeyID is set.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"string"},"accessKeyIDSecretRef":{"description":"The SecretAccessKey is used for authentication. If set, pull the AWS\naccess key ID from a key within a Kubernetes Secret.\nCannot be set when AccessKeyID is set.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"auth":{"description":"Auth configures how cert-manager authenticates.","type":"object","required":["kubernetes"],"properties":{"kubernetes":{"description":"Kubernetes authenticates with Route53 using AssumeRoleWithWebIdentity\nby passing a bound ServiceAccount token.","type":"object","required":["serviceAccountRef"],"properties":{"serviceAccountRef":{"description":"A reference to a service account that will be used to request a bound\ntoken (also known as \"projected token\"). To use this field, you must\nconfigure an RBAC rule to let cert-manager request a token.","type":"object","required":["name"],"properties":{"audiences":{"description":"TokenAudiences is an optional list of audiences to include in the\ntoken passed to AWS. The default token consisting of the issuer's namespace\nand name is always included.\nIf unset the audience defaults to `sts.amazonaws.com`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the ServiceAccount used to request a token.","type":"string"}}}}}}},"hostedZoneID":{"description":"If set, the provider will manage only this zone in Route53 and will not do a lookup using the route53:ListHostedZonesByName api call.","type":"string"},"region":{"description":"Override the AWS region.\n\nRoute53 is a global service and does not have regional endpoints but the\nregion specified here (or via environment variables) is used as a hint to\nhelp compute the correct AWS credential scope and partition when it\nconnects to Route53. See:\n- [Amazon Route 53 endpoints and quotas](https://docs.aws.amazon.com/general/latest/gr/r53.html)\n- [Global services](https://docs.aws.amazon.com/whitepapers/latest/aws-fault-isolation-boundaries/global-services.html)\n\nIf you omit this region field, cert-manager will use the region from\nAWS_REGION and AWS_DEFAULT_REGION environment variables, if they are set\nin the cert-manager controller Pod.\n\nThe `region` field is not needed if you use [IAM Roles for Service Accounts (IRSA)](https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html).\nInstead an AWS_REGION environment variable is added to the cert-manager controller Pod by:\n[Amazon EKS Pod Identity Webhook](https://github.com/aws/amazon-eks-pod-identity-webhook).\nIn this case this `region` field value is ignored.\n\nThe `region` field is not needed if you use [EKS Pod Identities](https://docs.aws.amazon.com/eks/latest/userguide/pod-identities.html).\nInstead an AWS_REGION environment variable is added to the cert-manager controller Pod by:\n[Amazon EKS Pod Identity Agent](https://github.com/aws/eks-pod-identity-agent),\nIn this case this `region` field value is ignored.","type":"string"},"role":{"description":"Role is a Role ARN which the Route53 provider will assume using either the explicit credentials AccessKeyID/SecretAccessKey\nor the inferred credentials from environment variables, shared credentials file or AWS Instance metadata","type":"string"},"secretAccessKeySecretRef":{"description":"The SecretAccessKey is used for authentication.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"webhook":{"description":"Configure an external webhook based DNS01 challenge solver to manage\nDNS01 challenge records.","type":"object","required":["groupName","solverName"],"properties":{"config":{"description":"Additional configuration that should be passed to the webhook apiserver\nwhen challenges are processed.\nThis can contain arbitrary JSON data.\nSecret values should not be specified in this stanza.\nIf secret values are needed (e.g., credentials for a DNS service), you\nshould use a SecretKeySelector to reference a Secret resource.\nFor details on the schema of this field, consult the webhook provider\nimplementation's documentation.","x-kubernetes-preserve-unknown-fields":true},"groupName":{"description":"The API group name that should be used when POSTing ChallengePayload\nresources to the webhook apiserver.\nThis should be the same as the GroupName specified in the webhook\nprovider implementation.","type":"string"},"solverName":{"description":"The name of the solver to use, as defined in the webhook provider\nimplementation.\nThis will typically be the name of the provider, e.g., 'cloudflare'.","type":"string"}}}}},"http01":{"description":"Configures cert-manager to attempt to complete authorizations by\nperforming the HTTP01 challenge flow.\nIt is not possible to obtain certificates for wildcard domain names\n(e.g., `*.example.com`) using the HTTP01 challenge mechanism.","type":"object","properties":{"gatewayHTTPRoute":{"description":"The Gateway API is a sig-network community API that models service networking\nin Kubernetes (https://gateway-api.sigs.k8s.io/). The Gateway solver will\ncreate HTTPRoutes with the specified labels in the same namespace as the challenge.\nThis solver is experimental, and fields / behaviour may change in the future.","type":"object","properties":{"labels":{"description":"Custom labels that will be applied to HTTPRoutes created by cert-manager\nwhile solving HTTP-01 challenges.","type":"object","additionalProperties":{"type":"string"}},"parentRefs":{"description":"When solving an HTTP-01 challenge, cert-manager creates an HTTPRoute.\ncert-manager needs to know which parentRefs should be used when creating\nthe HTTPRoute. Usually, the parentRef references a Gateway. See:\nhttps://gateway-api.sigs.k8s.io/api-types/httproute/#attaching-to-gateways","type":"array","items":{"description":"ParentReference identifies an API object (usually a Gateway) that can be considered\na parent of this resource (usually a route). There are two kinds of parent resources\nwith \"Core\" support:\n\n* Gateway (Gateway conformance profile)\n* Service (Mesh conformance profile, ClusterIP Services only)\n\nThis API may be extended in the future to support additional kinds of parent\nresources.\n\nThe API object must be valid in the cluster; the Group and Kind must\nbe registered in the cluster for this reference to be valid.","type":"object","required":["name"],"properties":{"group":{"description":"Group is the group of the referent.\nWhen unspecified, \"gateway.networking.k8s.io\" is inferred.\nTo set the core API group (such as for a \"Service\" kind referent),\nGroup must be explicitly set to \"\" (empty string).\n\nSupport: Core","type":"string","maxLength":253,"pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"kind":{"description":"Kind is kind of the referent.\n\nThere are two kinds of parent resources with \"Core\" support:\n\n* Gateway (Gateway conformance profile)\n* Service (Mesh conformance profile, ClusterIP Services only)\n\nSupport for other resources is Implementation-Specific.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-zA-Z]([-a-zA-Z0-9]*[a-zA-Z0-9])?$"},"name":{"description":"Name is the name of the referent.\n\nSupport: Core","type":"string","maxLength":253,"minLength":1},"namespace":{"description":"Namespace is the namespace of the referent. When unspecified, this refers\nto the local namespace of the Route.\n\nNote that there are specific rules for ParentRefs which cross namespace\nboundaries. Cross-namespace references are only valid if they are explicitly\nallowed by something in the namespace they are referring to. For example:\nGateway has the AllowedRoutes field, and ReferenceGrant provides a\ngeneric way to enable any other kind of cross-namespace reference.\n\n<gateway:experimental:description>\nParentRefs from a Route to a Service in the same namespace are \"producer\"\nroutes, which apply default routing rules to inbound connections from\nany namespace to the Service.\n\nParentRefs from a Route to a Service in a different namespace are\n\"consumer\" routes, and these routing rules are only applied to outbound\nconnections originating from the same namespace as the Route, for which\nthe intended destination of the connections are a Service targeted as a\nParentRef of the Route.\n</gateway:experimental:description>\n\nSupport: Core","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"port":{"description":"Port is the network port this Route targets. It can be interpreted\ndifferently based on the type of parent resource.\n\nWhen the parent resource is a Gateway, this targets all listeners\nlistening on the specified port that also support this kind of Route(and\nselect this Route). It's not recommended to set `Port` unless the\nnetworking behaviors specified in a Route must apply to a specific port\nas opposed to a listener(s) whose port(s) may be changed. When both Port\nand SectionName are specified, the name and port of the selected listener\nmust match both specified values.\n\n<gateway:experimental:description>\nWhen the parent resource is a Service, this targets a specific port in the\nService spec. When both Port (experimental) and SectionName are specified,\nthe name and port of the selected port must match both specified values.\n</gateway:experimental:description>\n\nImplementations MAY choose to support other parent resources.\nImplementations supporting other types of parent resources MUST clearly\ndocument how/if Port is interpreted.\n\nFor the purpose of status, an attachment is considered successful as\nlong as the parent resource accepts it partially. For example, Gateway\nlisteners can restrict which Routes can attach to them by Route kind,\nnamespace, or hostname. If 1 of 2 Gateway listeners accept attachment\nfrom the referencing Route, the Route MUST be considered successfully\nattached. If no Gateway listeners accept attachment from this Route,\nthe Route MUST be considered detached from the Gateway.\n\nSupport: Extended","type":"integer","format":"int32","maximum":65535,"minimum":1},"sectionName":{"description":"SectionName is the name of a section within the target resource. In the\nfollowing resources, SectionName is interpreted as the following:\n\n* Gateway: Listener name. When both Port (experimental) and SectionName\nare specified, the name and port of the selected listener must match\nboth specified values.\n* Service: Port name. When both Port (experimental) and SectionName\nare specified, the name and port of the selected listener must match\nboth specified values.\n\nImplementations MAY choose to support attaching Routes to other resources.\nIf that is the case, they MUST clearly document how SectionName is\ninterpreted.\n\nWhen unspecified (empty string), this will reference the entire resource.\nFor the purpose of status, an attachment is considered successful if at\nleast one section in the parent resource accepts it. For example, Gateway\nlisteners can restrict which Routes can attach to them by Route kind,\nnamespace, or hostname. If 1 of 2 Gateway listeners accept attachment from\nthe referencing Route, the Route MUST be considered successfully\nattached. If no Gateway listeners accept attachment from this Route, the\nRoute MUST be considered detached from the Gateway.\n\nSupport: Core","type":"string","maxLength":253,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}}},"x-kubernetes-list-type":"atomic"},"podTemplate":{"description":"Optional pod template used to configure the ACME challenge solver pods\nused for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the pod used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}}}},"spec":{"description":"PodSpec defines overrides for the HTTP01 challenge solver pod.\nCheck ACMEChallengeSolverHTTP01IngressPodSpec to find out currently supported fields.\nAll other fields will be ignored.","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"imagePullSecrets":{"description":"If specified, the pod's imagePullSecrets","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, the pod's priorityClassName.","type":"string"},"resources":{"description":"If specified, the pod's resource requirements.\nThese values override the global resource configuration flags.\nNote that when only specifying resource limits, ensure they are greater than or equal\nto the corresponding global resource requests configured via controller flags\n(--acme-http01-solver-resource-request-cpu, --acme-http01-solver-resource-request-memory).\nKubernetes will reject pod creation if limits are lower than requests, causing challenge failures.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to the global values configured via controller flags. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"description":"If specified, the pod's security context","type":"object","properties":{"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition\nto the container's primary GID, the fsGroup (if specified), and group memberships\ndefined in the container image for the uid of the container process. If unspecified,\nno additional groups are added to any container. Note that group memberships\ndefined in the container image for the uid of the container process are still effective,\neven if they are not included in this list.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"serviceAccountName":{"description":"If specified, the pod's service account","type":"string"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"serviceType":{"description":"Optional service type for Kubernetes solver service. Supported values\nare NodePort or ClusterIP. If unset, defaults to NodePort.","type":"string"}}},"ingress":{"description":"The ingress based HTTP01 challenge solver will solve challenges by\ncreating or modifying Ingress resources in order to route requests for\n'/.well-known/acme-challenge/XYZ' to 'challenge solver' pods that are\nprovisioned by cert-manager for each Challenge to be completed.","type":"object","properties":{"class":{"description":"This field configures the annotation `kubernetes.io/ingress.class` when\ncreating Ingress resources to solve ACME challenges that use this\nchallenge solver. Only one of `class`, `name` or `ingressClassName` may\nbe specified.","type":"string"},"ingressClassName":{"description":"This field configures the field `ingressClassName` on the created Ingress\nresources used to solve ACME challenges that use this challenge solver.\nThis is the recommended way of configuring the ingress class. Only one of\n`class`, `name` or `ingressClassName` may be specified.","type":"string"},"ingressTemplate":{"description":"Optional ingress template used to configure the ACME challenge solver\ningress used for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the ingress used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver ingress.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver ingress.","type":"object","additionalProperties":{"type":"string"}}}}}},"name":{"description":"The name of the ingress resource that should have ACME challenge solving\nroutes inserted into it in order to solve HTTP01 challenges.\nThis is typically used in conjunction with ingress controllers like\ningress-gce, which maintains a 1:1 mapping between external IPs and\ningress resources. Only one of `class`, `name` or `ingressClassName` may\nbe specified.","type":"string"},"podTemplate":{"description":"Optional pod template used to configure the ACME challenge solver pods\nused for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the pod used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}}}},"spec":{"description":"PodSpec defines overrides for the HTTP01 challenge solver pod.\nCheck ACMEChallengeSolverHTTP01IngressPodSpec to find out currently supported fields.\nAll other fields will be ignored.","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"imagePullSecrets":{"description":"If specified, the pod's imagePullSecrets","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, the pod's priorityClassName.","type":"string"},"resources":{"description":"If specified, the pod's resource requirements.\nThese values override the global resource configuration flags.\nNote that when only specifying resource limits, ensure they are greater than or equal\nto the corresponding global resource requests configured via controller flags\n(--acme-http01-solver-resource-request-cpu, --acme-http01-solver-resource-request-memory).\nKubernetes will reject pod creation if limits are lower than requests, causing challenge failures.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to the global values configured via controller flags. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"description":"If specified, the pod's security context","type":"object","properties":{"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition\nto the container's primary GID, the fsGroup (if specified), and group memberships\ndefined in the container image for the uid of the container process. If unspecified,\nno additional groups are added to any container. Note that group memberships\ndefined in the container image for the uid of the container process are still effective,\neven if they are not included in this list.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"serviceAccountName":{"description":"If specified, the pod's service account","type":"string"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"serviceType":{"description":"Optional service type for Kubernetes solver service. Supported values\nare NodePort or ClusterIP. If unset, defaults to NodePort.","type":"string"}}}}},"selector":{"description":"Selector selects a set of DNSNames on the Certificate resource that\nshould be solved using this challenge solver.\nIf not specified, the solver will be treated as the 'default' solver\nwith the lowest priority, i.e. if any other solver has a more specific\nmatch, it will be used instead.","type":"object","properties":{"dnsNames":{"description":"List of DNSNames that this solver will be used to solve.\nIf specified and a match is found, a dnsNames selector will take\nprecedence over a dnsZones selector.\nIf multiple solvers match with the same dnsNames value, the solver\nwith the most matching labels in matchLabels will be selected.\nIf neither has more matches, the solver defined earlier in the list\nwill be selected.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dnsZones":{"description":"List of DNSZones that this solver will be used to solve.\nThe most specific DNS zone match specified here will take precedence\nover other DNS zone matches, so a solver specifying sys.example.com\nwill be selected over one specifying example.com for the domain\nwww.sys.example.com.\nIf multiple solvers match with the same dnsZones value, the solver\nwith the most matching labels in matchLabels will be selected.\nIf neither has more matches, the solver defined earlier in the list\nwill be selected.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"A label selector that is used to refine the set of certificate's that\nthis challenge solver will apply to.","type":"object","additionalProperties":{"type":"string"}}}}}},"token":{"description":"The ACME challenge token for this challenge.\nThis is the raw value returned from the ACME server.","type":"string"},"type":{"description":"The type of ACME challenge this resource represents.\nOne of \"HTTP-01\" or \"DNS-01\".","type":"string","enum":["HTTP-01","DNS-01"]},"url":{"description":"The URL of the ACME Challenge resource for this challenge.\nThis can be used to lookup details about the status of this challenge.","type":"string"},"wildcard":{"description":"wildcard will be true if this challenge is for a wildcard identifier,\nfor example '*.example.com'.","type":"boolean"}}},"status":{"type":"object","properties":{"presented":{"description":"presented will be set to true if the challenge values for this challenge\nare currently 'presented'.\nThis *does not* imply the self check is passing. Only that the values\nhave been 'submitted' for the appropriate challenge mechanism (i.e. the\nDNS01 TXT record has been presented, or the HTTP01 configuration has been\nconfigured).","type":"boolean"},"processing":{"description":"Used to denote whether this challenge should be processed or not.\nThis field will only be set to true by the 'scheduling' component.\nIt will only be set to false by the 'challenges' controller, after the\nchallenge has reached a final state or timed out.\nIf this field is set to false, the challenge controller will not take\nany more action.","type":"boolean"},"reason":{"description":"Contains human readable information on why the Challenge is in the\ncurrent state.","type":"string"},"state":{"description":"Contains the current 'state' of the challenge.\nIf not set, the state of the challenge is unknown.","type":"string","enum":["valid","ready","pending","processing","invalid","expired","errored"]}}}},"x-kubernetes-group-version-kind":[{"group":"acme.cert-manager.io","kind":"Challenge","version":"v1"}]},"io.cert-manager.acme.v1.ChallengeList":{"description":"ChallengeList is a list of Challenge","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of challenges. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cert-manager.acme.v1.Challenge"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"acme.cert-manager.io","kind":"ChallengeList","version":"v1"}]},"io.cert-manager.acme.v1.Order":{"description":"Order is a type to represent an Order with an ACME server","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["issuerRef","request"],"properties":{"commonName":{"description":"CommonName is the common name as specified on the DER encoded CSR.\nIf specified, this value must also be present in `dnsNames` or `ipAddresses`.\nThis field must match the corresponding field on the DER encoded CSR.","type":"string"},"dnsNames":{"description":"DNSNames is a list of DNS names that should be included as part of the Order\nvalidation process.\nThis field must match the corresponding field on the DER encoded CSR.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"duration":{"description":"Duration is the duration for the not after date for the requested certificate.\nthis is set on order creation as pe the ACME spec.","type":"string"},"ipAddresses":{"description":"IPAddresses is a list of IP addresses that should be included as part of the Order\nvalidation process.\nThis field must match the corresponding field on the DER encoded CSR.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"issuerRef":{"description":"IssuerRef references a properly configured ACME-type Issuer which should\nbe used to create this Order.\nIf the Issuer does not exist, processing will be retried.\nIf the Issuer is not an 'ACME' Issuer, an error will be returned and the\nOrder will be marked as failed.","type":"object","required":["name"],"properties":{"group":{"description":"Group of the issuer being referred to.\nDefaults to 'cert-manager.io'.","type":"string"},"kind":{"description":"Kind of the issuer being referred to.\nDefaults to 'Issuer'.","type":"string"},"name":{"description":"Name of the issuer being referred to.","type":"string"}}},"profile":{"description":"Profile allows requesting a certificate profile from the ACME server.\nSupported profiles are listed by the server's ACME directory URL.","type":"string"},"request":{"description":"Certificate signing request bytes in DER encoding.\nThis will be used when finalizing the order.\nThis field must be set on the order.","type":"string","format":"byte"}}},"status":{"type":"object","properties":{"authorizations":{"description":"Authorizations contains data returned from the ACME server on what\nauthorizations must be completed in order to validate the DNS names\nspecified on the Order.","type":"array","items":{"description":"ACMEAuthorization contains data returned from the ACME server on an\nauthorization that must be completed in order validate a DNS name on an ACME\nOrder resource.","type":"object","required":["url"],"properties":{"challenges":{"description":"Challenges specifies the challenge types offered by the ACME server.\nOne of these challenge types will be selected when validating the DNS\nname and an appropriate Challenge resource will be created to perform\nthe ACME challenge process.","type":"array","items":{"description":"Challenge specifies a challenge offered by the ACME server for an Order.\nAn appropriate Challenge resource can be created to perform the ACME\nchallenge process.","type":"object","required":["token","type","url"],"properties":{"token":{"description":"Token is the token that must be presented for this challenge.\nThis is used to compute the 'key' that must also be presented.","type":"string"},"type":{"description":"Type is the type of challenge being offered, e.g., 'http-01', 'dns-01',\n'tls-sni-01', etc.\nThis is the raw value retrieved from the ACME server.\nOnly 'http-01' and 'dns-01' are supported by cert-manager, other values\nwill be ignored.","type":"string"},"url":{"description":"URL is the URL of this challenge. It can be used to retrieve additional\nmetadata about the Challenge from the ACME server.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"identifier":{"description":"Identifier is the DNS name to be validated as part of this authorization","type":"string"},"initialState":{"description":"InitialState is the initial state of the ACME authorization when first\nfetched from the ACME server.\nIf an Authorization is already 'valid', the Order controller will not\ncreate a Challenge resource for the authorization. This will occur when\nworking with an ACME server that enables 'authz reuse' (such as Let's\nEncrypt's production endpoint).\nIf not set and 'identifier' is set, the state is assumed to be pending\nand a Challenge will be created.","type":"string","enum":["valid","ready","pending","processing","invalid","expired","errored"]},"url":{"description":"URL is the URL of the Authorization that must be completed","type":"string"},"wildcard":{"description":"Wildcard will be true if this authorization is for a wildcard DNS name.\nIf this is true, the identifier will be the *non-wildcard* version of\nthe DNS name.\nFor example, if '*.example.com' is the DNS name being validated, this\nfield will be 'true' and the 'identifier' field will be 'example.com'.","type":"boolean"}}},"x-kubernetes-list-type":"atomic"},"certificate":{"description":"Certificate is a copy of the PEM encoded certificate for this Order.\nThis field will be populated after the order has been successfully\nfinalized with the ACME server, and the order has transitioned to the\n'valid' state.","type":"string","format":"byte"},"failureTime":{"description":"FailureTime stores the time that this order failed.\nThis is used to influence garbage collection and back-off.","type":"string","format":"date-time"},"finalizeURL":{"description":"FinalizeURL of the Order.\nThis is used to obtain certificates for this order once it has been completed.","type":"string"},"reason":{"description":"Reason optionally provides more information about a why the order is in\nthe current state.","type":"string"},"state":{"description":"State contains the current state of this Order resource.\nStates 'success' and 'expired' are 'final'","type":"string","enum":["valid","ready","pending","processing","invalid","expired","errored"]},"url":{"description":"URL of the Order.\nThis will initially be empty when the resource is first created.\nThe Order controller will populate this field when the Order is first processed.\nThis field will be immutable after it is initially set.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"acme.cert-manager.io","kind":"Order","version":"v1"}]},"io.cert-manager.acme.v1.OrderList":{"description":"OrderList is a list of Order","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of orders. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cert-manager.acme.v1.Order"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"acme.cert-manager.io","kind":"OrderList","version":"v1"}]},"io.cert-manager.trust.v1alpha1.Bundle":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Desired state of the Bundle resource.","type":"object","required":["sources"],"properties":{"sources":{"description":"Sources is a set of references to data whose data will sync to the target.","type":"array","maxItems":100,"minItems":1,"items":{"description":"BundleSource is the set of sources whose data will be appended and synced to\nthe BundleTarget in all Namespaces.","type":"object","properties":{"configMap":{"description":"ConfigMap is a reference (by name) to a ConfigMap's `data` key(s), or to a\nlist of ConfigMap's `data` key(s) using label selector, in the trust Namespace.","type":"object","properties":{"includeAllKeys":{"description":"IncludeAllKeys is a flag to include all keys in the object's `data` field to be used. False by default.\nThis field must not be true when `Key` is set.","type":"boolean"},"key":{"description":"Key of the entry in the object's `data` field to be used.","type":"string","minLength":1},"name":{"description":"Name is the name of the source object in the trust Namespace.\nThis field must be left empty when `selector` is set","type":"string","minLength":1},"selector":{"description":"Selector is the label selector to use to fetch a list of objects. Must not be set\nwhen `Name` is set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"inLine":{"description":"InLine is a simple string to append as the source data.","type":"string"},"secret":{"description":"Secret is a reference (by name) to a Secret's `data` key(s), or to a\nlist of Secret's `data` key(s) using label selector, in the trust Namespace.","type":"object","properties":{"includeAllKeys":{"description":"IncludeAllKeys is a flag to include all keys in the object's `data` field to be used. False by default.\nThis field must not be true when `Key` is set.","type":"boolean"},"key":{"description":"Key of the entry in the object's `data` field to be used.","type":"string","minLength":1},"name":{"description":"Name is the name of the source object in the trust Namespace.\nThis field must be left empty when `selector` is set","type":"string","minLength":1},"selector":{"description":"Selector is the label selector to use to fetch a list of objects. Must not be set\nwhen `Name` is set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"useDefaultCAs":{"description":"UseDefaultCAs, when true, requests the default CA bundle to be used as a source.\nDefault CAs are available if trust-manager was installed via Helm\nor was otherwise set up to include a package-injecting init container by using the\n\"--default-package-location\" flag when starting the trust-manager controller.\nIf default CAs were not configured at start-up, any request to use the default\nCAs will fail.\nThe version of the default CA package which is used for a Bundle is stored in the\ndefaultCAPackageVersion field of the Bundle's status field.","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"target":{"description":"Target is the target location in all namespaces to sync source data to.","type":"object","properties":{"additionalFormats":{"description":"AdditionalFormats specifies any additional formats to write to the target","type":"object","properties":{"jks":{"description":"JKS requests a JKS-formatted binary trust bundle to be written to the target.\nThe bundle has \"changeit\" as the default password.\nFor more information refer to this link https://cert-manager.io/docs/faq/#keystore-passwords\nDeprecated: Writing JKS is subject for removal. Please migrate to PKCS12.\nPKCS#12 trust stores created by trust-manager are compatible with Java.","type":"object","required":["key"],"properties":{"key":{"description":"Key is the key of the entry in the object's `data` field to be used.","type":"string","minLength":1},"password":{"description":"Password for JKS trust store","type":"string","maxLength":128,"minLength":1}},"x-kubernetes-map-type":"atomic"},"pkcs12":{"description":"PKCS12 requests a PKCS12-formatted binary trust bundle to be written to the target.\n\nThe bundle is by default created without a password.\nFor more information refer to this link https://cert-manager.io/docs/faq/#keystore-passwords","type":"object","required":["key"],"properties":{"key":{"description":"Key is the key of the entry in the object's `data` field to be used.","type":"string","minLength":1},"password":{"description":"Password for PKCS12 trust store","type":"string","maxLength":128},"profile":{"description":"Profile specifies the certificate encryption algorithms and the HMAC algorithm\nused to create the PKCS12 trust store.\n\nIf provided, allowed values are:\n`LegacyRC2`: Deprecated. Not supported by default in OpenSSL 3 or Java 20.\n`LegacyDES`: Less secure algorithm. Use this option for maximal compatibility.\n`Modern2023`: Secure algorithm. Use this option in case you have to always use secure algorithms (e.g. because of company policy).\n\nDefault value is `LegacyRC2` for backward compatibility.","type":"string","enum":["LegacyRC2","LegacyDES","Modern2023"]}},"x-kubernetes-map-type":"atomic"}}},"configMap":{"description":"ConfigMap is the target ConfigMap in Namespaces that all Bundle source\ndata will be synced to.","type":"object","required":["key"],"properties":{"key":{"description":"Key is the key of the entry in the object's `data` field to be used.","type":"string","minLength":1},"metadata":{"description":"Metadata is an optional set of labels and annotations to be copied to the target.","type":"object","properties":{"annotations":{"description":"Annotations is a key value map to be copied to the target.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels is a key value map to be copied to the target.","type":"object","additionalProperties":{"type":"string"}}}}}},"namespaceSelector":{"description":"NamespaceSelector will, if set, only sync the target resource in\nNamespaces which match the selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"secret":{"description":"Secret is the target Secret that all Bundle source data will be synced to.\nUsing Secrets as targets is only supported if enabled at trust-manager startup.\nBy default, trust-manager has no permissions for writing to secrets and can only read secrets in the trust namespace.","type":"object","required":["key"],"properties":{"key":{"description":"Key is the key of the entry in the object's `data` field to be used.","type":"string","minLength":1},"metadata":{"description":"Metadata is an optional set of labels and annotations to be copied to the target.","type":"object","properties":{"annotations":{"description":"Annotations is a key value map to be copied to the target.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels is a key value map to be copied to the target.","type":"object","additionalProperties":{"type":"string"}}}}}}}}}},"status":{"description":"Status of the Bundle. This is set and managed automatically.","type":"object","properties":{"conditions":{"description":"List of status conditions to indicate the status of the Bundle.\nKnown condition types are `Bundle`.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"defaultCAVersion":{"description":"DefaultCAPackageVersion, if set and non-empty, indicates the version information\nwhich was retrieved when the set of default CAs was requested in the bundle\nsource. This should only be set if useDefaultCAs was set to \"true\" on a source,\nand will be the same for the same version of a bundle with identical certificates.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"trust.cert-manager.io","kind":"Bundle","version":"v1alpha1"}]},"io.cert-manager.trust.v1alpha1.BundleList":{"description":"BundleList is a list of Bundle","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of bundles. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cert-manager.trust.v1alpha1.Bundle"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"trust.cert-manager.io","kind":"BundleList","version":"v1alpha1"}]},"io.cert-manager.v1.Certificate":{"description":"A Certificate resource should be created to ensure an up to date and signed\nX.509 certificate is stored in the Kubernetes Secret resource named in `spec.secretName`.\n\nThe stored certificate will be renewed before it expires (as configured by `spec.renewBefore`).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired state of the Certificate resource.\nhttps://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["issuerRef","secretName"],"properties":{"additionalOutputFormats":{"description":"Defines extra output formats of the private key and signed certificate chain\nto be written to this Certificate's target Secret.","type":"array","items":{"description":"CertificateAdditionalOutputFormat defines an additional output format of a\nCertificate resource. These contain supplementary data formats of the signed\ncertificate chain and paired private key.","type":"object","required":["type"],"properties":{"type":{"description":"Type is the name of the format type that should be written to the\nCertificate's target Secret.","type":"string","enum":["DER","CombinedPEM"]}}},"x-kubernetes-list-type":"atomic"},"commonName":{"description":"Requested common name X509 certificate subject attribute.\nMore info: https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.6\nNOTE: TLS clients will ignore this value when any subject alternative name is\nset (see https://tools.ietf.org/html/rfc6125#section-6.4.4).\n\nShould have a length of 64 characters or fewer to avoid generating invalid CSRs.\nCannot be set if the `literalSubject` field is set.","type":"string"},"dnsNames":{"description":"Requested DNS subject alternative names.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"duration":{"description":"Requested 'duration' (i.e. lifetime) of the Certificate. Note that the\nissuer may choose to ignore the requested duration, just like any other\nrequested attribute.\n\nIf unset, this defaults to 90 days.\nMinimum accepted duration is 1 hour.\nValue must be in units accepted by Go time.ParseDuration https://golang.org/pkg/time/#ParseDuration.","type":"string"},"emailAddresses":{"description":"Requested email subject alternative names.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"encodeUsagesInRequest":{"description":"Whether the KeyUsage and ExtKeyUsage extensions should be set in the encoded CSR.\n\nThis option defaults to true, and should only be disabled if the target\nissuer does not support CSRs with these X509 KeyUsage/ ExtKeyUsage extensions.","type":"boolean"},"ipAddresses":{"description":"Requested IP address subject alternative names.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"isCA":{"description":"Requested basic constraints isCA value.\nThe isCA value is used to set the `isCA` field on the created CertificateRequest\nresources. Note that the issuer may choose to ignore the requested isCA value, just\nlike any other requested attribute.\n\nIf true, this will automatically add the `cert sign` usage to the list\nof requested `usages`.","type":"boolean"},"issuerRef":{"description":"Reference to the issuer responsible for issuing the certificate.\nIf the issuer is namespace-scoped, it must be in the same namespace\nas the Certificate. If the issuer is cluster-scoped, it can be used\nfrom any namespace.\n\nThe `name` field of the reference must always be specified.","type":"object","required":["name"],"properties":{"group":{"description":"Group of the issuer being referred to.\nDefaults to 'cert-manager.io'.","type":"string"},"kind":{"description":"Kind of the issuer being referred to.\nDefaults to 'Issuer'.","type":"string"},"name":{"description":"Name of the issuer being referred to.","type":"string"}}},"keystores":{"description":"Additional keystore output formats to be stored in the Certificate's Secret.","type":"object","properties":{"jks":{"description":"JKS configures options for storing a JKS keystore in the\n`spec.secretName` Secret resource.","type":"object","required":["create"],"properties":{"alias":{"description":"Alias specifies the alias of the key in the keystore, required by the JKS format.\nIf not provided, the default alias `certificate` will be used.","type":"string"},"create":{"description":"Create enables JKS keystore creation for the Certificate.\nIf true, a file named `keystore.jks` will be created in the target\nSecret resource, encrypted using the password stored in\n`passwordSecretRef` or `password`.\nThe keystore file will be updated immediately.\nIf the issuer provided a CA certificate, a file named `truststore.jks`\nwill also be created in the target Secret resource, encrypted using the\npassword stored in `passwordSecretRef`\ncontaining the issuing Certificate Authority","type":"boolean"},"password":{"description":"Password provides a literal password used to encrypt the JKS keystore.\nMutually exclusive with passwordSecretRef.\nOne of password or passwordSecretRef must provide a password with a non-zero length.","type":"string"},"passwordSecretRef":{"description":"PasswordSecretRef is a reference to a non-empty key in a Secret resource\ncontaining the password used to encrypt the JKS keystore.\nMutually exclusive with password.\nOne of password or passwordSecretRef must provide a password with a non-zero length.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"pkcs12":{"description":"PKCS12 configures options for storing a PKCS12 keystore in the\n`spec.secretName` Secret resource.","type":"object","required":["create"],"properties":{"create":{"description":"Create enables PKCS12 keystore creation for the Certificate.\nIf true, a file named `keystore.p12` will be created in the target\nSecret resource, encrypted using the password stored in\n`passwordSecretRef` or in `password`.\nThe keystore file will be updated immediately.\nIf the issuer provided a CA certificate, a file named `truststore.p12` will\nalso be created in the target Secret resource, encrypted using the\npassword stored in `passwordSecretRef` containing the issuing Certificate\nAuthority","type":"boolean"},"password":{"description":"Password provides a literal password used to encrypt the PKCS#12 keystore.\nMutually exclusive with passwordSecretRef.\nOne of password or passwordSecretRef must provide a password with a non-zero length.","type":"string"},"passwordSecretRef":{"description":"PasswordSecretRef is a reference to a non-empty key in a Secret resource\ncontaining the password used to encrypt the PKCS#12 keystore.\nMutually exclusive with password.\nOne of password or passwordSecretRef must provide a password with a non-zero length.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"profile":{"description":"Profile specifies the key and certificate encryption algorithms and the HMAC algorithm\nused to create the PKCS12 keystore. Default value is `LegacyRC2` for backward compatibility.\n\nIf provided, allowed values are:\n`LegacyRC2`: Deprecated. Not supported by default in OpenSSL 3 or Java 20.\n`LegacyDES`: Less secure algorithm. Use this option for maximal compatibility.\n`Modern2023`: Secure algorithm. Use this option in case you have to always use secure algorithms\n(e.g., because of company policy). Please note that the security of the algorithm is not that important\nin reality, because the unencrypted certificate and private key are also stored in the Secret.","type":"string","enum":["LegacyRC2","LegacyDES","Modern2023"]}}}}},"literalSubject":{"description":"Requested X.509 certificate subject, represented using the LDAP \"String\nRepresentation of a Distinguished Name\" [1].\nImportant: the LDAP string format also specifies the order of the attributes\nin the subject, this is important when issuing certs for LDAP authentication.\nExample: `CN=foo,DC=corp,DC=example,DC=com`\nMore info [1]: https://datatracker.ietf.org/doc/html/rfc4514\nMore info: https://github.com/cert-manager/cert-manager/issues/3203\nMore info: https://github.com/cert-manager/cert-manager/issues/4424\n\nCannot be set if the `subject` or `commonName` field is set.","type":"string"},"nameConstraints":{"description":"x.509 certificate NameConstraint extension which MUST NOT be used in a non-CA certificate.\nMore Info: https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.10\n\nThis is an Alpha Feature and is only enabled with the\n`--feature-gates=NameConstraints=true` option set on both\nthe controller and webhook components.","type":"object","properties":{"critical":{"description":"if true then the name constraints are marked critical.","type":"boolean"},"excluded":{"description":"Excluded contains the constraints which must be disallowed. Any name matching a\nrestriction in the excluded field is invalid regardless\nof information appearing in the permitted","type":"object","properties":{"dnsDomains":{"description":"DNSDomains is a list of DNS domains that are permitted or excluded.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"emailAddresses":{"description":"EmailAddresses is a list of Email Addresses that are permitted or excluded.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ipRanges":{"description":"IPRanges is a list of IP Ranges that are permitted or excluded.\nThis should be a valid CIDR notation.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"uriDomains":{"description":"URIDomains is a list of URI domains that are permitted or excluded.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"permitted":{"description":"Permitted contains the constraints in which the names must be located.","type":"object","properties":{"dnsDomains":{"description":"DNSDomains is a list of DNS domains that are permitted or excluded.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"emailAddresses":{"description":"EmailAddresses is a list of Email Addresses that are permitted or excluded.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ipRanges":{"description":"IPRanges is a list of IP Ranges that are permitted or excluded.\nThis should be a valid CIDR notation.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"uriDomains":{"description":"URIDomains is a list of URI domains that are permitted or excluded.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}}},"otherNames":{"description":"`otherNames` is an escape hatch for SAN that allows any type. We currently restrict the support to string like otherNames, cf RFC 5280 p 37\nAny UTF8 String valued otherName can be passed with by setting the keys oid: x.x.x.x and UTF8Value: somevalue for `otherName`.\nMost commonly this would be UPN set with oid: 1.3.6.1.4.1.311.20.2.3\nYou should ensure that any OID passed is valid for the UTF8String type as we do not explicitly validate this.","type":"array","items":{"type":"object","properties":{"oid":{"description":"OID is the object identifier for the otherName SAN.\nThe object identifier must be expressed as a dotted string, for\nexample, \"1.2.840.113556.1.4.221\".","type":"string"},"utf8Value":{"description":"utf8Value is the string value of the otherName SAN.\nThe utf8Value accepts any valid UTF8 string to set as value for the otherName SAN.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"privateKey":{"description":"Private key options. These include the key algorithm and size, the used\nencoding and the rotation policy.","type":"object","properties":{"algorithm":{"description":"Algorithm is the private key algorithm of the corresponding private key\nfor this certificate.\n\nIf provided, allowed values are either `RSA`, `ECDSA` or `Ed25519`.\nIf `algorithm` is specified and `size` is not provided,\nkey size of 2048 will be used for `RSA` key algorithm and\nkey size of 256 will be used for `ECDSA` key algorithm.\nkey size is ignored when using the `Ed25519` key algorithm.","type":"string","enum":["RSA","ECDSA","Ed25519"]},"encoding":{"description":"The private key cryptography standards (PKCS) encoding for this\ncertificate's private key to be encoded in.\n\nIf provided, allowed values are `PKCS1` and `PKCS8` standing for PKCS#1\nand PKCS#8, respectively.\nDefaults to `PKCS1` if not specified.","type":"string","enum":["PKCS1","PKCS8"]},"rotationPolicy":{"description":"RotationPolicy controls how private keys should be regenerated when a\nre-issuance is being processed.\n\nIf set to `Never`, a private key will only be generated if one does not\nalready exist in the target `spec.secretName`. If one does exist but it\ndoes not have the correct algorithm or size, a warning will be raised\nto await user intervention.\nIf set to `Always`, a private key matching the specified requirements\nwill be generated whenever a re-issuance occurs.\nDefault is `Always`.\nThe default was changed from `Never` to `Always` in cert-manager >=v1.18.0.\nThe new default can be disabled by setting the\n`--feature-gates=DefaultPrivateKeyRotationPolicyAlways=false` option on\nthe controller component.","type":"string","enum":["Never","Always"]},"size":{"description":"Size is the key bit size of the corresponding private key for this certificate.\n\nIf `algorithm` is set to `RSA`, valid values are `2048`, `4096` or `8192`,\nand will default to `2048` if not specified.\nIf `algorithm` is set to `ECDSA`, valid values are `256`, `384` or `521`,\nand will default to `256` if not specified.\nIf `algorithm` is set to `Ed25519`, Size is ignored.\nNo other values are allowed.","type":"integer"}}},"renewBefore":{"description":"How long before the currently issued certificate's expiry cert-manager should\nrenew the certificate. For example, if a certificate is valid for 60 minutes,\nand `renewBefore=10m`, cert-manager will begin to attempt to renew the certificate\n50 minutes after it was issued (i.e. when there are 10 minutes remaining until\nthe certificate is no longer valid).\n\nNOTE: The actual lifetime of the issued certificate is used to determine the\nrenewal time. If an issuer returns a certificate with a different lifetime than\nthe one requested, cert-manager will use the lifetime of the issued certificate.\n\nIf unset, this defaults to 1/3 of the issued certificate's lifetime.\nMinimum accepted value is 5 minutes.\nValue must be in units accepted by Go time.ParseDuration https://golang.org/pkg/time/#ParseDuration.\nCannot be set if the `renewBeforePercentage` field is set.","type":"string"},"renewBeforePercentage":{"description":"`renewBeforePercentage` is like `renewBefore`, except it is a relative percentage\nrather than an absolute duration. For example, if a certificate is valid for 60\nminutes, and  `renewBeforePercentage=25`, cert-manager will begin to attempt to\nrenew the certificate 45 minutes after it was issued (i.e. when there are 15\nminutes (25%) remaining until the certificate is no longer valid).\n\nNOTE: The actual lifetime of the issued certificate is used to determine the\nrenewal time. If an issuer returns a certificate with a different lifetime than\nthe one requested, cert-manager will use the lifetime of the issued certificate.\n\nValue must be an integer in the range (0,100). The minimum effective\n`renewBefore` derived from the `renewBeforePercentage` and `duration` fields is 5\nminutes.\nCannot be set if the `renewBefore` field is set.","type":"integer","format":"int32"},"revisionHistoryLimit":{"description":"The maximum number of CertificateRequest revisions that are maintained in\nthe Certificate's history. Each revision represents a single `CertificateRequest`\ncreated by this Certificate, either when it was created, renewed, or Spec\nwas changed. Revisions will be removed by oldest first if the number of\nrevisions exceeds this number.\n\nIf set, revisionHistoryLimit must be a value of `1` or greater.\nDefault value is `1`.","type":"integer","format":"int32"},"secretName":{"description":"Name of the Secret resource that will be automatically created and\nmanaged by this Certificate resource. It will be populated with a\nprivate key and certificate, signed by the denoted issuer. The Secret\nresource lives in the same namespace as the Certificate resource.","type":"string"},"secretTemplate":{"description":"Defines annotations and labels to be copied to the Certificate's Secret.\nLabels and annotations on the Secret will be changed as they appear on the\nSecretTemplate when added or removed. SecretTemplate annotations are added\nin conjunction with, and cannot overwrite, the base set of annotations\ncert-manager sets on the Certificate's Secret.","type":"object","properties":{"annotations":{"description":"Annotations is a key value map to be copied to the target Kubernetes Secret.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels is a key value map to be copied to the target Kubernetes Secret.","type":"object","additionalProperties":{"type":"string"}}}},"signatureAlgorithm":{"description":"Signature algorithm to use.\nAllowed values for RSA keys: SHA256WithRSA, SHA384WithRSA, SHA512WithRSA.\nAllowed values for ECDSA keys: ECDSAWithSHA256, ECDSAWithSHA384, ECDSAWithSHA512.\nAllowed values for Ed25519 keys: PureEd25519.","type":"string","enum":["SHA256WithRSA","SHA384WithRSA","SHA512WithRSA","ECDSAWithSHA256","ECDSAWithSHA384","ECDSAWithSHA512","PureEd25519"]},"subject":{"description":"Requested set of X509 certificate subject attributes.\nMore info: https://datatracker.ietf.org/doc/html/rfc5280#section-4.1.2.6\n\nThe common name attribute is specified separately in the `commonName` field.\nCannot be set if the `literalSubject` field is set.","type":"object","properties":{"countries":{"description":"Countries to be used on the Certificate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"localities":{"description":"Cities to be used on the Certificate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"organizationalUnits":{"description":"Organizational Units to be used on the Certificate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"organizations":{"description":"Organizations to be used on the Certificate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"postalCodes":{"description":"Postal codes to be used on the Certificate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"provinces":{"description":"State/Provinces to be used on the Certificate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"serialNumber":{"description":"Serial number to be used on the Certificate.","type":"string"},"streetAddresses":{"description":"Street addresses to be used on the Certificate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"uris":{"description":"Requested URI subject alternative names.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"usages":{"description":"Requested key usages and extended key usages.\nThese usages are used to set the `usages` field on the created CertificateRequest\nresources. If `encodeUsagesInRequest` is unset or set to `true`, the usages\nwill additionally be encoded in the `request` field which contains the CSR blob.\n\nIf unset, defaults to `digital signature` and `key encipherment`.","type":"array","items":{"description":"KeyUsage specifies valid usage contexts for keys.\nSee:\nhttps://tools.ietf.org/html/rfc5280#section-4.2.1.3\nhttps://tools.ietf.org/html/rfc5280#section-4.2.1.12\n\nValid KeyUsage values are as follows:\n\"signing\",\n\"digital signature\",\n\"content commitment\",\n\"key encipherment\",\n\"key agreement\",\n\"data encipherment\",\n\"cert sign\",\n\"crl sign\",\n\"encipher only\",\n\"decipher only\",\n\"any\",\n\"server auth\",\n\"client auth\",\n\"code signing\",\n\"email protection\",\n\"s/mime\",\n\"ipsec end system\",\n\"ipsec tunnel\",\n\"ipsec user\",\n\"timestamping\",\n\"ocsp signing\",\n\"microsoft sgc\",\n\"netscape sgc\"","type":"string","enum":["signing","digital signature","content commitment","key encipherment","key agreement","data encipherment","cert sign","crl sign","encipher only","decipher only","any","server auth","client auth","code signing","email protection","s/mime","ipsec end system","ipsec tunnel","ipsec user","timestamping","ocsp signing","microsoft sgc","netscape sgc"]},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"Status of the Certificate.\nThis is set and managed automatically.\nRead-only.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","properties":{"conditions":{"description":"List of status conditions to indicate the status of certificates.\nKnown condition types are `Ready` and `Issuing`.","type":"array","items":{"description":"CertificateCondition contains condition information for a Certificate.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the timestamp corresponding to the last status\nchange of this condition.","type":"string","format":"date-time"},"message":{"description":"Message is a human readable description of the details of the last\ntransition, complementing reason.","type":"string"},"observedGeneration":{"description":"If set, this represents the .metadata.generation that the condition was\nset based upon.\nFor instance, if .metadata.generation is currently 12, but the\n.status.condition[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the Certificate.","type":"integer","format":"int64"},"reason":{"description":"Reason is a brief machine readable explanation for the condition's last\ntransition.","type":"string"},"status":{"description":"Status of the condition, one of (`True`, `False`, `Unknown`).","type":"string","enum":["True","False","Unknown"]},"type":{"description":"Type of the condition, known values are (`Ready`, `Issuing`).","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"failedIssuanceAttempts":{"description":"The number of continuous failed issuance attempts up till now. This\nfield gets removed (if set) on a successful issuance and gets set to\n1 if unset and an issuance has failed. If an issuance has failed, the\ndelay till the next issuance will be calculated using formula\ntime.Hour * 2 ^ (failedIssuanceAttempts - 1).","type":"integer"},"lastFailureTime":{"description":"LastFailureTime is set only if the latest issuance for this\nCertificate failed and contains the time of the failure. If an\nissuance has failed, the delay till the next issuance will be\ncalculated using formula time.Hour * 2 ^ (failedIssuanceAttempts -\n1). If the latest issuance has succeeded this field will be unset.","type":"string","format":"date-time"},"nextPrivateKeySecretName":{"description":"The name of the Secret resource containing the private key to be used\nfor the next certificate iteration.\nThe keymanager controller will automatically set this field if the\n`Issuing` condition is set to `True`.\nIt will automatically unset this field when the Issuing condition is\nnot set or False.","type":"string"},"notAfter":{"description":"The expiration time of the certificate stored in the secret named\nby this resource in `spec.secretName`.","type":"string","format":"date-time"},"notBefore":{"description":"The time after which the certificate stored in the secret named\nby this resource in `spec.secretName` is valid.","type":"string","format":"date-time"},"renewalTime":{"description":"RenewalTime is the time at which the certificate will be next\nrenewed.\nIf not set, no upcoming renewal is scheduled.","type":"string","format":"date-time"},"revision":{"description":"The current 'revision' of the certificate as issued.\n\nWhen a CertificateRequest resource is created, it will have the\n`cert-manager.io/certificate-revision` set to one greater than the\ncurrent value of this field.\n\nUpon issuance, this field will be set to the value of the annotation\non the CertificateRequest resource used to issue the certificate.\n\nPersisting the value on the CertificateRequest resource allows the\ncertificates controller to know whether a request is part of an old\nissuance or if it is part of the ongoing revision's issuance by\nchecking if the revision value in the annotation is greater than this\nfield.","type":"integer"}}}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"Certificate","version":"v1"}]},"io.cert-manager.v1.CertificateList":{"description":"CertificateList is a list of Certificate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of certificates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cert-manager.v1.Certificate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"CertificateList","version":"v1"}]},"io.cert-manager.v1.CertificateRequest":{"description":"A CertificateRequest is used to request a signed certificate from one of the\nconfigured issuers.\n\nAll fields within the CertificateRequest's `spec` are immutable after creation.\nA CertificateRequest will either succeed or fail, as denoted by its `Ready` status\ncondition and its `status.failureTime` field.\n\nA CertificateRequest is a one-shot resource, meaning it represents a single\npoint in time request for a certificate and cannot be re-used.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired state of the CertificateRequest resource.\nhttps://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["issuerRef","request"],"properties":{"duration":{"description":"Requested 'duration' (i.e. lifetime) of the Certificate. Note that the\nissuer may choose to ignore the requested duration, just like any other\nrequested attribute.","type":"string"},"extra":{"description":"Extra contains extra attributes of the user that created the CertificateRequest.\nPopulated by the cert-manager webhook on creation and immutable.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"groups":{"description":"Groups contains group membership of the user that created the CertificateRequest.\nPopulated by the cert-manager webhook on creation and immutable.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"isCA":{"description":"Requested basic constraints isCA value. Note that the issuer may choose\nto ignore the requested isCA value, just like any other requested attribute.\n\nNOTE: If the CSR in the `Request` field has a BasicConstraints extension,\nit must have the same isCA value as specified here.\n\nIf true, this will automatically add the `cert sign` usage to the list\nof requested `usages`.","type":"boolean"},"issuerRef":{"description":"Reference to the issuer responsible for issuing the certificate.\nIf the issuer is namespace-scoped, it must be in the same namespace\nas the Certificate. If the issuer is cluster-scoped, it can be used\nfrom any namespace.\n\nThe `name` field of the reference must always be specified.","type":"object","required":["name"],"properties":{"group":{"description":"Group of the issuer being referred to.\nDefaults to 'cert-manager.io'.","type":"string"},"kind":{"description":"Kind of the issuer being referred to.\nDefaults to 'Issuer'.","type":"string"},"name":{"description":"Name of the issuer being referred to.","type":"string"}}},"request":{"description":"The PEM-encoded X.509 certificate signing request to be submitted to the\nissuer for signing.\n\nIf the CSR has a BasicConstraints extension, its isCA attribute must\nmatch the `isCA` value of this CertificateRequest.\nIf the CSR has a KeyUsage extension, its key usages must match the\nkey usages in the `usages` field of this CertificateRequest.\nIf the CSR has a ExtKeyUsage extension, its extended key usages\nmust match the extended key usages in the `usages` field of this\nCertificateRequest.","type":"string","format":"byte"},"uid":{"description":"UID contains the uid of the user that created the CertificateRequest.\nPopulated by the cert-manager webhook on creation and immutable.","type":"string"},"usages":{"description":"Requested key usages and extended key usages.\n\nNOTE: If the CSR in the `Request` field has uses the KeyUsage or\nExtKeyUsage extension, these extensions must have the same values\nas specified here without any additional values.\n\nIf unset, defaults to `digital signature` and `key encipherment`.","type":"array","items":{"description":"KeyUsage specifies valid usage contexts for keys.\nSee:\nhttps://tools.ietf.org/html/rfc5280#section-4.2.1.3\nhttps://tools.ietf.org/html/rfc5280#section-4.2.1.12\n\nValid KeyUsage values are as follows:\n\"signing\",\n\"digital signature\",\n\"content commitment\",\n\"key encipherment\",\n\"key agreement\",\n\"data encipherment\",\n\"cert sign\",\n\"crl sign\",\n\"encipher only\",\n\"decipher only\",\n\"any\",\n\"server auth\",\n\"client auth\",\n\"code signing\",\n\"email protection\",\n\"s/mime\",\n\"ipsec end system\",\n\"ipsec tunnel\",\n\"ipsec user\",\n\"timestamping\",\n\"ocsp signing\",\n\"microsoft sgc\",\n\"netscape sgc\"","type":"string","enum":["signing","digital signature","content commitment","key encipherment","key agreement","data encipherment","cert sign","crl sign","encipher only","decipher only","any","server auth","client auth","code signing","email protection","s/mime","ipsec end system","ipsec tunnel","ipsec user","timestamping","ocsp signing","microsoft sgc","netscape sgc"]},"x-kubernetes-list-type":"atomic"},"username":{"description":"Username contains the name of the user that created the CertificateRequest.\nPopulated by the cert-manager webhook on creation and immutable.","type":"string"}}},"status":{"description":"Status of the CertificateRequest.\nThis is set and managed automatically.\nRead-only.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","properties":{"ca":{"description":"The PEM encoded X.509 certificate of the signer, also known as the CA\n(Certificate Authority).\nThis is set on a best-effort basis by different issuers.\nIf not set, the CA is assumed to be unknown/not available.","type":"string","format":"byte"},"certificate":{"description":"The PEM encoded X.509 certificate resulting from the certificate\nsigning request.\nIf not set, the CertificateRequest has either not been completed or has\nfailed. More information on failure can be found by checking the\n`conditions` field.","type":"string","format":"byte"},"conditions":{"description":"List of status conditions to indicate the status of a CertificateRequest.\nKnown condition types are `Ready`, `InvalidRequest`, `Approved` and `Denied`.","type":"array","items":{"description":"CertificateRequestCondition contains condition information for a CertificateRequest.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the timestamp corresponding to the last status\nchange of this condition.","type":"string","format":"date-time"},"message":{"description":"Message is a human readable description of the details of the last\ntransition, complementing reason.","type":"string"},"reason":{"description":"Reason is a brief machine readable explanation for the condition's last\ntransition.","type":"string"},"status":{"description":"Status of the condition, one of (`True`, `False`, `Unknown`).","type":"string","enum":["True","False","Unknown"]},"type":{"description":"Type of the condition, known values are (`Ready`, `InvalidRequest`,\n`Approved`, `Denied`).","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"failureTime":{"description":"FailureTime stores the time that this CertificateRequest failed. This is\nused to influence garbage collection and back-off.","type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"CertificateRequest","version":"v1"}]},"io.cert-manager.v1.CertificateRequestList":{"description":"CertificateRequestList is a list of CertificateRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of certificaterequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cert-manager.v1.CertificateRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"CertificateRequestList","version":"v1"}]},"io.cert-manager.v1.ClusterIssuer":{"description":"A ClusterIssuer represents a certificate issuing authority which can be\nreferenced as part of `issuerRef` fields.\nIt is similar to an Issuer, however it is cluster-scoped and therefore can\nbe referenced by resources that exist in *any* namespace, not just the same\nnamespace as the referent.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Desired state of the ClusterIssuer resource.","type":"object","properties":{"acme":{"description":"ACME configures this issuer to communicate with a RFC8555 (ACME) server\nto obtain signed x509 certificates.","type":"object","required":["privateKeySecretRef","server"],"properties":{"caBundle":{"description":"Base64-encoded bundle of PEM CAs which can be used to validate the certificate\nchain presented by the ACME server.\nMutually exclusive with SkipTLSVerify; prefer using CABundle to prevent various\nkinds of security vulnerabilities.\nIf CABundle and SkipTLSVerify are unset, the system certificate bundle inside\nthe container is used to validate the TLS connection.","type":"string","format":"byte"},"disableAccountKeyGeneration":{"description":"Enables or disables generating a new ACME account key.\nIf true, the Issuer resource will *not* request a new account but will expect\nthe account key to be supplied via an existing secret.\nIf false, the cert-manager system will generate a new ACME account key\nfor the Issuer.\nDefaults to false.","type":"boolean"},"email":{"description":"Email is the email address to be associated with the ACME account.\nThis field is optional, but it is strongly recommended to be set.\nIt will be used to contact you in case of issues with your account or\ncertificates, including expiry notification emails.\nThis field may be updated after the account is initially registered.","type":"string"},"enableDurationFeature":{"description":"Enables requesting a Not After date on certificates that matches the\nduration of the certificate. This is not supported by all ACME servers\nlike Let's Encrypt. If set to true when the ACME server does not support\nit, it will create an error on the Order.\nDefaults to false.","type":"boolean"},"externalAccountBinding":{"description":"ExternalAccountBinding is a reference to a CA external account of the ACME\nserver.\nIf set, upon registration cert-manager will attempt to associate the given\nexternal account credentials with the registered ACME account.","type":"object","required":["keyID","keySecretRef"],"properties":{"keyAlgorithm":{"description":"Deprecated: keyAlgorithm field exists for historical compatibility\nreasons and should not be used. The algorithm is now hardcoded to HS256\nin golang/x/crypto/acme.","type":"string","enum":["HS256","HS384","HS512"]},"keyID":{"description":"keyID is the ID of the CA key that the External Account is bound to.","type":"string"},"keySecretRef":{"description":"keySecretRef is a Secret Key Selector referencing a data item in a Kubernetes\nSecret which holds the symmetric MAC key of the External Account Binding.\nThe `key` is the index string that is paired with the key data in the\nSecret and should not be confused with the key data itself, or indeed with\nthe External Account Binding keyID above.\nThe secret key stored in the Secret **must** be un-padded, base64 URL\nencoded data.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"preferredChain":{"description":"PreferredChain is the chain to use if the ACME server outputs multiple.\nPreferredChain is no guarantee that this one gets delivered by the ACME\nendpoint.\nFor example, for Let's Encrypt's DST cross-sign you would use:\n\"DST Root CA X3\" or \"ISRG Root X1\" for the newer Let's Encrypt root CA.\nThis value picks the first certificate bundle in the combined set of\nACME default and alternative chains that has a root-most certificate with\nthis value as its issuer's commonname.","type":"string","maxLength":64},"privateKeySecretRef":{"description":"PrivateKey is the name of a Kubernetes Secret resource that will be used to\nstore the automatically generated ACME account private key.\nOptionally, a `key` may be specified to select a specific entry within\nthe named Secret resource.\nIf `key` is not specified, a default of `tls.key` will be used.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"profile":{"description":"Profile allows requesting a certificate profile from the ACME server.\nSupported profiles are listed by the server's ACME directory URL.","type":"string"},"server":{"description":"Server is the URL used to access the ACME server's 'directory' endpoint.\nFor example, for Let's Encrypt's staging endpoint, you would use:\n\"https://acme-staging-v02.api.letsencrypt.org/directory\".\nOnly ACME v2 endpoints (i.e. RFC 8555) are supported.","type":"string"},"skipTLSVerify":{"description":"INSECURE: Enables or disables validation of the ACME server TLS certificate.\nIf true, requests to the ACME server will not have the TLS certificate chain\nvalidated.\nMutually exclusive with CABundle; prefer using CABundle to prevent various\nkinds of security vulnerabilities.\nOnly enable this option in development environments.\nIf CABundle and SkipTLSVerify are unset, the system certificate bundle inside\nthe container is used to validate the TLS connection.\nDefaults to false.","type":"boolean"},"solvers":{"description":"Solvers is a list of challenge solvers that will be used to solve\nACME challenges for the matching domains.\nSolver configurations must be provided in order to obtain certificates\nfrom an ACME server.\nFor more information, see: https://cert-manager.io/docs/configuration/acme/","type":"array","items":{"description":"An ACMEChallengeSolver describes how to solve ACME challenges for the issuer it is part of.\nA selector may be provided to use different solving strategies for different DNS names.\nOnly one of HTTP01 or DNS01 must be provided.","type":"object","properties":{"dns01":{"description":"Configures cert-manager to attempt to complete authorizations by\nperforming the DNS01 challenge flow.","type":"object","properties":{"acmeDNS":{"description":"Use the 'ACME DNS' (https://github.com/joohoi/acme-dns) API to manage\nDNS01 challenge records.","type":"object","required":["accountSecretRef","host"],"properties":{"accountSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"host":{"type":"string"}}},"akamai":{"description":"Use the Akamai DNS zone management API to manage DNS01 challenge records.","type":"object","required":["accessTokenSecretRef","clientSecretSecretRef","clientTokenSecretRef","serviceConsumerDomain"],"properties":{"accessTokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientSecretSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientTokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"serviceConsumerDomain":{"type":"string"}}},"azureDNS":{"description":"Use the Microsoft Azure DNS API to manage DNS01 challenge records.","type":"object","required":["resourceGroupName","subscriptionID"],"properties":{"clientID":{"description":"Auth: Azure Service Principal:\nThe ClientID of the Azure Service Principal used to authenticate with Azure DNS.\nIf set, ClientSecret and TenantID must also be set.","type":"string"},"clientSecretSecretRef":{"description":"Auth: Azure Service Principal:\nA reference to a Secret containing the password associated with the Service Principal.\nIf set, ClientID and TenantID must also be set.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"environment":{"description":"name of the Azure environment (default AzurePublicCloud)","type":"string","enum":["AzurePublicCloud","AzureChinaCloud","AzureGermanCloud","AzureUSGovernmentCloud"]},"hostedZoneName":{"description":"name of the DNS zone that should be used","type":"string"},"managedIdentity":{"description":"Auth: Azure Workload Identity or Azure Managed Service Identity:\nSettings to enable Azure Workload Identity or Azure Managed Service Identity\nIf set, ClientID, ClientSecret and TenantID must not be set.","type":"object","properties":{"clientID":{"description":"client ID of the managed identity, cannot be used at the same time as resourceID","type":"string"},"resourceID":{"description":"resource ID of the managed identity, cannot be used at the same time as clientID\nCannot be used for Azure Managed Service Identity","type":"string"},"tenantID":{"description":"tenant ID of the managed identity, cannot be used at the same time as resourceID","type":"string"}}},"resourceGroupName":{"description":"resource group the DNS zone is located in","type":"string"},"subscriptionID":{"description":"ID of the Azure subscription","type":"string"},"tenantID":{"description":"Auth: Azure Service Principal:\nThe TenantID of the Azure Service Principal used to authenticate with Azure DNS.\nIf set, ClientID and ClientSecret must also be set.","type":"string"}}},"cloudDNS":{"description":"Use the Google Cloud DNS API to manage DNS01 challenge records.","type":"object","required":["project"],"properties":{"hostedZoneName":{"description":"HostedZoneName is an optional field that tells cert-manager in which\nCloud DNS zone the challenge record has to be created.\nIf left empty cert-manager will automatically choose a zone.","type":"string"},"project":{"type":"string"},"serviceAccountSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"cloudflare":{"description":"Use the Cloudflare API to manage DNS01 challenge records.","type":"object","properties":{"apiKeySecretRef":{"description":"API key to use to authenticate with Cloudflare.\nNote: using an API token to authenticate is now the recommended method\nas it allows greater control of permissions.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"apiTokenSecretRef":{"description":"API token used to authenticate with Cloudflare.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"email":{"description":"Email of the account, only required when using API key based authentication.","type":"string"}}},"cnameStrategy":{"description":"CNAMEStrategy configures how the DNS01 provider should handle CNAME\nrecords when found in DNS zones.","type":"string","enum":["None","Follow"]},"digitalocean":{"description":"Use the DigitalOcean DNS API to manage DNS01 challenge records.","type":"object","required":["tokenSecretRef"],"properties":{"tokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"rfc2136":{"description":"Use RFC2136 (\"Dynamic Updates in the Domain Name System\") (https://datatracker.ietf.org/doc/rfc2136/)\nto manage DNS01 challenge records.","type":"object","required":["nameserver"],"properties":{"nameserver":{"description":"The IP address or hostname of an authoritative DNS server supporting\nRFC2136 in the form host:port. If the host is an IPv6 address it must be\nenclosed in square brackets (e.g [2001:db8::1]) ; port is optional.\nThis field is required.","type":"string"},"protocol":{"description":"Protocol to use for dynamic DNS update queries. Valid values are (case-sensitive) ``TCP`` and ``UDP``; ``UDP`` (default).","type":"string","enum":["TCP","UDP"]},"tsigAlgorithm":{"description":"The TSIG Algorithm configured in the DNS supporting RFC2136. Used only\nwhen ``tsigSecretSecretRef`` and ``tsigKeyName`` are defined.\nSupported values are (case-insensitive): ``HMACMD5`` (default),\n``HMACSHA1``, ``HMACSHA256`` or ``HMACSHA512``.","type":"string"},"tsigKeyName":{"description":"The TSIG Key name configured in the DNS.\nIf ``tsigSecretSecretRef`` is defined, this field is required.","type":"string"},"tsigSecretSecretRef":{"description":"The name of the secret containing the TSIG value.\nIf ``tsigKeyName`` is defined, this field is required.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"route53":{"description":"Use the AWS Route53 API to manage DNS01 challenge records.","type":"object","properties":{"accessKeyID":{"description":"The AccessKeyID is used for authentication.\nCannot be set when SecretAccessKeyID is set.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"string"},"accessKeyIDSecretRef":{"description":"The SecretAccessKey is used for authentication. If set, pull the AWS\naccess key ID from a key within a Kubernetes Secret.\nCannot be set when AccessKeyID is set.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"auth":{"description":"Auth configures how cert-manager authenticates.","type":"object","required":["kubernetes"],"properties":{"kubernetes":{"description":"Kubernetes authenticates with Route53 using AssumeRoleWithWebIdentity\nby passing a bound ServiceAccount token.","type":"object","required":["serviceAccountRef"],"properties":{"serviceAccountRef":{"description":"A reference to a service account that will be used to request a bound\ntoken (also known as \"projected token\"). To use this field, you must\nconfigure an RBAC rule to let cert-manager request a token.","type":"object","required":["name"],"properties":{"audiences":{"description":"TokenAudiences is an optional list of audiences to include in the\ntoken passed to AWS. The default token consisting of the issuer's namespace\nand name is always included.\nIf unset the audience defaults to `sts.amazonaws.com`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the ServiceAccount used to request a token.","type":"string"}}}}}}},"hostedZoneID":{"description":"If set, the provider will manage only this zone in Route53 and will not do a lookup using the route53:ListHostedZonesByName api call.","type":"string"},"region":{"description":"Override the AWS region.\n\nRoute53 is a global service and does not have regional endpoints but the\nregion specified here (or via environment variables) is used as a hint to\nhelp compute the correct AWS credential scope and partition when it\nconnects to Route53. See:\n- [Amazon Route 53 endpoints and quotas](https://docs.aws.amazon.com/general/latest/gr/r53.html)\n- [Global services](https://docs.aws.amazon.com/whitepapers/latest/aws-fault-isolation-boundaries/global-services.html)\n\nIf you omit this region field, cert-manager will use the region from\nAWS_REGION and AWS_DEFAULT_REGION environment variables, if they are set\nin the cert-manager controller Pod.\n\nThe `region` field is not needed if you use [IAM Roles for Service Accounts (IRSA)](https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html).\nInstead an AWS_REGION environment variable is added to the cert-manager controller Pod by:\n[Amazon EKS Pod Identity Webhook](https://github.com/aws/amazon-eks-pod-identity-webhook).\nIn this case this `region` field value is ignored.\n\nThe `region` field is not needed if you use [EKS Pod Identities](https://docs.aws.amazon.com/eks/latest/userguide/pod-identities.html).\nInstead an AWS_REGION environment variable is added to the cert-manager controller Pod by:\n[Amazon EKS Pod Identity Agent](https://github.com/aws/eks-pod-identity-agent),\nIn this case this `region` field value is ignored.","type":"string"},"role":{"description":"Role is a Role ARN which the Route53 provider will assume using either the explicit credentials AccessKeyID/SecretAccessKey\nor the inferred credentials from environment variables, shared credentials file or AWS Instance metadata","type":"string"},"secretAccessKeySecretRef":{"description":"The SecretAccessKey is used for authentication.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"webhook":{"description":"Configure an external webhook based DNS01 challenge solver to manage\nDNS01 challenge records.","type":"object","required":["groupName","solverName"],"properties":{"config":{"description":"Additional configuration that should be passed to the webhook apiserver\nwhen challenges are processed.\nThis can contain arbitrary JSON data.\nSecret values should not be specified in this stanza.\nIf secret values are needed (e.g., credentials for a DNS service), you\nshould use a SecretKeySelector to reference a Secret resource.\nFor details on the schema of this field, consult the webhook provider\nimplementation's documentation.","x-kubernetes-preserve-unknown-fields":true},"groupName":{"description":"The API group name that should be used when POSTing ChallengePayload\nresources to the webhook apiserver.\nThis should be the same as the GroupName specified in the webhook\nprovider implementation.","type":"string"},"solverName":{"description":"The name of the solver to use, as defined in the webhook provider\nimplementation.\nThis will typically be the name of the provider, e.g., 'cloudflare'.","type":"string"}}}}},"http01":{"description":"Configures cert-manager to attempt to complete authorizations by\nperforming the HTTP01 challenge flow.\nIt is not possible to obtain certificates for wildcard domain names\n(e.g., `*.example.com`) using the HTTP01 challenge mechanism.","type":"object","properties":{"gatewayHTTPRoute":{"description":"The Gateway API is a sig-network community API that models service networking\nin Kubernetes (https://gateway-api.sigs.k8s.io/). The Gateway solver will\ncreate HTTPRoutes with the specified labels in the same namespace as the challenge.\nThis solver is experimental, and fields / behaviour may change in the future.","type":"object","properties":{"labels":{"description":"Custom labels that will be applied to HTTPRoutes created by cert-manager\nwhile solving HTTP-01 challenges.","type":"object","additionalProperties":{"type":"string"}},"parentRefs":{"description":"When solving an HTTP-01 challenge, cert-manager creates an HTTPRoute.\ncert-manager needs to know which parentRefs should be used when creating\nthe HTTPRoute. Usually, the parentRef references a Gateway. See:\nhttps://gateway-api.sigs.k8s.io/api-types/httproute/#attaching-to-gateways","type":"array","items":{"description":"ParentReference identifies an API object (usually a Gateway) that can be considered\na parent of this resource (usually a route). There are two kinds of parent resources\nwith \"Core\" support:\n\n* Gateway (Gateway conformance profile)\n* Service (Mesh conformance profile, ClusterIP Services only)\n\nThis API may be extended in the future to support additional kinds of parent\nresources.\n\nThe API object must be valid in the cluster; the Group and Kind must\nbe registered in the cluster for this reference to be valid.","type":"object","required":["name"],"properties":{"group":{"description":"Group is the group of the referent.\nWhen unspecified, \"gateway.networking.k8s.io\" is inferred.\nTo set the core API group (such as for a \"Service\" kind referent),\nGroup must be explicitly set to \"\" (empty string).\n\nSupport: Core","type":"string","maxLength":253,"pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"kind":{"description":"Kind is kind of the referent.\n\nThere are two kinds of parent resources with \"Core\" support:\n\n* Gateway (Gateway conformance profile)\n* Service (Mesh conformance profile, ClusterIP Services only)\n\nSupport for other resources is Implementation-Specific.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-zA-Z]([-a-zA-Z0-9]*[a-zA-Z0-9])?$"},"name":{"description":"Name is the name of the referent.\n\nSupport: Core","type":"string","maxLength":253,"minLength":1},"namespace":{"description":"Namespace is the namespace of the referent. When unspecified, this refers\nto the local namespace of the Route.\n\nNote that there are specific rules for ParentRefs which cross namespace\nboundaries. Cross-namespace references are only valid if they are explicitly\nallowed by something in the namespace they are referring to. For example:\nGateway has the AllowedRoutes field, and ReferenceGrant provides a\ngeneric way to enable any other kind of cross-namespace reference.\n\n<gateway:experimental:description>\nParentRefs from a Route to a Service in the same namespace are \"producer\"\nroutes, which apply default routing rules to inbound connections from\nany namespace to the Service.\n\nParentRefs from a Route to a Service in a different namespace are\n\"consumer\" routes, and these routing rules are only applied to outbound\nconnections originating from the same namespace as the Route, for which\nthe intended destination of the connections are a Service targeted as a\nParentRef of the Route.\n</gateway:experimental:description>\n\nSupport: Core","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"port":{"description":"Port is the network port this Route targets. It can be interpreted\ndifferently based on the type of parent resource.\n\nWhen the parent resource is a Gateway, this targets all listeners\nlistening on the specified port that also support this kind of Route(and\nselect this Route). It's not recommended to set `Port` unless the\nnetworking behaviors specified in a Route must apply to a specific port\nas opposed to a listener(s) whose port(s) may be changed. When both Port\nand SectionName are specified, the name and port of the selected listener\nmust match both specified values.\n\n<gateway:experimental:description>\nWhen the parent resource is a Service, this targets a specific port in the\nService spec. When both Port (experimental) and SectionName are specified,\nthe name and port of the selected port must match both specified values.\n</gateway:experimental:description>\n\nImplementations MAY choose to support other parent resources.\nImplementations supporting other types of parent resources MUST clearly\ndocument how/if Port is interpreted.\n\nFor the purpose of status, an attachment is considered successful as\nlong as the parent resource accepts it partially. For example, Gateway\nlisteners can restrict which Routes can attach to them by Route kind,\nnamespace, or hostname. If 1 of 2 Gateway listeners accept attachment\nfrom the referencing Route, the Route MUST be considered successfully\nattached. If no Gateway listeners accept attachment from this Route,\nthe Route MUST be considered detached from the Gateway.\n\nSupport: Extended","type":"integer","format":"int32","maximum":65535,"minimum":1},"sectionName":{"description":"SectionName is the name of a section within the target resource. In the\nfollowing resources, SectionName is interpreted as the following:\n\n* Gateway: Listener name. When both Port (experimental) and SectionName\nare specified, the name and port of the selected listener must match\nboth specified values.\n* Service: Port name. When both Port (experimental) and SectionName\nare specified, the name and port of the selected listener must match\nboth specified values.\n\nImplementations MAY choose to support attaching Routes to other resources.\nIf that is the case, they MUST clearly document how SectionName is\ninterpreted.\n\nWhen unspecified (empty string), this will reference the entire resource.\nFor the purpose of status, an attachment is considered successful if at\nleast one section in the parent resource accepts it. For example, Gateway\nlisteners can restrict which Routes can attach to them by Route kind,\nnamespace, or hostname. If 1 of 2 Gateway listeners accept attachment from\nthe referencing Route, the Route MUST be considered successfully\nattached. If no Gateway listeners accept attachment from this Route, the\nRoute MUST be considered detached from the Gateway.\n\nSupport: Core","type":"string","maxLength":253,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}}},"x-kubernetes-list-type":"atomic"},"podTemplate":{"description":"Optional pod template used to configure the ACME challenge solver pods\nused for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the pod used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}}}},"spec":{"description":"PodSpec defines overrides for the HTTP01 challenge solver pod.\nCheck ACMEChallengeSolverHTTP01IngressPodSpec to find out currently supported fields.\nAll other fields will be ignored.","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"imagePullSecrets":{"description":"If specified, the pod's imagePullSecrets","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, the pod's priorityClassName.","type":"string"},"resources":{"description":"If specified, the pod's resource requirements.\nThese values override the global resource configuration flags.\nNote that when only specifying resource limits, ensure they are greater than or equal\nto the corresponding global resource requests configured via controller flags\n(--acme-http01-solver-resource-request-cpu, --acme-http01-solver-resource-request-memory).\nKubernetes will reject pod creation if limits are lower than requests, causing challenge failures.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to the global values configured via controller flags. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"description":"If specified, the pod's security context","type":"object","properties":{"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition\nto the container's primary GID, the fsGroup (if specified), and group memberships\ndefined in the container image for the uid of the container process. If unspecified,\nno additional groups are added to any container. Note that group memberships\ndefined in the container image for the uid of the container process are still effective,\neven if they are not included in this list.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"serviceAccountName":{"description":"If specified, the pod's service account","type":"string"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"serviceType":{"description":"Optional service type for Kubernetes solver service. Supported values\nare NodePort or ClusterIP. If unset, defaults to NodePort.","type":"string"}}},"ingress":{"description":"The ingress based HTTP01 challenge solver will solve challenges by\ncreating or modifying Ingress resources in order to route requests for\n'/.well-known/acme-challenge/XYZ' to 'challenge solver' pods that are\nprovisioned by cert-manager for each Challenge to be completed.","type":"object","properties":{"class":{"description":"This field configures the annotation `kubernetes.io/ingress.class` when\ncreating Ingress resources to solve ACME challenges that use this\nchallenge solver. Only one of `class`, `name` or `ingressClassName` may\nbe specified.","type":"string"},"ingressClassName":{"description":"This field configures the field `ingressClassName` on the created Ingress\nresources used to solve ACME challenges that use this challenge solver.\nThis is the recommended way of configuring the ingress class. Only one of\n`class`, `name` or `ingressClassName` may be specified.","type":"string"},"ingressTemplate":{"description":"Optional ingress template used to configure the ACME challenge solver\ningress used for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the ingress used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver ingress.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver ingress.","type":"object","additionalProperties":{"type":"string"}}}}}},"name":{"description":"The name of the ingress resource that should have ACME challenge solving\nroutes inserted into it in order to solve HTTP01 challenges.\nThis is typically used in conjunction with ingress controllers like\ningress-gce, which maintains a 1:1 mapping between external IPs and\ningress resources. Only one of `class`, `name` or `ingressClassName` may\nbe specified.","type":"string"},"podTemplate":{"description":"Optional pod template used to configure the ACME challenge solver pods\nused for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the pod used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}}}},"spec":{"description":"PodSpec defines overrides for the HTTP01 challenge solver pod.\nCheck ACMEChallengeSolverHTTP01IngressPodSpec to find out currently supported fields.\nAll other fields will be ignored.","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"imagePullSecrets":{"description":"If specified, the pod's imagePullSecrets","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, the pod's priorityClassName.","type":"string"},"resources":{"description":"If specified, the pod's resource requirements.\nThese values override the global resource configuration flags.\nNote that when only specifying resource limits, ensure they are greater than or equal\nto the corresponding global resource requests configured via controller flags\n(--acme-http01-solver-resource-request-cpu, --acme-http01-solver-resource-request-memory).\nKubernetes will reject pod creation if limits are lower than requests, causing challenge failures.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to the global values configured via controller flags. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"description":"If specified, the pod's security context","type":"object","properties":{"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition\nto the container's primary GID, the fsGroup (if specified), and group memberships\ndefined in the container image for the uid of the container process. If unspecified,\nno additional groups are added to any container. Note that group memberships\ndefined in the container image for the uid of the container process are still effective,\neven if they are not included in this list.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"serviceAccountName":{"description":"If specified, the pod's service account","type":"string"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"serviceType":{"description":"Optional service type for Kubernetes solver service. Supported values\nare NodePort or ClusterIP. If unset, defaults to NodePort.","type":"string"}}}}},"selector":{"description":"Selector selects a set of DNSNames on the Certificate resource that\nshould be solved using this challenge solver.\nIf not specified, the solver will be treated as the 'default' solver\nwith the lowest priority, i.e. if any other solver has a more specific\nmatch, it will be used instead.","type":"object","properties":{"dnsNames":{"description":"List of DNSNames that this solver will be used to solve.\nIf specified and a match is found, a dnsNames selector will take\nprecedence over a dnsZones selector.\nIf multiple solvers match with the same dnsNames value, the solver\nwith the most matching labels in matchLabels will be selected.\nIf neither has more matches, the solver defined earlier in the list\nwill be selected.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dnsZones":{"description":"List of DNSZones that this solver will be used to solve.\nThe most specific DNS zone match specified here will take precedence\nover other DNS zone matches, so a solver specifying sys.example.com\nwill be selected over one specifying example.com for the domain\nwww.sys.example.com.\nIf multiple solvers match with the same dnsZones value, the solver\nwith the most matching labels in matchLabels will be selected.\nIf neither has more matches, the solver defined earlier in the list\nwill be selected.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"A label selector that is used to refine the set of certificate's that\nthis challenge solver will apply to.","type":"object","additionalProperties":{"type":"string"}}}}}},"x-kubernetes-list-type":"atomic"}}},"ca":{"description":"CA configures this issuer to sign certificates using a signing CA keypair\nstored in a Secret resource.\nThis is used to build internal PKIs that are managed by cert-manager.","type":"object","required":["secretName"],"properties":{"crlDistributionPoints":{"description":"The CRL distribution points is an X.509 v3 certificate extension which identifies\nthe location of the CRL from which the revocation of this certificate can be checked.\nIf not set, certificates will be issued without distribution points set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"issuingCertificateURLs":{"description":"IssuingCertificateURLs is a list of URLs which this issuer should embed into certificates\nit creates. See https://www.rfc-editor.org/rfc/rfc5280#section-4.2.2.1 for more details.\nAs an example, such a URL might be \"http://ca.domain.com/ca.crt\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ocspServers":{"description":"The OCSP server list is an X.509 v3 extension that defines a list of\nURLs of OCSP responders. The OCSP responders can be queried for the\nrevocation status of an issued certificate. If not set, the\ncertificate will be issued with no OCSP servers set. For example, an\nOCSP server URL could be \"http://ocsp.int-x3.letsencrypt.org\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"SecretName is the name of the secret used to sign Certificates issued\nby this Issuer.","type":"string"}}},"selfSigned":{"description":"SelfSigned configures this issuer to 'self sign' certificates using the\nprivate key used to create the CertificateRequest object.","type":"object","properties":{"crlDistributionPoints":{"description":"The CRL distribution points is an X.509 v3 certificate extension which identifies\nthe location of the CRL from which the revocation of this certificate can be checked.\nIf not set certificate will be issued without CDP. Values are strings.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"vault":{"description":"Vault configures this issuer to sign certificates using a HashiCorp Vault\nPKI backend.","type":"object","required":["auth","path","server"],"properties":{"auth":{"description":"Auth configures how cert-manager authenticates with the Vault server.","type":"object","properties":{"appRole":{"description":"AppRole authenticates with Vault using the App Role auth mechanism,\nwith the role and secret stored in a Kubernetes Secret resource.","type":"object","required":["path","roleId","secretRef"],"properties":{"path":{"description":"Path where the App Role authentication backend is mounted in Vault, e.g:\n\"approle\"","type":"string"},"roleId":{"description":"RoleID configured in the App Role authentication backend when setting\nup the authentication backend in Vault.","type":"string"},"secretRef":{"description":"Reference to a key in a Secret that contains the App Role secret used\nto authenticate with Vault.\nThe `key` field must be specified and denotes which entry within the Secret\nresource is used as the app role secret.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"clientCertificate":{"description":"ClientCertificate authenticates with Vault by presenting a client\ncertificate during the request's TLS handshake.\nWorks only when using HTTPS protocol.","type":"object","properties":{"mountPath":{"description":"The Vault mountPath here is the mount path to use when authenticating with\nVault. For example, setting a value to `/v1/auth/foo`, will use the path\n`/v1/auth/foo/login` to authenticate with Vault. If unspecified, the\ndefault value \"/v1/auth/cert\" will be used.","type":"string"},"name":{"description":"Name of the certificate role to authenticate against.\nIf not set, matching any certificate role, if available.","type":"string"},"secretName":{"description":"Reference to Kubernetes Secret of type \"kubernetes.io/tls\" (hence containing\ntls.crt and tls.key) used to authenticate to Vault using TLS client\nauthentication.","type":"string"}}},"kubernetes":{"description":"Kubernetes authenticates with Vault by passing the ServiceAccount\ntoken stored in the named Secret resource to the Vault server.","type":"object","required":["role"],"properties":{"mountPath":{"description":"The Vault mountPath here is the mount path to use when authenticating with\nVault. For example, setting a value to `/v1/auth/foo`, will use the path\n`/v1/auth/foo/login` to authenticate with Vault. If unspecified, the\ndefault value \"/v1/auth/kubernetes\" will be used.","type":"string"},"role":{"description":"A required field containing the Vault Role to assume. A Role binds a\nKubernetes ServiceAccount with a set of Vault policies.","type":"string"},"secretRef":{"description":"The required Secret field containing a Kubernetes ServiceAccount JWT used\nfor authenticating with Vault. Use of 'ambient credentials' is not\nsupported.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"serviceAccountRef":{"description":"A reference to a service account that will be used to request a bound\ntoken (also known as \"projected token\"). Compared to using \"secretRef\",\nusing this field means that you don't rely on statically bound tokens. To\nuse this field, you must configure an RBAC rule to let cert-manager\nrequest a token.","type":"object","required":["name"],"properties":{"audiences":{"description":"TokenAudiences is an optional list of extra audiences to include in the token passed to Vault. The default token\nconsisting of the issuer's namespace and name is always included.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the ServiceAccount used to request a token.","type":"string"}}}}},"tokenSecretRef":{"description":"TokenSecretRef authenticates with Vault by presenting a token.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"caBundle":{"description":"Base64-encoded bundle of PEM CAs which will be used to validate the certificate\nchain presented by Vault. Only used if using HTTPS to connect to Vault and\nignored for HTTP connections.\nMutually exclusive with CABundleSecretRef.\nIf neither CABundle nor CABundleSecretRef are defined, the certificate bundle in\nthe cert-manager controller container is used to validate the TLS connection.","type":"string","format":"byte"},"caBundleSecretRef":{"description":"Reference to a Secret containing a bundle of PEM-encoded CAs to use when\nverifying the certificate chain presented by Vault when using HTTPS.\nMutually exclusive with CABundle.\nIf neither CABundle nor CABundleSecretRef are defined, the certificate bundle in\nthe cert-manager controller container is used to validate the TLS connection.\nIf no key for the Secret is specified, cert-manager will default to 'ca.crt'.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientCertSecretRef":{"description":"Reference to a Secret containing a PEM-encoded Client Certificate to use when the\nVault server requires mTLS.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientKeySecretRef":{"description":"Reference to a Secret containing a PEM-encoded Client Private Key to use when the\nVault server requires mTLS.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"namespace":{"description":"Name of the vault namespace. Namespaces is a set of features within Vault Enterprise that allows Vault environments to support Secure Multi-tenancy. e.g: \"ns1\"\nMore about namespaces can be found here https://www.vaultproject.io/docs/enterprise/namespaces","type":"string"},"path":{"description":"Path is the mount path of the Vault PKI backend's `sign` endpoint, e.g:\n\"my_pki_mount/sign/my-role-name\".","type":"string"},"server":{"description":"Server is the connection address for the Vault server, e.g: \"https://vault.example.com:8200\".","type":"string"},"serverName":{"description":"ServerName is used to verify the hostname on the returned certificates\nby the Vault server.","type":"string"}}},"venafi":{"description":"Venafi configures this issuer to sign certificates using a Venafi TPP\nor Venafi Cloud policy zone.","type":"object","required":["zone"],"properties":{"cloud":{"description":"Cloud specifies the Venafi cloud configuration settings.\nOnly one of TPP or Cloud may be specified.","type":"object","required":["apiTokenSecretRef"],"properties":{"apiTokenSecretRef":{"description":"APITokenSecretRef is a secret key selector for the Venafi Cloud API token.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"url":{"description":"URL is the base URL for Venafi Cloud.\nDefaults to \"https://api.venafi.cloud/\".","type":"string"}}},"tpp":{"description":"TPP specifies Trust Protection Platform configuration settings.\nOnly one of TPP or Cloud may be specified.","type":"object","required":["credentialsRef","url"],"properties":{"caBundle":{"description":"Base64-encoded bundle of PEM CAs which will be used to validate the certificate\nchain presented by the TPP server. Only used if using HTTPS; ignored for HTTP.\nIf undefined, the certificate bundle in the cert-manager controller container\nis used to validate the chain.","type":"string","format":"byte"},"caBundleSecretRef":{"description":"Reference to a Secret containing a base64-encoded bundle of PEM CAs\nwhich will be used to validate the certificate chain presented by the TPP server.\nOnly used if using HTTPS; ignored for HTTP. Mutually exclusive with CABundle.\nIf neither CABundle nor CABundleSecretRef is defined, the certificate bundle in\nthe cert-manager controller container is used to validate the TLS connection.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"credentialsRef":{"description":"CredentialsRef is a reference to a Secret containing the Venafi TPP API credentials.\nThe secret must contain the key 'access-token' for the Access Token Authentication,\nor two keys, 'username' and 'password' for the API Keys Authentication.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"url":{"description":"URL is the base URL for the vedsdk endpoint of the Venafi TPP instance,\nfor example: \"https://tpp.example.com/vedsdk\".","type":"string"}}},"zone":{"description":"Zone is the Venafi Policy Zone to use for this issuer.\nAll requests made to the Venafi platform will be restricted by the named\nzone policy.\nThis field is required.","type":"string"}}}}},"status":{"description":"Status of the ClusterIssuer. This is set and managed automatically.","type":"object","properties":{"acme":{"description":"ACME specific status options.\nThis field should only be set if the Issuer is configured to use an ACME\nserver to issue certificates.","type":"object","properties":{"lastPrivateKeyHash":{"description":"LastPrivateKeyHash is a hash of the private key associated with the latest\nregistered ACME account, in order to track changes made to registered account\nassociated with the Issuer","type":"string"},"lastRegisteredEmail":{"description":"LastRegisteredEmail is the email associated with the latest registered\nACME account, in order to track changes made to registered account\nassociated with the  Issuer","type":"string"},"uri":{"description":"URI is the unique account identifier, which can also be used to retrieve\naccount details from the CA","type":"string"}}},"conditions":{"description":"List of status conditions to indicate the status of a CertificateRequest.\nKnown condition types are `Ready`.","type":"array","items":{"description":"IssuerCondition contains condition information for an Issuer.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the timestamp corresponding to the last status\nchange of this condition.","type":"string","format":"date-time"},"message":{"description":"Message is a human readable description of the details of the last\ntransition, complementing reason.","type":"string"},"observedGeneration":{"description":"If set, this represents the .metadata.generation that the condition was\nset based upon.\nFor instance, if .metadata.generation is currently 12, but the\n.status.condition[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the Issuer.","type":"integer","format":"int64"},"reason":{"description":"Reason is a brief machine readable explanation for the condition's last\ntransition.","type":"string"},"status":{"description":"Status of the condition, one of (`True`, `False`, `Unknown`).","type":"string","enum":["True","False","Unknown"]},"type":{"description":"Type of the condition, known values are (`Ready`).","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"ClusterIssuer","version":"v1"}]},"io.cert-manager.v1.ClusterIssuerList":{"description":"ClusterIssuerList is a list of ClusterIssuer","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterissuers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cert-manager.v1.ClusterIssuer"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"ClusterIssuerList","version":"v1"}]},"io.cert-manager.v1.Issuer":{"description":"An Issuer represents a certificate issuing authority which can be\nreferenced as part of `issuerRef` fields.\nIt is scoped to a single namespace and can therefore only be referenced by\nresources within the same namespace.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Desired state of the Issuer resource.","type":"object","properties":{"acme":{"description":"ACME configures this issuer to communicate with a RFC8555 (ACME) server\nto obtain signed x509 certificates.","type":"object","required":["privateKeySecretRef","server"],"properties":{"caBundle":{"description":"Base64-encoded bundle of PEM CAs which can be used to validate the certificate\nchain presented by the ACME server.\nMutually exclusive with SkipTLSVerify; prefer using CABundle to prevent various\nkinds of security vulnerabilities.\nIf CABundle and SkipTLSVerify are unset, the system certificate bundle inside\nthe container is used to validate the TLS connection.","type":"string","format":"byte"},"disableAccountKeyGeneration":{"description":"Enables or disables generating a new ACME account key.\nIf true, the Issuer resource will *not* request a new account but will expect\nthe account key to be supplied via an existing secret.\nIf false, the cert-manager system will generate a new ACME account key\nfor the Issuer.\nDefaults to false.","type":"boolean"},"email":{"description":"Email is the email address to be associated with the ACME account.\nThis field is optional, but it is strongly recommended to be set.\nIt will be used to contact you in case of issues with your account or\ncertificates, including expiry notification emails.\nThis field may be updated after the account is initially registered.","type":"string"},"enableDurationFeature":{"description":"Enables requesting a Not After date on certificates that matches the\nduration of the certificate. This is not supported by all ACME servers\nlike Let's Encrypt. If set to true when the ACME server does not support\nit, it will create an error on the Order.\nDefaults to false.","type":"boolean"},"externalAccountBinding":{"description":"ExternalAccountBinding is a reference to a CA external account of the ACME\nserver.\nIf set, upon registration cert-manager will attempt to associate the given\nexternal account credentials with the registered ACME account.","type":"object","required":["keyID","keySecretRef"],"properties":{"keyAlgorithm":{"description":"Deprecated: keyAlgorithm field exists for historical compatibility\nreasons and should not be used. The algorithm is now hardcoded to HS256\nin golang/x/crypto/acme.","type":"string","enum":["HS256","HS384","HS512"]},"keyID":{"description":"keyID is the ID of the CA key that the External Account is bound to.","type":"string"},"keySecretRef":{"description":"keySecretRef is a Secret Key Selector referencing a data item in a Kubernetes\nSecret which holds the symmetric MAC key of the External Account Binding.\nThe `key` is the index string that is paired with the key data in the\nSecret and should not be confused with the key data itself, or indeed with\nthe External Account Binding keyID above.\nThe secret key stored in the Secret **must** be un-padded, base64 URL\nencoded data.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"preferredChain":{"description":"PreferredChain is the chain to use if the ACME server outputs multiple.\nPreferredChain is no guarantee that this one gets delivered by the ACME\nendpoint.\nFor example, for Let's Encrypt's DST cross-sign you would use:\n\"DST Root CA X3\" or \"ISRG Root X1\" for the newer Let's Encrypt root CA.\nThis value picks the first certificate bundle in the combined set of\nACME default and alternative chains that has a root-most certificate with\nthis value as its issuer's commonname.","type":"string","maxLength":64},"privateKeySecretRef":{"description":"PrivateKey is the name of a Kubernetes Secret resource that will be used to\nstore the automatically generated ACME account private key.\nOptionally, a `key` may be specified to select a specific entry within\nthe named Secret resource.\nIf `key` is not specified, a default of `tls.key` will be used.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"profile":{"description":"Profile allows requesting a certificate profile from the ACME server.\nSupported profiles are listed by the server's ACME directory URL.","type":"string"},"server":{"description":"Server is the URL used to access the ACME server's 'directory' endpoint.\nFor example, for Let's Encrypt's staging endpoint, you would use:\n\"https://acme-staging-v02.api.letsencrypt.org/directory\".\nOnly ACME v2 endpoints (i.e. RFC 8555) are supported.","type":"string"},"skipTLSVerify":{"description":"INSECURE: Enables or disables validation of the ACME server TLS certificate.\nIf true, requests to the ACME server will not have the TLS certificate chain\nvalidated.\nMutually exclusive with CABundle; prefer using CABundle to prevent various\nkinds of security vulnerabilities.\nOnly enable this option in development environments.\nIf CABundle and SkipTLSVerify are unset, the system certificate bundle inside\nthe container is used to validate the TLS connection.\nDefaults to false.","type":"boolean"},"solvers":{"description":"Solvers is a list of challenge solvers that will be used to solve\nACME challenges for the matching domains.\nSolver configurations must be provided in order to obtain certificates\nfrom an ACME server.\nFor more information, see: https://cert-manager.io/docs/configuration/acme/","type":"array","items":{"description":"An ACMEChallengeSolver describes how to solve ACME challenges for the issuer it is part of.\nA selector may be provided to use different solving strategies for different DNS names.\nOnly one of HTTP01 or DNS01 must be provided.","type":"object","properties":{"dns01":{"description":"Configures cert-manager to attempt to complete authorizations by\nperforming the DNS01 challenge flow.","type":"object","properties":{"acmeDNS":{"description":"Use the 'ACME DNS' (https://github.com/joohoi/acme-dns) API to manage\nDNS01 challenge records.","type":"object","required":["accountSecretRef","host"],"properties":{"accountSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"host":{"type":"string"}}},"akamai":{"description":"Use the Akamai DNS zone management API to manage DNS01 challenge records.","type":"object","required":["accessTokenSecretRef","clientSecretSecretRef","clientTokenSecretRef","serviceConsumerDomain"],"properties":{"accessTokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientSecretSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientTokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"serviceConsumerDomain":{"type":"string"}}},"azureDNS":{"description":"Use the Microsoft Azure DNS API to manage DNS01 challenge records.","type":"object","required":["resourceGroupName","subscriptionID"],"properties":{"clientID":{"description":"Auth: Azure Service Principal:\nThe ClientID of the Azure Service Principal used to authenticate with Azure DNS.\nIf set, ClientSecret and TenantID must also be set.","type":"string"},"clientSecretSecretRef":{"description":"Auth: Azure Service Principal:\nA reference to a Secret containing the password associated with the Service Principal.\nIf set, ClientID and TenantID must also be set.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"environment":{"description":"name of the Azure environment (default AzurePublicCloud)","type":"string","enum":["AzurePublicCloud","AzureChinaCloud","AzureGermanCloud","AzureUSGovernmentCloud"]},"hostedZoneName":{"description":"name of the DNS zone that should be used","type":"string"},"managedIdentity":{"description":"Auth: Azure Workload Identity or Azure Managed Service Identity:\nSettings to enable Azure Workload Identity or Azure Managed Service Identity\nIf set, ClientID, ClientSecret and TenantID must not be set.","type":"object","properties":{"clientID":{"description":"client ID of the managed identity, cannot be used at the same time as resourceID","type":"string"},"resourceID":{"description":"resource ID of the managed identity, cannot be used at the same time as clientID\nCannot be used for Azure Managed Service Identity","type":"string"},"tenantID":{"description":"tenant ID of the managed identity, cannot be used at the same time as resourceID","type":"string"}}},"resourceGroupName":{"description":"resource group the DNS zone is located in","type":"string"},"subscriptionID":{"description":"ID of the Azure subscription","type":"string"},"tenantID":{"description":"Auth: Azure Service Principal:\nThe TenantID of the Azure Service Principal used to authenticate with Azure DNS.\nIf set, ClientID and ClientSecret must also be set.","type":"string"}}},"cloudDNS":{"description":"Use the Google Cloud DNS API to manage DNS01 challenge records.","type":"object","required":["project"],"properties":{"hostedZoneName":{"description":"HostedZoneName is an optional field that tells cert-manager in which\nCloud DNS zone the challenge record has to be created.\nIf left empty cert-manager will automatically choose a zone.","type":"string"},"project":{"type":"string"},"serviceAccountSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"cloudflare":{"description":"Use the Cloudflare API to manage DNS01 challenge records.","type":"object","properties":{"apiKeySecretRef":{"description":"API key to use to authenticate with Cloudflare.\nNote: using an API token to authenticate is now the recommended method\nas it allows greater control of permissions.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"apiTokenSecretRef":{"description":"API token used to authenticate with Cloudflare.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"email":{"description":"Email of the account, only required when using API key based authentication.","type":"string"}}},"cnameStrategy":{"description":"CNAMEStrategy configures how the DNS01 provider should handle CNAME\nrecords when found in DNS zones.","type":"string","enum":["None","Follow"]},"digitalocean":{"description":"Use the DigitalOcean DNS API to manage DNS01 challenge records.","type":"object","required":["tokenSecretRef"],"properties":{"tokenSecretRef":{"description":"A reference to a specific 'key' within a Secret resource.\nIn some instances, `key` is a required field.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"rfc2136":{"description":"Use RFC2136 (\"Dynamic Updates in the Domain Name System\") (https://datatracker.ietf.org/doc/rfc2136/)\nto manage DNS01 challenge records.","type":"object","required":["nameserver"],"properties":{"nameserver":{"description":"The IP address or hostname of an authoritative DNS server supporting\nRFC2136 in the form host:port. If the host is an IPv6 address it must be\nenclosed in square brackets (e.g [2001:db8::1]) ; port is optional.\nThis field is required.","type":"string"},"protocol":{"description":"Protocol to use for dynamic DNS update queries. Valid values are (case-sensitive) ``TCP`` and ``UDP``; ``UDP`` (default).","type":"string","enum":["TCP","UDP"]},"tsigAlgorithm":{"description":"The TSIG Algorithm configured in the DNS supporting RFC2136. Used only\nwhen ``tsigSecretSecretRef`` and ``tsigKeyName`` are defined.\nSupported values are (case-insensitive): ``HMACMD5`` (default),\n``HMACSHA1``, ``HMACSHA256`` or ``HMACSHA512``.","type":"string"},"tsigKeyName":{"description":"The TSIG Key name configured in the DNS.\nIf ``tsigSecretSecretRef`` is defined, this field is required.","type":"string"},"tsigSecretSecretRef":{"description":"The name of the secret containing the TSIG value.\nIf ``tsigKeyName`` is defined, this field is required.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"route53":{"description":"Use the AWS Route53 API to manage DNS01 challenge records.","type":"object","properties":{"accessKeyID":{"description":"The AccessKeyID is used for authentication.\nCannot be set when SecretAccessKeyID is set.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"string"},"accessKeyIDSecretRef":{"description":"The SecretAccessKey is used for authentication. If set, pull the AWS\naccess key ID from a key within a Kubernetes Secret.\nCannot be set when AccessKeyID is set.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"auth":{"description":"Auth configures how cert-manager authenticates.","type":"object","required":["kubernetes"],"properties":{"kubernetes":{"description":"Kubernetes authenticates with Route53 using AssumeRoleWithWebIdentity\nby passing a bound ServiceAccount token.","type":"object","required":["serviceAccountRef"],"properties":{"serviceAccountRef":{"description":"A reference to a service account that will be used to request a bound\ntoken (also known as \"projected token\"). To use this field, you must\nconfigure an RBAC rule to let cert-manager request a token.","type":"object","required":["name"],"properties":{"audiences":{"description":"TokenAudiences is an optional list of audiences to include in the\ntoken passed to AWS. The default token consisting of the issuer's namespace\nand name is always included.\nIf unset the audience defaults to `sts.amazonaws.com`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the ServiceAccount used to request a token.","type":"string"}}}}}}},"hostedZoneID":{"description":"If set, the provider will manage only this zone in Route53 and will not do a lookup using the route53:ListHostedZonesByName api call.","type":"string"},"region":{"description":"Override the AWS region.\n\nRoute53 is a global service and does not have regional endpoints but the\nregion specified here (or via environment variables) is used as a hint to\nhelp compute the correct AWS credential scope and partition when it\nconnects to Route53. See:\n- [Amazon Route 53 endpoints and quotas](https://docs.aws.amazon.com/general/latest/gr/r53.html)\n- [Global services](https://docs.aws.amazon.com/whitepapers/latest/aws-fault-isolation-boundaries/global-services.html)\n\nIf you omit this region field, cert-manager will use the region from\nAWS_REGION and AWS_DEFAULT_REGION environment variables, if they are set\nin the cert-manager controller Pod.\n\nThe `region` field is not needed if you use [IAM Roles for Service Accounts (IRSA)](https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html).\nInstead an AWS_REGION environment variable is added to the cert-manager controller Pod by:\n[Amazon EKS Pod Identity Webhook](https://github.com/aws/amazon-eks-pod-identity-webhook).\nIn this case this `region` field value is ignored.\n\nThe `region` field is not needed if you use [EKS Pod Identities](https://docs.aws.amazon.com/eks/latest/userguide/pod-identities.html).\nInstead an AWS_REGION environment variable is added to the cert-manager controller Pod by:\n[Amazon EKS Pod Identity Agent](https://github.com/aws/eks-pod-identity-agent),\nIn this case this `region` field value is ignored.","type":"string"},"role":{"description":"Role is a Role ARN which the Route53 provider will assume using either the explicit credentials AccessKeyID/SecretAccessKey\nor the inferred credentials from environment variables, shared credentials file or AWS Instance metadata","type":"string"},"secretAccessKeySecretRef":{"description":"The SecretAccessKey is used for authentication.\nIf neither the Access Key nor Key ID are set, we fall-back to using env\nvars, shared credentials file or AWS Instance metadata,\nsee: https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"webhook":{"description":"Configure an external webhook based DNS01 challenge solver to manage\nDNS01 challenge records.","type":"object","required":["groupName","solverName"],"properties":{"config":{"description":"Additional configuration that should be passed to the webhook apiserver\nwhen challenges are processed.\nThis can contain arbitrary JSON data.\nSecret values should not be specified in this stanza.\nIf secret values are needed (e.g., credentials for a DNS service), you\nshould use a SecretKeySelector to reference a Secret resource.\nFor details on the schema of this field, consult the webhook provider\nimplementation's documentation.","x-kubernetes-preserve-unknown-fields":true},"groupName":{"description":"The API group name that should be used when POSTing ChallengePayload\nresources to the webhook apiserver.\nThis should be the same as the GroupName specified in the webhook\nprovider implementation.","type":"string"},"solverName":{"description":"The name of the solver to use, as defined in the webhook provider\nimplementation.\nThis will typically be the name of the provider, e.g., 'cloudflare'.","type":"string"}}}}},"http01":{"description":"Configures cert-manager to attempt to complete authorizations by\nperforming the HTTP01 challenge flow.\nIt is not possible to obtain certificates for wildcard domain names\n(e.g., `*.example.com`) using the HTTP01 challenge mechanism.","type":"object","properties":{"gatewayHTTPRoute":{"description":"The Gateway API is a sig-network community API that models service networking\nin Kubernetes (https://gateway-api.sigs.k8s.io/). The Gateway solver will\ncreate HTTPRoutes with the specified labels in the same namespace as the challenge.\nThis solver is experimental, and fields / behaviour may change in the future.","type":"object","properties":{"labels":{"description":"Custom labels that will be applied to HTTPRoutes created by cert-manager\nwhile solving HTTP-01 challenges.","type":"object","additionalProperties":{"type":"string"}},"parentRefs":{"description":"When solving an HTTP-01 challenge, cert-manager creates an HTTPRoute.\ncert-manager needs to know which parentRefs should be used when creating\nthe HTTPRoute. Usually, the parentRef references a Gateway. See:\nhttps://gateway-api.sigs.k8s.io/api-types/httproute/#attaching-to-gateways","type":"array","items":{"description":"ParentReference identifies an API object (usually a Gateway) that can be considered\na parent of this resource (usually a route). There are two kinds of parent resources\nwith \"Core\" support:\n\n* Gateway (Gateway conformance profile)\n* Service (Mesh conformance profile, ClusterIP Services only)\n\nThis API may be extended in the future to support additional kinds of parent\nresources.\n\nThe API object must be valid in the cluster; the Group and Kind must\nbe registered in the cluster for this reference to be valid.","type":"object","required":["name"],"properties":{"group":{"description":"Group is the group of the referent.\nWhen unspecified, \"gateway.networking.k8s.io\" is inferred.\nTo set the core API group (such as for a \"Service\" kind referent),\nGroup must be explicitly set to \"\" (empty string).\n\nSupport: Core","type":"string","maxLength":253,"pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"kind":{"description":"Kind is kind of the referent.\n\nThere are two kinds of parent resources with \"Core\" support:\n\n* Gateway (Gateway conformance profile)\n* Service (Mesh conformance profile, ClusterIP Services only)\n\nSupport for other resources is Implementation-Specific.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-zA-Z]([-a-zA-Z0-9]*[a-zA-Z0-9])?$"},"name":{"description":"Name is the name of the referent.\n\nSupport: Core","type":"string","maxLength":253,"minLength":1},"namespace":{"description":"Namespace is the namespace of the referent. When unspecified, this refers\nto the local namespace of the Route.\n\nNote that there are specific rules for ParentRefs which cross namespace\nboundaries. Cross-namespace references are only valid if they are explicitly\nallowed by something in the namespace they are referring to. For example:\nGateway has the AllowedRoutes field, and ReferenceGrant provides a\ngeneric way to enable any other kind of cross-namespace reference.\n\n<gateway:experimental:description>\nParentRefs from a Route to a Service in the same namespace are \"producer\"\nroutes, which apply default routing rules to inbound connections from\nany namespace to the Service.\n\nParentRefs from a Route to a Service in a different namespace are\n\"consumer\" routes, and these routing rules are only applied to outbound\nconnections originating from the same namespace as the Route, for which\nthe intended destination of the connections are a Service targeted as a\nParentRef of the Route.\n</gateway:experimental:description>\n\nSupport: Core","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"port":{"description":"Port is the network port this Route targets. It can be interpreted\ndifferently based on the type of parent resource.\n\nWhen the parent resource is a Gateway, this targets all listeners\nlistening on the specified port that also support this kind of Route(and\nselect this Route). It's not recommended to set `Port` unless the\nnetworking behaviors specified in a Route must apply to a specific port\nas opposed to a listener(s) whose port(s) may be changed. When both Port\nand SectionName are specified, the name and port of the selected listener\nmust match both specified values.\n\n<gateway:experimental:description>\nWhen the parent resource is a Service, this targets a specific port in the\nService spec. When both Port (experimental) and SectionName are specified,\nthe name and port of the selected port must match both specified values.\n</gateway:experimental:description>\n\nImplementations MAY choose to support other parent resources.\nImplementations supporting other types of parent resources MUST clearly\ndocument how/if Port is interpreted.\n\nFor the purpose of status, an attachment is considered successful as\nlong as the parent resource accepts it partially. For example, Gateway\nlisteners can restrict which Routes can attach to them by Route kind,\nnamespace, or hostname. If 1 of 2 Gateway listeners accept attachment\nfrom the referencing Route, the Route MUST be considered successfully\nattached. If no Gateway listeners accept attachment from this Route,\nthe Route MUST be considered detached from the Gateway.\n\nSupport: Extended","type":"integer","format":"int32","maximum":65535,"minimum":1},"sectionName":{"description":"SectionName is the name of a section within the target resource. In the\nfollowing resources, SectionName is interpreted as the following:\n\n* Gateway: Listener name. When both Port (experimental) and SectionName\nare specified, the name and port of the selected listener must match\nboth specified values.\n* Service: Port name. When both Port (experimental) and SectionName\nare specified, the name and port of the selected listener must match\nboth specified values.\n\nImplementations MAY choose to support attaching Routes to other resources.\nIf that is the case, they MUST clearly document how SectionName is\ninterpreted.\n\nWhen unspecified (empty string), this will reference the entire resource.\nFor the purpose of status, an attachment is considered successful if at\nleast one section in the parent resource accepts it. For example, Gateway\nlisteners can restrict which Routes can attach to them by Route kind,\nnamespace, or hostname. If 1 of 2 Gateway listeners accept attachment from\nthe referencing Route, the Route MUST be considered successfully\nattached. If no Gateway listeners accept attachment from this Route, the\nRoute MUST be considered detached from the Gateway.\n\nSupport: Core","type":"string","maxLength":253,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}}},"x-kubernetes-list-type":"atomic"},"podTemplate":{"description":"Optional pod template used to configure the ACME challenge solver pods\nused for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the pod used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}}}},"spec":{"description":"PodSpec defines overrides for the HTTP01 challenge solver pod.\nCheck ACMEChallengeSolverHTTP01IngressPodSpec to find out currently supported fields.\nAll other fields will be ignored.","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"imagePullSecrets":{"description":"If specified, the pod's imagePullSecrets","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, the pod's priorityClassName.","type":"string"},"resources":{"description":"If specified, the pod's resource requirements.\nThese values override the global resource configuration flags.\nNote that when only specifying resource limits, ensure they are greater than or equal\nto the corresponding global resource requests configured via controller flags\n(--acme-http01-solver-resource-request-cpu, --acme-http01-solver-resource-request-memory).\nKubernetes will reject pod creation if limits are lower than requests, causing challenge failures.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to the global values configured via controller flags. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"description":"If specified, the pod's security context","type":"object","properties":{"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition\nto the container's primary GID, the fsGroup (if specified), and group memberships\ndefined in the container image for the uid of the container process. If unspecified,\nno additional groups are added to any container. Note that group memberships\ndefined in the container image for the uid of the container process are still effective,\neven if they are not included in this list.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"serviceAccountName":{"description":"If specified, the pod's service account","type":"string"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"serviceType":{"description":"Optional service type for Kubernetes solver service. Supported values\nare NodePort or ClusterIP. If unset, defaults to NodePort.","type":"string"}}},"ingress":{"description":"The ingress based HTTP01 challenge solver will solve challenges by\ncreating or modifying Ingress resources in order to route requests for\n'/.well-known/acme-challenge/XYZ' to 'challenge solver' pods that are\nprovisioned by cert-manager for each Challenge to be completed.","type":"object","properties":{"class":{"description":"This field configures the annotation `kubernetes.io/ingress.class` when\ncreating Ingress resources to solve ACME challenges that use this\nchallenge solver. Only one of `class`, `name` or `ingressClassName` may\nbe specified.","type":"string"},"ingressClassName":{"description":"This field configures the field `ingressClassName` on the created Ingress\nresources used to solve ACME challenges that use this challenge solver.\nThis is the recommended way of configuring the ingress class. Only one of\n`class`, `name` or `ingressClassName` may be specified.","type":"string"},"ingressTemplate":{"description":"Optional ingress template used to configure the ACME challenge solver\ningress used for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the ingress used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver ingress.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver ingress.","type":"object","additionalProperties":{"type":"string"}}}}}},"name":{"description":"The name of the ingress resource that should have ACME challenge solving\nroutes inserted into it in order to solve HTTP01 challenges.\nThis is typically used in conjunction with ingress controllers like\ningress-gce, which maintains a 1:1 mapping between external IPs and\ningress resources. Only one of `class`, `name` or `ingressClassName` may\nbe specified.","type":"string"},"podTemplate":{"description":"Optional pod template used to configure the ACME challenge solver pods\nused for HTTP01 challenges.","type":"object","properties":{"metadata":{"description":"ObjectMeta overrides for the pod used to solve HTTP01 challenges.\nOnly the 'labels' and 'annotations' fields may be set.\nIf labels or annotations overlap with in-built values, the values here\nwill override the in-built values.","type":"object","properties":{"annotations":{"description":"Annotations that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels that should be added to the created ACME HTTP01 solver pods.","type":"object","additionalProperties":{"type":"string"}}}},"spec":{"description":"PodSpec defines overrides for the HTTP01 challenge solver pod.\nCheck ACMEChallengeSolverHTTP01IngressPodSpec to find out currently supported fields.\nAll other fields will be ignored.","type":"object","properties":{"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"imagePullSecrets":{"description":"If specified, the pod's imagePullSecrets","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"}},"priorityClassName":{"description":"If specified, the pod's priorityClassName.","type":"string"},"resources":{"description":"If specified, the pod's resource requirements.\nThese values override the global resource configuration flags.\nNote that when only specifying resource limits, ensure they are greater than or equal\nto the corresponding global resource requests configured via controller flags\n(--acme-http01-solver-resource-request-cpu, --acme-http01-solver-resource-request-memory).\nKubernetes will reject pod creation if limits are lower than requests, causing challenge failures.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to the global values configured via controller flags. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"description":"If specified, the pod's security context","type":"object","properties":{"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition\nto the container's primary GID, the fsGroup (if specified), and group memberships\ndefined in the container image for the uid of the container process. If unspecified,\nno additional groups are added to any container. Note that group memberships\ndefined in the container image for the uid of the container process are still effective,\neven if they are not included in this list.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"serviceAccountName":{"description":"If specified, the pod's service account","type":"string"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"serviceType":{"description":"Optional service type for Kubernetes solver service. Supported values\nare NodePort or ClusterIP. If unset, defaults to NodePort.","type":"string"}}}}},"selector":{"description":"Selector selects a set of DNSNames on the Certificate resource that\nshould be solved using this challenge solver.\nIf not specified, the solver will be treated as the 'default' solver\nwith the lowest priority, i.e. if any other solver has a more specific\nmatch, it will be used instead.","type":"object","properties":{"dnsNames":{"description":"List of DNSNames that this solver will be used to solve.\nIf specified and a match is found, a dnsNames selector will take\nprecedence over a dnsZones selector.\nIf multiple solvers match with the same dnsNames value, the solver\nwith the most matching labels in matchLabels will be selected.\nIf neither has more matches, the solver defined earlier in the list\nwill be selected.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dnsZones":{"description":"List of DNSZones that this solver will be used to solve.\nThe most specific DNS zone match specified here will take precedence\nover other DNS zone matches, so a solver specifying sys.example.com\nwill be selected over one specifying example.com for the domain\nwww.sys.example.com.\nIf multiple solvers match with the same dnsZones value, the solver\nwith the most matching labels in matchLabels will be selected.\nIf neither has more matches, the solver defined earlier in the list\nwill be selected.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"A label selector that is used to refine the set of certificate's that\nthis challenge solver will apply to.","type":"object","additionalProperties":{"type":"string"}}}}}},"x-kubernetes-list-type":"atomic"}}},"ca":{"description":"CA configures this issuer to sign certificates using a signing CA keypair\nstored in a Secret resource.\nThis is used to build internal PKIs that are managed by cert-manager.","type":"object","required":["secretName"],"properties":{"crlDistributionPoints":{"description":"The CRL distribution points is an X.509 v3 certificate extension which identifies\nthe location of the CRL from which the revocation of this certificate can be checked.\nIf not set, certificates will be issued without distribution points set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"issuingCertificateURLs":{"description":"IssuingCertificateURLs is a list of URLs which this issuer should embed into certificates\nit creates. See https://www.rfc-editor.org/rfc/rfc5280#section-4.2.2.1 for more details.\nAs an example, such a URL might be \"http://ca.domain.com/ca.crt\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ocspServers":{"description":"The OCSP server list is an X.509 v3 extension that defines a list of\nURLs of OCSP responders. The OCSP responders can be queried for the\nrevocation status of an issued certificate. If not set, the\ncertificate will be issued with no OCSP servers set. For example, an\nOCSP server URL could be \"http://ocsp.int-x3.letsencrypt.org\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"SecretName is the name of the secret used to sign Certificates issued\nby this Issuer.","type":"string"}}},"selfSigned":{"description":"SelfSigned configures this issuer to 'self sign' certificates using the\nprivate key used to create the CertificateRequest object.","type":"object","properties":{"crlDistributionPoints":{"description":"The CRL distribution points is an X.509 v3 certificate extension which identifies\nthe location of the CRL from which the revocation of this certificate can be checked.\nIf not set certificate will be issued without CDP. Values are strings.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"vault":{"description":"Vault configures this issuer to sign certificates using a HashiCorp Vault\nPKI backend.","type":"object","required":["auth","path","server"],"properties":{"auth":{"description":"Auth configures how cert-manager authenticates with the Vault server.","type":"object","properties":{"appRole":{"description":"AppRole authenticates with Vault using the App Role auth mechanism,\nwith the role and secret stored in a Kubernetes Secret resource.","type":"object","required":["path","roleId","secretRef"],"properties":{"path":{"description":"Path where the App Role authentication backend is mounted in Vault, e.g:\n\"approle\"","type":"string"},"roleId":{"description":"RoleID configured in the App Role authentication backend when setting\nup the authentication backend in Vault.","type":"string"},"secretRef":{"description":"Reference to a key in a Secret that contains the App Role secret used\nto authenticate with Vault.\nThe `key` field must be specified and denotes which entry within the Secret\nresource is used as the app role secret.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"clientCertificate":{"description":"ClientCertificate authenticates with Vault by presenting a client\ncertificate during the request's TLS handshake.\nWorks only when using HTTPS protocol.","type":"object","properties":{"mountPath":{"description":"The Vault mountPath here is the mount path to use when authenticating with\nVault. For example, setting a value to `/v1/auth/foo`, will use the path\n`/v1/auth/foo/login` to authenticate with Vault. If unspecified, the\ndefault value \"/v1/auth/cert\" will be used.","type":"string"},"name":{"description":"Name of the certificate role to authenticate against.\nIf not set, matching any certificate role, if available.","type":"string"},"secretName":{"description":"Reference to Kubernetes Secret of type \"kubernetes.io/tls\" (hence containing\ntls.crt and tls.key) used to authenticate to Vault using TLS client\nauthentication.","type":"string"}}},"kubernetes":{"description":"Kubernetes authenticates with Vault by passing the ServiceAccount\ntoken stored in the named Secret resource to the Vault server.","type":"object","required":["role"],"properties":{"mountPath":{"description":"The Vault mountPath here is the mount path to use when authenticating with\nVault. For example, setting a value to `/v1/auth/foo`, will use the path\n`/v1/auth/foo/login` to authenticate with Vault. If unspecified, the\ndefault value \"/v1/auth/kubernetes\" will be used.","type":"string"},"role":{"description":"A required field containing the Vault Role to assume. A Role binds a\nKubernetes ServiceAccount with a set of Vault policies.","type":"string"},"secretRef":{"description":"The required Secret field containing a Kubernetes ServiceAccount JWT used\nfor authenticating with Vault. Use of 'ambient credentials' is not\nsupported.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"serviceAccountRef":{"description":"A reference to a service account that will be used to request a bound\ntoken (also known as \"projected token\"). Compared to using \"secretRef\",\nusing this field means that you don't rely on statically bound tokens. To\nuse this field, you must configure an RBAC rule to let cert-manager\nrequest a token.","type":"object","required":["name"],"properties":{"audiences":{"description":"TokenAudiences is an optional list of extra audiences to include in the token passed to Vault. The default token\nconsisting of the issuer's namespace and name is always included.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the ServiceAccount used to request a token.","type":"string"}}}}},"tokenSecretRef":{"description":"TokenSecretRef authenticates with Vault by presenting a token.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}}}},"caBundle":{"description":"Base64-encoded bundle of PEM CAs which will be used to validate the certificate\nchain presented by Vault. Only used if using HTTPS to connect to Vault and\nignored for HTTP connections.\nMutually exclusive with CABundleSecretRef.\nIf neither CABundle nor CABundleSecretRef are defined, the certificate bundle in\nthe cert-manager controller container is used to validate the TLS connection.","type":"string","format":"byte"},"caBundleSecretRef":{"description":"Reference to a Secret containing a bundle of PEM-encoded CAs to use when\nverifying the certificate chain presented by Vault when using HTTPS.\nMutually exclusive with CABundle.\nIf neither CABundle nor CABundleSecretRef are defined, the certificate bundle in\nthe cert-manager controller container is used to validate the TLS connection.\nIf no key for the Secret is specified, cert-manager will default to 'ca.crt'.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientCertSecretRef":{"description":"Reference to a Secret containing a PEM-encoded Client Certificate to use when the\nVault server requires mTLS.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"clientKeySecretRef":{"description":"Reference to a Secret containing a PEM-encoded Client Private Key to use when the\nVault server requires mTLS.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"namespace":{"description":"Name of the vault namespace. Namespaces is a set of features within Vault Enterprise that allows Vault environments to support Secure Multi-tenancy. e.g: \"ns1\"\nMore about namespaces can be found here https://www.vaultproject.io/docs/enterprise/namespaces","type":"string"},"path":{"description":"Path is the mount path of the Vault PKI backend's `sign` endpoint, e.g:\n\"my_pki_mount/sign/my-role-name\".","type":"string"},"server":{"description":"Server is the connection address for the Vault server, e.g: \"https://vault.example.com:8200\".","type":"string"},"serverName":{"description":"ServerName is used to verify the hostname on the returned certificates\nby the Vault server.","type":"string"}}},"venafi":{"description":"Venafi configures this issuer to sign certificates using a Venafi TPP\nor Venafi Cloud policy zone.","type":"object","required":["zone"],"properties":{"cloud":{"description":"Cloud specifies the Venafi cloud configuration settings.\nOnly one of TPP or Cloud may be specified.","type":"object","required":["apiTokenSecretRef"],"properties":{"apiTokenSecretRef":{"description":"APITokenSecretRef is a secret key selector for the Venafi Cloud API token.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"url":{"description":"URL is the base URL for Venafi Cloud.\nDefaults to \"https://api.venafi.cloud/\".","type":"string"}}},"tpp":{"description":"TPP specifies Trust Protection Platform configuration settings.\nOnly one of TPP or Cloud may be specified.","type":"object","required":["credentialsRef","url"],"properties":{"caBundle":{"description":"Base64-encoded bundle of PEM CAs which will be used to validate the certificate\nchain presented by the TPP server. Only used if using HTTPS; ignored for HTTP.\nIf undefined, the certificate bundle in the cert-manager controller container\nis used to validate the chain.","type":"string","format":"byte"},"caBundleSecretRef":{"description":"Reference to a Secret containing a base64-encoded bundle of PEM CAs\nwhich will be used to validate the certificate chain presented by the TPP server.\nOnly used if using HTTPS; ignored for HTTP. Mutually exclusive with CABundle.\nIf neither CABundle nor CABundleSecretRef is defined, the certificate bundle in\nthe cert-manager controller container is used to validate the TLS connection.","type":"object","required":["name"],"properties":{"key":{"description":"The key of the entry in the Secret resource's `data` field to be used.\nSome instances of this field may be defaulted, in others it may be\nrequired.","type":"string"},"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"credentialsRef":{"description":"CredentialsRef is a reference to a Secret containing the Venafi TPP API credentials.\nThe secret must contain the key 'access-token' for the Access Token Authentication,\nor two keys, 'username' and 'password' for the API Keys Authentication.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the resource being referred to.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"url":{"description":"URL is the base URL for the vedsdk endpoint of the Venafi TPP instance,\nfor example: \"https://tpp.example.com/vedsdk\".","type":"string"}}},"zone":{"description":"Zone is the Venafi Policy Zone to use for this issuer.\nAll requests made to the Venafi platform will be restricted by the named\nzone policy.\nThis field is required.","type":"string"}}}}},"status":{"description":"Status of the Issuer. This is set and managed automatically.","type":"object","properties":{"acme":{"description":"ACME specific status options.\nThis field should only be set if the Issuer is configured to use an ACME\nserver to issue certificates.","type":"object","properties":{"lastPrivateKeyHash":{"description":"LastPrivateKeyHash is a hash of the private key associated with the latest\nregistered ACME account, in order to track changes made to registered account\nassociated with the Issuer","type":"string"},"lastRegisteredEmail":{"description":"LastRegisteredEmail is the email associated with the latest registered\nACME account, in order to track changes made to registered account\nassociated with the  Issuer","type":"string"},"uri":{"description":"URI is the unique account identifier, which can also be used to retrieve\naccount details from the CA","type":"string"}}},"conditions":{"description":"List of status conditions to indicate the status of a CertificateRequest.\nKnown condition types are `Ready`.","type":"array","items":{"description":"IssuerCondition contains condition information for an Issuer.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the timestamp corresponding to the last status\nchange of this condition.","type":"string","format":"date-time"},"message":{"description":"Message is a human readable description of the details of the last\ntransition, complementing reason.","type":"string"},"observedGeneration":{"description":"If set, this represents the .metadata.generation that the condition was\nset based upon.\nFor instance, if .metadata.generation is currently 12, but the\n.status.condition[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the Issuer.","type":"integer","format":"int64"},"reason":{"description":"Reason is a brief machine readable explanation for the condition's last\ntransition.","type":"string"},"status":{"description":"Status of the condition, one of (`True`, `False`, `Unknown`).","type":"string","enum":["True","False","Unknown"]},"type":{"description":"Type of the condition, known values are (`Ready`).","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"Issuer","version":"v1"}]},"io.cert-manager.v1.IssuerList":{"description":"IssuerList is a list of Issuer","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of issuers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cert-manager.v1.Issuer"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"cert-manager.io","kind":"IssuerList","version":"v1"}]},"io.cncf.cni.k8s.v1.NetworkAttachmentDefinition":{"description":"NetworkAttachmentDefinition is a CRD schema specified by the Network Plumbing Working Group to express the intent for attaching pods to one or more logical or physical networks. More information available at: https://github.com/k8snetworkplumbingwg/multi-net-spec","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"NetworkAttachmentDefinition spec defines the desired state of a network attachment","type":"object","properties":{"config":{"description":"NetworkAttachmentDefinition config is a JSON-formatted CNI configuration","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinition","version":"v1"}]},"io.cncf.cni.k8s.v1.NetworkAttachmentDefinitionList":{"description":"NetworkAttachmentDefinitionList is a list of NetworkAttachmentDefinition","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of network-attachment-definitions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cncf.cni.k8s.v1.NetworkAttachmentDefinition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.cni.cncf.io","kind":"NetworkAttachmentDefinitionList","version":"v1"}]},"io.cncf.cni.k8s.v1alpha1.IPAMClaim":{"description":"IPAMClaim is the Schema for the IPAMClaim API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["interface","network"],"properties":{"interface":{"description":"The pod interface name for which this allocation was created","type":"string"},"network":{"description":"The network name for which this persistent allocation was created","type":"string"}}},"status":{"type":"object","required":["ips"],"properties":{"ips":{"description":"The list of IP addresses (v4, v6) that were allocated for the pod interface","type":"array","items":{"type":"string"}}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.cni.cncf.io","kind":"IPAMClaim","version":"v1alpha1"}]},"io.cncf.cni.k8s.v1alpha1.IPAMClaimList":{"description":"IPAMClaimList is a list of IPAMClaim","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ipamclaims. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cncf.cni.k8s.v1alpha1.IPAMClaim"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.cni.cncf.io","kind":"IPAMClaimList","version":"v1alpha1"}]},"io.cncf.cni.whereabouts.v1alpha1.IPPool":{"description":"IPPool is the Schema for the ippools API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"IPPoolSpec defines the desired state of IPPool","type":"object","required":["allocations","range"],"properties":{"allocations":{"description":"Allocations is the set of allocated IPs for the given range. Its` indices are a direct mapping to the\nIP with the same index/offset for the pool's range.","type":"object","additionalProperties":{"description":"IPAllocation represents metadata about the pod/container owner of a specific IP","type":"object","required":["id","podref"],"properties":{"id":{"type":"string"},"ifname":{"type":"string"},"podref":{"type":"string"}}}},"range":{"description":"Range is a RFC 4632/4291-style string that represents an IP address and prefix length in CIDR notation","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"whereabouts.cni.cncf.io","kind":"IPPool","version":"v1alpha1"}]},"io.cncf.cni.whereabouts.v1alpha1.IPPoolList":{"description":"IPPoolList is a list of IPPool","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ippools. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.IPPool"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"whereabouts.cni.cncf.io","kind":"IPPoolList","version":"v1alpha1"}]},"io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool":{"description":"NodeSlicePool is the Schema for the nodesliceippools API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"NodeSlicePoolSpec defines the desired state of NodeSlicePool","type":"object","required":["range","sliceSize"],"properties":{"range":{"description":"Range is a RFC 4632/4291-style string that represents an IP address and prefix length in CIDR notation\nthis refers to the entire range where the node is allocated a subset","type":"string"},"sliceSize":{"description":"SliceSize is the size of subnets or slices of the range that each node will be assigned","type":"string"}}},"status":{"description":"NodeSlicePoolStatus defines the desired state of NodeSlicePool","type":"object","required":["allocations"],"properties":{"allocations":{"description":"Allocations holds the allocations of nodes to slices","type":"array","items":{"type":"object","required":["nodeName","sliceRange"],"properties":{"nodeName":{"description":"NodeName is the name of the node assigned to this slice, empty node name is an available slice for assignment","type":"string"},"sliceRange":{"description":"SliceRange is the subnet of this slice","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePool","version":"v1alpha1"}]},"io.cncf.cni.whereabouts.v1alpha1.NodeSlicePoolList":{"description":"NodeSlicePoolList is a list of NodeSlicePool","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of nodeslicepools. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.NodeSlicePool"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"whereabouts.cni.cncf.io","kind":"NodeSlicePoolList","version":"v1alpha1"}]},"io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation":{"description":"OverlappingRangeIPReservation is the Schema for the OverlappingRangeIPReservations API","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OverlappingRangeIPReservationSpec defines the desired state of OverlappingRangeIPReservation","type":"object","required":["podref"],"properties":{"containerid":{"type":"string"},"ifname":{"type":"string"},"podref":{"type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservation","version":"v1alpha1"}]},"io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservationList":{"description":"OverlappingRangeIPReservationList is a list of OverlappingRangeIPReservation","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of overlappingrangeipreservations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.cncf.cni.whereabouts.v1alpha1.OverlappingRangeIPReservation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"whereabouts.cni.cncf.io","kind":"OverlappingRangeIPReservationList","version":"v1alpha1"}]},"io.crossplane.apiextensions.v1.CompositeResourceDefinition":{"description":"A CompositeResourceDefinition defines the schema for a new custom Kubernetes\nAPI.\n\nRead the Crossplane documentation for\n[more information about CustomResourceDefinitions](https://docs.crossplane.io/latest/composition/composite-resource-definitions/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CompositeResourceDefinitionSpec specifies the desired state of the definition.","type":"object","required":["group","names","versions"],"properties":{"claimNames":{"description":"ClaimNames specifies the names of an optional composite resource claim.\nWhen claim names are specified Crossplane will create a namespaced\n'composite resource claim' CRD that corresponds to the defined composite\nresource. This composite resource claim acts as a namespaced proxy for\nthe composite resource; creating, updating, or deleting the claim will\ncreate, update, or delete a corresponding composite resource. You may add\nclaim names to an existing CompositeResourceDefinition, but they cannot\nbe changed or removed once they have been set.","type":"object","required":["kind","plural"],"properties":{"categories":{"description":"categories is a list of grouped resources this custom resource belongs to (e.g. 'all').\nThis is published in API discovery documents, and used by clients to support invocations like\n`kubectl get all`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"kind is the serialized kind of the resource. It is normally CamelCase and singular.\nCustom resource instances will use this value as the `kind` attribute in API calls.","type":"string"},"listKind":{"description":"listKind is the serialized kind of the list for this resource. Defaults to \"`kind`List\".","type":"string"},"plural":{"description":"plural is the plural name of the resource to serve.\nThe custom resources are served under `/apis/<group>/<version>/.../<plural>`.\nMust match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`).\nMust be all lowercase.","type":"string"},"shortNames":{"description":"shortNames are short names for the resource, exposed in API discovery documents,\nand used by clients to support invocations like `kubectl get <shortname>`.\nIt must be all lowercase.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"singular":{"description":"singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"},{"message":"Plural name must be lowercase","rule":"self.plural == self.plural.lowerAscii()"},{"message":"Singular name must be lowercase","rule":"!has(self.singular) || self.singular == self.singular.lowerAscii()"}]},"connectionSecretKeys":{"description":"ConnectionSecretKeys is the list of connection secret keys the\ndefined XR can publish. If the list is empty, all keys will be\npublished. If the list isn't empty, any connection secret keys that\ndon't appear in the list will be filtered out. Only LegacyCluster XRs\nsupport connection secrets.","type":"array","items":{"type":"string"}},"conversion":{"description":"Conversion defines all conversion settings for the defined Composite resource.","type":"object","required":["strategy"],"properties":{"strategy":{"description":"strategy specifies how custom resources are converted between versions. Allowed values are:\n- `\"None\"`: The converter only change the apiVersion and would not touch any other field in the custom resource.\n- `\"Webhook\"`: API Server will call to an external webhook to do the conversion. Additional information\n  is needed for this option. This requires spec.preserveUnknownFields to be false, and spec.conversion.webhook to be set.","type":"string"},"webhook":{"description":"webhook describes how to call the conversion webhook. Required when `strategy` is set to `\"Webhook\"`.","type":"object","required":["conversionReviewVersions"],"properties":{"clientConfig":{"description":"clientConfig is the instructions for how to call the webhook if strategy is `Webhook`.","type":"object","properties":{"caBundle":{"description":"caBundle is a PEM encoded CA bundle which will be used to validate the webhook's server certificate.\nIf unspecified, system trust roots on the apiserver are used.","type":"string","format":"byte"},"service":{"description":"service is a reference to the service for this webhook. Either\nservice or url must be specified.\n\nIf the webhook is running within the cluster, then you should use `service`.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"name is the name of the service.\nRequired","type":"string"},"namespace":{"description":"namespace is the namespace of the service.\nRequired","type":"string"},"path":{"description":"path is an optional URL path at which the webhook will be contacted.","type":"string"},"port":{"description":"port is an optional service port at which the webhook will be contacted.\n`port` should be a valid port number (1-65535, inclusive).\nDefaults to 443 for backward compatibility.","type":"integer","format":"int32"}}},"url":{"description":"url gives the location of the webhook, in standard URL form\n(`scheme://host:port/path`). Exactly one of `url` or `service`\nmust be specified.\n\nThe `host` should not refer to a service running in the cluster; use\nthe `service` field instead. The host might be resolved via external\nDNS in some apiservers (e.g., `kube-apiserver` cannot resolve\nin-cluster DNS as that would be a layering violation). `host` may\nalso be an IP address.\n\nPlease note that using `localhost` or `127.0.0.1` as a `host` is\nrisky unless you take great care to run this webhook on all hosts\nwhich run an apiserver which might need to make calls to this\nwebhook. Such installs are likely to be non-portable, i.e., not easy\nto turn up in a new cluster.\n\nThe scheme must be \"https\"; the URL must begin with \"https://\".\n\nA path is optional, and if present may be any string permissible in\na URL. You may use the path to pass an arbitrary string to the\nwebhook, for example, a cluster identifier.\n\nAttempting to use a user or basic auth e.g. \"user:password@\" is not\nallowed. Fragments (\"#...\") and query parameters (\"?...\") are not\nallowed, either.","type":"string"}}},"conversionReviewVersions":{"description":"conversionReviewVersions is an ordered list of preferred `ConversionReview`\nversions the Webhook expects. The API server will use the first version in\nthe list which it supports. If none of the versions specified in this list\nare supported by API server, conversion will fail for the custom resource.\nIf a persisted Webhook configuration specifies allowed versions and does not\ninclude any versions known to the API Server, calls to the webhook will fail.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-validations":[{"message":"Webhook configuration is required when conversion strategy is Webhook","rule":"self.strategy == 'Webhook' && has(self.webhook)"}]},"defaultCompositeDeletePolicy":{"description":"DefaultCompositeDeletePolicy is the policy used when deleting the Composite\nthat is associated with the Claim if no policy has been specified.","type":"string","enum":["Background","Foreground"]},"defaultCompositionRef":{"description":"DefaultCompositionRef refers to the Composition resource that will be used\nin case no composition selector is given.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the Composition.","type":"string"}}},"defaultCompositionRevisionSelector":{"description":"DefaultCompositionRevisionSelector refers to the CompositionRevision that will be used\nin case no compositionRevision selector is given.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"defaultCompositionUpdatePolicy":{"description":"DefaultCompositionUpdatePolicy is the policy used when updating composites after a new\nComposition Revision has been created if no policy has been specified on the composite.","type":"string","enum":["Automatic","Manual"]},"enforcedCompositionRef":{"description":"EnforcedCompositionRef refers to the Composition resource that will be used\nby all composite instances whose schema is defined by this definition.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the Composition.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"group":{"description":"Group specifies the API group of the defined composite resource.\nComposite resources are served under `/apis/<group>/...`. Must match the\nname of the XRD (in the form `<names.plural>.<group>`).","type":"string","x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"metadata":{"description":"Metadata specifies the desired metadata for the defined composite resource and claim CRD's.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels\nand services.\nThese labels are added to the composite resource and claim CRD's in addition\nto any labels defined by `CompositionResourceDefinition` `metadata.labels`.","type":"object","additionalProperties":{"type":"string"}}}},"names":{"description":"Names specifies the resource and kind names of the defined composite\nresource.","type":"object","required":["kind","plural"],"properties":{"categories":{"description":"categories is a list of grouped resources this custom resource belongs to (e.g. 'all').\nThis is published in API discovery documents, and used by clients to support invocations like\n`kubectl get all`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"kind is the serialized kind of the resource. It is normally CamelCase and singular.\nCustom resource instances will use this value as the `kind` attribute in API calls.","type":"string"},"listKind":{"description":"listKind is the serialized kind of the list for this resource. Defaults to \"`kind`List\".","type":"string"},"plural":{"description":"plural is the plural name of the resource to serve.\nThe custom resources are served under `/apis/<group>/<version>/.../<plural>`.\nMust match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`).\nMust be all lowercase.","type":"string"},"shortNames":{"description":"shortNames are short names for the resource, exposed in API discovery documents,\nand used by clients to support invocations like `kubectl get <shortname>`.\nIt must be all lowercase.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"singular":{"description":"singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"},{"message":"Plural name must be lowercase","rule":"self.plural == self.plural.lowerAscii()"},{"message":"Singular name must be lowercase","rule":"!has(self.singular) || self.singular == self.singular.lowerAscii()"}]},"scope":{"description":"Scope of the defined composite resource. Namespaced composite resources\nare scoped to a single namespace. Cluster scoped composite resource exist\noutside the scope of any namespace. Neither can be claimed. Legacy\ncluster scoped composite resources are cluster scoped resources that can\nbe claimed.","type":"string","enum":["LegacyCluster","Namespaced","Cluster"],"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"versions":{"description":"Versions is the list of all API versions of the defined composite\nresource. Version names are used to compute the order in which served\nversions are listed in API discovery. If the version string is\n\"kube-like\", it will sort above non \"kube-like\" version strings, which\nare ordered lexicographically. \"Kube-like\" versions start with a \"v\",\nthen are followed by a number (the major version), then optionally the\nstring \"alpha\" or \"beta\" and another number (the minor version). These\nare sorted first by GA > beta > alpha (where GA is a version with no\nsuffix such as beta or alpha), and then by comparing major version, then\nminor version. An example sorted list of versions: v10, v2, v1, v11beta2,\nv10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.","type":"array","items":{"description":"CompositeResourceDefinitionVersion describes a version of an XR.","type":"object","required":["name","referenceable","served"],"properties":{"additionalPrinterColumns":{"description":"AdditionalPrinterColumns specifies additional columns returned in Table\noutput. If no columns are specified, a single column displaying the age\nof the custom resource is used. See the following link for details:\nhttps://kubernetes.io/docs/reference/using-api/api-concepts/#receiving-resources-as-tables","type":"array","items":{"description":"CustomResourceColumnDefinition specifies a column for server side printing.","type":"object","required":["jsonPath","name","type"],"properties":{"description":{"description":"description is a human readable description of this column.","type":"string"},"format":{"description":"format is an optional OpenAPI type definition for this column. The 'name' format is applied\nto the primary identifier column to assist in clients identifying column is the resource name.\nSee https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"},"jsonPath":{"description":"jsonPath is a simple JSON path (i.e. with array notation) which is evaluated against\neach custom resource to produce the value for this column.","type":"string"},"name":{"description":"name is a human readable name for the column.","type":"string"},"priority":{"description":"priority is an integer defining the relative importance of this column compared to others. Lower\nnumbers are considered higher priority. Columns that may be omitted in limited space scenarios\nshould be given a priority greater than 0.","type":"integer","format":"int32"},"type":{"description":"type is an OpenAPI type definition for this column.\nSee https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"}}}},"deprecated":{"description":"The deprecated field specifies that this version is deprecated and should\nnot be used.","type":"boolean"},"deprecationWarning":{"description":"DeprecationWarning specifies the message that should be shown to the user\nwhen using this version.","type":"string","maxLength":256},"name":{"description":"Name of this version, e.g. “v1”, “v2beta1”, etc. Composite resources are\nserved under this version at `/apis/<group>/<version>/...` if `served` is\ntrue.","type":"string"},"referenceable":{"description":"Referenceable specifies that this version may be referenced by a\nComposition in order to configure which resources an XR may be composed\nof. Exactly one version must be marked as referenceable; all Compositions\nmust target only the referenceable version. The referenceable version\nmust be served. It's mapped to the CRD's `spec.versions[*].storage` field.","type":"boolean"},"schema":{"description":"Schema describes the schema used for validation, pruning, and defaulting\nof this version of the defined composite resource. Fields required by all\ncomposite resources will be injected into this schema automatically, and\nwill override equivalently named fields in this schema. Omitting this\nschema results in a schema that contains only the fields required by all\ncomposite resources.","type":"object","properties":{"openAPIV3Schema":{"description":"OpenAPIV3Schema is the OpenAPI v3 schema to use for validation and\npruning.","x-kubernetes-preserve-unknown-fields":true}}},"served":{"description":"Served specifies that this version should be served via REST APIs.","type":"boolean"}}}}},"x-kubernetes-validations":[{"message":"Only LegacyCluster composite resources can offer claims","rule":"self.scope == 'LegacyCluster' || !has(self.claimNames)"},{"message":"Only LegacyCluster composite resources support connection secrets","rule":"self.scope == 'LegacyCluster' || !has(self.connectionSecretKeys)"}]},"status":{"description":"CompositeResourceDefinitionStatus shows the observed state of the definition.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"controllers":{"description":"Controllers represents the status of the controllers that power this\ncomposite resource definition.","type":"object","properties":{"compositeResourceClaimType":{"description":"The CompositeResourceClaimTypeRef is the type of composite resource claim\nthat Crossplane is currently reconciling for this definition. Its version\nwill eventually become consistent with the definition's referenceable\nversion. Note that clients may interact with any served type; this is\nsimply the type that Crossplane interacts with.","type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"description":"APIVersion of the type.","type":"string"},"kind":{"description":"Kind of the type.","type":"string"}}},"compositeResourceType":{"description":"The CompositeResourceTypeRef is the type of composite resource that\nCrossplane is currently reconciling for this definition. Its version will\neventually become consistent with the definition's referenceable version.\nNote that clients may interact with any served type; this is simply the\ntype that Crossplane interacts with.","type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"description":"APIVersion of the type.","type":"string"},"kind":{"description":"Kind of the type.","type":"string"}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v1"}]},"io.crossplane.apiextensions.v1.CompositeResourceDefinitionList":{"description":"CompositeResourceDefinitionList is a list of CompositeResourceDefinition","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of compositeresourcedefinitions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositeResourceDefinition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinitionList","version":"v1"}]},"io.crossplane.apiextensions.v1.Composition":{"description":"A Composition defines a collection of managed resources or functions that\nCrossplane uses to create and manage new composite resources.\n\nRead the Crossplane documentation for\n[more information about Compositions](https://docs.crossplane.io/latest/composition/compositions/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CompositionSpec specifies desired state of a composition.","type":"object","required":["compositeTypeRef"],"properties":{"compositeTypeRef":{"description":"CompositeTypeRef specifies the type of composite resource that this\ncomposition is compatible with.","type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"description":"APIVersion of the type.","type":"string"},"kind":{"description":"Kind of the type.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"mode":{"description":"Mode controls what type or \"mode\" of Composition will be used.\n\n\"Pipeline\" indicates that a Composition specifies a pipeline of\nfunctions, each of which is responsible for producing composed\nresources that Crossplane should create or update.","type":"string","enum":["Pipeline"]},"pipeline":{"description":"Pipeline is a list of composition function steps that will be used when a\ncomposite resource referring to this composition is created. One of\nresources and pipeline must be specified - you cannot specify both.\n\nThe Pipeline is only used by the \"Pipeline\" mode of Composition. It is\nignored by other modes.","type":"array","maxItems":99,"minItems":1,"items":{"description":"A PipelineStep in a function pipeline.","type":"object","required":["functionRef","step"],"properties":{"credentials":{"description":"Credentials are optional credentials that the function needs.","type":"array","items":{"description":"FunctionCredentials are optional credentials that a function\nneeds to run.","type":"object","required":["name","source"],"properties":{"name":{"description":"Name of this set of credentials.","type":"string"},"secretRef":{"description":"A SecretRef is a reference to a secret containing credentials that should\nbe supplied to the function.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the function credentials.","type":"string","enum":["None","Secret"]}},"x-kubernetes-validations":[{"message":"the Secret source requires a secretRef","rule":"self.source == 'Secret' && has(self.secretRef)"}]},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"functionRef":{"description":"FunctionRef is a reference to the function this step should\nexecute.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced Function.","type":"string"}}},"input":{"description":"Input is an optional, arbitrary Kubernetes resource (i.e. a resource\nwith an apiVersion and kind) that will be passed to the function as\nthe 'input' of its RunFunctionRequest.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true},"requirements":{"description":"Requirements are resource requirements that will be satisfied before\nthis pipeline step is called for the first time. This allows\npre-populating required resources without requiring a function to\nrequest them first.","type":"object","properties":{"requiredResources":{"description":"RequiredResources is a list of resources that must be fetched before\nthis function is called.","type":"array","items":{"description":"RequiredResourceSelector selects a required resource.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of the required resource.","type":"string"},"kind":{"description":"Kind of the required resource.","type":"string"},"matchLabels":{"description":"MatchLabels specifies the set of labels to match for finding the\nrequired resource. When specified, Name is ignored.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name of the required resource.","type":"string"},"namespace":{"description":"Namespace of the required resource if it is namespaced.","type":"string"},"requirementName":{"description":"RequirementName is the unique name to identify this required resource\nin the Required Resources map in the function request.","type":"string"}},"x-kubernetes-validations":[{"message":"Either name or matchLabels must be specified, but not both","rule":"(has(self.name) && !has(self.matchLabels)) || (!has(self.name) && has(self.matchLabels))"}]},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"},"requiredSchemas":{"description":"RequiredSchemas is a list of OpenAPI schemas that must be fetched before\nthis function is called.","type":"array","items":{"description":"RequiredSchemaSelector selects a required OpenAPI schema.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of the resource kind whose schema is required, e.g. \"example.org/v1\".","type":"string"},"kind":{"description":"Kind of resource whose schema is required, e.g. \"MyResource\".","type":"string"},"requirementName":{"description":"RequirementName is the unique name to identify this required schema\nin the Required Schemas map in the function request.","type":"string"}}},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"}}},"step":{"description":"Step name. Must be unique within its Pipeline.","type":"string"}}},"x-kubernetes-list-map-keys":["step"],"x-kubernetes-list-type":"map"},"writeConnectionSecretsToNamespace":{"description":"WriteConnectionSecretsToNamespace specifies the namespace in which the\nconnection secrets of composite resource dynamically provisioned using\nthis composition will be created.","type":"string"}},"x-kubernetes-validations":[{"message":"an array of pipeline steps is required in Pipeline mode","rule":"self.mode == 'Pipeline' && has(self.pipeline)"}]}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"Composition","version":"v1"}]},"io.crossplane.apiextensions.v1.CompositionList":{"description":"CompositionList is a list of Composition","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of compositions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.Composition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"CompositionList","version":"v1"}]},"io.crossplane.apiextensions.v1.CompositionRevision":{"description":"A CompositionRevision represents a revision of a Composition. Crossplane\ncreates new revisions when there are changes to the Composition.\n\nCrossplane creates and manages CompositionRevisions. Don't directly edit\nCompositionRevisions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CompositionRevisionSpec specifies the desired state of the composition\nrevision.","type":"object","required":["compositeTypeRef","revision"],"properties":{"compositeTypeRef":{"description":"CompositeTypeRef specifies the type of composite resource that this\ncomposition is compatible with.","type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"description":"APIVersion of the type.","type":"string"},"kind":{"description":"Kind of the type.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"mode":{"description":"Mode controls what type or \"mode\" of Composition will be used.\n\n\"Pipeline\" indicates that a Composition specifies a pipeline of\nfunctions, each of which is responsible for producing composed\nresources that Crossplane should create or update.","type":"string","enum":["Pipeline"]},"pipeline":{"description":"Pipeline is a list of function steps that will be used when a\ncomposite resource referring to this composition is created.\n\nThe Pipeline is only used by the \"Pipeline\" mode of Composition. It is\nignored by other modes.","type":"array","items":{"description":"A PipelineStep in a function pipeline.","type":"object","required":["functionRef","step"],"properties":{"credentials":{"description":"Credentials are optional credentials that the function needs.","type":"array","items":{"description":"FunctionCredentials are optional credentials that a function\nneeds to run.","type":"object","required":["name","source"],"properties":{"name":{"description":"Name of this set of credentials.","type":"string"},"secretRef":{"description":"A SecretRef is a reference to a secret containing credentials that should\nbe supplied to the function.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the function credentials.","type":"string","enum":["None","Secret"]}},"x-kubernetes-validations":[{"message":"the Secret source requires a secretRef","rule":"self.source == 'Secret' && has(self.secretRef)"}]},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"functionRef":{"description":"FunctionRef is a reference to the function this step should\nexecute.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced Function.","type":"string"}}},"input":{"description":"Input is an optional, arbitrary Kubernetes resource (i.e. a resource\nwith an apiVersion and kind) that will be passed to the function as\nthe 'input' of its RunFunctionRequest.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true},"requirements":{"description":"Requirements are resource requirements that will be satisfied before\nthis pipeline step is called for the first time. This allows\npre-populating required resources without requiring a function to\nrequest them first.","type":"object","properties":{"requiredResources":{"description":"RequiredResources is a list of resources that must be fetched before\nthis function is called.","type":"array","items":{"description":"RequiredResourceSelector selects a required resource.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of the required resource.","type":"string"},"kind":{"description":"Kind of the required resource.","type":"string"},"matchLabels":{"description":"MatchLabels specifies the set of labels to match for finding the\nrequired resource. When specified, Name is ignored.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name of the required resource.","type":"string"},"namespace":{"description":"Namespace of the required resource if it is namespaced.","type":"string"},"requirementName":{"description":"RequirementName is the unique name to identify this required resource\nin the Required Resources map in the function request.","type":"string"}},"x-kubernetes-validations":[{"message":"Either name or matchLabels must be specified, but not both","rule":"(has(self.name) && !has(self.matchLabels)) || (!has(self.name) && has(self.matchLabels))"}]},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"},"requiredSchemas":{"description":"RequiredSchemas is a list of OpenAPI schemas that must be fetched before\nthis function is called.","type":"array","items":{"description":"RequiredSchemaSelector selects a required OpenAPI schema.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of the resource kind whose schema is required, e.g. \"example.org/v1\".","type":"string"},"kind":{"description":"Kind of resource whose schema is required, e.g. \"MyResource\".","type":"string"},"requirementName":{"description":"RequirementName is the unique name to identify this required schema\nin the Required Schemas map in the function request.","type":"string"}}},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"}}},"step":{"description":"Step name. Must be unique within its Pipeline.","type":"string"}}},"x-kubernetes-list-map-keys":["step"],"x-kubernetes-list-type":"map"},"revision":{"description":"Revision number. Newer revisions have larger numbers.\n\nThis number can change. When a Composition transitions from state A\n-> B -> A there will be only two CompositionRevisions. Crossplane will\nedit the original CompositionRevision to change its revision number from\n0 to 2.","type":"integer","format":"int64"},"writeConnectionSecretsToNamespace":{"description":"WriteConnectionSecretsToNamespace specifies the namespace in which the\nconnection secrets of composite resource dynamically provisioned using\nthis composition will be created.","type":"string"}}},"status":{"description":"CompositionRevisionStatus shows the observed state of the composition\nrevision.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"CompositionRevision","version":"v1"}]},"io.crossplane.apiextensions.v1.CompositionRevisionList":{"description":"CompositionRevisionList is a list of CompositionRevision","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of compositionrevisions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1.CompositionRevision"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"CompositionRevisionList","version":"v1"}]},"io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy":{"description":"A ManagedResourceActivationPolicy defines the activation policy for ManagedResourceDefinitions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ManagedResourceActivationPolicySpec specifies the desired activation state of ManagedResourceDefinitions.","type":"object","required":["activate"],"properties":{"activate":{"description":"Activations is an array of MRD names to activate. Supports wildcard\nprefixes (like `*.aws.crossplane.io`) but not full regular expressions.","type":"array","minItems":1,"items":{"description":"ActivationPolicy matches on MRD names with wildcard prefix support.","type":"string"}}}},"status":{"description":"ManagedResourceActivationPolicyStatus shows the observed state of the policy.","type":"object","properties":{"activated":{"description":"Activated names the ManagedResourceDefinitions this policy has activated.","type":"array","items":{"type":"string"}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicy","version":"v1alpha1"}]},"io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicyList":{"description":"ManagedResourceActivationPolicyList is a list of ManagedResourceActivationPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of managedresourceactivationpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceActivationPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"ManagedResourceActivationPolicyList","version":"v1alpha1"}]},"io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition":{"description":"A ManagedResourceDefinition defines the schema for a new custom Kubernetes API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ManagedResourceDefinitionSpec specifies the desired state of the resource definition.","type":"object","required":["group","names","scope","versions"],"properties":{"connectionDetails":{"description":"ConnectionDetails is an array of connection detail keys and descriptions.","type":"array","items":{"description":"ConnectionDetail holds keys and descriptions of connection secrets.","type":"object","required":["description","name"],"properties":{"description":{"description":"Description of how the key is used.","type":"string"},"name":{"description":"Name of the key.","type":"string"}}}},"conversion":{"description":"Conversion defines conversion settings for the CRD.","type":"object","required":["strategy"],"properties":{"strategy":{"description":"strategy specifies how custom resources are converted between versions. Allowed values are:\n- `\"None\"`: The converter only change the apiVersion and would not touch any other field in the custom resource.\n- `\"Webhook\"`: API Server will call to an external webhook to do the conversion. Additional information\n  is needed for this option. This requires spec.preserveUnknownFields to be false, and spec.conversion.webhook to be set.","type":"string"},"webhook":{"description":"webhook describes how to call the conversion webhook. Required when `strategy` is set to `\"Webhook\"`.","type":"object","required":["conversionReviewVersions"],"properties":{"clientConfig":{"description":"clientConfig is the instructions for how to call the webhook if strategy is `Webhook`.","type":"object","properties":{"caBundle":{"description":"caBundle is a PEM encoded CA bundle which will be used to validate the webhook's server certificate.\nIf unspecified, system trust roots on the apiserver are used.","type":"string","format":"byte"},"service":{"description":"service is a reference to the service for this webhook. Either\nservice or url must be specified.\n\nIf the webhook is running within the cluster, then you should use `service`.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"name is the name of the service.\nRequired","type":"string"},"namespace":{"description":"namespace is the namespace of the service.\nRequired","type":"string"},"path":{"description":"path is an optional URL path at which the webhook will be contacted.","type":"string"},"port":{"description":"port is an optional service port at which the webhook will be contacted.\n`port` should be a valid port number (1-65535, inclusive).\nDefaults to 443 for backward compatibility.","type":"integer","format":"int32"}}},"url":{"description":"url gives the location of the webhook, in standard URL form\n(`scheme://host:port/path`). Exactly one of `url` or `service`\nmust be specified.\n\nThe `host` should not refer to a service running in the cluster; use\nthe `service` field instead. The host might be resolved via external\nDNS in some apiservers (e.g., `kube-apiserver` cannot resolve\nin-cluster DNS as that would be a layering violation). `host` may\nalso be an IP address.\n\nPlease note that using `localhost` or `127.0.0.1` as a `host` is\nrisky unless you take great care to run this webhook on all hosts\nwhich run an apiserver which might need to make calls to this\nwebhook. Such installs are likely to be non-portable, i.e., not easy\nto turn up in a new cluster.\n\nThe scheme must be \"https\"; the URL must begin with \"https://\".\n\nA path is optional, and if present may be any string permissible in\na URL. You may use the path to pass an arbitrary string to the\nwebhook, for example, a cluster identifier.\n\nAttempting to use a user or basic auth e.g. \"user:password@\" is not\nallowed. Fragments (\"#...\") and query parameters (\"?...\") are not\nallowed, either.","type":"string"}}},"conversionReviewVersions":{"description":"conversionReviewVersions is an ordered list of preferred `ConversionReview`\nversions the Webhook expects. The API server will use the first version in\nthe list which it supports. If none of the versions specified in this list\nare supported by API server, conversion will fail for the custom resource.\nIf a persisted Webhook configuration specifies allowed versions and does not\ninclude any versions known to the API Server, calls to the webhook will fail.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}}},"group":{"description":"Group is the API group of the defined custom resource.\nThe custom resources are served under `/apis/<group>/...`.\nMust match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`).","type":"string","x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"names":{"description":"Names specify the resource and kind names for the custom resource.","type":"object","required":["kind","plural"],"properties":{"categories":{"description":"categories is a list of grouped resources this custom resource belongs to (e.g. 'all').\nThis is published in API discovery documents, and used by clients to support invocations like\n`kubectl get all`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"kind is the serialized kind of the resource. It is normally CamelCase and singular.\nCustom resource instances will use this value as the `kind` attribute in API calls.","type":"string"},"listKind":{"description":"listKind is the serialized kind of the list for this resource. Defaults to \"`kind`List\".","type":"string"},"plural":{"description":"plural is the plural name of the resource to serve.\nThe custom resources are served under `/apis/<group>/<version>/.../<plural>`.\nMust match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`).\nMust be all lowercase.","type":"string"},"shortNames":{"description":"shortNames are short names for the resource, exposed in API discovery documents,\nand used by clients to support invocations like `kubectl get <shortname>`.\nIt must be all lowercase.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"singular":{"description":"singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"},{"message":"Plural name must be lowercase","rule":"self.plural == self.plural.lowerAscii()"},{"message":"Singular name must be lowercase","rule":"!has(self.singular) || self.singular == self.singular.lowerAscii()"}]},"preserveUnknownFields":{"description":"PreserveUnknownFields indicates that object fields which are not specified\nin the OpenAPI schema should be preserved when persisting to storage.\napiVersion, kind, metadata and known fields inside metadata are always preserved.\nThis field is deprecated in favor of setting `x-preserve-unknown-fields` to true in `spec.versions[*].schema.openAPIV3Schema`.\nSee https://kubernetes.io/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#field-pruning for details.","type":"boolean"},"scope":{"description":"Scope indicates whether the defined custom resource is cluster- or namespace-scoped.\nAllowed values are `Cluster` and `Namespaced`.","type":"string","enum":["Namespaced","Cluster"],"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"state":{"description":"State toggles whether the underlying CRD is created or not.","type":"string","enum":["Active","Inactive"],"x-kubernetes-validations":[{"message":"state cannot be changed once it becomes Active","rule":"self == oldSelf || oldSelf != 'Active'"}]},"versions":{"description":"Versions is the list of all API versions of the defined custom resource.\nVersion names are used to compute the order in which served versions are listed in API discovery.\nIf the version string is \"kube-like\", it will sort above non \"kube-like\" version strings, which are ordered\nlexicographically. \"Kube-like\" versions start with a \"v\", then are followed by a number (the major version),\nthen optionally the string \"alpha\" or \"beta\" and another number (the minor version). These are sorted first\nby GA > beta > alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing\nmajor version, then minor version. An example sorted list of versions:\nv10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.","type":"array","items":{"description":"CustomResourceDefinitionVersion describes a version for CRD.","type":"object","required":["name","served","storage"],"properties":{"additionalPrinterColumns":{"description":"AdditionalPrinterColumns specifies additional columns returned in Table output.\nSee https://kubernetes.io/docs/reference/using-api/api-concepts/#receiving-resources-as-tables for details.\nIf no columns are specified, a single column displaying the age of the custom resource is used.","type":"array","items":{"description":"CustomResourceColumnDefinition specifies a column for server side printing.","type":"object","required":["jsonPath","name","type"],"properties":{"description":{"description":"description is a human readable description of this column.","type":"string"},"format":{"description":"format is an optional OpenAPI type definition for this column. The 'name' format is applied\nto the primary identifier column to assist in clients identifying column is the resource name.\nSee https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"},"jsonPath":{"description":"jsonPath is a simple JSON path (i.e. with array notation) which is evaluated against\neach custom resource to produce the value for this column.","type":"string"},"name":{"description":"name is a human readable name for the column.","type":"string"},"priority":{"description":"priority is an integer defining the relative importance of this column compared to others. Lower\nnumbers are considered higher priority. Columns that may be omitted in limited space scenarios\nshould be given a priority greater than 0.","type":"integer","format":"int32"},"type":{"description":"type is an OpenAPI type definition for this column.\nSee https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"deprecated":{"description":"Deprecated indicates this version of the custom resource API is deprecated.\nWhen set to true, API requests to this version receive a warning header in the server response.\nDefaults to false.","type":"boolean"},"deprecationWarning":{"description":"DeprecationWarning overrides the default warning returned to API clients.\nMay only be set when `deprecated` is true.\nThe default warning indicates this version is deprecated and recommends use\nof the newest served version of equal or greater stability, if one exists.","type":"string"},"name":{"description":"Name is the version name, e.g. “v1”, “v2beta1”, etc.\nThe custom resources are served under this version at `/apis/<group>/<version>/...` if `served` is true.","type":"string"},"schema":{"description":"Schema describes the schema used for validation, pruning, and defaulting of this version of the custom resource.","type":"object","properties":{"openAPIV3Schema":{"description":"OpenAPIV3Schema is the OpenAPI v3 schema to use for validation and\npruning.","x-kubernetes-preserve-unknown-fields":true}}},"selectableFields":{"description":"SelectableFields specifies paths to fields that may be used as field selectors.\nA maximum of 8 selectable fields are allowed.\nSee https://kubernetes.io/docs/concepts/overview/working-with-objects/field-selectors","type":"array","items":{"description":"SelectableField specifies the JSON path of a field that may be used with field selectors.","type":"object","required":["jsonPath"],"properties":{"jsonPath":{"description":"jsonPath is a simple JSON path which is evaluated against each custom resource to produce a\nfield selector value.\nOnly JSON paths without the array notation are allowed.\nMust point to a field of type string, boolean or integer. Types with enum values\nand strings with formats are allowed.\nIf jsonPath refers to absent field in a resource, the jsonPath evaluates to an empty string.\nMust not point to metdata fields.\nRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"served":{"description":"Served is a flag enabling/disabling this version from being served via REST APIs","type":"boolean"},"storage":{"description":"Storage indicates this version should be used when persisting custom resources to storage.\nThere must be exactly one version with storage=true.","type":"boolean"},"subresources":{"description":"Subresources specify what subresources this version of the defined custom resource have.","type":"object","properties":{"scale":{"description":"scale indicates the custom resource should serve a `/scale` subresource that returns an `autoscaling/v1` Scale object.","type":"object","required":["specReplicasPath","statusReplicasPath"],"properties":{"labelSelectorPath":{"description":"labelSelectorPath defines the JSON path inside of a custom resource that corresponds to Scale `status.selector`.\nOnly JSON paths without the array notation are allowed.\nMust be a JSON Path under `.status` or `.spec`.\nMust be set to work with HorizontalPodAutoscaler.\nThe field pointed by this JSON path must be a string field (not a complex selector struct)\nwhich contains a serialized label selector in string form.\nMore info: https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions#scale-subresource\nIf there is no value under the given path in the custom resource, the `status.selector` value in the `/scale`\nsubresource will default to the empty string.","type":"string"},"specReplicasPath":{"description":"specReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `spec.replicas`.\nOnly JSON paths without the array notation are allowed.\nMust be a JSON Path under `.spec`.\nIf there is no value under the given path in the custom resource, the `/scale` subresource will return an error on GET.","type":"string"},"statusReplicasPath":{"description":"statusReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `status.replicas`.\nOnly JSON paths without the array notation are allowed.\nMust be a JSON Path under `.status`.\nIf there is no value under the given path in the custom resource, the `status.replicas` value in the `/scale` subresource\nwill default to 0.","type":"string"}}},"status":{"description":"status indicates the custom resource should serve a `/status` subresource.\nWhen enabled:\n1. requests to the custom resource primary endpoint ignore changes to the `status` stanza of the object.\n2. requests to the custom resource `/status` subresource ignore changes to anything other than the `status` stanza of the object.","type":"object"}}}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"ManagedResourceDefinitionStatus shows the observed state of the resource definition.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinition","version":"v1alpha1"}]},"io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinitionList":{"description":"ManagedResourceDefinitionList is a list of ManagedResourceDefinition","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of managedresourcedefinitions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.ManagedResourceDefinition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"ManagedResourceDefinitionList","version":"v1alpha1"}]},"io.crossplane.apiextensions.v1alpha1.Usage":{"description":"A Usage defines a deletion blocking relationship between two resources.\n\nUsages prevent accidental deletion of a single resource or deletion of\nresources with dependent resources.\n\nRead the Crossplane documentation for\n[more information about Usages](https://docs.crossplane.io/latest/managed-resources/usages/).\n\nDeprecated: Use protection.crossplane.io Usage or ClusterUsage.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"UsageSpec defines the desired state of Usage.","type":"object","required":["of"],"properties":{"by":{"description":"By is the resource that is \"using the other resource\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"of":{"description":"Of is the resource that is \"being used\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"reason":{"description":"Reason is the reason for blocking deletion of the resource.","type":"string"},"replayDeletion":{"description":"ReplayDeletion will trigger a deletion on the used resource during the deletion of the usage itself, if it was attempted to be deleted at least once.","type":"boolean"}},"x-kubernetes-validations":[{"message":"either \"spec.by\" or \"spec.reason\" must be specified.","rule":"has(self.by) || has(self.reason)"}]},"status":{"description":"UsageStatus defines the observed state of Usage.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1alpha1"}]},"io.crossplane.apiextensions.v1alpha1.UsageList":{"description":"UsageList is a list of Usage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of usages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1alpha1.Usage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"UsageList","version":"v1alpha1"}]},"io.crossplane.apiextensions.v1beta1.EnvironmentConfig":{"description":"An EnvironmentConfig contains user-defined unstructured values for\nuse in a Composition.\n\nRead the Crossplane documentation for\n[more information about EnvironmentConfigs](https://docs.crossplane.io/latest/composition/environment-configs/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"data":{"description":"The data of this EnvironmentConfig.\nThis may contain any kind of structure that can be serialized into JSON.","type":"object","additionalProperties":{"x-kubernetes-preserve-unknown-fields":true}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfig","version":"v1beta1"}]},"io.crossplane.apiextensions.v1beta1.EnvironmentConfigList":{"description":"EnvironmentConfigList is a list of EnvironmentConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of environmentconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.EnvironmentConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"EnvironmentConfigList","version":"v1beta1"}]},"io.crossplane.apiextensions.v1beta1.Usage":{"description":"A Usage defines a deletion blocking relationship between two resources.\n\nUsages prevent accidental deletion of a single resource or deletion of\nresources with dependent resources.\n\nRead the Crossplane documentation for\n[more information about Usages](https://docs.crossplane.io/latest/managed-resources/usages/).\n\nDeprecated: Use protection.crossplane.io Usage or ClusterUsage.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"UsageSpec defines the desired state of Usage.","type":"object","required":["of"],"properties":{"by":{"description":"By is the resource that is \"using the other resource\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"of":{"description":"Of is the resource that is \"being used\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"reason":{"description":"Reason is the reason for blocking deletion of the resource.","type":"string"},"replayDeletion":{"description":"ReplayDeletion will trigger a deletion on the used resource during the deletion of the usage itself, if it was attempted to be deleted at least once.","type":"boolean"}},"x-kubernetes-validations":[{"message":"either \"spec.by\" or \"spec.reason\" must be specified.","rule":"has(self.by) || has(self.reason)"}]},"status":{"description":"UsageStatus defines the observed state of Usage.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"Usage","version":"v1beta1"}]},"io.crossplane.apiextensions.v1beta1.UsageList":{"description":"UsageList is a list of Usage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of usages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v1beta1.Usage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"UsageList","version":"v1beta1"}]},"io.crossplane.apiextensions.v2.CompositeResourceDefinition":{"description":"A CompositeResourceDefinition defines the schema for a new custom Kubernetes\nAPI.\n\nRead the Crossplane documentation for\n[more information about CustomResourceDefinitions](https://docs.crossplane.io/latest/composition/composite-resource-definitions/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CompositeResourceDefinitionSpec specifies the desired state of the definition.","type":"object","required":["group","names","versions"],"properties":{"claimNames":{"description":"ClaimNames specifies the names of an optional composite resource claim.\nWhen claim names are specified Crossplane will create a namespaced\n'composite resource claim' CRD that corresponds to the defined composite\nresource. This composite resource claim acts as a namespaced proxy for\nthe composite resource; creating, updating, or deleting the claim will\ncreate, update, or delete a corresponding composite resource. You may add\nclaim names to an existing CompositeResourceDefinition, but they cannot\nbe changed or removed once they have been set.\n\nDeprecated: Claims aren't supported in apiextensions.crossplane.io/v2.","type":"object","required":["kind","plural"],"properties":{"categories":{"description":"categories is a list of grouped resources this custom resource belongs to (e.g. 'all').\nThis is published in API discovery documents, and used by clients to support invocations like\n`kubectl get all`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"kind is the serialized kind of the resource. It is normally CamelCase and singular.\nCustom resource instances will use this value as the `kind` attribute in API calls.","type":"string"},"listKind":{"description":"listKind is the serialized kind of the list for this resource. Defaults to \"`kind`List\".","type":"string"},"plural":{"description":"plural is the plural name of the resource to serve.\nThe custom resources are served under `/apis/<group>/<version>/.../<plural>`.\nMust match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`).\nMust be all lowercase.","type":"string"},"shortNames":{"description":"shortNames are short names for the resource, exposed in API discovery documents,\nand used by clients to support invocations like `kubectl get <shortname>`.\nIt must be all lowercase.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"singular":{"description":"singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.","type":"string"}}},"connectionSecretKeys":{"description":"ConnectionSecretKeys is the list of connection secret keys the\ndefined XR can publish. If the list is empty, all keys will be\npublished. If the list isn't empty, any connection secret keys that\ndon't appear in the list will be filtered out. Only LegacyCluster XRs\nsupport connection secrets.\n\nDeprecated: XR connection secrets aren't supported in\napiextensions.crossplane.io/v2. Compose a secret instead.","type":"array","items":{"type":"string"}},"conversion":{"description":"Conversion defines all conversion settings for the defined Composite resource.","type":"object","required":["strategy"],"properties":{"strategy":{"description":"strategy specifies how custom resources are converted between versions. Allowed values are:\n- `\"None\"`: The converter only change the apiVersion and would not touch any other field in the custom resource.\n- `\"Webhook\"`: API Server will call to an external webhook to do the conversion. Additional information\n  is needed for this option. This requires spec.preserveUnknownFields to be false, and spec.conversion.webhook to be set.","type":"string"},"webhook":{"description":"webhook describes how to call the conversion webhook. Required when `strategy` is set to `\"Webhook\"`.","type":"object","required":["conversionReviewVersions"],"properties":{"clientConfig":{"description":"clientConfig is the instructions for how to call the webhook if strategy is `Webhook`.","type":"object","properties":{"caBundle":{"description":"caBundle is a PEM encoded CA bundle which will be used to validate the webhook's server certificate.\nIf unspecified, system trust roots on the apiserver are used.","type":"string","format":"byte"},"service":{"description":"service is a reference to the service for this webhook. Either\nservice or url must be specified.\n\nIf the webhook is running within the cluster, then you should use `service`.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"name is the name of the service.\nRequired","type":"string"},"namespace":{"description":"namespace is the namespace of the service.\nRequired","type":"string"},"path":{"description":"path is an optional URL path at which the webhook will be contacted.","type":"string"},"port":{"description":"port is an optional service port at which the webhook will be contacted.\n`port` should be a valid port number (1-65535, inclusive).\nDefaults to 443 for backward compatibility.","type":"integer","format":"int32"}}},"url":{"description":"url gives the location of the webhook, in standard URL form\n(`scheme://host:port/path`). Exactly one of `url` or `service`\nmust be specified.\n\nThe `host` should not refer to a service running in the cluster; use\nthe `service` field instead. The host might be resolved via external\nDNS in some apiservers (e.g., `kube-apiserver` cannot resolve\nin-cluster DNS as that would be a layering violation). `host` may\nalso be an IP address.\n\nPlease note that using `localhost` or `127.0.0.1` as a `host` is\nrisky unless you take great care to run this webhook on all hosts\nwhich run an apiserver which might need to make calls to this\nwebhook. Such installs are likely to be non-portable, i.e., not easy\nto turn up in a new cluster.\n\nThe scheme must be \"https\"; the URL must begin with \"https://\".\n\nA path is optional, and if present may be any string permissible in\na URL. You may use the path to pass an arbitrary string to the\nwebhook, for example, a cluster identifier.\n\nAttempting to use a user or basic auth e.g. \"user:password@\" is not\nallowed. Fragments (\"#...\") and query parameters (\"?...\") are not\nallowed, either.","type":"string"}}},"conversionReviewVersions":{"description":"conversionReviewVersions is an ordered list of preferred `ConversionReview`\nversions the Webhook expects. The API server will use the first version in\nthe list which it supports. If none of the versions specified in this list\nare supported by API server, conversion will fail for the custom resource.\nIf a persisted Webhook configuration specifies allowed versions and does not\ninclude any versions known to the API Server, calls to the webhook will fail.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}}},"defaultCompositeDeletePolicy":{"description":"DefaultCompositeDeletePolicy is the policy used when deleting the Composite\nthat is associated with the Claim if no policy has been specified.\n\nDeprecated: Claims aren't supported in apiextensions.crossplane.io/v2.","type":"string","enum":["Background","Foreground"]},"defaultCompositionRef":{"description":"DefaultCompositionRef refers to the Composition resource that will be used\nin case no composition selector is given.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the Composition.","type":"string"}}},"defaultCompositionRevisionSelector":{"description":"DefaultCompositionRevisionSelector refers to the CompositionRevision that will be used\nin case no compositionRevision selector is given.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"defaultCompositionUpdatePolicy":{"description":"DefaultCompositionUpdatePolicy is the policy used when updating composites after a new\nComposition Revision has been created if no policy has been specified on the composite.","type":"string","enum":["Automatic","Manual"]},"enforcedCompositionRef":{"description":"EnforcedCompositionRef refers to the Composition resource that will be used\nby all composite instances whose schema is defined by this definition.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the Composition.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"group":{"description":"Group specifies the API group of the defined composite resource.\nComposite resources are served under `/apis/<group>/...`. Must match the\nname of the XRD (in the form `<names.plural>.<group>`).","type":"string","x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"metadata":{"description":"Metadata specifies the desired metadata for the defined composite resource and claim CRD's.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be\nset by external tools to store and retrieve arbitrary metadata. They are not\nqueryable and should be preserved when modifying objects.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels\nand services.\nThese labels are added to the composite resource and claim CRD's in addition\nto any labels defined by `CompositionResourceDefinition` `metadata.labels`.","type":"object","additionalProperties":{"type":"string"}}}},"names":{"description":"Names specifies the resource and kind names of the defined composite\nresource.","type":"object","required":["kind","plural"],"properties":{"categories":{"description":"categories is a list of grouped resources this custom resource belongs to (e.g. 'all').\nThis is published in API discovery documents, and used by clients to support invocations like\n`kubectl get all`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"kind is the serialized kind of the resource. It is normally CamelCase and singular.\nCustom resource instances will use this value as the `kind` attribute in API calls.","type":"string"},"listKind":{"description":"listKind is the serialized kind of the list for this resource. Defaults to \"`kind`List\".","type":"string"},"plural":{"description":"plural is the plural name of the resource to serve.\nThe custom resources are served under `/apis/<group>/<version>/.../<plural>`.\nMust match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`).\nMust be all lowercase.","type":"string"},"shortNames":{"description":"shortNames are short names for the resource, exposed in API discovery documents,\nand used by clients to support invocations like `kubectl get <shortname>`.\nIt must be all lowercase.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"singular":{"description":"singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.","type":"string"}},"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"},{"message":"Plural name must be lowercase","rule":"self.plural == self.plural.lowerAscii()"},{"message":"Singular name must be lowercase","rule":"!has(self.singular) || self.singular == self.singular.lowerAscii()"}]},"scope":{"description":"Scope of the defined composite resource. Namespaced composite resources\nare scoped to a single namespace. Cluster scoped composite resource exist\noutside the scope of any namespace.","type":"string","enum":["Namespaced","Cluster"],"x-kubernetes-validations":[{"message":"Value is immutable","rule":"self == oldSelf"}]},"versions":{"description":"Versions is the list of all API versions of the defined composite\nresource. Version names are used to compute the order in which served\nversions are listed in API discovery. If the version string is\n\"kube-like\", it will sort above non \"kube-like\" version strings, which\nare ordered lexicographically. \"Kube-like\" versions start with a \"v\",\nthen are followed by a number (the major version), then optionally the\nstring \"alpha\" or \"beta\" and another number (the minor version). These\nare sorted first by GA > beta > alpha (where GA is a version with no\nsuffix such as beta or alpha), and then by comparing major version, then\nminor version. An example sorted list of versions: v10, v2, v1, v11beta2,\nv10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.","type":"array","items":{"description":"CompositeResourceDefinitionVersion describes a version of an XR.","type":"object","required":["name","referenceable","served"],"properties":{"additionalPrinterColumns":{"description":"AdditionalPrinterColumns specifies additional columns returned in Table\noutput. If no columns are specified, a single column displaying the age\nof the custom resource is used. See the following link for details:\nhttps://kubernetes.io/docs/reference/using-api/api-concepts/#receiving-resources-as-tables","type":"array","items":{"description":"CustomResourceColumnDefinition specifies a column for server side printing.","type":"object","required":["jsonPath","name","type"],"properties":{"description":{"description":"description is a human readable description of this column.","type":"string"},"format":{"description":"format is an optional OpenAPI type definition for this column. The 'name' format is applied\nto the primary identifier column to assist in clients identifying column is the resource name.\nSee https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"},"jsonPath":{"description":"jsonPath is a simple JSON path (i.e. with array notation) which is evaluated against\neach custom resource to produce the value for this column.","type":"string"},"name":{"description":"name is a human readable name for the column.","type":"string"},"priority":{"description":"priority is an integer defining the relative importance of this column compared to others. Lower\nnumbers are considered higher priority. Columns that may be omitted in limited space scenarios\nshould be given a priority greater than 0.","type":"integer","format":"int32"},"type":{"description":"type is an OpenAPI type definition for this column.\nSee https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"}}}},"deprecated":{"description":"The deprecated field specifies that this version is deprecated and should\nnot be used.","type":"boolean"},"deprecationWarning":{"description":"DeprecationWarning specifies the message that should be shown to the user\nwhen using this version.","type":"string","maxLength":256},"name":{"description":"Name of this version, e.g. “v1”, “v2beta1”, etc. Composite resources are\nserved under this version at `/apis/<group>/<version>/...` if `served` is\ntrue.","type":"string"},"referenceable":{"description":"Referenceable specifies that this version may be referenced by a\nComposition in order to configure which resources an XR may be composed\nof. Exactly one version must be marked as referenceable; all Compositions\nmust target only the referenceable version. The referenceable version\nmust be served. It's mapped to the CRD's `spec.versions[*].storage` field.","type":"boolean"},"schema":{"description":"Schema describes the schema used for validation, pruning, and defaulting\nof this version of the defined composite resource. Fields required by all\ncomposite resources will be injected into this schema automatically, and\nwill override equivalently named fields in this schema. Omitting this\nschema results in a schema that contains only the fields required by all\ncomposite resources.","type":"object","properties":{"openAPIV3Schema":{"description":"OpenAPIV3Schema is the OpenAPI v3 schema to use for validation and\npruning.","x-kubernetes-preserve-unknown-fields":true}}},"served":{"description":"Served specifies that this version should be served via REST APIs.","type":"boolean"}}}}},"x-kubernetes-validations":[{"message":"Claims aren't supported in apiextensions.crossplane.io/v2","rule":"!has(self.claimNames)"},{"message":"XR connection secrets aren't supported in apiextensions.crossplane.io/v2","rule":"!has(self.connectionSecretKeys)"}]},"status":{"description":"CompositeResourceDefinitionStatus shows the observed state of the definition.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"controllers":{"description":"Controllers represents the status of the controllers that power this\ncomposite resource definition.","type":"object","properties":{"compositeResourceClaimType":{"description":"The CompositeResourceClaimTypeRef is the type of composite resource claim\nthat Crossplane is currently reconciling for this definition. Its version\nwill eventually become consistent with the definition's referenceable\nversion. Note that clients may interact with any served type; this is\nsimply the type that Crossplane interacts with.","type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"description":"APIVersion of the type.","type":"string"},"kind":{"description":"Kind of the type.","type":"string"}}},"compositeResourceType":{"description":"The CompositeResourceTypeRef is the type of composite resource that\nCrossplane is currently reconciling for this definition. Its version will\neventually become consistent with the definition's referenceable version.\nNote that clients may interact with any served type; this is simply the\ntype that Crossplane interacts with.","type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"description":"APIVersion of the type.","type":"string"},"kind":{"description":"Kind of the type.","type":"string"}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinition","version":"v2"}]},"io.crossplane.apiextensions.v2.CompositeResourceDefinitionList":{"description":"CompositeResourceDefinitionList is a list of CompositeResourceDefinition","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of compositeresourcedefinitions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.apiextensions.v2.CompositeResourceDefinition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.crossplane.io","kind":"CompositeResourceDefinitionList","version":"v2"}]},"io.crossplane.kubernetes.v1alpha1.Object":{"description":"A Object is an provider Kubernetes API type\n\nDeprecated: v1alpha1.Object is deprecated in favor of v1alpha2.Object","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"A ObjectSpec defines the desired state of a Object.","type":"object","required":["forProvider"],"properties":{"connectionDetails":{"type":"array","items":{"description":"ConnectionDetail represents an entry in the connection secret for an Object","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"toConnectionSecretKey":{"type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}},"deletionPolicy":{"description":"DeletionPolicy specifies what will happen to the underlying external\nwhen this managed resource is deleted - either \"Delete\" or \"Orphan\" the\nexternal resource.\nThis field is planned to be deprecated in favor of the ManagementPolicy\nfield in a future release. Currently, both could be set independently and\nnon-default values would be honored if the feature flag is enabled.\nSee the design doc for more information: https://github.com/crossplane/crossplane/blob/499895a25d1a1a0ba1604944ef98ac7a1a71f197/design/design-doc-observe-only-resources.md?plain=1#L223","type":"string","enum":["Orphan","Delete"]},"forProvider":{"description":"ObjectParameters are the configurable fields of a Object.","type":"object","required":["manifest"],"properties":{"manifest":{"description":"Raw JSON representation of the kubernetes object to be created.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"managementPolicy":{"description":"A ManagementPolicy determines what should happen to the underlying external\nresource when a managed resource is created, updated, deleted, or observed.","type":"string","enum":["Default","ObserveCreateUpdate","ObserveDelete","Observe"]},"providerConfigRef":{"description":"ProviderConfigReference specifies how the provider that will be used to\ncreate, observe, update, and delete this managed resource should be\nconfigured.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced object.","type":"string"},"policy":{"description":"Policies for referencing.","type":"object","properties":{"resolution":{"description":"Resolution specifies whether resolution of this reference is required.\nThe default is 'Required', which means the reconcile will fail if the\nreference cannot be resolved. 'Optional' means this reference will be\na no-op if it cannot be resolved.","type":"string","enum":["Required","Optional"]},"resolve":{"description":"Resolve specifies when this reference should be resolved. The default\nis 'IfNotPresent', which will attempt to resolve the reference only when\nthe corresponding field is not present. Use 'Always' to resolve the\nreference on every reconcile.","type":"string","enum":["Always","IfNotPresent"]}}}}},"providerRef":{"description":"ProviderReference specifies the provider that will be used to create,\nobserve, update, and delete this managed resource.\n\nDeprecated: Please use ProviderConfigReference, i.e. `providerConfigRef`","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced object.","type":"string"},"policy":{"description":"Policies for referencing.","type":"object","properties":{"resolution":{"description":"Resolution specifies whether resolution of this reference is required.\nThe default is 'Required', which means the reconcile will fail if the\nreference cannot be resolved. 'Optional' means this reference will be\na no-op if it cannot be resolved.","type":"string","enum":["Required","Optional"]},"resolve":{"description":"Resolve specifies when this reference should be resolved. The default\nis 'IfNotPresent', which will attempt to resolve the reference only when\nthe corresponding field is not present. Use 'Always' to resolve the\nreference on every reconcile.","type":"string","enum":["Always","IfNotPresent"]}}}}},"readiness":{"description":"Readiness defines how the object's readiness condition should be computed,\nif not specified it will be considered ready as soon as the underlying external\nresource is considered up-to-date.","type":"object","properties":{"policy":{"description":"Policy defines how the Object's readiness condition should be computed.","type":"string","enum":["SuccessfulCreate","DeriveFromObject","AllTrue"]}}},"references":{"type":"array","items":{"description":"Reference refers to an Object or arbitrary Kubernetes resource and optionally\npatch values from that resource to the current Object.","type":"object","properties":{"dependsOn":{"description":"DependsOn is used to declare dependency on other Object or arbitrary\nKubernetes resource.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"namespace":{"description":"Namespace of the referenced object.","type":"string"}}},"patchesFrom":{"description":"PatchesFrom is used to declare dependency on other Object or arbitrary\nKubernetes resource, and also patch fields from this object.","type":"object","required":["fieldPath","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"fieldPath":{"description":"FieldPath is the path of the field on the resource whose value is to be\nused as input.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"namespace":{"description":"Namespace of the referenced object.","type":"string"}}},"toFieldPath":{"description":"ToFieldPath is the path of the field on the resource whose value will\nbe changed with the result of transforms. Leave empty if you'd like to\npropagate to the same path as patchesFrom.fieldPath.","type":"string"}}}},"watch":{"description":"Watch enables watching the referenced or managed kubernetes resources.\n\nTHIS IS AN ALPHA FIELD. Do not use it in production. It is not honored\nunless \"watches\" feature gate is enabled, and may be changed or removed\nwithout notice.","type":"boolean"},"writeConnectionSecretToRef":{"description":"WriteConnectionSecretToReference specifies the namespace and name of a\nSecret to which any connection details for this managed resource should\nbe written. Connection details frequently include the endpoint, username,\nand password required to connect to the managed resource.\nThis field is planned to be replaced in a future release in favor of\nPublishConnectionDetailsTo. Currently, both could be set independently\nand connection details would be published to both without affecting\neach other.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}}}},"status":{"description":"A ObjectStatus represents the observed state of a Object.","type":"object","properties":{"atProvider":{"description":"ObjectObservation are the observable fields of a Object.","type":"object","properties":{"manifest":{"description":"Raw JSON representation of the remote object.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"observedGeneration":{"description":"ObservedGeneration is the latest metadata.generation\nwhich resulted in either a ready state, or stalled due to error\nit can not recover from without human intervention.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha1"}]},"io.crossplane.kubernetes.v1alpha1.ObjectList":{"description":"ObjectList is a list of Object","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objects. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.Object"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ObjectList","version":"v1alpha1"}]},"io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection":{"description":"A ObservedObjectCollection is a provider Kubernetes API type","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ObservedObjectCollectionSpec defines the desired state of ObservedObjectCollection","type":"object","required":["observeObjects"],"properties":{"objectTemplate":{"description":"Template when defined is used for creating Object instances","type":"object","properties":{"metadata":{"description":"Objects metadata","type":"object","properties":{"annotations":{"description":"Annotations of an object","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels of an object","type":"object","additionalProperties":{"type":"string"}}}}}},"observeObjects":{"description":"ObserveObjects declares what criteria object need to fulfil\nto become a member of this collection","type":"object","required":["apiVersion","kind","selector"],"properties":{"apiVersion":{"description":"APIVersion of objects that should be matched by the selector","type":"string","minLength":1},"kind":{"description":"Kind of objects that should be matched by the selector","type":"string","minLength":1},"namespace":{"description":"Namespace where to look for objects.\nIf omitted, search is performed across all namespaces.\nFor cluster-scoped objects, omit it.","type":"string"},"selector":{"description":"Selector defines the criteria for including objects into the collection","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"providerConfigRef":{"description":"ProviderConfigReference specifies how the provider that will be used to\ncreate, observe, update, and delete this managed resource should be\nconfigured.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced object.","type":"string"},"policy":{"description":"Policies for referencing.","type":"object","properties":{"resolution":{"description":"Resolution specifies whether resolution of this reference is required.\nThe default is 'Required', which means the reconcile will fail if the\nreference cannot be resolved. 'Optional' means this reference will be\na no-op if it cannot be resolved.","type":"string","enum":["Required","Optional"]},"resolve":{"description":"Resolve specifies when this reference should be resolved. The default\nis 'IfNotPresent', which will attempt to resolve the reference only when\nthe corresponding field is not present. Use 'Always' to resolve the\nreference on every reconcile.","type":"string","enum":["Always","IfNotPresent"]}}}}}}},"status":{"description":"ObservedObjectCollectionStatus represents the observed state of a ObservedObjectCollection","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"membershipLabel":{"description":"MembershipLabel is the label set on each member of this collection\nand can be used for fetching them.","type":"object","additionalProperties":{"type":"string"}},"observedGeneration":{"description":"ObservedGeneration is the latest metadata.generation\nwhich resulted in either a ready state, or stalled due to error\nit can not recover from without human intervention.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}],"x-kubernetes-validations":[{"message":"metadata.name max length is 63","rule":"size(self.metadata.name) < 64"}]},"io.crossplane.kubernetes.v1alpha1.ObservedObjectCollectionList":{"description":"ObservedObjectCollectionList is a list of ObservedObjectCollection","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of observedobjectcollections. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ObservedObjectCollection"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ObservedObjectCollectionList","version":"v1alpha1"}]},"io.crossplane.kubernetes.v1alpha1.ProviderConfig":{"description":"A ProviderConfig configures a Template provider.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"A ProviderConfigSpec defines the desired state of a ProviderConfig.","type":"object","required":["credentials"],"properties":{"credentials":{"description":"Credentials used to connect to the Kubernetes API. Typically a\nkubeconfig file. Use InjectedIdentity for in-cluster config.","type":"object","required":["source"],"properties":{"env":{"description":"Env is a reference to an environment variable that contains credentials\nthat must be used to connect to the provider.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of an environment variable.","type":"string"}}},"fs":{"description":"Fs is a reference to a filesystem location that contains credentials that\nmust be used to connect to the provider.","type":"object","required":["path"],"properties":{"path":{"description":"Path is a filesystem path.","type":"string"}}},"secretRef":{"description":"A SecretRef is a reference to a secret key that contains the credentials\nthat must be used to connect to the provider.","type":"object","required":["key","name","namespace"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the provider credentials.","type":"string","enum":["None","Secret","InjectedIdentity","Environment","Filesystem"]}}},"identity":{"description":"Identity used to authenticate to the Kubernetes API. The identity\ncredentials can be used to supplement kubeconfig 'credentials', for\nexample by configuring a bearer token source such as OAuth.","type":"object","required":["source","type"],"properties":{"env":{"description":"Env is a reference to an environment variable that contains credentials\nthat must be used to connect to the provider.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of an environment variable.","type":"string"}}},"fs":{"description":"Fs is a reference to a filesystem location that contains credentials that\nmust be used to connect to the provider.","type":"object","required":["path"],"properties":{"path":{"description":"Path is a filesystem path.","type":"string"}}},"secretRef":{"description":"A SecretRef is a reference to a secret key that contains the credentials\nthat must be used to connect to the provider.","type":"object","required":["key","name","namespace"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the provider credentials.","type":"string","enum":["None","Secret","InjectedIdentity","Environment","Filesystem"]},"type":{"description":"Type of identity.","type":"string","enum":["GoogleApplicationCredentials","AzureServicePrincipalCredentials","AzureWorkloadIdentityCredentials","UpboundTokens","AWSWebIdentityCredentials"]}}}}},"status":{"description":"A ProviderConfigStatus reflects the observed state of a ProviderConfig.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"users":{"description":"Users of this provider configuration.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}]},"io.crossplane.kubernetes.v1alpha1.ProviderConfigList":{"description":"ProviderConfigList is a list of ProviderConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of providerconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ProviderConfigList","version":"v1alpha1"}]},"io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage":{"description":"A ProviderConfigUsage indicates that a resource is using a ProviderConfig.","type":"object","required":["providerConfigRef","resourceRef"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"providerConfigRef":{"description":"ProviderConfigReference to the provider config being used.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced object.","type":"string"},"policy":{"description":"Policies for referencing.","type":"object","properties":{"resolution":{"description":"Resolution specifies whether resolution of this reference is required.\nThe default is 'Required', which means the reconcile will fail if the\nreference cannot be resolved. 'Optional' means this reference will be\na no-op if it cannot be resolved.","type":"string","enum":["Required","Optional"]},"resolve":{"description":"Resolve specifies when this reference should be resolved. The default\nis 'IfNotPresent', which will attempt to resolve the reference only when\nthe corresponding field is not present. Use 'Always' to resolve the\nreference on every reconcile.","type":"string","enum":["Always","IfNotPresent"]}}}}},"resourceRef":{"description":"ResourceReference to the managed resource using the provider config.","type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"uid":{"description":"UID of the referenced object.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}]},"io.crossplane.kubernetes.v1alpha1.ProviderConfigUsageList":{"description":"ProviderConfigUsageList is a list of ProviderConfigUsage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of providerconfigusages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha1.ProviderConfigUsage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ProviderConfigUsageList","version":"v1alpha1"}]},"io.crossplane.kubernetes.v1alpha2.Object":{"description":"A Object is an provider Kubernetes API type","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"A ObjectSpec defines the desired state of a Object.","type":"object","required":["forProvider"],"properties":{"connectionDetails":{"type":"array","items":{"description":"ConnectionDetail represents an entry in the connection secret for an Object","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"toConnectionSecretKey":{"type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}},"deletionPolicy":{"description":"DeletionPolicy specifies what will happen to the underlying external\nwhen this managed resource is deleted - either \"Delete\" or \"Orphan\" the\nexternal resource.\nThis field is planned to be deprecated in favor of the ManagementPolicies\nfield in a future release. Currently, both could be set independently and\nnon-default values would be honored if the feature flag is enabled.\nSee the design doc for more information: https://github.com/crossplane/crossplane/blob/499895a25d1a1a0ba1604944ef98ac7a1a71f197/design/design-doc-observe-only-resources.md?plain=1#L223","type":"string","enum":["Orphan","Delete"]},"forProvider":{"description":"ObjectParameters are the configurable fields of a Object.","type":"object","required":["manifest"],"properties":{"manifest":{"description":"Raw JSON representation of the kubernetes object to be created.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"managementPolicies":{"description":"THIS IS A BETA FIELD. It is on by default but can be opted out\nthrough a Crossplane feature flag.\nManagementPolicies specify the array of actions Crossplane is allowed to\ntake on the managed and external resources.\nThis field is planned to replace the DeletionPolicy field in a future\nrelease. Currently, both could be set independently and non-default\nvalues would be honored if the feature flag is enabled. If both are\ncustom, the DeletionPolicy field will be ignored.\nSee the design doc for more information: https://github.com/crossplane/crossplane/blob/499895a25d1a1a0ba1604944ef98ac7a1a71f197/design/design-doc-observe-only-resources.md?plain=1#L223\nand this one: https://github.com/crossplane/crossplane/blob/444267e84783136daa93568b364a5f01228cacbe/design/one-pager-ignore-changes.md","type":"array","items":{"description":"A ManagementAction represents an action that the Crossplane controllers\ncan take on an external resource.","type":"string","enum":["Observe","Create","Update","Delete","LateInitialize","*"]}},"providerConfigRef":{"description":"ProviderConfigReference specifies how the provider that will be used to\ncreate, observe, update, and delete this managed resource should be\nconfigured.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced object.","type":"string"},"policy":{"description":"Policies for referencing.","type":"object","properties":{"resolution":{"description":"Resolution specifies whether resolution of this reference is required.\nThe default is 'Required', which means the reconcile will fail if the\nreference cannot be resolved. 'Optional' means this reference will be\na no-op if it cannot be resolved.","type":"string","enum":["Required","Optional"]},"resolve":{"description":"Resolve specifies when this reference should be resolved. The default\nis 'IfNotPresent', which will attempt to resolve the reference only when\nthe corresponding field is not present. Use 'Always' to resolve the\nreference on every reconcile.","type":"string","enum":["Always","IfNotPresent"]}}}}},"readiness":{"description":"Readiness defines how the object's readiness condition should be computed,\nif not specified it will be considered ready as soon as the underlying external\nresource is considered up-to-date.","type":"object","properties":{"celQuery":{"description":"CelQuery defines a cel query to evaluate the readiness. The\nobserved object is passed to the cel query with the word `object`.\nCel macros are available to be used, see https://github.com/google/cel-spec/blob/master/doc/langdef.md#macros\nfor more information.\nExamples:\n `object.status.isReady == true`: checks for a boolean field called isReady on status.\n `object.status.conditions.all(x, x.status == \"True\")` mimics the behavior of the AllTrue readiness policy\n `object.status.conditions.exists(c, c.type == \"condition1\" && c.status == \"True\" )` checks just one condition","type":"string"},"policy":{"description":"Policy defines how the Object's readiness condition should be computed.","type":"string","enum":["SuccessfulCreate","DeriveFromObject","AllTrue","DeriveFromCelQuery"]}},"x-kubernetes-validations":[{"message":"celQuery must be set if policy is DeriveFromCelQuery","rule":"self.policy != 'DeriveFromCelQuery' || (self.policy == 'DeriveFromCelQuery' && size(self.celQuery) > 0)"}]},"references":{"type":"array","items":{"description":"Reference refers to an Object or arbitrary Kubernetes resource and optionally\npatch values from that resource to the current Object.","type":"object","properties":{"dependsOn":{"description":"DependsOn is used to declare dependency on other Object or arbitrary\nKubernetes resource.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"namespace":{"description":"Namespace of the referenced object.","type":"string"}}},"patchesFrom":{"description":"PatchesFrom is used to declare dependency on other Object or arbitrary\nKubernetes resource, and also patch fields from this object.","type":"object","required":["fieldPath","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"fieldPath":{"description":"FieldPath is the path of the field on the resource whose value is to be\nused as input.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"namespace":{"description":"Namespace of the referenced object.","type":"string"}}},"toFieldPath":{"description":"ToFieldPath is the path of the field on the resource whose value will\nbe changed with the result of transforms. Leave empty if you'd like to\npropagate to the same path as patchesFrom.fieldPath.","type":"string"}}}},"watch":{"description":"Watch enables watching the referenced or managed kubernetes resources.\n\nTHIS IS AN ALPHA FIELD. Do not use it in production. It is not honored\nunless \"watches\" feature gate is enabled, and may be changed or removed\nwithout notice.","type":"boolean"},"writeConnectionSecretToRef":{"description":"WriteConnectionSecretToReference specifies the namespace and name of a\nSecret to which any connection details for this managed resource should\nbe written. Connection details frequently include the endpoint, username,\nand password required to connect to the managed resource.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}}}},"status":{"description":"A ObjectStatus represents the observed state of a Object.","type":"object","properties":{"atProvider":{"description":"ObjectObservation are the observable fields of a Object.","type":"object","properties":{"manifest":{"description":"Raw JSON representation of the remote object.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"observedGeneration":{"description":"ObservedGeneration is the latest metadata.generation\nwhich resulted in either a ready state, or stalled due to error\nit can not recover from without human intervention.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"Object","version":"v1alpha2"}]},"io.crossplane.kubernetes.v1alpha2.ObjectList":{"description":"ObjectList is a list of Object","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objects. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.kubernetes.v1alpha2.Object"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.crossplane.io","kind":"ObjectList","version":"v1alpha2"}]},"io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig":{"description":"A ClusterProviderConfig configures a Kubernetes provider.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"A ProviderConfigSpec defines the desired state of a ProviderConfig.","type":"object","required":["credentials"],"properties":{"credentials":{"description":"Credentials used to connect to the Kubernetes API. Typically a\nkubeconfig file. Use InjectedIdentity for in-cluster config.","type":"object","required":["source"],"properties":{"env":{"description":"Env is a reference to an environment variable that contains credentials\nthat must be used to connect to the provider.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of an environment variable.","type":"string"}}},"fs":{"description":"Fs is a reference to a filesystem location that contains credentials that\nmust be used to connect to the provider.","type":"object","required":["path"],"properties":{"path":{"description":"Path is a filesystem path.","type":"string"}}},"secretRef":{"description":"A SecretRef is a reference to a secret key that contains the credentials\nthat must be used to connect to the provider.","type":"object","required":["key","name","namespace"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the provider credentials.","type":"string","enum":["None","Secret","InjectedIdentity","Environment","Filesystem"]}}},"identity":{"description":"Identity used to authenticate to the Kubernetes API. The identity\ncredentials can be used to supplement kubeconfig 'credentials', for\nexample by configuring a bearer token source such as OAuth.","type":"object","required":["source","type"],"properties":{"env":{"description":"Env is a reference to an environment variable that contains credentials\nthat must be used to connect to the provider.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of an environment variable.","type":"string"}}},"fs":{"description":"Fs is a reference to a filesystem location that contains credentials that\nmust be used to connect to the provider.","type":"object","required":["path"],"properties":{"path":{"description":"Path is a filesystem path.","type":"string"}}},"secretRef":{"description":"A SecretRef is a reference to a secret key that contains the credentials\nthat must be used to connect to the provider.","type":"object","required":["key","name","namespace"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the provider credentials.","type":"string","enum":["None","Secret","InjectedIdentity","Environment","Filesystem"]},"type":{"description":"Type of identity.","type":"string","enum":["GoogleApplicationCredentials","AzureServicePrincipalCredentials","AzureWorkloadIdentityCredentials","UpboundTokens","AWSWebIdentityCredentials"]}}}}},"status":{"description":"A ProviderConfigStatus reflects the observed state of a ProviderConfig.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"users":{"description":"Users of this provider configuration.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfig","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfigList":{"description":"ClusterProviderConfigList is a list of ClusterProviderConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterproviderconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ClusterProviderConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ClusterProviderConfigList","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.Object":{"description":"A Object is an provider Kubernetes API type","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"A ObjectSpec defines the desired state of a Object.","type":"object","required":["forProvider"],"properties":{"connectionDetails":{"type":"array","items":{"description":"ConnectionDetail represents an entry in the connection secret for an Object","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"toConnectionSecretKey":{"type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}},"forProvider":{"description":"ObjectParameters are the configurable fields of a Object.","type":"object","required":["manifest"],"properties":{"manifest":{"description":"Raw JSON representation of the kubernetes object to be created.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"managementPolicies":{"description":"THIS IS A BETA FIELD. It is on by default but can be opted out\nthrough a Crossplane feature flag.\nManagementPolicies specify the array of actions Crossplane is allowed to\ntake on the managed and external resources.\nSee the design doc for more information: https://github.com/crossplane/crossplane/blob/499895a25d1a1a0ba1604944ef98ac7a1a71f197/design/design-doc-observe-only-resources.md?plain=1#L223\nand this one: https://github.com/crossplane/crossplane/blob/444267e84783136daa93568b364a5f01228cacbe/design/one-pager-ignore-changes.md","type":"array","items":{"description":"A ManagementAction represents an action that the Crossplane controllers\ncan take on an external resource.","type":"string","enum":["Observe","Create","Update","Delete","LateInitialize","*"]}},"providerConfigRef":{"description":"ProviderConfigReference specifies how the provider that will be used to\ncreate, observe, update, and delete this managed resource should be\nconfigured.","type":"object","required":["kind","name"],"properties":{"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"}}},"readiness":{"description":"Readiness defines how the object's readiness condition should be computed,\nif not specified it will be considered ready as soon as the underlying external\nresource is considered up-to-date.","type":"object","properties":{"celQuery":{"description":"CelQuery defines a cel query to evaluate the readiness. The\nobserved object is passed to the cel query with the word `object`.\nCel macros are available to be used, see https://github.com/google/cel-spec/blob/master/doc/langdef.md#macros\nfor more information.\nExamples:\n `object.status.isReady == true`: checks for a boolean field called isReady on status.\n `object.status.conditions.all(x, x.status == \"True\")` mimics the behavior of the AllTrue readiness policy\n `object.status.conditions.exists(c, c.type == \"condition1\" && c.status == \"True\" )` checks just one condition","type":"string"},"policy":{"description":"Policy defines how the Object's readiness condition should be computed.","type":"string","enum":["SuccessfulCreate","DeriveFromObject","AllTrue","DeriveFromCelQuery"]}},"x-kubernetes-validations":[{"message":"celQuery must be set if policy is DeriveFromCelQuery","rule":"self.policy != 'DeriveFromCelQuery' || (self.policy == 'DeriveFromCelQuery' && size(self.celQuery) > 0)"}]},"references":{"type":"array","items":{"description":"Reference refers to an Object or arbitrary Kubernetes resource and optionally\npatch values from that resource to the current Object.","type":"object","properties":{"dependsOn":{"description":"DependsOn is used to declare dependency on other Object or arbitrary\nKubernetes resource.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"namespace":{"description":"Namespace of the referenced object.","type":"string"}}},"patchesFrom":{"description":"PatchesFrom is used to declare dependency on other Object or arbitrary\nKubernetes resource, and also patch fields from this object.","type":"object","required":["fieldPath","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"fieldPath":{"description":"FieldPath is the path of the field on the resource whose value is to be\nused as input.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"namespace":{"description":"Namespace of the referenced object.","type":"string"}}},"toFieldPath":{"description":"ToFieldPath is the path of the field on the resource whose value will\nbe changed with the result of transforms. Leave empty if you'd like to\npropagate to the same path as patchesFrom.fieldPath.","type":"string"}}}},"watch":{"description":"Watch enables watching the referenced or managed kubernetes resources.\n\nTHIS IS AN ALPHA FIELD. Do not use it in production. It is not honored\nunless \"watches\" feature gate is enabled, and may be changed or removed\nwithout notice.","type":"boolean"},"writeConnectionSecretToRef":{"description":"WriteConnectionSecretToReference specifies the namespace and name of a\nSecret to which any connection details for this managed resource should\nbe written. Connection details frequently include the endpoint, username,\nand password required to connect to the managed resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the secret.","type":"string"}}}}},"status":{"description":"A ObjectStatus represents the observed state of a Object.","type":"object","properties":{"atProvider":{"description":"ObjectObservation are the observable fields of a Object.","type":"object","properties":{"manifest":{"description":"Raw JSON representation of the remote object.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"observedGeneration":{"description":"ObservedGeneration is the latest metadata.generation\nwhich resulted in either a ready state, or stalled due to error\nit can not recover from without human intervention.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"Object","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.ObjectList":{"description":"ObjectList is a list of Object","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objects. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.Object"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ObjectList","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection":{"description":"A ObservedObjectCollection is a provider Kubernetes API type","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ObservedObjectCollectionSpec defines the desired state of ObservedObjectCollection","type":"object","required":["observeObjects"],"properties":{"objectTemplate":{"description":"Template when defined is used for creating Object instances","type":"object","properties":{"metadata":{"description":"Objects metadata","type":"object","properties":{"annotations":{"description":"Annotations of an object","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Labels of an object","type":"object","additionalProperties":{"type":"string"}}}}}},"observeObjects":{"description":"ObserveObjects declares what criteria object need to fulfil\nto become a member of this collection","type":"object","required":["apiVersion","kind","selector"],"properties":{"apiVersion":{"description":"APIVersion of objects that should be matched by the selector","type":"string","minLength":1},"kind":{"description":"Kind of objects that should be matched by the selector","type":"string","minLength":1},"namespace":{"description":"Namespace where to look for objects.\nIf omitted, search is performed across all namespaces.\nFor cluster-scoped objects, omit it.","type":"string"},"selector":{"description":"Selector defines the criteria for including objects into the collection","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"providerConfigRef":{"description":"ProviderConfigReference specifies how the provider that will be used to\ncreate, observe, update, and delete this managed resource should be\nconfigured.","type":"object","required":["kind","name"],"properties":{"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"}}}}},"status":{"description":"ObservedObjectCollectionStatus represents the observed state of a ObservedObjectCollection","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"membershipLabel":{"description":"MembershipLabel is the label set on each member of this collection\nand can be used for fetching them.","type":"object","additionalProperties":{"type":"string"}},"observedGeneration":{"description":"ObservedGeneration is the latest metadata.generation\nwhich resulted in either a ready state, or stalled due to error\nit can not recover from without human intervention.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollection","version":"v1alpha1"}],"x-kubernetes-validations":[{"message":"metadata.name max length is 63","rule":"size(self.metadata.name) < 64"}]},"io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollectionList":{"description":"ObservedObjectCollectionList is a list of ObservedObjectCollection","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of observedobjectcollections. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ObservedObjectCollection"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ObservedObjectCollectionList","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.ProviderConfig":{"description":"A ProviderConfig configures a Template provider.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"A ProviderConfigSpec defines the desired state of a ProviderConfig.","type":"object","required":["credentials"],"properties":{"credentials":{"description":"Credentials used to connect to the Kubernetes API. Typically a\nkubeconfig file. Use InjectedIdentity for in-cluster config.","type":"object","required":["source"],"properties":{"env":{"description":"Env is a reference to an environment variable that contains credentials\nthat must be used to connect to the provider.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of an environment variable.","type":"string"}}},"fs":{"description":"Fs is a reference to a filesystem location that contains credentials that\nmust be used to connect to the provider.","type":"object","required":["path"],"properties":{"path":{"description":"Path is a filesystem path.","type":"string"}}},"secretRef":{"description":"A SecretRef is a reference to a secret key that contains the credentials\nthat must be used to connect to the provider.","type":"object","required":["key","name","namespace"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the provider credentials.","type":"string","enum":["None","Secret","InjectedIdentity","Environment","Filesystem"]}}},"identity":{"description":"Identity used to authenticate to the Kubernetes API. The identity\ncredentials can be used to supplement kubeconfig 'credentials', for\nexample by configuring a bearer token source such as OAuth.","type":"object","required":["source","type"],"properties":{"env":{"description":"Env is a reference to an environment variable that contains credentials\nthat must be used to connect to the provider.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of an environment variable.","type":"string"}}},"fs":{"description":"Fs is a reference to a filesystem location that contains credentials that\nmust be used to connect to the provider.","type":"object","required":["path"],"properties":{"path":{"description":"Path is a filesystem path.","type":"string"}}},"secretRef":{"description":"A SecretRef is a reference to a secret key that contains the credentials\nthat must be used to connect to the provider.","type":"object","required":["key","name","namespace"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the provider credentials.","type":"string","enum":["None","Secret","InjectedIdentity","Environment","Filesystem"]},"type":{"description":"Type of identity.","type":"string","enum":["GoogleApplicationCredentials","AzureServicePrincipalCredentials","AzureWorkloadIdentityCredentials","UpboundTokens","AWSWebIdentityCredentials"]}}}}},"status":{"description":"A ProviderConfigStatus reflects the observed state of a ProviderConfig.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"users":{"description":"Users of this provider configuration.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfig","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.ProviderConfigList":{"description":"ProviderConfigList is a list of ProviderConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of providerconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigList","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage":{"description":"A ProviderConfigUsage indicates that a resource is using a ProviderConfig.","type":"object","required":["providerConfigRef","resourceRef"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"providerConfigRef":{"description":"ProviderConfigReference to the provider config being used.","type":"object","required":["kind","name"],"properties":{"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"}}},"resourceRef":{"description":"ResourceReference to the managed resource using the provider config.","type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"uid":{"description":"UID of the referenced object.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsage","version":"v1alpha1"}]},"io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsageList":{"description":"ProviderConfigUsageList is a list of ProviderConfigUsage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of providerconfigusages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.m.kubernetes.v1alpha1.ProviderConfigUsage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubernetes.m.crossplane.io","kind":"ProviderConfigUsageList","version":"v1alpha1"}]},"io.crossplane.ops.v1alpha1.CronOperation":{"description":"A CronOperation creates Operations on a cron schedule.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CronOperationSpec specifies the desired state of a CronOperation.","type":"object","required":["operationTemplate","schedule"],"properties":{"concurrencyPolicy":{"description":"ConcurrencyPolicy specifies how to treat concurrent executions of an\noperation.","type":"string","enum":["Allow","Forbid","Replace"]},"failedHistoryLimit":{"description":"FailedHistoryLimit is the number of failed Operations to retain.","type":"integer","format":"int32"},"operationTemplate":{"description":"OperationTemplate is the template for the Operation to be created.","type":"object","required":["spec"],"properties":{"metadata":{"description":"Standard object metadata.","type":"object"},"spec":{"description":"Spec is the specification of the Operation to be created.","type":"object","required":["mode","pipeline"],"properties":{"mode":{"description":"Mode controls what type or \"mode\" of operation will be used.\n\n\"Pipeline\" indicates that an Operation specifies a pipeline of\nfunctions, each of which is responsible for implementing its logic.","type":"string","enum":["Pipeline"]},"pipeline":{"description":"Pipeline is a list of operation function steps that will be used when\nthis operation runs.","type":"array","maxItems":99,"minItems":1,"items":{"description":"A PipelineStep in an operation function pipeline.","type":"object","required":["functionRef","step"],"properties":{"credentials":{"description":"Credentials are optional credentials that the operation function needs.","type":"array","items":{"description":"FunctionCredentials are optional credentials that a function\nneeds to run.","type":"object","required":["name","source"],"properties":{"name":{"description":"Name of this set of credentials.","type":"string"},"secretRef":{"description":"A SecretRef is a reference to a secret containing credentials that should\nbe supplied to the function.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the function credentials.","type":"string","enum":["None","Secret"]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"functionRef":{"description":"FunctionRef is a reference to the function this step should\nexecute.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced function.","type":"string"}}},"input":{"description":"Input is an optional, arbitrary Kubernetes resource (i.e. a resource\nwith an apiVersion and kind) that will be passed to the unction as\nthe 'input' of its RunFunctionRequest.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true},"requirements":{"description":"Requirements are resource requirements that will be satisfied before\nthis pipeline step is called for the first time. This allows\npre-populating required resources without requiring a function to\nrequest them first.","type":"object","properties":{"requiredResources":{"description":"RequiredResources that will be fetched before this pipeline step\nis called for the first time.","type":"array","items":{"description":"RequiredResourceSelector selects resources that should be fetched before\na pipeline step runs.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of resources to select.","type":"string"},"kind":{"description":"Kind of resources to select.","type":"string"},"matchLabels":{"description":"MatchLabels matches resources by label selector. Only one of Name or\nMatchLabels may be specified.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name matches a single resource by name. Only one of Name or\nMatchLabels may be specified.","type":"string"},"namespace":{"description":"Namespace to search for resources. Optional for cluster-scoped resources.","type":"string"},"requirementName":{"description":"RequirementName uniquely identifies this group of resources.\nThis name will be used as the key in RunFunctionRequest.required_resources.","type":"string"}},"x-kubernetes-validations":[{"message":"Either name or matchLabels must be specified, but not both","rule":"(has(self.name) && !has(self.matchLabels)) || (!has(self.name) && has(self.matchLabels))"}]},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"},"requiredSchemas":{"description":"RequiredSchemas that will be fetched before this pipeline step\nis called for the first time.","type":"array","items":{"description":"RequiredSchemaSelector selects an OpenAPI schema that should be fetched\nbefore a pipeline step runs.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of the resource kind whose schema is required, e.g. \"example.org/v1\".","type":"string"},"kind":{"description":"Kind of resource whose schema is required, e.g. \"MyResource\".","type":"string"},"requirementName":{"description":"RequirementName uniquely identifies this schema.\nThis name will be used as the key in RunFunctionRequest.required_schemas.","type":"string"}}},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"}}},"step":{"description":"Step name. Must be unique within its Pipeline.","type":"string"}}},"x-kubernetes-list-map-keys":["step"],"x-kubernetes-list-type":"map"},"retryLimit":{"description":"RetryLimit configures how many times the operation may fail. When the\nfailure limit is exceeded, the operation will not be retried.","type":"integer","format":"int64"}}}}},"schedule":{"description":"Schedule is the cron schedule for the operation.","type":"string"},"startingDeadlineSeconds":{"description":"StartingDeadlineSeconds is the deadline in seconds for starting the\noperation if it misses its scheduled time for any reason.","type":"integer","format":"int64"},"successfulHistoryLimit":{"description":"SuccessfulHistoryLimit is the number of successful Operations to retain.","type":"integer","format":"int32"}}},"status":{"description":"CronOperationStatus represents the observed state of a CronOperation.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"lastScheduleTime":{"description":"LastScheduleTime is the last time the CronOperation was scheduled.","type":"string","format":"date-time"},"lastSuccessfulTime":{"description":"LastSuccessfulTime is the last time the CronOperation was successfully\ncompleted.","type":"string","format":"date-time"},"runningOperationRefs":{"description":"RunningOperationRefs is a list of currently running Operations.","type":"array","items":{"description":"A RunningOperationRef is a reference to a running operation.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the active operation.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"ops.crossplane.io","kind":"CronOperation","version":"v1alpha1"}]},"io.crossplane.ops.v1alpha1.CronOperationList":{"description":"CronOperationList is a list of CronOperation","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cronoperations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.CronOperation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"ops.crossplane.io","kind":"CronOperationList","version":"v1alpha1"}]},"io.crossplane.ops.v1alpha1.Operation":{"description":"An Operation defines a pipeline of functions that together constitute a day\ntwo operation.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperationSpec specifies desired state of an operation.","type":"object","required":["mode","pipeline"],"properties":{"mode":{"description":"Mode controls what type or \"mode\" of operation will be used.\n\n\"Pipeline\" indicates that an Operation specifies a pipeline of\nfunctions, each of which is responsible for implementing its logic.","type":"string","enum":["Pipeline"]},"pipeline":{"description":"Pipeline is a list of operation function steps that will be used when\nthis operation runs.","type":"array","maxItems":99,"minItems":1,"items":{"description":"A PipelineStep in an operation function pipeline.","type":"object","required":["functionRef","step"],"properties":{"credentials":{"description":"Credentials are optional credentials that the operation function needs.","type":"array","items":{"description":"FunctionCredentials are optional credentials that a function\nneeds to run.","type":"object","required":["name","source"],"properties":{"name":{"description":"Name of this set of credentials.","type":"string"},"secretRef":{"description":"A SecretRef is a reference to a secret containing credentials that should\nbe supplied to the function.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the function credentials.","type":"string","enum":["None","Secret"]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"functionRef":{"description":"FunctionRef is a reference to the function this step should\nexecute.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced function.","type":"string"}}},"input":{"description":"Input is an optional, arbitrary Kubernetes resource (i.e. a resource\nwith an apiVersion and kind) that will be passed to the unction as\nthe 'input' of its RunFunctionRequest.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true},"requirements":{"description":"Requirements are resource requirements that will be satisfied before\nthis pipeline step is called for the first time. This allows\npre-populating required resources without requiring a function to\nrequest them first.","type":"object","properties":{"requiredResources":{"description":"RequiredResources that will be fetched before this pipeline step\nis called for the first time.","type":"array","items":{"description":"RequiredResourceSelector selects resources that should be fetched before\na pipeline step runs.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of resources to select.","type":"string"},"kind":{"description":"Kind of resources to select.","type":"string"},"matchLabels":{"description":"MatchLabels matches resources by label selector. Only one of Name or\nMatchLabels may be specified.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name matches a single resource by name. Only one of Name or\nMatchLabels may be specified.","type":"string"},"namespace":{"description":"Namespace to search for resources. Optional for cluster-scoped resources.","type":"string"},"requirementName":{"description":"RequirementName uniquely identifies this group of resources.\nThis name will be used as the key in RunFunctionRequest.required_resources.","type":"string"}},"x-kubernetes-validations":[{"message":"Either name or matchLabels must be specified, but not both","rule":"(has(self.name) && !has(self.matchLabels)) || (!has(self.name) && has(self.matchLabels))"}]},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"},"requiredSchemas":{"description":"RequiredSchemas that will be fetched before this pipeline step\nis called for the first time.","type":"array","items":{"description":"RequiredSchemaSelector selects an OpenAPI schema that should be fetched\nbefore a pipeline step runs.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of the resource kind whose schema is required, e.g. \"example.org/v1\".","type":"string"},"kind":{"description":"Kind of resource whose schema is required, e.g. \"MyResource\".","type":"string"},"requirementName":{"description":"RequirementName uniquely identifies this schema.\nThis name will be used as the key in RunFunctionRequest.required_schemas.","type":"string"}}},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"}}},"step":{"description":"Step name. Must be unique within its Pipeline.","type":"string"}}},"x-kubernetes-list-map-keys":["step"],"x-kubernetes-list-type":"map"},"retryLimit":{"description":"RetryLimit configures how many times the operation may fail. When the\nfailure limit is exceeded, the operation will not be retried.","type":"integer","format":"int64"}}},"status":{"description":"OperationStatus represents the observed state of an operation.","type":"object","properties":{"appliedResourceRefs":{"description":"AppliedResourceRefs references all resources the Operation applied.","type":"array","items":{"description":"An AppliedResourceRef is a reference to a resource an Operation applied.","type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"description":"APIVersion of the applied resource.","type":"string"},"kind":{"description":"Kind of the applied resource.","type":"string"},"name":{"description":"Name of the applied resource.","type":"string"},"namespace":{"description":"Namespace of the applied resource.","type":"string"}}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"failures":{"description":"Number of operation failures.","type":"integer","format":"int64"},"pipeline":{"description":"Pipeline represents the output of the pipeline steps that this operation\nran.","type":"array","items":{"description":"PipelineStepStatus represents the status of an individual pipeline step.","type":"object","required":["step"],"properties":{"output":{"description":"Output of this step.","x-kubernetes-preserve-unknown-fields":true},"step":{"description":"Step name. Unique within its Pipeline.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"ops.crossplane.io","kind":"Operation","version":"v1alpha1"}]},"io.crossplane.ops.v1alpha1.OperationList":{"description":"OperationList is a list of Operation","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.Operation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"ops.crossplane.io","kind":"OperationList","version":"v1alpha1"}]},"io.crossplane.ops.v1alpha1.WatchOperation":{"description":"A WatchOperation creates Operations when watched resources change.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"WatchOperationSpec specifies the desired state of a WatchOperation.","type":"object","required":["operationTemplate","watch"],"properties":{"concurrencyPolicy":{"description":"ConcurrencyPolicy specifies how to treat concurrent executions of an\noperation.","type":"string","enum":["Allow","Forbid","Replace"]},"failedHistoryLimit":{"description":"FailedHistoryLimit is the number of failed Operations to retain.","type":"integer","format":"int32"},"operationTemplate":{"description":"OperationTemplate is the template for the Operation to be created.","type":"object","required":["spec"],"properties":{"metadata":{"description":"Standard object metadata.","type":"object"},"spec":{"description":"Spec is the specification of the Operation to be created.","type":"object","required":["mode","pipeline"],"properties":{"mode":{"description":"Mode controls what type or \"mode\" of operation will be used.\n\n\"Pipeline\" indicates that an Operation specifies a pipeline of\nfunctions, each of which is responsible for implementing its logic.","type":"string","enum":["Pipeline"]},"pipeline":{"description":"Pipeline is a list of operation function steps that will be used when\nthis operation runs.","type":"array","maxItems":99,"minItems":1,"items":{"description":"A PipelineStep in an operation function pipeline.","type":"object","required":["functionRef","step"],"properties":{"credentials":{"description":"Credentials are optional credentials that the operation function needs.","type":"array","items":{"description":"FunctionCredentials are optional credentials that a function\nneeds to run.","type":"object","required":["name","source"],"properties":{"name":{"description":"Name of this set of credentials.","type":"string"},"secretRef":{"description":"A SecretRef is a reference to a secret containing credentials that should\nbe supplied to the function.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret.","type":"string"},"namespace":{"description":"Namespace of the secret.","type":"string"}}},"source":{"description":"Source of the function credentials.","type":"string","enum":["None","Secret"]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"functionRef":{"description":"FunctionRef is a reference to the function this step should\nexecute.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referenced function.","type":"string"}}},"input":{"description":"Input is an optional, arbitrary Kubernetes resource (i.e. a resource\nwith an apiVersion and kind) that will be passed to the unction as\nthe 'input' of its RunFunctionRequest.","x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true},"requirements":{"description":"Requirements are resource requirements that will be satisfied before\nthis pipeline step is called for the first time. This allows\npre-populating required resources without requiring a function to\nrequest them first.","type":"object","properties":{"requiredResources":{"description":"RequiredResources that will be fetched before this pipeline step\nis called for the first time.","type":"array","items":{"description":"RequiredResourceSelector selects resources that should be fetched before\na pipeline step runs.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of resources to select.","type":"string"},"kind":{"description":"Kind of resources to select.","type":"string"},"matchLabels":{"description":"MatchLabels matches resources by label selector. Only one of Name or\nMatchLabels may be specified.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name matches a single resource by name. Only one of Name or\nMatchLabels may be specified.","type":"string"},"namespace":{"description":"Namespace to search for resources. Optional for cluster-scoped resources.","type":"string"},"requirementName":{"description":"RequirementName uniquely identifies this group of resources.\nThis name will be used as the key in RunFunctionRequest.required_resources.","type":"string"}},"x-kubernetes-validations":[{"message":"Either name or matchLabels must be specified, but not both","rule":"(has(self.name) && !has(self.matchLabels)) || (!has(self.name) && has(self.matchLabels))"}]},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"},"requiredSchemas":{"description":"RequiredSchemas that will be fetched before this pipeline step\nis called for the first time.","type":"array","items":{"description":"RequiredSchemaSelector selects an OpenAPI schema that should be fetched\nbefore a pipeline step runs.","type":"object","required":["apiVersion","kind","requirementName"],"properties":{"apiVersion":{"description":"APIVersion of the resource kind whose schema is required, e.g. \"example.org/v1\".","type":"string"},"kind":{"description":"Kind of resource whose schema is required, e.g. \"MyResource\".","type":"string"},"requirementName":{"description":"RequirementName uniquely identifies this schema.\nThis name will be used as the key in RunFunctionRequest.required_schemas.","type":"string"}}},"x-kubernetes-list-map-keys":["requirementName"],"x-kubernetes-list-type":"map"}}},"step":{"description":"Step name. Must be unique within its Pipeline.","type":"string"}}},"x-kubernetes-list-map-keys":["step"],"x-kubernetes-list-type":"map"},"retryLimit":{"description":"RetryLimit configures how many times the operation may fail. When the\nfailure limit is exceeded, the operation will not be retried.","type":"integer","format":"int64"}}}}},"successfulHistoryLimit":{"description":"SuccessfulHistoryLimit is the number of successful Operations to retain.","type":"integer","format":"int32"},"watch":{"description":"Watch specifies the resource to watch.","type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"description":"APIVersion of the resource to watch.","type":"string","x-kubernetes-validations":[{"message":"apiVersion is immutable","rule":"self == oldSelf"}]},"kind":{"description":"Kind of the resource to watch.","type":"string","x-kubernetes-validations":[{"message":"kind is immutable","rule":"self == oldSelf"}]},"matchLabels":{"description":"MatchLabels selects resources by label. If empty, all resources of the\nspecified kind are watched.","type":"object","additionalProperties":{"type":"string"}},"namespace":{"description":"Namespace selects resources in a specific namespace. If empty, all\nnamespaces are watched. Only applicable for namespaced resources.","type":"string"}}}}},"status":{"description":"WatchOperationStatus represents the observed state of a WatchOperation.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"lastScheduleTime":{"description":"LastScheduleTime is the last time the WatchOperation created an\nOperation.","type":"string","format":"date-time"},"lastSuccessfulTime":{"description":"LastSuccessfulTime is the last time the WatchOperation successfully\ncompleted an Operation.","type":"string","format":"date-time"},"runningOperationRefs":{"description":"RunningOperationRefs is a list of currently running Operations.","type":"array","items":{"description":"A RunningOperationRef is a reference to a running operation.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the active operation.","type":"string"}}}},"watchingResources":{"description":"WatchingResources is the number of resources this WatchOperation is\ncurrently watching.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"ops.crossplane.io","kind":"WatchOperation","version":"v1alpha1"}]},"io.crossplane.ops.v1alpha1.WatchOperationList":{"description":"WatchOperationList is a list of WatchOperation","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of watchoperations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.ops.v1alpha1.WatchOperation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"ops.crossplane.io","kind":"WatchOperationList","version":"v1alpha1"}]},"io.crossplane.pkg.v1.Configuration":{"description":"A Configuration installs an OCI compatible Crossplane package, extending\nCrossplane with support for new kinds of CompositeResourceDefinitions and\nCompositions.\n\nRead the Crossplane documentation for\n[more information about Configuration packages]( https://docs.crossplane.io/latest/packages/configurations/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConfigurationSpec specifies details about a request to install a\nconfiguration to Crossplane.","type":"object","required":["package"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"package":{"description":"Package is the name of the package that is being requested.\nmust be a fully qualified image name, including the registry,\nrepository, and tag. for example, \"registry.example.com/repo/package:tag\".","type":"string","x-kubernetes-validations":[{"message":"must be a fully qualified image name, including the registry, repository, and tag or digest. For example, 'registry.example.com/repo/package:tag' or 'registry.example.com/repo/package[:tag]@sha256:1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef'.","rule":"self.matches('^[^\\\\.\\\\/]+(\\\\.[^\\\\.\\\\/]+)+(\\\\/[^\\\\/:@]+)+(:[^:@]+(@sha256.+)?|@sha256.+)$')"}]},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be used\nto fetch packages from private registries.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revisionActivationPolicy":{"description":"RevisionActivationPolicy specifies how the package controller should\nupdate from one revision to the next. Options are Automatic or Manual.\nDefault is Automatic.","type":"string"},"revisionHistoryLimit":{"description":"RevisionHistoryLimit dictates how the package controller cleans up old\ninactive package revisions.\nDefaults to 1. Can be disabled by explicitly setting to 0.","type":"integer","format":"int64"},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"}}},"status":{"description":"ConfigurationStatus represents the observed state of a Configuration.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this package, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"currentIdentifier":{"description":"CurrentIdentifier is the most recent package source that was used to\nproduce a revision. The package manager uses this field to determine\nwhether to check for package updates for a given source when\npackagePullPolicy is set to IfNotPresent. Manually removing this field\nwill cause the package manager to check that the current revision is\ncorrect for the given package source.","type":"string"},"currentRevision":{"description":"CurrentRevision is the name of the current package revision. It will\nreflect the most up to date revision, whether it has been activated or\nnot.","type":"string"},"resolvedPackage":{"description":"ResolvedPackage is the name of the package that was used for version\nresolution. It may be different from spec.package if the package path was\nrewritten using an image config.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"Configuration","version":"v1"}]},"io.crossplane.pkg.v1.ConfigurationList":{"description":"ConfigurationList is a list of Configuration","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of configurations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1.Configuration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ConfigurationList","version":"v1"}]},"io.crossplane.pkg.v1.ConfigurationRevision":{"description":"A ConfigurationRevision represents a revision of a Configuration. Crossplane\ncreates new revisions when there are changes to a Configuration.\n\nCrossplane creates and manages ConfigurationRevision. Don't directly edit\nConfigurationRevisions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PackageRevisionSpec specifies the desired state of a PackageRevision.","type":"object","required":["desiredState","image","revision"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"desiredState":{"description":"DesiredState of the PackageRevision. Can be either Active or Inactive.","type":"string"},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"image":{"description":"Package image used by install Pod to extract package contents.","type":"string"},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package. It is also\napplied to any images pulled for the package, such as a provider's\ncontroller image.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be\nused to fetch packages from private registries. They are also applied to\nany images pulled for the package, such as a provider's controller image.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revision":{"description":"Revision number. Indicates when the revision will be garbage collected\nbased on the parent's RevisionHistoryLimit.","type":"integer","format":"int64"},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"}}},"status":{"description":"PackageRevisionStatus represents the observed state of a PackageRevision.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this revision, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"capabilities":{"description":"Capabilities of this package. Capabilities are opaque strings that\nmay be meaningful to package consumers.","type":"array","items":{"type":"string"}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"foundDependencies":{"description":"Dependency information.","type":"integer","format":"int64"},"installedDependencies":{"type":"integer","format":"int64"},"invalidDependencies":{"type":"integer","format":"int64"},"objectRefs":{"description":"References to objects owned by PackageRevision.","type":"array","items":{"description":"A TypedReference refers to an object by Name, Kind, and APIVersion. It is\ncommonly used to reference cluster-scoped objects or objects where the\nnamespace is already known.","type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"uid":{"description":"UID of the referenced object.","type":"string"}}}},"resolvedImage":{"description":"ResolvedPackage is the name of the package that was installed. It may be\ndifferent from spec.image if the package path was rewritten using an\nimage config.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ConfigurationRevision","version":"v1"}]},"io.crossplane.pkg.v1.ConfigurationRevisionList":{"description":"ConfigurationRevisionList is a list of ConfigurationRevision","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of configurationrevisions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1.ConfigurationRevision"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ConfigurationRevisionList","version":"v1"}]},"io.crossplane.pkg.v1.Function":{"description":"A Function installs an OCI compatible Crossplane package, extending\nCrossplane with support for a new kind of composition function.\n\nRead the Crossplane documentation for\n[more information about Functions](https://docs.crossplane.io/latest/packages/functions/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"FunctionSpec specifies the configuration of a Function.","type":"object","required":["package"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"package":{"description":"Package is the name of the package that is being requested.\nmust be a fully qualified image name, including the registry,\nrepository, and tag. for example, \"registry.example.com/repo/package:tag\".","type":"string","x-kubernetes-validations":[{"message":"must be a fully qualified image name, including the registry, repository, and tag or digest. For example, 'registry.example.com/repo/package:tag' or 'registry.example.com/repo/package[:tag]@sha256:1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef'.","rule":"self.matches('^[^\\\\.\\\\/]+(\\\\.[^\\\\.\\\\/]+)+(\\\\/[^\\\\/:@]+)+(:[^:@]+(@sha256.+)?|@sha256.+)$')"}]},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be used\nto fetch packages from private registries.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revisionActivationPolicy":{"description":"RevisionActivationPolicy specifies how the package controller should\nupdate from one revision to the next. Options are Automatic or Manual.\nDefault is Automatic.","type":"string"},"revisionHistoryLimit":{"description":"RevisionHistoryLimit dictates how the package controller cleans up old\ninactive package revisions.\nDefaults to 1. Can be disabled by explicitly setting to 0.","type":"integer","format":"int64"},"runtimeConfigRef":{"description":"RuntimeConfigRef references a RuntimeConfig resource that will be used\nto configure the package runtime.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the RuntimeConfig.","type":"string"}}},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"}}},"status":{"description":"FunctionStatus represents the observed state of a Function.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this package, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"currentIdentifier":{"description":"CurrentIdentifier is the most recent package source that was used to\nproduce a revision. The package manager uses this field to determine\nwhether to check for package updates for a given source when\npackagePullPolicy is set to IfNotPresent. Manually removing this field\nwill cause the package manager to check that the current revision is\ncorrect for the given package source.","type":"string"},"currentRevision":{"description":"CurrentRevision is the name of the current package revision. It will\nreflect the most up to date revision, whether it has been activated or\nnot.","type":"string"},"resolvedPackage":{"description":"ResolvedPackage is the name of the package that was used for version\nresolution. It may be different from spec.package if the package path was\nrewritten using an image config.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"Function","version":"v1"}]},"io.crossplane.pkg.v1.FunctionList":{"description":"FunctionList is a list of Function","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of functions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1.Function"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"FunctionList","version":"v1"}]},"io.crossplane.pkg.v1.FunctionRevision":{"description":"A FunctionRevision represents a revision of a Function. Crossplane\ncreates new revisions when there are changes to the Function.\n\nCrossplane creates and manages FunctionRevisions. Don't directly edit\nFunctionRevisions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"FunctionRevisionSpec specifies configuration for a FunctionRevision.","type":"object","required":["desiredState","image","revision"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"desiredState":{"description":"DesiredState of the PackageRevision. Can be either Active or Inactive.","type":"string"},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"image":{"description":"Package image used by install Pod to extract package contents.","type":"string"},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package. It is also\napplied to any images pulled for the package, such as a provider's\ncontroller image.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be\nused to fetch packages from private registries. They are also applied to\nany images pulled for the package, such as a provider's controller image.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revision":{"description":"Revision number. Indicates when the revision will be garbage collected\nbased on the parent's RevisionHistoryLimit.","type":"integer","format":"int64"},"runtimeConfigRef":{"description":"RuntimeConfigRef references a RuntimeConfig resource that will be used\nto configure the package runtime.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the RuntimeConfig.","type":"string"}}},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"},"tlsClientSecretName":{"description":"TLSClientSecretName is the name of the TLS Secret that stores client\ncertificates of the Provider.","type":"string"},"tlsServerSecretName":{"description":"TLSServerSecretName is the name of the TLS Secret that stores server\ncertificates of the Provider.","type":"string"}}},"status":{"description":"FunctionRevisionStatus represents the observed state of a FunctionRevision.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this revision, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"capabilities":{"description":"Capabilities of this package. Capabilities are opaque strings that\nmay be meaningful to package consumers.","type":"array","items":{"type":"string"}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"endpoint":{"description":"Endpoint is the gRPC endpoint where Crossplane will send\nRunFunctionRequests.","type":"string"},"foundDependencies":{"description":"Dependency information.","type":"integer","format":"int64"},"installedDependencies":{"type":"integer","format":"int64"},"invalidDependencies":{"type":"integer","format":"int64"},"objectRefs":{"description":"References to objects owned by PackageRevision.","type":"array","items":{"description":"A TypedReference refers to an object by Name, Kind, and APIVersion. It is\ncommonly used to reference cluster-scoped objects or objects where the\nnamespace is already known.","type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"uid":{"description":"UID of the referenced object.","type":"string"}}}},"resolvedImage":{"description":"ResolvedPackage is the name of the package that was installed. It may be\ndifferent from spec.image if the package path was rewritten using an\nimage config.","type":"string"},"tlsClientSecretName":{"description":"TLSClientSecretName is the name of the TLS Secret that stores client\ncertificates of the Provider.","type":"string"},"tlsServerSecretName":{"description":"TLSServerSecretName is the name of the TLS Secret that stores server\ncertificates of the Provider.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1"}]},"io.crossplane.pkg.v1.FunctionRevisionList":{"description":"FunctionRevisionList is a list of FunctionRevision","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of functionrevisions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1.FunctionRevision"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"FunctionRevisionList","version":"v1"}]},"io.crossplane.pkg.v1.Provider":{"description":"A Provider installs an OCI compatible Crossplane package, extending\nCrossplane with support for new kinds of managed resources.\n\nRead the Crossplane documentation for\n[more information about Providers](https://docs.crossplane.io/latest/packages/providers/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ProviderSpec specifies details about a request to install a provider to\nCrossplane.","type":"object","required":["package"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"package":{"description":"Package is the name of the package that is being requested.\nmust be a fully qualified image name, including the registry,\nrepository, and tag. for example, \"registry.example.com/repo/package:tag\".","type":"string","x-kubernetes-validations":[{"message":"must be a fully qualified image name, including the registry, repository, and tag or digest. For example, 'registry.example.com/repo/package:tag' or 'registry.example.com/repo/package[:tag]@sha256:1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef'.","rule":"self.matches('^[^\\\\.\\\\/]+(\\\\.[^\\\\.\\\\/]+)+(\\\\/[^\\\\/:@]+)+(:[^:@]+(@sha256.+)?|@sha256.+)$')"}]},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be used\nto fetch packages from private registries.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revisionActivationPolicy":{"description":"RevisionActivationPolicy specifies how the package controller should\nupdate from one revision to the next. Options are Automatic or Manual.\nDefault is Automatic.","type":"string"},"revisionHistoryLimit":{"description":"RevisionHistoryLimit dictates how the package controller cleans up old\ninactive package revisions.\nDefaults to 1. Can be disabled by explicitly setting to 0.","type":"integer","format":"int64"},"runtimeConfigRef":{"description":"RuntimeConfigRef references a RuntimeConfig resource that will be used\nto configure the package runtime.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the RuntimeConfig.","type":"string"}}},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"}}},"status":{"description":"ProviderStatus represents the observed state of a Provider.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this package, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"currentIdentifier":{"description":"CurrentIdentifier is the most recent package source that was used to\nproduce a revision. The package manager uses this field to determine\nwhether to check for package updates for a given source when\npackagePullPolicy is set to IfNotPresent. Manually removing this field\nwill cause the package manager to check that the current revision is\ncorrect for the given package source.","type":"string"},"currentRevision":{"description":"CurrentRevision is the name of the current package revision. It will\nreflect the most up to date revision, whether it has been activated or\nnot.","type":"string"},"resolvedPackage":{"description":"ResolvedPackage is the name of the package that was used for version\nresolution. It may be different from spec.package if the package path was\nrewritten using an image config.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"Provider","version":"v1"}]},"io.crossplane.pkg.v1.ProviderList":{"description":"ProviderList is a list of Provider","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of providers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1.Provider"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ProviderList","version":"v1"}]},"io.crossplane.pkg.v1.ProviderRevision":{"description":"A ProviderRevision represents a revision of a Provider. Crossplane\ncreates new revisions when there are changes to a Provider.\n\nCrossplane creates and manages ProviderRevisions. Don't directly edit\nProviderRevisions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ProviderRevisionSpec specifies configuration for a ProviderRevision.","type":"object","required":["desiredState","image","revision"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"desiredState":{"description":"DesiredState of the PackageRevision. Can be either Active or Inactive.","type":"string"},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"image":{"description":"Package image used by install Pod to extract package contents.","type":"string"},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package. It is also\napplied to any images pulled for the package, such as a provider's\ncontroller image.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be\nused to fetch packages from private registries. They are also applied to\nany images pulled for the package, such as a provider's controller image.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revision":{"description":"Revision number. Indicates when the revision will be garbage collected\nbased on the parent's RevisionHistoryLimit.","type":"integer","format":"int64"},"runtimeConfigRef":{"description":"RuntimeConfigRef references a RuntimeConfig resource that will be used\nto configure the package runtime.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the RuntimeConfig.","type":"string"}}},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"},"tlsClientSecretName":{"description":"TLSClientSecretName is the name of the TLS Secret that stores client\ncertificates of the Provider.","type":"string"},"tlsServerSecretName":{"description":"TLSServerSecretName is the name of the TLS Secret that stores server\ncertificates of the Provider.","type":"string"}}},"status":{"description":"ProviderRevisionStatus represents the observed state of a ProviderRevision.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this revision, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"capabilities":{"description":"Capabilities of this package. Capabilities are opaque strings that\nmay be meaningful to package consumers.","type":"array","items":{"type":"string"}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"foundDependencies":{"description":"Dependency information.","type":"integer","format":"int64"},"installedDependencies":{"type":"integer","format":"int64"},"invalidDependencies":{"type":"integer","format":"int64"},"objectRefs":{"description":"References to objects owned by PackageRevision.","type":"array","items":{"description":"A TypedReference refers to an object by Name, Kind, and APIVersion. It is\ncommonly used to reference cluster-scoped objects or objects where the\nnamespace is already known.","type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"uid":{"description":"UID of the referenced object.","type":"string"}}}},"resolvedImage":{"description":"ResolvedPackage is the name of the package that was installed. It may be\ndifferent from spec.image if the package path was rewritten using an\nimage config.","type":"string"},"tlsClientSecretName":{"description":"TLSClientSecretName is the name of the TLS Secret that stores client\ncertificates of the Provider.","type":"string"},"tlsServerSecretName":{"description":"TLSServerSecretName is the name of the TLS Secret that stores server\ncertificates of the Provider.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ProviderRevision","version":"v1"}]},"io.crossplane.pkg.v1.ProviderRevisionList":{"description":"ProviderRevisionList is a list of ProviderRevision","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of providerrevisions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1.ProviderRevision"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ProviderRevisionList","version":"v1"}]},"io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig":{"description":"The DeploymentRuntimeConfig provides settings for the Kubernetes Deployment\nof a Provider or composition function package.\n\nRead the Crossplane documentation for\n[more information about DeploymentRuntimeConfigs](https://docs.crossplane.io/latest/packages/providers/#runtime-configuration).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DeploymentRuntimeConfigSpec specifies the configuration for a packaged controller.\nValues provided will override package manager defaults. Labels and\nannotations are passed to both the controller Deployment and ServiceAccount.","type":"object","properties":{"deploymentTemplate":{"description":"DeploymentTemplate is the template for the Deployment object.","type":"object","properties":{"metadata":{"description":"Metadata contains the configurable metadata fields for the Deployment.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that\nmay be set by external tools to store and retrieve arbitrary metadata.\nThey are not queryable and should be preserved when modifying objects.\nMore info: http:https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. Labels will be merged with internal labels\nused by crossplane, and labels with a crossplane.io key might be\noverwritten.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name of the object.","type":"string"}}},"spec":{"description":"Spec contains the configurable spec fields for the Deployment object.","type":"object","required":["selector","template"],"properties":{"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready\nwithout any of its container crashing, for it to be considered available.\nDefaults to 0 (pod will be considered available as soon as it is ready)","type":"integer","format":"int32"},"paused":{"description":"Indicates that the deployment is paused.","type":"boolean"},"progressDeadlineSeconds":{"description":"The maximum time in seconds for a deployment to make progress before it\nis considered to be failed. The deployment controller will continue to\nprocess failed deployments and a condition with a ProgressDeadlineExceeded\nreason will be surfaced in the deployment status. Note that progress will\nnot be estimated during the time a deployment is paused. Defaults to 600s.","type":"integer","format":"int32"},"replicas":{"description":"Number of desired pods. This is a pointer to distinguish between explicit\nzero and not specified. Defaults to 1.","type":"integer","format":"int32"},"revisionHistoryLimit":{"description":"The number of old ReplicaSets to retain to allow rollback.\nThis is a pointer to distinguish between explicit zero and not specified.\nDefaults to 10.","type":"integer","format":"int32"},"selector":{"description":"Label selector for pods. Existing ReplicaSets whose pods are\nselected by this will be the ones affected by this deployment.\nIt must match the pod template's labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"strategy":{"description":"The deployment strategy to use to replace existing pods with new ones.","type":"object","properties":{"rollingUpdate":{"description":"Rolling update config params. Present only if DeploymentStrategyType =\nRollingUpdate.","type":"object","properties":{"maxSurge":{"description":"The maximum number of pods that can be scheduled above the desired number of\npods.\nValue can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%).\nThis can not be 0 if MaxUnavailable is 0.\nAbsolute number is calculated from percentage by rounding up.\nDefaults to 25%.\nExample: when this is set to 30%, the new ReplicaSet can be scaled up immediately when\nthe rolling update starts, such that the total number of old and new pods do not exceed\n130% of desired pods. Once old pods have been killed,\nnew ReplicaSet can be scaled up further, ensuring that total number of pods running\nat any time during the update is at most 130% of desired pods.","x-kubernetes-int-or-string":true},"maxUnavailable":{"description":"The maximum number of pods that can be unavailable during the update.\nValue can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%).\nAbsolute number is calculated from percentage by rounding down.\nThis can not be 0 if MaxSurge is 0.\nDefaults to 25%.\nExample: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods\nimmediately when the rolling update starts. Once new pods are ready, old ReplicaSet\ncan be scaled down further, followed by scaling up the new ReplicaSet, ensuring\nthat the total number of pods available at all times during the update is at\nleast 70% of desired pods.","x-kubernetes-int-or-string":true}}},"type":{"description":"Type of deployment. Can be \"Recreate\" or \"RollingUpdate\". Default is RollingUpdate.","type":"string"}}},"template":{"description":"Template describes the pods that will be created.\nThe only allowed template.spec.restartPolicy value is \"Always\".","type":"object","properties":{"metadata":{"description":"Standard object's metadata.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"Specification of the desired behavior of the pod.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"description":"Optional duration in seconds the pod may be active on the node relative to\nStartTime before the system will actively try to mark it failed and kill associated containers.\nValue must be a positive integer.","type":"integer","format":"int64"},"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.","type":"boolean"},"containers":{"description":"List of containers belonging to the pod.\nContainers cannot currently be added or removed.\nThere must be at least one container in a Pod.\nCannot be updated.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.\nThis field cannot be set on ephemeral containers.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis overrides the pod-level restart policy. When this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nAdditionally, setting the RestartPolicy as \"Always\" for the init container will\nhave the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. The rules are evaluated in\norder. Once a rule matches a container exit condition, the remaining\nrules are ignored. If no rule matches the container exit condition,\nthe Container-level restart policy determines the whether the container\nis restarted or not. Constraints on the rules:\n- At most 20 rules are allowed.\n- Rules can have the same action.\n- Identical rules are not forbidden in validations.\nWhen rules are specified, container MUST set RestartPolicy explicitly\neven it if matches the Pod's RestartPolicy.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod.\nDefaults to \"ClusterFirst\".\nValid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'.\nDNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.\nTo have DNS options set along with hostNetwork, you have to specify DNS policy\nexplicitly to 'ClusterFirstWithHostNet'.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"ephemeralContainers":{"description":"List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing\npod to perform user-initiated actions such as debugging. This list cannot be specified when\ncreating a pod, and it cannot be modified by updating the pod spec. In order to add an\nephemeral container to an existing pod, use the pod's ephemeralcontainers subresource.","type":"array","items":{"description":"An EphemeralContainer is a temporary container that you may add to an existing Pod for\nuser-initiated activities such as debugging. Ephemeral containers have no resource or\nscheduling guarantees, and they will not be restarted when they exit or when a Pod is\nremoved or restarted. The kubelet may evict a Pod if an ephemeral container causes the\nPod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing\nPod. Ephemeral containers may not be removed or restarted.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Lifecycle is not allowed for ephemeral containers.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the ephemeral container specified as a DNS_LABEL.\nThis name must be unique among all containers, init containers and ephemeral containers.","type":"string"},"ports":{"description":"Ports are not allowed for ephemeral containers.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources\nalready allocated to the pod.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"Restart policy for the container to manage the restart behavior of each\ncontainer within a pod.\nYou cannot set this field on ephemeral containers.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. You cannot set this field on\nephemeral containers.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"Optional: SecurityContext defines the security options the ephemeral container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"targetContainerName":{"description":"If set, the name of the container from PodSpec that this ephemeral container targets.\nThe ephemeral container will be run in the namespaces (IPC, PID, etc) of this container.\nIf not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not\nsupport namespace targeting then the result of setting this field is undefined.","type":"string"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map"},"hostIPC":{"description":"Use the host's ipc namespace.\nOptional: Default to false.","type":"boolean"},"hostNetwork":{"description":"Host networking requested for this pod. Use the host's network namespace.\nWhen using HostNetwork you should specify ports so the scheduler is aware.\nWhen `hostNetwork` is true, specified `hostPort` fields in port definitions must match `containerPort`,\nand unspecified `hostPort` fields in port definitions are defaulted to match `containerPort`.\nDefault to false.","type":"boolean"},"hostPID":{"description":"Use the host's pid namespace.\nOptional: Default to false.","type":"boolean"},"hostUsers":{"description":"Use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new userns is created for the pod. Setting false is useful for\nmitigating container breakout vulnerabilities even allowing users to run their\ncontainers as root without actually having root privileges on the host.\nThis field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.","type":"boolean"},"hostname":{"description":"Specifies the hostname of the Pod\nIf not specified, the pod's hostname will be set to a system-defined value.","type":"string"},"hostnameOverride":{"description":"HostnameOverride specifies an explicit override for the pod's hostname as perceived by the pod.\nThis field only specifies the pod's hostname and does not affect its DNS records.\nWhen this field is set to a non-empty string:\n- It takes precedence over the values set in `hostname` and `subdomain`.\n- The Pod's hostname will be set to this value.\n- `setHostnameAsFQDN` must be nil or set to false.\n- `hostNetwork` must be set to false.\n\nThis field must be a valid DNS subdomain as defined in RFC 1123 and contain at most 64 characters.\nRequires the HostnameOverride feature gate to be enabled.","type":"string"},"imagePullSecrets":{"description":"ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec.\nIf specified, these secrets will be passed to individual puller implementations for them to use.\nMore info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"initContainers":{"description":"List of initialization containers belonging to the pod.\nInit containers are executed in order prior to containers being started. If any\ninit container fails, the pod is considered to have failed and is handled according\nto its restartPolicy. The name for an init container or normal container must be\nunique among all containers.\nInit containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes.\nThe resourceRequirements of an init container are taken into account during scheduling\nby finding the highest request/limit for each resource type, and then using the max of\nthat value or the sum of the normal containers. Limits are applied to init containers\nin a similar fashion.\nInit containers cannot currently be added or removed.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.\nThis field cannot be set on ephemeral containers.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis overrides the pod-level restart policy. When this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nAdditionally, setting the RestartPolicy as \"Always\" for the init container will\nhave the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. The rules are evaluated in\norder. Once a rule matches a container exit condition, the remaining\nrules are ignored. If no rule matches the container exit condition,\nthe Container-level restart policy determines the whether the container\nis restarted or not. Constraints on the rules:\n- At most 20 rules are allowed.\n- Rules can have the same action.\n- Identical rules are not forbidden in validations.\nWhen rules are specified, container MUST set RestartPolicy explicitly\neven it if matches the Pod's RestartPolicy.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeName":{"description":"NodeName indicates in which node this pod is scheduled.\nIf empty, this pod is a candidate for scheduling by the scheduler defined in schedulerName.\nOnce this field is set, the kubelet for this node becomes responsible for the lifecycle of this pod.\nThis field should not be used to express a desire for the pod to be scheduled on a specific node.\nhttps://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#nodename","type":"string"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"description":"Specifies the OS of the containers in the pod.\nSome pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset:\n-securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset:\n- spec.hostPID\n- spec.hostIPC\n- spec.hostUsers\n- spec.resources\n- spec.securityContext.appArmorProfile\n- spec.securityContext.seLinuxOptions\n- spec.securityContext.seccompProfile\n- spec.securityContext.fsGroup\n- spec.securityContext.fsGroupChangePolicy\n- spec.securityContext.sysctls\n- spec.shareProcessNamespace\n- spec.securityContext.runAsUser\n- spec.securityContext.runAsGroup\n- spec.securityContext.supplementalGroups\n- spec.securityContext.supplementalGroupsPolicy\n- spec.containers[*].securityContext.appArmorProfile\n- spec.containers[*].securityContext.seLinuxOptions\n- spec.containers[*].securityContext.seccompProfile\n- spec.containers[*].securityContext.capabilities\n- spec.containers[*].securityContext.readOnlyRootFilesystem\n- spec.containers[*].securityContext.privileged\n- spec.containers[*].securityContext.allowPrivilegeEscalation\n- spec.containers[*].securityContext.procMount\n- spec.containers[*].securityContext.runAsUser\n- spec.containers[*].securityContext.runAsGroup","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the operating system. The currently supported values are linux and windows.\nAdditional value may be defined in future and can be one of:\nhttps://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration\nClients should expect to handle additional values and treat unrecognized values in this field as os: null","type":"string"}}},"overhead":{"description":"Overhead represents the resource overhead associated with running a pod for a given RuntimeClass.\nThis field will be autopopulated at admission time by the RuntimeClass admission controller. If\nthe RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests.\nThe RuntimeClass admission controller will reject Pod create requests which have the overhead already\nset. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value\ndefined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"description":"PreemptionPolicy is the Policy for preempting pods with lower priority.\nOne of Never, PreemptLowerPriority.\nDefaults to PreemptLowerPriority if unset.","type":"string"},"priority":{"description":"The priority value. Various system components use this field to find the\npriority of the pod. When Priority Admission Controller is enabled, it\nprevents users from setting this field. The admission controller populates\nthis field from PriorityClassName.\nThe higher the value, the higher the priority.","type":"integer","format":"int32"},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"readinessGates":{"description":"If specified, all readiness gates will be evaluated for pod readiness.\nA pod is ready when all its containers are ready AND\nall conditions specified in the readiness gates have status equal to \"True\"\nMore info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates","type":"array","items":{"description":"PodReadinessGate contains the reference to a pod condition","type":"object","required":["conditionType"],"properties":{"conditionType":{"description":"ConditionType refers to a condition in the pod's condition list with matching type.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resourceClaims":{"description":"ResourceClaims defines which ResourceClaims must be allocated\nand reserved before the Pod is allowed to start. The resources\nwill be made available to those containers which consume them\nby name.\n\nThis is a stable field but requires that the\nDynamicResourceAllocation feature gate is enabled.\n\nThis field is immutable.","type":"array","items":{"description":"PodResourceClaim references exactly one ResourceClaim, either directly\nor by naming a ResourceClaimTemplate which is then turned into a ResourceClaim\nfor the pod.\n\nIt adds a name to it that uniquely identifies the ResourceClaim inside the Pod.\nContainers that need access to the ResourceClaim reference it with this name.","type":"object","required":["name"],"properties":{"name":{"description":"Name uniquely identifies this resource claim inside the pod.\nThis must be a DNS_LABEL.","type":"string"},"resourceClaimName":{"description":"ResourceClaimName is the name of a ResourceClaim object in the same\nnamespace as this pod.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"},"resourceClaimTemplateName":{"description":"ResourceClaimTemplateName is the name of a ResourceClaimTemplate\nobject in the same namespace as this pod.\n\nThe template will be used to create a new ResourceClaim, which will\nbe bound to this pod. When this pod is deleted, the ResourceClaim\nwill also be deleted. The pod name and resource name, along with a\ngenerated component, will be used to form a unique name for the\nResourceClaim, which will be recorded in pod.status.resourceClaimStatuses.\n\nThis field is immutable and no changes will be made to the\ncorresponding ResourceClaim by the control plane after creating the\nResourceClaim.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"resources":{"description":"Resources is the total amount of CPU and Memory resources required by all\ncontainers in the pod. It supports specifying Requests and Limits for\n\"cpu\", \"memory\" and \"hugepages-\" resource names only. ResourceClaims are not supported.\n\nThis field enables fine-grained control over resource allocation for the\nentire pod, allowing resource sharing among containers in a pod.\n\nThis is an alpha field and requires enabling the PodLevelResources feature\ngate.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"Restart policy for all containers within the pod.\nOne of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted.\nDefault to Always.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used\nto run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run.\nIf unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class","type":"string"},"schedulerName":{"description":"If specified, the pod will be dispatched by specified scheduler.\nIf not specified, the pod will be dispatched by default scheduler.","type":"string"},"schedulingGates":{"description":"SchedulingGates is an opaque list of values that if specified will block scheduling the pod.\nIf schedulingGates is not empty, the pod will stay in the SchedulingGated state and the\nscheduler will not attempt to schedule the pod.\n\nSchedulingGates can only be set at pod creation time, and be removed only afterwards.","type":"array","items":{"description":"PodSchedulingGate is associated to a Pod to guard its scheduling.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the scheduling gate.\nEach scheduling gate must have a unique name field.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"serviceAccount":{"description":"DeprecatedServiceAccount is a deprecated alias for ServiceAccountName.\nDeprecated: Use serviceAccountName instead.","type":"string"},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run this pod.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"string"},"setHostnameAsFQDN":{"description":"If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default).\nIn Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname).\nIn Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Services\\\\Tcpip\\\\Parameters to FQDN.\nIf a pod does not have FQDN, this has no effect.\nDefault to false.","type":"boolean"},"shareProcessNamespace":{"description":"Share a single process namespace between all of the containers in a pod.\nWhen this is set containers will be able to view and signal processes from other containers\nin the same pod, and the first process in each container will not be assigned PID 1.\nHostPID and ShareProcessNamespace cannot both be set.\nOptional: Default to false.","type":"boolean"},"subdomain":{"description":"If specified, the fully qualified Pod hostname will be \"<hostname>.<subdomain>.<pod namespace>.svc.<cluster domain>\".\nIf not specified, the pod will not have a domainname at all.","type":"string"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nIf this value is nil, the default grace period will be used instead.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nDefaults to 30 seconds.","type":"integer","format":"int64"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints describes how a group of pods ought to spread across topology\ndomains. Scheduler will schedule pods in a way which abides by the constraints.\nAll topologySpreadConstraints are ANDed.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nDeprecated: AWSElasticBlockStore is deprecated. All operations for the in-tree\nawsElasticBlockStore type are redirected to the ebs.csi.aws.com CSI driver.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.\nDeprecated: AzureDisk is deprecated. All operations for the in-tree azureDisk type\nare redirected to the disk.csi.azure.com CSI driver.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.\nDeprecated: AzureFile is deprecated. All operations for the in-tree azureFile type\nare redirected to the file.csi.azure.com CSI driver.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime.\nDeprecated: CephFS is deprecated and the in-tree cephfs type is no longer supported.","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nDeprecated: Cinder is deprecated. All operations for the in-tree cinder type\nare redirected to the cinder.csi.openstack.org CSI driver.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nUsers are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string or nil value indicates that no\nVolumeAttributesClass will be applied to the claim. If the claim enters an Infeasible error state,\nthis field can be reset to its previous value (including nil) to cancel the modification.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.\nDeprecated: FlexVolume is deprecated. Consider using a CSIDriver instead.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running.\nDeprecated: Flocker is deprecated and the in-tree flocker type is no longer supported.","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nDeprecated: GCEPersistentDisk is deprecated. All operations for the in-tree\ngcePersistentDisk type are redirected to the pd.csi.storage.gke.io CSI driver.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDeprecated: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nDeprecated: Glusterfs is deprecated and the in-tree glusterfs type is no longer supported.","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath) before 1.33.\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes/#iscsi","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine.\nDeprecated: PhotonPersistentDisk is deprecated and the in-tree photonPersistentDisk type is no longer supported.","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine.\nDeprecated: PortworxVolume is deprecated. All operations for the in-tree portworxVolume type\nare redirected to the pxd.portworx.com CSI driver when the CSIMigrationPortworx feature-gate\nis on.","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podCertificate":{"description":"Projects an auto-rotating credential bundle (private key and certificate\nchain) that the pod can use either as a TLS client or server.\n\nKubelet generates a private key and uses it to send a\nPodCertificateRequest to the named signer.  Once the signer approves the\nrequest and issues a certificate chain, Kubelet writes the key and\ncertificate chain to the pod filesystem.  The pod does not start until\ncertificates have been issued for each podCertificate projected volume\nsource in its spec.\n\nKubelet will begin trying to rotate the certificate at the time indicated\nby the signer using the PodCertificateRequest.Status.BeginRefreshAt\ntimestamp.\n\nKubelet can write a single file, indicated by the credentialBundlePath\nfield, or separate files, indicated by the keyPath and\ncertificateChainPath fields.\n\nThe credential bundle is a single file in PEM format.  The first PEM\nentry is the private key (in PKCS#8 format), and the remaining PEM\nentries are the certificate chain issued by the signer (typically,\nsigners will return their certificate chain in leaf-to-root order).\n\nPrefer using the credential bundle format, since your application code\ncan read it atomically.  If you use keyPath and certificateChainPath,\nyour application must make two separate file reads. If these coincide\nwith a certificate rotation, it is possible that the private key and leaf\ncertificate you read may not correspond to each other.  Your application\nwill need to check for this condition, and re-read until they are\nconsistent.\n\nThe named signer controls chooses the format of the certificate it\nissues; consult the signer implementation's documentation to learn how to\nuse the certificates it issues.","type":"object","required":["keyType","signerName"],"properties":{"certificateChainPath":{"description":"Write the certificate chain at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"credentialBundlePath":{"description":"Write the credential bundle at this path in the projected volume.\n\nThe credential bundle is a single file that contains multiple PEM blocks.\nThe first PEM block is a PRIVATE KEY block, containing a PKCS#8 private\nkey.\n\nThe remaining blocks are CERTIFICATE blocks, containing the issued\ncertificate chain from the signer (leaf and any intermediates).\n\nUsing credentialBundlePath lets your Pod's application code make a single\natomic read that retrieves a consistent key and certificate chain.  If you\nproject them to separate files, your application code will need to\nadditionally check that the leaf certificate was issued to the key.","type":"string"},"keyPath":{"description":"Write the key at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"keyType":{"description":"The type of keypair Kubelet will generate for the pod.\n\nValid values are \"RSA3072\", \"RSA4096\", \"ECDSAP256\", \"ECDSAP384\",\n\"ECDSAP521\", and \"ED25519\".","type":"string"},"maxExpirationSeconds":{"description":"maxExpirationSeconds is the maximum lifetime permitted for the\ncertificate.\n\nKubelet copies this value verbatim into the PodCertificateRequests it\ngenerates for this projection.\n\nIf omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver\nwill reject values shorter than 3600 (1 hour).  The maximum allowable\nvalue is 7862400 (91 days).\n\nThe signer implementation is then free to issue a certificate with any\nlifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600\nseconds (1 hour).  This constraint is enforced by kube-apiserver.\n`kubernetes.io` signers will never issue certificates with a lifetime\nlonger than 24 hours.","type":"integer","format":"int32"},"signerName":{"description":"Kubelet's generated CSRs will be addressed to this signer.","type":"string"},"userAnnotations":{"description":"userAnnotations allow pod authors to pass additional information to\nthe signer implementation.  Kubernetes does not restrict or validate this\nmetadata in any way.\n\nThese values are copied verbatim into the `spec.unverifiedUserAnnotations` field of\nthe PodCertificateRequest objects that Kubelet creates.\n\nEntries are subject to the same validation as object metadata annotations,\nwith the addition that all keys must be domain-prefixed. No restrictions\nare placed on values, except an overall size limitation on the entire field.\n\nSigners should document the keys and values they support. Signers should\ndeny requests that contain keys they do not recognize.","type":"object","additionalProperties":{"type":"string"}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime.\nDeprecated: Quobyte is deprecated and the in-tree quobyte type is no longer supported.","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nDeprecated: RBD is deprecated and the in-tree rbd type is no longer supported.","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.\nDeprecated: ScaleIO is deprecated and the in-tree scaleIO type is no longer supported.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.\nDeprecated: StorageOS is deprecated and the in-tree storageos type is no longer supported.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine.\nDeprecated: VsphereVolume is deprecated. All operations for the in-tree vsphereVolume type\nare redirected to the csi.vsphere.vmware.com CSI driver.","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"workloadRef":{"description":"WorkloadRef provides a reference to the Workload object that this Pod belongs to.\nThis field is used by the scheduler to identify the PodGroup and apply the\ncorrect group scheduling policies. The Workload object referenced\nby this field may not exist at the time the Pod is created.\nThis field is immutable, but a Workload object with the same name\nmay be recreated with different policies. Doing this during pod scheduling\nmay result in the placement not conforming to the expected policies.","type":"object","required":["name","podGroup"],"properties":{"name":{"description":"Name defines the name of the Workload object this Pod belongs to.\nWorkload must be in the same namespace as the Pod.\nIf it doesn't match any existing Workload, the Pod will remain unschedulable\nuntil a Workload object is created and observed by the kube-scheduler.\nIt must be a DNS subdomain.","type":"string"},"podGroup":{"description":"PodGroup is the name of the PodGroup within the Workload that this Pod\nbelongs to. If it doesn't match any existing PodGroup within the Workload,\nthe Pod will remain unschedulable until the Workload object is recreated\nand observed by the kube-scheduler. It must be a DNS label.","type":"string"},"podGroupReplicaKey":{"description":"PodGroupReplicaKey specifies the replica key of the PodGroup to which this\nPod belongs. It is used to distinguish pods belonging to different replicas\nof the same pod group. The pod group policy is applied separately to each replica.\nWhen set, it must be a DNS label.","type":"string"}}}}}}}}}}},"serviceAccountTemplate":{"description":"ServiceAccountTemplate is the template for the ServiceAccount object.","type":"object","properties":{"metadata":{"description":"Metadata contains the configurable metadata fields for the ServiceAccount.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that\nmay be set by external tools to store and retrieve arbitrary metadata.\nThey are not queryable and should be preserved when modifying objects.\nMore info: http:https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. Labels will be merged with internal labels\nused by crossplane, and labels with a crossplane.io key might be\noverwritten.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name of the object.","type":"string"}}}}},"serviceTemplate":{"description":"ServiceTemplate is the template for the Service object.","type":"object","properties":{"metadata":{"description":"Metadata contains the configurable metadata fields for the Service.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that\nmay be set by external tools to store and retrieve arbitrary metadata.\nThey are not queryable and should be preserved when modifying objects.\nMore info: http:https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. Labels will be merged with internal labels\nused by crossplane, and labels with a crossplane.io key might be\noverwritten.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"Name is the name of the object.","type":"string"}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfig","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.DeploymentRuntimeConfigList":{"description":"DeploymentRuntimeConfigList is a list of DeploymentRuntimeConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of deploymentruntimeconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.DeploymentRuntimeConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"DeploymentRuntimeConfigList","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.Function":{"description":"A Function installs an OCI compatible Crossplane package, extending\nCrossplane with support for a new kind of composition function.\n\nRead the Crossplane documentation for\n[more information about Functions](https://docs.crossplane.io/latest/packages/functions/).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"FunctionSpec specifies the configuration of a Function.","type":"object","required":["package"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"package":{"description":"Package is the name of the package that is being requested.\nmust be a fully qualified image name, including the registry,\nrepository, and tag. for example, \"registry.example.com/repo/package:tag\".","type":"string","x-kubernetes-validations":[{"message":"must be a fully qualified image name, including the registry, repository, and tag or digest. For example, 'registry.example.com/repo/package:tag' or 'registry.example.com/repo/package[:tag]@sha256:1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef'.","rule":"self.matches('^[^\\\\.\\\\/]+(\\\\.[^\\\\.\\\\/]+)+(\\\\/[^\\\\/:@]+)+(:[^:@]+(@sha256.+)?|@sha256.+)$')"}]},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be used\nto fetch packages from private registries.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revisionActivationPolicy":{"description":"RevisionActivationPolicy specifies how the package controller should\nupdate from one revision to the next. Options are Automatic or Manual.\nDefault is Automatic.","type":"string"},"revisionHistoryLimit":{"description":"RevisionHistoryLimit dictates how the package controller cleans up old\ninactive package revisions.\nDefaults to 1. Can be disabled by explicitly setting to 0.","type":"integer","format":"int64"},"runtimeConfigRef":{"description":"RuntimeConfigRef references a RuntimeConfig resource that will be used\nto configure the package runtime.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the RuntimeConfig.","type":"string"}}},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"}}},"status":{"description":"FunctionStatus represents the observed state of a Function.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this package, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"currentIdentifier":{"description":"CurrentIdentifier is the most recent package source that was used to\nproduce a revision. The package manager uses this field to determine\nwhether to check for package updates for a given source when\npackagePullPolicy is set to IfNotPresent. Manually removing this field\nwill cause the package manager to check that the current revision is\ncorrect for the given package source.","type":"string"},"currentRevision":{"description":"CurrentRevision is the name of the current package revision. It will\nreflect the most up to date revision, whether it has been activated or\nnot.","type":"string"},"resolvedPackage":{"description":"ResolvedPackage is the name of the package that was used for version\nresolution. It may be different from spec.package if the package path was\nrewritten using an image config.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"Function","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.FunctionList":{"description":"FunctionList is a list of Function","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of functions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Function"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"FunctionList","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.FunctionRevision":{"description":"A FunctionRevision represents a revision of a Function. Crossplane\ncreates new revisions when there are changes to the Function.\n\nCrossplane creates and manages FunctionRevisions. Don't directly edit\nFunctionRevisions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"FunctionRevisionSpec specifies configuration for a FunctionRevision.","type":"object","required":["desiredState","image","revision"],"properties":{"commonLabels":{"description":"Map of string keys and values that can be used to organize and categorize\n(scope and select) objects. May match selectors of replication controllers\nand services.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"}},"desiredState":{"description":"DesiredState of the PackageRevision. Can be either Active or Inactive.","type":"string"},"ignoreCrossplaneConstraints":{"description":"IgnoreCrossplaneConstraints indicates to the package manager whether to\nhonor Crossplane version constrains specified by the package.\nDefault is false.","type":"boolean"},"image":{"description":"Package image used by install Pod to extract package contents.","type":"string"},"packagePullPolicy":{"description":"PackagePullPolicy defines the pull policy for the package. It is also\napplied to any images pulled for the package, such as a provider's\ncontroller image.\nDefault is IfNotPresent.","type":"string"},"packagePullSecrets":{"description":"PackagePullSecrets are named secrets in the same namespace that can be\nused to fetch packages from private registries. They are also applied to\nany images pulled for the package, such as a provider's controller image.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"revision":{"description":"Revision number. Indicates when the revision will be garbage collected\nbased on the parent's RevisionHistoryLimit.","type":"integer","format":"int64"},"runtimeConfigRef":{"description":"RuntimeConfigRef references a RuntimeConfig resource that will be used\nto configure the package runtime.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the RuntimeConfig.","type":"string"}}},"skipDependencyResolution":{"description":"SkipDependencyResolution indicates to the package manager whether to skip\nresolving dependencies for a package. Setting this value to true may have\nunintended consequences.\nDefault is false.","type":"boolean"},"tlsClientSecretName":{"description":"TLSClientSecretName is the name of the TLS Secret that stores client\ncertificates of the Provider.","type":"string"},"tlsServerSecretName":{"description":"TLSServerSecretName is the name of the TLS Secret that stores server\ncertificates of the Provider.","type":"string"}}},"status":{"description":"FunctionRevisionStatus represents the observed state of a FunctionRevision.","type":"object","properties":{"appliedImageConfigRefs":{"description":"AppliedImageConfigRefs records any image configs that were applied in\nreconciling this revision, and what they were used for.","type":"array","items":{"description":"ImageConfigRef is a reference to an image config that indicates how the\nreferenced image config was used by the package manager.","type":"object","required":["name","reason"],"properties":{"name":{"description":"Name is the name of the image config.","type":"string"},"reason":{"description":"Reason indicates what the image config was used for.","type":"string"}}}},"capabilities":{"description":"Capabilities of this package. Capabilities are opaque strings that\nmay be meaningful to package consumers.","type":"array","items":{"type":"string"}},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"endpoint":{"description":"Endpoint is the gRPC endpoint where Crossplane will send\nRunFunctionRequests.","type":"string"},"foundDependencies":{"description":"Dependency information.","type":"integer","format":"int64"},"installedDependencies":{"type":"integer","format":"int64"},"invalidDependencies":{"type":"integer","format":"int64"},"objectRefs":{"description":"References to objects owned by PackageRevision.","type":"array","items":{"description":"A TypedReference refers to an object by Name, Kind, and APIVersion. It is\ncommonly used to reference cluster-scoped objects or objects where the\nnamespace is already known.","type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"description":"APIVersion of the referenced object.","type":"string"},"kind":{"description":"Kind of the referenced object.","type":"string"},"name":{"description":"Name of the referenced object.","type":"string"},"uid":{"description":"UID of the referenced object.","type":"string"}}}},"resolvedImage":{"description":"ResolvedPackage is the name of the package that was installed. It may be\ndifferent from spec.image if the package path was rewritten using an\nimage config.","type":"string"},"tlsClientSecretName":{"description":"TLSClientSecretName is the name of the TLS Secret that stores client\ncertificates of the Provider.","type":"string"},"tlsServerSecretName":{"description":"TLSServerSecretName is the name of the TLS Secret that stores server\ncertificates of the Provider.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"FunctionRevision","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.FunctionRevisionList":{"description":"FunctionRevisionList is a list of FunctionRevision","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of functionrevisions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.FunctionRevision"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"FunctionRevisionList","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.ImageConfig":{"description":"The ImageConfig resource is used to configure settings for package images.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ImageConfigSpec contains the configuration for matching images.","type":"object","required":["matchImages"],"properties":{"matchImages":{"description":"MatchImages is a list of image matching rules. This ImageConfig will\nmatch an image if any one of these rules is satisfied. In the case where\nmultiple ImageConfigs match an image for a given purpose the one with the\nmost specific match will be used. If multiple rules of equal specificity\nmatch an arbitrary one will be selected.","type":"array","items":{"description":"ImageMatch defines a rule for matching image.","type":"object","required":["prefix"],"properties":{"prefix":{"description":"Prefix is the prefix that should be matched. When multiple prefix rules\nmatch an image path, the longest one takes precedence.","type":"string"},"type":{"description":"Type is the type of match.","type":"string","enum":["Prefix"]}}},"x-kubernetes-validations":[{"message":"matchImages should have at least one element.","rule":"size(self) > 0"}]},"registry":{"description":"Registry is the configuration for the registry.","type":"object","properties":{"authentication":{"description":"Authentication is the authentication information for the registry.","type":"object","required":["pullSecretRef"],"properties":{"pullSecretRef":{"description":"PullSecretRef is a reference to a secret that contains the credentials for\nthe registry.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"rewriteImage":{"description":"RewriteImage defines how a matched image's path should be rewritten.","type":"object","required":["prefix"],"properties":{"prefix":{"description":"Prefix is the prefix that will replace the portion of the image's path\nmatched by the prefix in the ImageMatch. If multiple prefixes matched,\nthe longest one will be replaced.","type":"string"}}},"runtime":{"description":"Runtime allows configuration of runtime options for the image.","type":"object","properties":{"configRef":{"description":"ConfigReference references a RuntimeConfig resource that will be\nused to configure the package runtime.","type":"object","required":["name"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.","type":"string"},"name":{"description":"Name of the RuntimeConfig.","type":"string"}}}}},"verification":{"description":"Verification contains the configuration for verifying the image.","type":"object","required":["provider"],"properties":{"cosign":{"description":"Cosign is the configuration for verifying the image using cosign.","type":"object","required":["authorities"],"properties":{"authorities":{"description":"Authorities defines the rules for discovering and validating signatures.","type":"array","items":{"description":"CosignAuthority defines the rules for discovering and validating signatures.","type":"object","required":["name"],"properties":{"attestations":{"description":"Attestations is a list of individual attestations for this authority,\nonce the signature for this authority has been verified.","type":"array","items":{"description":"Attestation defines the type of attestation to validate and optionally\napply a policy decision to it. Authority block is used to verify the\nspecified attestation types, and if Policy is specified, then it's applied\nonly after the validation of the Attestation signature has been verified.","type":"object","required":["name","predicateType"],"properties":{"name":{"description":"Name of the attestation.","type":"string"},"predicateType":{"description":"PredicateType defines which predicate type to verify. Matches cosign\nverify-attestation options.","type":"string"}}}},"key":{"description":"Key defines the type of key to validate the image.","type":"object","required":["hashAlgorithm","secretRef"],"properties":{"hashAlgorithm":{"description":"HashAlgorithm always defaults to sha256 if the algorithm hasn't been explicitly set","type":"string"},"secretRef":{"description":"SecretRef sets a reference to a secret with the key.","type":"object","required":["key","name"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the secret.","type":"string"}}}}},"keyless":{"description":"Keyless sets the configuration to verify the authority against a Fulcio\ninstance.","type":"object","required":["identities"],"properties":{"identities":{"description":"Identities sets a list of identities.","type":"array","items":{"description":"Identity may contain the issuer and/or the subject found in the transparency\nlog.\nIssuer/Subject uses a strict match, while IssuerRegExp and SubjectRegExp\napply a regexp for matching.","type":"object","properties":{"issuer":{"description":"Issuer defines the issuer for this identity.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp specifies a regular expression to match the issuer for this identity.\nThis has precedence over the Issuer field.","type":"string"},"subject":{"description":"Subject defines the subject for this identity.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp specifies a regular expression to match the subject for this identity.\nThis has precedence over the Subject field.","type":"string"}}}},"insecureIgnoreSCT":{"description":"InsecureIgnoreSCT omits verifying if a certificate contains an embedded SCT","type":"boolean"}}},"name":{"description":"Name is the name for this authority.","type":"string"}}}}}},"provider":{"description":"Provider is the provider that should be used to verify the image.","type":"string","enum":["Cosign"]}}}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ImageConfig","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.ImageConfigList":{"description":"ImageConfigList is a list of ImageConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imageconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.ImageConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"ImageConfigList","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.Lock":{"description":"Lock is the CRD type that tracks package dependencies.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"packages":{"type":"array","items":{"description":"LockPackage is a package that is in the lock.","type":"object","required":["dependencies","name","source","version"],"properties":{"apiVersion":{"description":"APIVersion of the package.","type":"string"},"dependencies":{"description":"Dependencies are the list of dependencies of this package. The order of\nthe dependencies will dictate the order in which they are resolved.","type":"array","items":{"description":"A Dependency is a dependency of a package in the lock.","type":"object","required":["constraints","package"],"properties":{"apiVersion":{"description":"APIVersion of the package.","type":"string"},"constraints":{"description":"Constraints is a valid semver range or a digest, which will be used to select a valid\ndependency version.","type":"string"},"kind":{"description":"Kind of the package (not the kind of the package revision).","type":"string"},"package":{"description":"Package is the OCI image name without a tag or digest.","type":"string"},"type":{"description":"Type is the type of package. Can be either Configuration or Provider.\n\nDeprecated: Specify an apiVersion and kind instead.","type":"string","enum":["Configuration","Provider","Function"]}}}},"kind":{"description":"Kind of the package (not the kind of the package revision).","type":"string"},"name":{"description":"Name corresponds to the name of the package revision for this package.","type":"string"},"source":{"description":"Source is the OCI image name without a tag or digest.","type":"string"},"type":{"description":"Type is the type of package.\n\nDeprecated: Specify an apiVersion and kind instead.","type":"string","enum":["Configuration","Provider","Function"]},"version":{"description":"Version is the tag or digest of the OCI image.","type":"string"}}}},"status":{"description":"Status of the Lock.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"Lock","version":"v1beta1"}]},"io.crossplane.pkg.v1beta1.LockList":{"description":"LockList is a list of Lock","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of locks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.pkg.v1beta1.Lock"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pkg.crossplane.io","kind":"LockList","version":"v1beta1"}]},"io.crossplane.protection.v1beta1.ClusterUsage":{"description":"A ClusterUsage defines a deletion blocking relationship between two\nresources.\n\nUsages prevent accidental deletion of a single resource or deletion of\nresources with dependent resources.\n\nRead the Crossplane documentation for\n[more information about usages](https://docs.crossplane.io/latest/managed-resources/usages/).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterUsageSpec defines the desired state of a ClusterUsage.","type":"object","required":["of"],"properties":{"by":{"description":"By is the resource that is \"using the other resource\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"of":{"description":"Of is the resource that is \"being used\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"reason":{"description":"Reason is the reason for blocking deletion of the resource.","type":"string"},"replayDeletion":{"description":"ReplayDeletion will trigger a deletion on the used resource during the deletion of the usage itself, if it was attempted to be deleted at least once.","type":"boolean"}},"x-kubernetes-validations":[{"message":"either \"spec.by\" or \"spec.reason\" must be specified.","rule":"has(self.by) || has(self.reason)"}]},"status":{"description":"UsageStatus defines the observed state of Usage.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"protection.crossplane.io","kind":"ClusterUsage","version":"v1beta1"}]},"io.crossplane.protection.v1beta1.ClusterUsageList":{"description":"ClusterUsageList is a list of ClusterUsage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterusages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.ClusterUsage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"protection.crossplane.io","kind":"ClusterUsageList","version":"v1beta1"}]},"io.crossplane.protection.v1beta1.Usage":{"description":"A Usage defines a deletion blocking relationship between two resources.\n\nUsages prevent accidental deletion of a single resource or deletion of\nresources with dependent resources.\n\nRead the Crossplane documentation for\n[more information about Usages](https://docs.crossplane.io/latest/managed-resources/usages/).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"UsageSpec defines the desired state of Usage.","type":"object","required":["of"],"properties":{"by":{"description":"By is the resource that is \"using the other resource\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"of":{"description":"Of is the resource that is \"being used\".","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resourceRef":{"description":"Reference to the resource.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the referent.","type":"string"},"namespace":{"description":"Namespace of the referent.","type":"string"}}},"resourceSelector":{"description":"Selector to the resource.\nThis field will be ignored if ResourceRef is set.","type":"object","properties":{"matchControllerRef":{"description":"MatchControllerRef ensures an object with the same controller reference\nas the selecting object is selected.","type":"boolean"},"matchLabels":{"description":"MatchLabels ensures an object with matching labels is selected.","type":"object","additionalProperties":{"type":"string"}},"namespace":{"description":"Namespace ensures an object in the supplied namespace is selected.\nOmit namespace to only match resources in the Usage's namespace.","type":"string"}}}},"x-kubernetes-validations":[{"message":"either a resource reference or a resource selector should be set.","rule":"has(self.resourceRef) || has(self.resourceSelector)"}]},"reason":{"description":"Reason is the reason for blocking deletion of the resource.","type":"string"},"replayDeletion":{"description":"ReplayDeletion will trigger a deletion on the used resource during the deletion of the usage itself, if it was attempted to be deleted at least once.","type":"boolean"}},"x-kubernetes-validations":[{"message":"either \"spec.by\" or \"spec.reason\" must be specified.","rule":"has(self.by) || has(self.reason)"},{"message":"cross-namespace \"spec.of\" is not allowed without \"spec.by\" resource.","rule":"has(self.by) || (!has(self.of.resourceRef) || !has(self.of.resourceRef.__namespace__)) && (!has(self.of.resourceSelector) || !has(self.of.resourceSelector.__namespace__))"}]},"status":{"description":"UsageStatus defines the observed state of Usage.","type":"object","properties":{"conditions":{"description":"Conditions of the resource.","type":"array","items":{"description":"A Condition that may apply to a resource.","type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the last time this condition transitioned from one\nstatus to another.","type":"string","format":"date-time"},"message":{"description":"A Message containing details about this condition's last transition from\none status to another, if any.","type":"string"},"observedGeneration":{"description":"ObservedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"A Reason for this condition's last transition from one status to another.","type":"string"},"status":{"description":"Status of this condition; is it currently True, False, or Unknown?","type":"string"},"type":{"description":"Type of this condition. At most one of each condition type may apply to\na resource at any point in time.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"protection.crossplane.io","kind":"Usage","version":"v1beta1"}]},"io.crossplane.protection.v1beta1.UsageList":{"description":"UsageList is a list of Usage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of usages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.crossplane.protection.v1beta1.Usage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"protection.crossplane.io","kind":"UsageList","version":"v1beta1"}]},"io.k8s.api.admissionregistration.v1.AuditAnnotation":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of a ValidatingAdmissionPolicy must be unique. The key must be a qualified name ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the ValidatingAdmissionPolicy to construct an audit annotation key: \"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy and the same audit annotation key, the annotation key will be identical. In this case, the first annotation written with the key will be included in the audit event and all subsequent annotations with the same key will be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to produce an audit annotation value. The expression must evaluate to either a string or null value. If the expression evaluates to a string, the audit annotation is included with the string value. If the expression evaluates to null or empty string the audit annotation will be omitted. The valueExpression may be no longer than 5kb in length. If the result of the valueExpression is more than 10kb in length, it will be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an API request, then the valueExpression will be evaluated for each binding. All unique values produced by the valueExpressions will be joined together in a comma-separated list.\n\nRequired.","type":"string"}}},"io.k8s.api.admissionregistration.v1.ExpressionWarning":{"description":"ExpressionWarning is a warning information that targets a specific expression.","type":"object","required":["fieldRef","warning"],"properties":{"fieldRef":{"description":"The path to the field that refers the expression. For example, the reference to the expression of the first item of validations is \"spec.validations[0].expression\"","type":"string"},"warning":{"description":"The content of type checking information in a human-readable form. Each line of the warning contains the type that the expression is checked against, followed by the type check error from the compiler.","type":"string"}}},"io.k8s.api.admissionregistration.v1.MatchCondition":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["name","expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool. CEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests. 'oldObject' - The existing object. The value is null for CREATE requests. 'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest). 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions, as well as providing an identifier for logging purposes. A good name should be descriptive of the associated expression. Name must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an optional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"io.k8s.api.admissionregistration.v1.MatchResources":{"description":"MatchResources decides whether to run the admission control policy on an object based on whether it meets the match criteria. The exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about. The exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.NamedRuleWithOperations"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests. Allowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"\n\nPossible enum values:\n - `\"Equivalent\"` means requests should be sent to the webhook if they modify a resource listed in rules via another API group or version.\n - `\"Exact\"` means requests should only be sent to the webhook if they exactly match a given rule.","type":"string","enum":["Equivalent","Exact"]},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not associated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose namespace is associated with the \"environment\" of \"prod\" or \"staging\"; you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the cel validation, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches. The policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.NamedRuleWithOperations"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1.MutatingWebhook":{"description":"MutatingWebhook describes an admission webhook and the resources and operations it applies to.","type":"object","required":["name","clientConfig","sideEffects","admissionReviewVersions"],"properties":{"admissionReviewVersions":{"description":"AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"clientConfig":{"description":"ClientConfig defines how to communicate with the hook. Required","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.WebhookClientConfig"},"failurePolicy":{"description":"FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail.\n\nPossible enum values:\n - `\"Fail\"` means that an error calling the webhook causes the admission to fail.\n - `\"Ignore\"` means that an error calling the webhook is ignored.","type":"string","enum":["Fail","Ignore"]},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be sent to this webhook. Match conditions filter requests that have already been matched by the rules, namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. There are a maximum of 64 match conditions allowed.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the webhook is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the webhook is called.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the error is ignored and the webhook is skipped","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MatchCondition"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"matchPolicy":{"description":"matchPolicy defines how the \"rules\" list is used to match incoming requests. Allowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.\n\nDefaults to \"Equivalent\"\n\nPossible enum values:\n - `\"Equivalent\"` means requests should be sent to the webhook if they modify a resource listed in rules via another API group or version.\n - `\"Exact\"` means requests should only be sent to the webhook if they exactly match a given rule.","type":"string","enum":["Equivalent","Exact"]},"name":{"description":"The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where \"imagepolicy\" is the name of the webhook, and kubernetes.io is the name of the organization. Required.","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.\n\nFor example, to run the webhook on any objects whose namespace is not associated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the webhook on any objects whose namespace is associated with the \"environment\" of \"prod\" or \"staging\"; you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"objectSelector":{"description":"ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"reinvocationPolicy":{"description":"reinvocationPolicy indicates whether this webhook should be called multiple times as part of a single admission evaluation. Allowed values are \"Never\" and \"IfNeeded\".\n\nNever: the webhook will not be called more than once in a single admission evaluation.\n\nIfNeeded: the webhook will be called at least one additional time as part of the admission evaluation if the object being admitted is modified by other admission plugins after the initial webhook call. Webhooks that specify this option *must* be idempotent, able to process objects they previously admitted. Note: * the number of additional invocations is not guaranteed to be exactly one. * if additional invocations result in further modifications to the object, webhooks are not guaranteed to be invoked again. * webhooks that use this option may be reordered to minimize the number of additional invocations. * to validate an object after all mutations are guaranteed complete, use a validating admission webhook instead.\n\nDefaults to \"Never\".\n\nPossible enum values:\n - `\"IfNeeded\"` indicates that the webhook may be called at least one additional time as part of the admission evaluation if the object being admitted is modified by other admission plugins after the initial webhook call.\n - `\"Never\"` indicates that the webhook must not be called more than once in a single admission evaluation.","type":"string","enum":["IfNeeded","Never"]},"rules":{"description":"Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.RuleWithOperations"},"x-kubernetes-list-type":"atomic"},"sideEffects":{"description":"SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some.\n\nPossible enum values:\n - `\"None\"` means that calling the webhook will have no side effects.\n - `\"NoneOnDryRun\"` means that calling the webhook will possibly have side effects, but if the request being reviewed has the dry-run attribute, the side effects will be suppressed.\n - `\"Some\"` means that calling the webhook will possibly have side effects. If a request with the dry-run attribute would trigger a call to this webhook, the request will instead fail.\n - `\"Unknown\"` means that no information is known about the side effects of calling the webhook. If a request with the dry-run attribute would trigger a call to this webhook, the request will instead fail.","type":"string","enum":["None","NoneOnDryRun","Some","Unknown"]},"timeoutSeconds":{"description":"TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds.","type":"integer","format":"int32"}}},"io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration":{"description":"MutatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and may change the object.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"webhooks":{"description":"Webhooks is a list of webhooks and the affected resources and operations.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhook"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfiguration","version":"v1"}]},"io.k8s.api.admissionregistration.v1.MutatingWebhookConfigurationList":{"description":"MutatingWebhookConfigurationList is a list of MutatingWebhookConfiguration.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of MutatingWebhookConfiguration.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MutatingWebhookConfiguration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"MutatingWebhookConfigurationList","version":"v1"}]},"io.k8s.api.admissionregistration.v1.NamedRuleWithOperations":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * for all of those operations and any future admission operations that are added. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string","enum":["*","CONNECT","CREATE","DELETE","UPDATE"]},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example: 'pods' means pods. 'pods/log' means the log subresource of pods. '*' means all resources, but not subresources. 'pods/*' means all subresources of pods. '*/scale' means all scale subresources. '*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not overlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule. Valid values are \"Cluster\", \"Namespaced\", and \"*\" \"Cluster\" means that only cluster-scoped resources will match this rule. Namespace API objects are cluster-scoped. \"Namespaced\" means that only namespaced resources will match this rule. \"*\" means that there are no scope restrictions. Subresources match the scope of their parent resource. Default is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1.ParamKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to. In format of \"group/version\". Required.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to. Required.","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1.ParamRef":{"description":"ParamRef describes how to locate the params to be used as input to expressions of rules applied by a policy binding.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are mutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured by setting the `name` field, leaving `selector` blank, and setting namespace if `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting the search for params to a specific namespace. Applies to both `name` and `selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped `paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this field results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being evaluated for admission will be used when this field is left unset. Take care that if this is left empty the binding must not match any cluster-scoped resources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource exists, and name or selector is valid, but there are no parameters matched by the binding. If the value is set to `Allow`, then no matched parameters will be treated as successful validation by the binding. If set to `Deny`, then no matched parameters will be subject to the `failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels. Supply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions and the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are mutually exclusive properties. If one is set, the other must be unset.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1.RuleWithOperations":{"description":"RuleWithOperations is a tuple of Operations and Resources. It is recommended to make sure that all the tuple expansions are valid.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * for all of those operations and any future admission operations that are added. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string","enum":["*","CONNECT","CREATE","DELETE","UPDATE"]},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example: 'pods' means pods. 'pods/log' means the log subresource of pods. '*' means all resources, but not subresources. 'pods/*' means all subresources of pods. '*/scale' means all scale subresources. '*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not overlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule. Valid values are \"Cluster\", \"Namespaced\", and \"*\" \"Cluster\" means that only cluster-scoped resources will match this rule. Namespace API objects are cluster-scoped. \"Namespaced\" means that only namespaced resources will match this rule. \"*\" means that there are no scope restrictions. Subresources match the scope of their parent resource. Default is \"*\".","type":"string"}}},"io.k8s.api.admissionregistration.v1.ServiceReference":{"description":"ServiceReference holds a reference to Service.legacy.k8s.io","type":"object","required":["namespace","name"],"properties":{"name":{"description":"`name` is the name of the service. Required","type":"string"},"namespace":{"description":"`namespace` is the namespace of the service. Required","type":"string"},"path":{"description":"`path` is an optional URL path which will be sent in any request to this service.","type":"string"},"port":{"description":"If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive).","type":"integer","format":"int32"}}},"io.k8s.api.admissionregistration.v1.TypeChecking":{"description":"TypeChecking contains results of type checking the expressions in the ValidatingAdmissionPolicy","type":"object","properties":{"expressionWarnings":{"description":"The type checking warnings for each expression.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ExpressionWarning"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy":{"description":"ValidatingAdmissionPolicy describes the definition of an admission validation policy that accepts or rejects an object without changing it.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the ValidatingAdmissionPolicy.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicySpec"},"status":{"description":"The status of the ValidatingAdmissionPolicy, including warnings that are useful to determine if the policy behaves in the expected way. Populated by the system. Read-only.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyStatus"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1"}]},"io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding":{"description":"ValidatingAdmissionPolicyBinding binds the ValidatingAdmissionPolicy with paramerized resources. ValidatingAdmissionPolicyBinding and parameter CRDs together define how cluster administrators configure policies for clusters.\n\nFor a given admission request, each binding will cause its policy to be evaluated N times, where N is 1 for policies/bindings that don't use params, otherwise N is the number of parameters selected by the binding.\n\nThe CEL expressions of a policy must have a computed CEL cost below the maximum CEL budget. Each evaluation of the policy is given an independent CEL cost budget. Adding/removing policies, bindings, or params can not affect whether a given (policy, binding, param) combination is within its own CEL budget.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the ValidatingAdmissionPolicyBinding.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBindingSpec"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1"}]},"io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBindingList":{"description":"ValidatingAdmissionPolicyBindingList is a list of ValidatingAdmissionPolicyBinding.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of PolicyBinding.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBindingList","version":"v1"}]},"io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyBindingSpec":{"description":"ValidatingAdmissionPolicyBindingSpec is the specification of the ValidatingAdmissionPolicyBinding.","type":"object","properties":{"matchResources":{"description":"MatchResources declares what resources match this binding and will be validated by it. Note that this is intersected with the policy's matchConstraints, so only requests that are matched by the policy can be selected by this. If this is unset, all resources matched by the policy are validated by this binding When resourceRules is unset, it does not constrain resource matching. If a resource is matched by the other fields of this object, it will be validated. Note that this is differs from ValidatingAdmissionPolicy matchConstraints, where resourceRules are required.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MatchResources"},"paramRef":{"description":"paramRef specifies the parameter resource used to configure the admission control policy. It should point to a resource of the type specified in ParamKind of the bound ValidatingAdmissionPolicy. If the policy specifies a ParamKind and the resource referred to by ParamRef does not exist, this binding is considered mis-configured and the FailurePolicy of the ValidatingAdmissionPolicy applied. If the policy does not specify a ParamKind then this field is ignored, and the rules are evaluated without a param.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ParamRef"},"policyName":{"description":"PolicyName references a ValidatingAdmissionPolicy name which the ValidatingAdmissionPolicyBinding binds to. If the referenced resource does not exist, this binding is considered invalid and will be ignored Required.","type":"string"},"validationActions":{"description":"validationActions declares how Validations of the referenced ValidatingAdmissionPolicy are enforced. If a validation evaluates to false it is always enforced according to these actions.\n\nFailures defined by the ValidatingAdmissionPolicy's FailurePolicy are enforced according to these actions only if the FailurePolicy is set to Fail, otherwise the failures are ignored. This includes compilation errors, runtime errors and misconfigurations of the policy.\n\nvalidationActions is declared as a set of action values. Order does not matter. validationActions may not contain duplicates of the same action.\n\nThe supported actions values are:\n\n\"Deny\" specifies that a validation failure results in a denied request.\n\n\"Warn\" specifies that a validation failure is reported to the request client in HTTP Warning headers, with a warning code of 299. Warnings can be sent both for allowed or denied admission responses.\n\n\"Audit\" specifies that a validation failure is included in the published audit event for the request. The audit event will contain a `validation.policy.admission.k8s.io/validation_failure` audit annotation with a value containing the details of the validation failures, formatted as a JSON list of objects, each with the following fields: - message: The validation failure message string - policy: The resource name of the ValidatingAdmissionPolicy - binding: The resource name of the ValidatingAdmissionPolicyBinding - expressionIndex: The index of the failed validations in the ValidatingAdmissionPolicy - validationActions: The enforcement actions enacted for the validation failure Example audit annotation: `\"validation.policy.admission.k8s.io/validation_failure\": \"[{\"message\": \"Invalid value\", {\"policy\": \"policy.example.com\", {\"binding\": \"policybinding.example.com\", {\"expressionIndex\": \"1\", {\"validationActions\": [\"Audit\"]}]\"`\n\nClients should expect to handle additional values by ignoring any values not recognized.\n\n\"Deny\" and \"Warn\" may not be used together since this combination needlessly duplicates the validation failure both in the API response body and the HTTP warning headers.\n\nRequired.","type":"array","items":{"type":"string","enum":["Audit","Deny","Warn"]},"x-kubernetes-list-type":"set"}}},"io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyList":{"description":"ValidatingAdmissionPolicyList is a list of ValidatingAdmissionPolicy.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ValidatingAdmissionPolicy.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyList","version":"v1"}]},"io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicySpec":{"description":"ValidatingAdmissionPolicySpec is the specification of the desired behavior of the AdmissionPolicy.","type":"object","properties":{"auditAnnotations":{"description":"auditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request. validations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is required.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.AuditAnnotation"},"x-kubernetes-list-type":"atomic"},"failurePolicy":{"description":"failurePolicy defines how to handle failures for the admission policy. Failures can occur from CEL expression parse errors, type check errors, runtime errors and invalid or mis-configured policy definitions or bindings.\n\nA policy is invalid if spec.paramKind refers to a non-existent Kind. A binding is invalid if spec.paramRef.name refers to a non-existent resource.\n\nfailurePolicy does not define how validations that evaluate to false are handled.\n\nWhen failurePolicy is set to Fail, ValidatingAdmissionPolicyBinding validationActions define how failures are enforced.\n\nAllowed values are Ignore or Fail. Defaults to Fail.\n\nPossible enum values:\n - `\"Fail\"` means that an error calling the webhook causes the admission to fail.\n - `\"Ignore\"` means that an error calling the webhook is ignored.","type":"string","enum":["Fail","Ignore"]},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated. Match conditions filter requests that have already been matched by the rules, namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. There are a maximum of 64 match conditions allowed.\n\nIf a parameter object is provided, it can be accessed via the `params` handle in the same manner as validation expressions.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the policy is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the policy is evaluated.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the policy is skipped","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MatchCondition"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to validate. The AdmissionPolicy cares about a request if it matches _all_ Constraints. However, in order to prevent clusters from being put into an unstable state that cannot be recovered from via the API ValidatingAdmissionPolicy cannot match ValidatingAdmissionPolicy and ValidatingAdmissionPolicyBinding. Required.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MatchResources"},"paramKind":{"description":"ParamKind specifies the kind of resources used to parameterize this policy. If absent, there are no parameters for this policy and the param CEL variable will not be provided to validation expressions. If ParamKind refers to a non-existent kind, this policy definition is mis-configured and the FailurePolicy is applied. If paramKind is specified but paramRef is unset in ValidatingAdmissionPolicyBinding, the params variable will be null.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ParamKind"},"validations":{"description":"Validations contain CEL expressions which is used to apply the validation. Validations and AuditAnnotations may not both be empty; a minimum of one Validations or AuditAnnotations is required.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.Validation"},"x-kubernetes-list-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions. Each variable is defined as a named CEL expression. The variables defined here will be available under `variables` in other expressions of the policy except MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after. Thus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.Variable"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.admissionregistration.v1.ValidatingAdmissionPolicyStatus":{"description":"ValidatingAdmissionPolicyStatus represents the status of an admission validation policy.","type":"object","properties":{"conditions":{"description":"The conditions represent the latest available observations of a policy's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Condition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"observedGeneration":{"description":"The generation observed by the controller.","type":"integer","format":"int64"},"typeChecking":{"description":"The results of type checking for each expression. Presence of this field indicates the completion of the type checking.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.TypeChecking"}}},"io.k8s.api.admissionregistration.v1.ValidatingWebhook":{"description":"ValidatingWebhook describes an admission webhook and the resources and operations it applies to.","type":"object","required":["name","clientConfig","sideEffects","admissionReviewVersions"],"properties":{"admissionReviewVersions":{"description":"AdmissionReviewVersions is an ordered list of preferred `AdmissionReview` versions the Webhook expects. API server will try to use first version in the list which it supports. If none of the versions specified in this list supported by API server, validation will fail for this object. If a persisted webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail and be subject to the failure policy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"clientConfig":{"description":"ClientConfig defines how to communicate with the hook. Required","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.WebhookClientConfig"},"failurePolicy":{"description":"FailurePolicy defines how unrecognized errors from the admission endpoint are handled - allowed values are Ignore or Fail. Defaults to Fail.\n\nPossible enum values:\n - `\"Fail\"` means that an error calling the webhook causes the admission to fail.\n - `\"Ignore\"` means that an error calling the webhook is ignored.","type":"string","enum":["Fail","Ignore"]},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be sent to this webhook. Match conditions filter requests that have already been matched by the rules, namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. There are a maximum of 64 match conditions allowed.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the webhook is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the webhook is called.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the error is ignored and the webhook is skipped","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.MatchCondition"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"matchPolicy":{"description":"matchPolicy defines how the \"rules\" list is used to match incoming requests. Allowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the webhook.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the webhook.\n\nDefaults to \"Equivalent\"\n\nPossible enum values:\n - `\"Equivalent\"` means requests should be sent to the webhook if they modify a resource listed in rules via another API group or version.\n - `\"Exact\"` means requests should only be sent to the webhook if they exactly match a given rule.","type":"string","enum":["Equivalent","Exact"]},"name":{"description":"The name of the admission webhook. Name should be fully qualified, e.g., imagepolicy.kubernetes.io, where \"imagepolicy\" is the name of the webhook, and kubernetes.io is the name of the organization. Required.","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the webhook.\n\nFor example, to run the webhook on any objects whose namespace is not associated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the webhook on any objects whose namespace is associated with the \"environment\" of \"prod\" or \"staging\"; you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee https://kubernetes.io/docs/concepts/overview/working-with-objects/labels for more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"objectSelector":{"description":"ObjectSelector decides whether to run the webhook based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the webhook, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"rules":{"description":"Rules describes what operations on what resources/subresources the webhook cares about. The webhook cares about an operation if it matches _any_ Rule. However, in order to prevent ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks from putting the cluster in a state which cannot be recovered from without completely disabling the plugin, ValidatingAdmissionWebhooks and MutatingAdmissionWebhooks are never called on admission requests for ValidatingWebhookConfiguration and MutatingWebhookConfiguration objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.RuleWithOperations"},"x-kubernetes-list-type":"atomic"},"sideEffects":{"description":"SideEffects states whether this webhook has side effects. Acceptable values are: None, NoneOnDryRun (webhooks created via v1beta1 may also specify Some or Unknown). Webhooks with side effects MUST implement a reconciliation system, since a request may be rejected by a future step in the admission chain and the side effects therefore need to be undone. Requests with the dryRun attribute will be auto-rejected if they match a webhook with sideEffects == Unknown or Some.\n\nPossible enum values:\n - `\"None\"` means that calling the webhook will have no side effects.\n - `\"NoneOnDryRun\"` means that calling the webhook will possibly have side effects, but if the request being reviewed has the dry-run attribute, the side effects will be suppressed.\n - `\"Some\"` means that calling the webhook will possibly have side effects. If a request with the dry-run attribute would trigger a call to this webhook, the request will instead fail.\n - `\"Unknown\"` means that no information is known about the side effects of calling the webhook. If a request with the dry-run attribute would trigger a call to this webhook, the request will instead fail.","type":"string","enum":["None","NoneOnDryRun","Some","Unknown"]},"timeoutSeconds":{"description":"TimeoutSeconds specifies the timeout for this webhook. After the timeout passes, the webhook call will be ignored or the API call will fail based on the failure policy. The timeout value must be between 1 and 30 seconds. Default to 10 seconds.","type":"integer","format":"int32"}}},"io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration":{"description":"ValidatingWebhookConfiguration describes the configuration of and admission webhook that accept or reject and object without changing it.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"webhooks":{"description":"Webhooks is a list of webhooks and the affected resources and operations.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhook"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfiguration","version":"v1"}]},"io.k8s.api.admissionregistration.v1.ValidatingWebhookConfigurationList":{"description":"ValidatingWebhookConfigurationList is a list of ValidatingWebhookConfiguration.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ValidatingWebhookConfiguration.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ValidatingWebhookConfiguration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingWebhookConfigurationList","version":"v1"}]},"io.k8s.api.admissionregistration.v1.Validation":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec CEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests. - 'oldObject' - The existing object. The value is null for CREATE requests. - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - '__' escapes to '__underscores__' - '.' escapes to '__dot__' - '-' escapes to '__dash__' - '/' escapes to '__slash__' - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains line breaks. The message must not contain line breaks. If unset, the message is \"failed rule: {Rule}\". e.g. \"must be a URL with the host matching spec.host\" If the Expression contains line breaks. Message is required. The message must not contain line breaks. If unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails. Since messageExpression is used as a failure message, it must evaluate to a string. If both message and messageExpression are present on a validation, then messageExpression will be used if validation fails. If messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced as if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string that contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and the fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged. messageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'. Example: \"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed. If this is the first validation in the list to fail, this reason, as well as the corresponding HTTP response code, are used in the HTTP response to the client. The currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\". If not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}},"io.k8s.api.admissionregistration.v1.Variable":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["name","expression"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable. The CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables. The variable can be accessed in other expressions through `variables` For example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1.WebhookClientConfig":{"description":"WebhookClientConfig contains the information to make a TLS connection with the webhook","type":"object","properties":{"caBundle":{"description":"`caBundle` is a PEM encoded CA bundle which will be used to validate the webhook's server certificate. If unspecified, system trust roots on the apiserver are used.","type":"string","format":"byte"},"service":{"description":"`service` is a reference to the service for this webhook. Either `service` or `url` must be specified.\n\nIf the webhook is running within the cluster, then you should use `service`.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1.ServiceReference"},"url":{"description":"`url` gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.\n\nThe `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.\n\nPlease note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.\n\nThe scheme must be \"https\"; the URL must begin with \"https://\".\n\nA path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.\n\nAttempting to use a user or basic auth e.g. \"user:password@\" is not allowed. Fragments (\"#...\") and query parameters (\"?...\") are not allowed, either.","type":"string"}}},"io.k8s.api.admissionregistration.v1beta1.AuditAnnotation":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of a ValidatingAdmissionPolicy must be unique. The key must be a qualified name ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the ValidatingAdmissionPolicy to construct an audit annotation key: \"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy and the same audit annotation key, the annotation key will be identical. In this case, the first annotation written with the key will be included in the audit event and all subsequent annotations with the same key will be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to produce an audit annotation value. The expression must evaluate to either a string or null value. If the expression evaluates to a string, the audit annotation is included with the string value. If the expression evaluates to null or empty string the audit annotation will be omitted. The valueExpression may be no longer than 5kb in length. If the result of the valueExpression is more than 10kb in length, it will be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an API request, then the valueExpression will be evaluated for each binding. All unique values produced by the valueExpressions will be joined together in a comma-separated list.\n\nRequired.","type":"string"}}},"io.k8s.api.admissionregistration.v1beta1.ExpressionWarning":{"description":"ExpressionWarning is a warning information that targets a specific expression.","type":"object","required":["fieldRef","warning"],"properties":{"fieldRef":{"description":"The path to the field that refers the expression. For example, the reference to the expression of the first item of validations is \"spec.validations[0].expression\"","type":"string"},"warning":{"description":"The content of type checking information in a human-readable form. Each line of the warning contains the type that the expression is checked against, followed by the type check error from the compiler.","type":"string"}}},"io.k8s.api.admissionregistration.v1beta1.MatchCondition":{"description":"MatchCondition represents a condition which must be fulfilled for a request to be sent to a webhook.","type":"object","required":["name","expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool. CEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests. 'oldObject' - The existing object. The value is null for CREATE requests. 'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest). 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions, as well as providing an identifier for logging purposes. A good name should be descriptive of the associated expression. Name must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or '123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an optional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"io.k8s.api.admissionregistration.v1beta1.MatchResources":{"description":"MatchResources decides whether to run the admission control policy on an object based on whether it meets the match criteria. The exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about. The exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.NamedRuleWithOperations"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests. Allowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, but \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version. For example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1, and \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`, a request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based on whether the namespace for that object matches the selector. If the object itself is a namespace, the matching is performed on object.metadata.labels. If the object is another cluster scoped resource, it never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not associated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose namespace is associated with the \"environment\" of \"prod\" or \"staging\"; you will set the selector as follows: \"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the object has matching labels. objectSelector is evaluated against both the oldObject and newObject that would be sent to the cel validation, and is considered to match if either object matches the selector. A null object (oldObject in the case of create, or newObject in the case of delete) or an object that cannot have labels (like a DeploymentRollback or a PodProxyOptions object) is not considered to match. Use the object selector only if the webhook is opt-in, because end users may skip the admission webhook by setting the labels. Default to the empty LabelSelector, which matches everything.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches. The policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.NamedRuleWithOperations"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1beta1.NamedRuleWithOperations":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or * for all of those operations and any future admission operations that are added. If '*' is present, the length of the slice must be one. Required.","type":"array","items":{"type":"string","enum":["*","CONNECT","CREATE","DELETE","UPDATE"]},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example: 'pods' means pods. 'pods/log' means the log subresource of pods. '*' means all resources, but not subresources. 'pods/*' means all subresources of pods. '*/scale' means all scale subresources. '*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not overlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule. Valid values are \"Cluster\", \"Namespaced\", and \"*\" \"Cluster\" means that only cluster-scoped resources will match this rule. Namespace API objects are cluster-scoped. \"Namespaced\" means that only namespaced resources will match this rule. \"*\" means that there are no scope restrictions. Subresources match the scope of their parent resource. Default is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1beta1.ParamKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to. In format of \"group/version\". Required.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to. Required.","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1beta1.ParamRef":{"description":"ParamRef describes how to locate the params to be used as input to expressions of rules applied by a policy binding.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are mutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured by setting the `name` field, leaving `selector` blank, and setting namespace if `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting the search for params to a specific namespace. Applies to both `name` and `selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped `paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this field results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being evaluated for admission will be used when this field is left unset. Take care that if this is left empty the binding must not match any cluster-scoped resources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource exists, and name or selector is valid, but there are no parameters matched by the binding. If the value is set to `Allow`, then no matched parameters will be treated as successful validation by the binding. If set to `Deny`, then no matched parameters will be subject to the `failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels. Supply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions and the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are mutually exclusive properties. If one is set, the other must be unset.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.admissionregistration.v1beta1.TypeChecking":{"description":"TypeChecking contains results of type checking the expressions in the ValidatingAdmissionPolicy","type":"object","properties":{"expressionWarnings":{"description":"The type checking warnings for each expression.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ExpressionWarning"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy":{"description":"ValidatingAdmissionPolicy describes the definition of an admission validation policy that accepts or rejects an object without changing it.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the ValidatingAdmissionPolicy.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicySpec"},"status":{"description":"The status of the ValidatingAdmissionPolicy, including warnings that are useful to determine if the policy behaves in the expected way. Populated by the system. Read-only.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyStatus"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicy","version":"v1beta1"}]},"io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding":{"description":"ValidatingAdmissionPolicyBinding binds the ValidatingAdmissionPolicy with paramerized resources. ValidatingAdmissionPolicyBinding and parameter CRDs together define how cluster administrators configure policies for clusters.\n\nFor a given admission request, each binding will cause its policy to be evaluated N times, where N is 1 for policies/bindings that don't use params, otherwise N is the number of parameters selected by the binding.\n\nThe CEL expressions of a policy must have a computed CEL cost below the maximum CEL budget. Each evaluation of the policy is given an independent CEL cost budget. Adding/removing policies, bindings, or params can not affect whether a given (policy, binding, param) combination is within its own CEL budget.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the ValidatingAdmissionPolicyBinding.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBindingSpec"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBinding","version":"v1beta1"}]},"io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBindingList":{"description":"ValidatingAdmissionPolicyBindingList is a list of ValidatingAdmissionPolicyBinding.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of PolicyBinding.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyBindingList","version":"v1beta1"}]},"io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyBindingSpec":{"description":"ValidatingAdmissionPolicyBindingSpec is the specification of the ValidatingAdmissionPolicyBinding.","type":"object","properties":{"matchResources":{"description":"MatchResources declares what resources match this binding and will be validated by it. Note that this is intersected with the policy's matchConstraints, so only requests that are matched by the policy can be selected by this. If this is unset, all resources matched by the policy are validated by this binding When resourceRules is unset, it does not constrain resource matching. If a resource is matched by the other fields of this object, it will be validated. Note that this is differs from ValidatingAdmissionPolicy matchConstraints, where resourceRules are required.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.MatchResources"},"paramRef":{"description":"paramRef specifies the parameter resource used to configure the admission control policy. It should point to a resource of the type specified in ParamKind of the bound ValidatingAdmissionPolicy. If the policy specifies a ParamKind and the resource referred to by ParamRef does not exist, this binding is considered mis-configured and the FailurePolicy of the ValidatingAdmissionPolicy applied. If the policy does not specify a ParamKind then this field is ignored, and the rules are evaluated without a param.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ParamRef"},"policyName":{"description":"PolicyName references a ValidatingAdmissionPolicy name which the ValidatingAdmissionPolicyBinding binds to. If the referenced resource does not exist, this binding is considered invalid and will be ignored Required.","type":"string"},"validationActions":{"description":"validationActions declares how Validations of the referenced ValidatingAdmissionPolicy are enforced. If a validation evaluates to false it is always enforced according to these actions.\n\nFailures defined by the ValidatingAdmissionPolicy's FailurePolicy are enforced according to these actions only if the FailurePolicy is set to Fail, otherwise the failures are ignored. This includes compilation errors, runtime errors and misconfigurations of the policy.\n\nvalidationActions is declared as a set of action values. Order does not matter. validationActions may not contain duplicates of the same action.\n\nThe supported actions values are:\n\n\"Deny\" specifies that a validation failure results in a denied request.\n\n\"Warn\" specifies that a validation failure is reported to the request client in HTTP Warning headers, with a warning code of 299. Warnings can be sent both for allowed or denied admission responses.\n\n\"Audit\" specifies that a validation failure is included in the published audit event for the request. The audit event will contain a `validation.policy.admission.k8s.io/validation_failure` audit annotation with a value containing the details of the validation failures, formatted as a JSON list of objects, each with the following fields: - message: The validation failure message string - policy: The resource name of the ValidatingAdmissionPolicy - binding: The resource name of the ValidatingAdmissionPolicyBinding - expressionIndex: The index of the failed validations in the ValidatingAdmissionPolicy - validationActions: The enforcement actions enacted for the validation failure Example audit annotation: `\"validation.policy.admission.k8s.io/validation_failure\": \"[{\"message\": \"Invalid value\", {\"policy\": \"policy.example.com\", {\"binding\": \"policybinding.example.com\", {\"expressionIndex\": \"1\", {\"validationActions\": [\"Audit\"]}]\"`\n\nClients should expect to handle additional values by ignoring any values not recognized.\n\n\"Deny\" and \"Warn\" may not be used together since this combination needlessly duplicates the validation failure both in the API response body and the HTTP warning headers.\n\nRequired.","type":"array","items":{"type":"string","enum":["Audit","Deny","Warn"]},"x-kubernetes-list-type":"set"}}},"io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyList":{"description":"ValidatingAdmissionPolicyList is a list of ValidatingAdmissionPolicy.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ValidatingAdmissionPolicy.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"admissionregistration.k8s.io","kind":"ValidatingAdmissionPolicyList","version":"v1beta1"}]},"io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicySpec":{"description":"ValidatingAdmissionPolicySpec is the specification of the desired behavior of the AdmissionPolicy.","type":"object","properties":{"auditAnnotations":{"description":"auditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request. validations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is required.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.AuditAnnotation"},"x-kubernetes-list-type":"atomic"},"failurePolicy":{"description":"failurePolicy defines how to handle failures for the admission policy. Failures can occur from CEL expression parse errors, type check errors, runtime errors and invalid or mis-configured policy definitions or bindings.\n\nA policy is invalid if spec.paramKind refers to a non-existent Kind. A binding is invalid if spec.paramRef.name refers to a non-existent resource.\n\nfailurePolicy does not define how validations that evaluate to false are handled.\n\nWhen failurePolicy is set to Fail, ValidatingAdmissionPolicyBinding validationActions define how failures are enforced.\n\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string"},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated. Match conditions filter requests that have already been matched by the rules, namespaceSelector, and objectSelector. An empty list of matchConditions matches all requests. There are a maximum of 64 match conditions allowed.\n\nIf a parameter object is provided, it can be accessed via the `params` handle in the same manner as validation expressions.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the policy is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the policy is evaluated.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the policy is skipped","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.MatchCondition"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to validate. The AdmissionPolicy cares about a request if it matches _all_ Constraints. However, in order to prevent clusters from being put into an unstable state that cannot be recovered from via the API ValidatingAdmissionPolicy cannot match ValidatingAdmissionPolicy and ValidatingAdmissionPolicyBinding. Required.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.MatchResources"},"paramKind":{"description":"ParamKind specifies the kind of resources used to parameterize this policy. If absent, there are no parameters for this policy and the param CEL variable will not be provided to validation expressions. If ParamKind refers to a non-existent kind, this policy definition is mis-configured and the FailurePolicy is applied. If paramKind is specified but paramRef is unset in ValidatingAdmissionPolicyBinding, the params variable will be null.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.ParamKind"},"validations":{"description":"Validations contain CEL expressions which is used to apply the validation. Validations and AuditAnnotations may not both be empty; a minimum of one Validations or AuditAnnotations is required.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.Validation"},"x-kubernetes-list-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions. Each variable is defined as a named CEL expression. The variables defined here will be available under `variables` in other expressions of the policy except MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after. Thus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.Variable"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.admissionregistration.v1beta1.ValidatingAdmissionPolicyStatus":{"description":"ValidatingAdmissionPolicyStatus represents the status of an admission validation policy.","type":"object","properties":{"conditions":{"description":"The conditions represent the latest available observations of a policy's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Condition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"observedGeneration":{"description":"The generation observed by the controller.","type":"integer","format":"int64"},"typeChecking":{"description":"The results of type checking for each expression. Presence of this field indicates the completion of the type checking.","$ref":"#/definitions/io.k8s.api.admissionregistration.v1beta1.TypeChecking"}}},"io.k8s.api.admissionregistration.v1beta1.Validation":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec CEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests. - 'oldObject' - The existing object. The value is null for CREATE requests. - 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)). - 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind. - 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources. - 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - '__' escapes to '__underscores__' - '.' escapes to '__dot__' - '-' escapes to '__dash__' - '/' escapes to '__slash__' - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains line breaks. The message must not contain line breaks. If unset, the message is \"failed rule: {Rule}\". e.g. \"must be a URL with the host matching spec.host\" If the Expression contains line breaks. Message is required. The message must not contain line breaks. If unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails. Since messageExpression is used as a failure message, it must evaluate to a string. If both message and messageExpression are present on a validation, then messageExpression will be used if validation fails. If messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced as if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string that contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and the fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged. messageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'. Example: \"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed. If this is the first validation in the list to fail, this reason, as well as the corresponding HTTP response code, are used in the HTTP response to the client. The currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\". If not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}},"io.k8s.api.admissionregistration.v1beta1.Variable":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["name","expression"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable. The CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables. The variable can be accessed in other expressions through `variables` For example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.apps.v1.ControllerRevision":{"description":"ControllerRevision implements an immutable snapshot of state data. Clients are responsible for serializing and deserializing the objects that contain their internal state. Once a ControllerRevision has been successfully created, it can not be updated. The API Server will fail validation of all requests that attempt to mutate the Data field. ControllerRevisions may, however, be deleted. Note that, due to its use by both the DaemonSet and StatefulSet controllers for update and rollback, this object is beta. However, it may be subject to name and representation changes in future releases, and clients should not depend on its stability. It is primarily for internal use by controllers.","type":"object","required":["revision"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"data":{"description":"Data is the serialized representation of the state.","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"revision":{"description":"Revision indicates the revision of the state represented by Data.","type":"integer","format":"int64"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"ControllerRevision","version":"v1"}]},"io.k8s.api.apps.v1.ControllerRevisionList":{"description":"ControllerRevisionList is a resource containing a list of ControllerRevision objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of ControllerRevisions","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.ControllerRevision"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"ControllerRevisionList","version":"v1"}]},"io.k8s.api.apps.v1.DaemonSet":{"description":"DaemonSet represents the configuration of a daemon set.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"The desired behavior of this daemon set. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSetSpec"},"status":{"description":"The current status of this daemon set. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSetStatus"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"DaemonSet","version":"v1"}]},"io.k8s.api.apps.v1.DaemonSetCondition":{"description":"DaemonSetCondition describes the state of a DaemonSet at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of DaemonSet condition.","type":"string"}}},"io.k8s.api.apps.v1.DaemonSetList":{"description":"DaemonSetList is a collection of daemon sets.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"A list of daemon sets.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"DaemonSetList","version":"v1"}]},"io.k8s.api.apps.v1.DaemonSetSpec":{"description":"DaemonSetSpec is the specification of a daemon set.","type":"object","required":["selector","template"],"properties":{"minReadySeconds":{"description":"The minimum number of seconds for which a newly created DaemonSet pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready).","type":"integer","format":"int32"},"revisionHistoryLimit":{"description":"The number of old history to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.","type":"integer","format":"int32"},"selector":{"description":"A label query over pods that are managed by the daemon set. Must match in order to be controlled. It must match the pod template's labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"template":{"description":"An object that describes the pod that will be created. The DaemonSet will create exactly one copy of this pod on every node that matches the template's node selector (or on every node if no node selector is specified). The only allowed template.spec.restartPolicy value is \"Always\". More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"},"updateStrategy":{"description":"An update strategy to replace existing DaemonSet pods with new pods.","$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSetUpdateStrategy"}}},"io.k8s.api.apps.v1.DaemonSetStatus":{"description":"DaemonSetStatus represents the current status of a daemon set.","type":"object","required":["currentNumberScheduled","numberMisscheduled","desiredNumberScheduled","numberReady"],"properties":{"collisionCount":{"description":"Count of hash collisions for the DaemonSet. The DaemonSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision.","type":"integer","format":"int32"},"conditions":{"description":"Represents the latest available observations of a DaemonSet's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.DaemonSetCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"currentNumberScheduled":{"description":"The number of nodes that are running at least 1 daemon pod and are supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/","type":"integer","format":"int32"},"desiredNumberScheduled":{"description":"The total number of nodes that should be running the daemon pod (including nodes correctly running the daemon pod). More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/","type":"integer","format":"int32"},"numberAvailable":{"description":"The number of nodes that should be running the daemon pod and have one or more of the daemon pod running and available (ready for at least spec.minReadySeconds)","type":"integer","format":"int32"},"numberMisscheduled":{"description":"The number of nodes that are running the daemon pod, but are not supposed to run the daemon pod. More info: https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/","type":"integer","format":"int32"},"numberReady":{"description":"numberReady is the number of nodes that should be running the daemon pod and have one or more of the daemon pod running with a Ready Condition.","type":"integer","format":"int32"},"numberUnavailable":{"description":"The number of nodes that should be running the daemon pod and have none of the daemon pod running and available (ready for at least spec.minReadySeconds)","type":"integer","format":"int32"},"observedGeneration":{"description":"The most recent generation observed by the daemon set controller.","type":"integer","format":"int64"},"updatedNumberScheduled":{"description":"The total number of nodes that are running updated daemon pod","type":"integer","format":"int32"}}},"io.k8s.api.apps.v1.DaemonSetUpdateStrategy":{"description":"DaemonSetUpdateStrategy is a struct used to control the update strategy for a DaemonSet.","type":"object","properties":{"rollingUpdate":{"description":"Rolling update config params. Present only if type = \"RollingUpdate\".","$ref":"#/definitions/io.k8s.api.apps.v1.RollingUpdateDaemonSet"},"type":{"description":"Type of daemon set update. Can be \"RollingUpdate\" or \"OnDelete\". Default is RollingUpdate.\n\nPossible enum values:\n - `\"OnDelete\"` Replace the old daemons only when it's killed\n - `\"RollingUpdate\"` Replace the old daemons by new ones using rolling update i.e replace them on each node one after the other.","type":"string","enum":["OnDelete","RollingUpdate"]}}},"io.k8s.api.apps.v1.Deployment":{"description":"Deployment enables declarative updates for Pods and ReplicaSets.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the Deployment.","$ref":"#/definitions/io.k8s.api.apps.v1.DeploymentSpec"},"status":{"description":"Most recently observed status of the Deployment.","$ref":"#/definitions/io.k8s.api.apps.v1.DeploymentStatus"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"Deployment","version":"v1"}]},"io.k8s.api.apps.v1.DeploymentCondition":{"description":"DeploymentCondition describes the state of a deployment at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastUpdateTime":{"description":"The last time this condition was updated.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of deployment condition.","type":"string"}}},"io.k8s.api.apps.v1.DeploymentList":{"description":"DeploymentList is a list of Deployments.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of Deployments.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.Deployment"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"DeploymentList","version":"v1"}]},"io.k8s.api.apps.v1.DeploymentSpec":{"description":"DeploymentSpec is the specification of the desired behavior of the Deployment.","type":"object","required":["selector","template"],"properties":{"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)","type":"integer","format":"int32"},"paused":{"description":"Indicates that the deployment is paused.","type":"boolean"},"progressDeadlineSeconds":{"description":"The maximum time in seconds for a deployment to make progress before it is considered to be failed. The deployment controller will continue to process failed deployments and a condition with a ProgressDeadlineExceeded reason will be surfaced in the deployment status. Note that progress will not be estimated during the time a deployment is paused. Defaults to 600s.","type":"integer","format":"int32"},"replicas":{"description":"Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.","type":"integer","format":"int32"},"revisionHistoryLimit":{"description":"The number of old ReplicaSets to retain to allow rollback. This is a pointer to distinguish between explicit zero and not specified. Defaults to 10.","type":"integer","format":"int32"},"selector":{"description":"Label selector for pods. Existing ReplicaSets whose pods are selected by this will be the ones affected by this deployment. It must match the pod template's labels.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"strategy":{"description":"The deployment strategy to use to replace existing pods with new ones.","$ref":"#/definitions/io.k8s.api.apps.v1.DeploymentStrategy","x-kubernetes-patch-strategy":"retainKeys"},"template":{"description":"Template describes the pods that will be created. The only allowed template.spec.restartPolicy value is \"Always\".","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}}},"io.k8s.api.apps.v1.DeploymentStatus":{"description":"DeploymentStatus is the most recently observed status of the Deployment.","type":"object","properties":{"availableReplicas":{"description":"Total number of available pods (ready for at least minReadySeconds) targeted by this deployment.","type":"integer","format":"int32"},"collisionCount":{"description":"Count of hash collisions for the Deployment. The Deployment controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ReplicaSet.","type":"integer","format":"int32"},"conditions":{"description":"Represents the latest available observations of a deployment's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.DeploymentCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"observedGeneration":{"description":"The generation observed by the deployment controller.","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas is the number of pods targeted by this Deployment with a Ready Condition.","type":"integer","format":"int32"},"replicas":{"description":"Total number of non-terminated pods targeted by this deployment (their labels match the selector).","type":"integer","format":"int32"},"unavailableReplicas":{"description":"Total number of unavailable pods targeted by this deployment. This is the total number of pods that are still required for the deployment to have 100% available capacity. They may either be pods that are running but not yet available or pods that still have not been created.","type":"integer","format":"int32"},"updatedReplicas":{"description":"Total number of non-terminated pods targeted by this deployment that have the desired template spec.","type":"integer","format":"int32"}}},"io.k8s.api.apps.v1.DeploymentStrategy":{"description":"DeploymentStrategy describes how to replace existing pods with new ones.","type":"object","properties":{"rollingUpdate":{"description":"Rolling update config params. Present only if DeploymentStrategyType = RollingUpdate.","$ref":"#/definitions/io.k8s.api.apps.v1.RollingUpdateDeployment"},"type":{"description":"Type of deployment. Can be \"Recreate\" or \"RollingUpdate\". Default is RollingUpdate.\n\nPossible enum values:\n - `\"Recreate\"` Kill all existing pods before creating new ones.\n - `\"RollingUpdate\"` Replace the old ReplicaSets by new one using rolling update i.e gradually scale down the old ReplicaSets and scale up the new one.","type":"string","enum":["Recreate","RollingUpdate"]}}},"io.k8s.api.apps.v1.ReplicaSet":{"description":"ReplicaSet ensures that a specified number of pod replicas are running at any given time.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"If the Labels of a ReplicaSet are empty, they are defaulted to be the same as the Pod(s) that the ReplicaSet manages. Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the specification of the desired behavior of the ReplicaSet. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSetSpec"},"status":{"description":"Status is the most recently observed status of the ReplicaSet. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSetStatus"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"ReplicaSet","version":"v1"}]},"io.k8s.api.apps.v1.ReplicaSetCondition":{"description":"ReplicaSetCondition describes the state of a replica set at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"The last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of replica set condition.","type":"string"}}},"io.k8s.api.apps.v1.ReplicaSetList":{"description":"ReplicaSetList is a collection of ReplicaSets.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ReplicaSets. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"ReplicaSetList","version":"v1"}]},"io.k8s.api.apps.v1.ReplicaSetSpec":{"description":"ReplicaSetSpec is the specification of a ReplicaSet.","type":"object","required":["selector"],"properties":{"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)","type":"integer","format":"int32"},"replicas":{"description":"Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller","type":"integer","format":"int32"},"selector":{"description":"Selector is a label query over pods that should match the replica count. Label keys and values that must match in order to be controlled by this replica set. It must match the pod template's labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"template":{"description":"Template is the object that describes the pod that will be created if insufficient replicas are detected. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}}},"io.k8s.api.apps.v1.ReplicaSetStatus":{"description":"ReplicaSetStatus represents the current status of a ReplicaSet.","type":"object","required":["replicas"],"properties":{"availableReplicas":{"description":"The number of available replicas (ready for at least minReadySeconds) for this replica set.","type":"integer","format":"int32"},"conditions":{"description":"Represents the latest available observations of a replica set's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.ReplicaSetCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"fullyLabeledReplicas":{"description":"The number of pods that have labels matching the labels of the pod template of the replicaset.","type":"integer","format":"int32"},"observedGeneration":{"description":"ObservedGeneration reflects the generation of the most recently observed ReplicaSet.","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas is the number of pods targeted by this ReplicaSet with a Ready Condition.","type":"integer","format":"int32"},"replicas":{"description":"Replicas is the most recently observed number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicationcontroller","type":"integer","format":"int32"}}},"io.k8s.api.apps.v1.RollingUpdateDaemonSet":{"description":"Spec to control the desired behavior of daemon set rolling update.","type":"object","properties":{"maxSurge":{"description":"The maximum number of nodes with an existing available DaemonSet pod that can have an updated DaemonSet pod during during an update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up to a minimum of 1. Default value is 0. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their a new pod created before the old pod is marked as deleted. The update starts by launching new pods on 30% of nodes. Once an updated pod is available (Ready for at least minReadySeconds) the old DaemonSet pod on that node is marked deleted. If the old pod becomes unavailable for any reason (Ready transitions to false, is evicted, or is drained) an updated pod is immediatedly created on that node without considering surge limits. Allowing surge implies the possibility that the resources consumed by the daemonset on any given node can double if the readiness check fails, and so resource intensive daemonsets should take into account that they may cause evictions during disruption.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"maxUnavailable":{"description":"The maximum number of DaemonSet pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of total number of DaemonSet pods at the start of the update (ex: 10%). Absolute number is calculated from percentage by rounding up. This cannot be 0 if MaxSurge is 0 Default value is 1. Example: when this is set to 30%, at most 30% of the total number of nodes that should be running the daemon pod (i.e. status.desiredNumberScheduled) can have their pods stopped for an update at any given time. The update starts by stopping at most 30% of those DaemonSet pods and then brings up new DaemonSet pods in their place. Once the new pods are available, it then proceeds onto other DaemonSet pods, thus ensuring that at least 70% of original number of DaemonSet pods are available at all times during the update.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"}}},"io.k8s.api.apps.v1.RollingUpdateDeployment":{"description":"Spec to control the desired behavior of rolling update.","type":"object","properties":{"maxSurge":{"description":"The maximum number of pods that can be scheduled above the desired number of pods. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). This can not be 0 if MaxUnavailable is 0. Absolute number is calculated from percentage by rounding up. Defaults to 25%. Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately when the rolling update starts, such that the total number of old and new pods do not exceed 130% of desired pods. Once old pods have been killed, new ReplicaSet can be scaled up further, ensuring that total number of pods running at any time during the update is at most 130% of desired pods.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"maxUnavailable":{"description":"The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding down. This can not be 0 if MaxSurge is 0. Defaults to 25%. Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired pods immediately when the rolling update starts. Once new pods are ready, old ReplicaSet can be scaled down further, followed by scaling up the new ReplicaSet, ensuring that the total number of pods available at all times during the update is at least 70% of desired pods.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"}}},"io.k8s.api.apps.v1.RollingUpdateStatefulSetStrategy":{"description":"RollingUpdateStatefulSetStrategy is used to communicate parameter for RollingUpdateStatefulSetStrategyType.","type":"object","properties":{"maxUnavailable":{"description":"The maximum number of pods that can be unavailable during the update. Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%). Absolute number is calculated from percentage by rounding up. This can not be 0. Defaults to 1. This field is alpha-level and is only honored by servers that enable the MaxUnavailableStatefulSet feature. The field applies to all pods in the range 0 to Replicas-1. That means if there is any unavailable pod in the range 0 to Replicas-1, it will be counted towards MaxUnavailable.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"partition":{"description":"Partition indicates the ordinal at which the StatefulSet should be partitioned for updates. During a rolling update, all pods from ordinal Replicas-1 to Partition are updated. All pods from ordinal Partition-1 to 0 remain untouched. This is helpful in being able to do a canary based deployment. The default value is 0.","type":"integer","format":"int32"}}},"io.k8s.api.apps.v1.StatefulSet":{"description":"StatefulSet represents a set of pods with consistent identities. Identities are defined as:\n  - Network: A single stable DNS and hostname.\n  - Storage: As many VolumeClaims as requested.\n\nThe StatefulSet guarantees that a given network identity will always map to the same storage identity.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired identities of pods in this set.","$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetSpec"},"status":{"description":"Status is the current status of Pods in this StatefulSet. This data may be out of date by some window of time.","$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetStatus"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"StatefulSet","version":"v1"}]},"io.k8s.api.apps.v1.StatefulSetCondition":{"description":"StatefulSetCondition describes the state of a statefulset at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of statefulset condition.","type":"string"}}},"io.k8s.api.apps.v1.StatefulSetList":{"description":"StatefulSetList is a collection of StatefulSets.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of stateful sets.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apps","kind":"StatefulSetList","version":"v1"}]},"io.k8s.api.apps.v1.StatefulSetOrdinals":{"description":"StatefulSetOrdinals describes the policy used for replica ordinal assignment in this StatefulSet.","type":"object","properties":{"start":{"description":"start is the number representing the first replica's index. It may be used to number replicas from an alternate index (eg: 1-indexed) over the default 0-indexed names, or to orchestrate progressive movement of replicas from one StatefulSet to another. If set, replica indices will be in the range:\n  [.spec.ordinals.start, .spec.ordinals.start + .spec.replicas).\nIf unset, defaults to 0. Replica indices will be in the range:\n  [0, .spec.replicas).","type":"integer","format":"int32"}}},"io.k8s.api.apps.v1.StatefulSetPersistentVolumeClaimRetentionPolicy":{"description":"StatefulSetPersistentVolumeClaimRetentionPolicy describes the policy used for PVCs created from the StatefulSet VolumeClaimTemplates.","type":"object","properties":{"whenDeleted":{"description":"WhenDeleted specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is deleted. The default policy of `Retain` causes PVCs to not be affected by StatefulSet deletion. The `Delete` policy causes those PVCs to be deleted.","type":"string"},"whenScaled":{"description":"WhenScaled specifies what happens to PVCs created from StatefulSet VolumeClaimTemplates when the StatefulSet is scaled down. The default policy of `Retain` causes PVCs to not be affected by a scaledown. The `Delete` policy causes the associated PVCs for any excess pods above the replica count to be deleted.","type":"string"}}},"io.k8s.api.apps.v1.StatefulSetSpec":{"description":"A StatefulSetSpec is the specification of a StatefulSet.","type":"object","required":["selector","template","serviceName"],"properties":{"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready without any of its container crashing for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)","type":"integer","format":"int32"},"ordinals":{"description":"ordinals controls the numbering of replica indices in a StatefulSet. The default ordinals behavior assigns a \"0\" index to the first replica and increments the index by one for each additional replica requested.","$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetOrdinals"},"persistentVolumeClaimRetentionPolicy":{"description":"persistentVolumeClaimRetentionPolicy describes the lifecycle of persistent volume claims created from volumeClaimTemplates. By default, all persistent volume claims are created as needed and retained until manually deleted. This policy allows the lifecycle to be altered, for example by deleting persistent volume claims when their stateful set is deleted, or when their pod is scaled down. This requires the StatefulSetAutoDeletePVC feature gate to be enabled, which is beta.","$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetPersistentVolumeClaimRetentionPolicy"},"podManagementPolicy":{"description":"podManagementPolicy controls how pods are created during initial scale up, when replacing pods on nodes, or when scaling down. The default policy is `OrderedReady`, where pods are created in increasing order (pod-0, then pod-1, etc) and the controller will wait until each pod is ready before continuing. When scaling down, the pods are removed in the opposite order. The alternative policy is `Parallel` which will create pods in parallel to match the desired scale without waiting, and on scale down will delete all pods at once.\n\nPossible enum values:\n - `\"OrderedReady\"` will create pods in strictly increasing order on scale up and strictly decreasing order on scale down, progressing only when the previous pod is ready or terminated. At most one pod will be changed at any time.\n - `\"Parallel\"` will create and delete pods as soon as the stateful set replica count is changed, and will not wait for pods to be ready or complete termination.","type":"string","enum":["OrderedReady","Parallel"]},"replicas":{"description":"replicas is the desired number of replicas of the given Template. These are replicas in the sense that they are instantiations of the same Template, but individual replicas also have a consistent identity. If unspecified, defaults to 1.","type":"integer","format":"int32"},"revisionHistoryLimit":{"description":"revisionHistoryLimit is the maximum number of revisions that will be maintained in the StatefulSet's revision history. The revision history consists of all revisions not represented by a currently applied StatefulSetSpec version. The default value is 10.","type":"integer","format":"int32"},"selector":{"description":"selector is a label query over pods that should match the replica count. It must match the pod template's labels. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"serviceName":{"description":"serviceName is the name of the service that governs this StatefulSet. This service must exist before the StatefulSet, and is responsible for the network identity of the set. Pods get DNS/hostnames that follow the pattern: pod-specific-string.serviceName.default.svc.cluster.local where \"pod-specific-string\" is managed by the StatefulSet controller.","type":"string"},"template":{"description":"template is the object that describes the pod that will be created if insufficient replicas are detected. Each pod stamped out by the StatefulSet will fulfill this Template, but have a unique identity from the rest of the StatefulSet. Each pod will be named with the format <statefulsetname>-<podindex>. For example, a pod in a StatefulSet named \"web\" with index number \"3\" would be named \"web-3\". The only allowed template.spec.restartPolicy value is \"Always\".","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"},"updateStrategy":{"description":"updateStrategy indicates the StatefulSetUpdateStrategy that will be employed to update Pods in the StatefulSet when a revision is made to Template.","$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetUpdateStrategy"},"volumeClaimTemplates":{"description":"volumeClaimTemplates is a list of claims that pods are allowed to reference. The StatefulSet controller is responsible for mapping network identities to claims in a way that maintains the identity of a pod. Every claim in this list must have at least one matching (by name) volumeMount in one container in the template. A claim in this list takes precedence over any volumes in the template, with the same name.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.apps.v1.StatefulSetStatus":{"description":"StatefulSetStatus represents the current state of a StatefulSet.","type":"object","required":["replicas"],"properties":{"availableReplicas":{"description":"Total number of available pods (ready for at least minReadySeconds) targeted by this statefulset.","type":"integer","format":"int32"},"collisionCount":{"description":"collisionCount is the count of hash collisions for the StatefulSet. The StatefulSet controller uses this field as a collision avoidance mechanism when it needs to create the name for the newest ControllerRevision.","type":"integer","format":"int32"},"conditions":{"description":"Represents the latest available observations of a statefulset's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.apps.v1.StatefulSetCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"currentReplicas":{"description":"currentReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by currentRevision.","type":"integer","format":"int32"},"currentRevision":{"description":"currentRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [0,currentReplicas).","type":"string"},"observedGeneration":{"description":"observedGeneration is the most recent generation observed for this StatefulSet. It corresponds to the StatefulSet's generation, which is updated on mutation by the API Server.","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas is the number of pods created for this StatefulSet with a Ready Condition.","type":"integer","format":"int32"},"replicas":{"description":"replicas is the number of Pods created by the StatefulSet controller.","type":"integer","format":"int32"},"updateRevision":{"description":"updateRevision, if not empty, indicates the version of the StatefulSet used to generate Pods in the sequence [replicas-updatedReplicas,replicas)","type":"string"},"updatedReplicas":{"description":"updatedReplicas is the number of Pods created by the StatefulSet controller from the StatefulSet version indicated by updateRevision.","type":"integer","format":"int32"}}},"io.k8s.api.apps.v1.StatefulSetUpdateStrategy":{"description":"StatefulSetUpdateStrategy indicates the strategy that the StatefulSet controller will use to perform updates. It includes any additional parameters necessary to perform the update for the indicated strategy.","type":"object","properties":{"rollingUpdate":{"description":"RollingUpdate is used to communicate parameters when Type is RollingUpdateStatefulSetStrategyType.","$ref":"#/definitions/io.k8s.api.apps.v1.RollingUpdateStatefulSetStrategy"},"type":{"description":"Type indicates the type of the StatefulSetUpdateStrategy. Default is RollingUpdate.\n\nPossible enum values:\n - `\"OnDelete\"` triggers the legacy behavior. Version tracking and ordered rolling restarts are disabled. Pods are recreated from the StatefulSetSpec when they are manually deleted. When a scale operation is performed with this strategy,specification version indicated by the StatefulSet's currentRevision.\n - `\"RollingUpdate\"` indicates that update will be applied to all Pods in the StatefulSet with respect to the StatefulSet ordering constraints. When a scale operation is performed with this strategy, new Pods will be created from the specification version indicated by the StatefulSet's updateRevision.","type":"string","enum":["OnDelete","RollingUpdate"]}}},"io.k8s.api.authentication.v1.BoundObjectReference":{"description":"BoundObjectReference is a reference to an object that a token is bound to.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"kind":{"description":"Kind of the referent. Valid kinds are 'Pod' and 'Secret'.","type":"string"},"name":{"description":"Name of the referent.","type":"string"},"uid":{"description":"UID of the referent.","type":"string"}}},"io.k8s.api.authentication.v1.SelfSubjectReview":{"description":"SelfSubjectReview contains the user information that the kube-apiserver has about the user making this request. When using impersonation, users will receive the user info of the user being impersonated.  If impersonation or request header authentication is used, any extra keys will have their case ignored and returned as lowercase.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"status":{"description":"Status is filled in by the server with the user attributes.","$ref":"#/definitions/io.k8s.api.authentication.v1.SelfSubjectReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"authentication.k8s.io","kind":"SelfSubjectReview","version":"v1"}]},"io.k8s.api.authentication.v1.SelfSubjectReviewStatus":{"description":"SelfSubjectReviewStatus is filled by the kube-apiserver and sent back to a user.","type":"object","properties":{"userInfo":{"description":"User attributes of the user making this request.","$ref":"#/definitions/io.k8s.api.authentication.v1.UserInfo"}}},"io.k8s.api.authentication.v1.TokenRequest":{"description":"TokenRequest requests a token for a given service account.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds information about the request being evaluated","$ref":"#/definitions/io.k8s.api.authentication.v1.TokenRequestSpec"},"status":{"description":"Status is filled in by the server and indicates whether the token can be authenticated.","$ref":"#/definitions/io.k8s.api.authentication.v1.TokenRequestStatus"}},"x-kubernetes-group-version-kind":[{"group":"authentication.k8s.io","kind":"TokenRequest","version":"v1"}]},"io.k8s.api.authentication.v1.TokenRequestSpec":{"description":"TokenRequestSpec contains client provided parameters of a token request.","type":"object","required":["audiences"],"properties":{"audiences":{"description":"Audiences are the intendend audiences of the token. A recipient of a token must identify themself with an identifier in the list of audiences of the token, and otherwise should reject the token. A token issued for multiple audiences may be used to authenticate against any of the audiences listed but implies a high degree of trust between the target audiences.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"boundObjectRef":{"description":"BoundObjectRef is a reference to an object that the token will be bound to. The token will only be valid for as long as the bound object exists. NOTE: The API server's TokenReview endpoint will validate the BoundObjectRef, but other audiences may not. Keep ExpirationSeconds small if you want prompt revocation.","$ref":"#/definitions/io.k8s.api.authentication.v1.BoundObjectReference"},"expirationSeconds":{"description":"ExpirationSeconds is the requested duration of validity of the request. The token issuer may return a token with a different validity duration so a client needs to check the 'expiration' field in a response.","type":"integer","format":"int64"}}},"io.k8s.api.authentication.v1.TokenRequestStatus":{"description":"TokenRequestStatus is the result of a token request.","type":"object","required":["token","expirationTimestamp"],"properties":{"expirationTimestamp":{"description":"ExpirationTimestamp is the time of expiration of the returned token.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"token":{"description":"Token is the opaque bearer token.","type":"string"}}},"io.k8s.api.authentication.v1.TokenReview":{"description":"TokenReview attempts to authenticate a token to a known user. Note: TokenReview requests may be cached by the webhook token authenticator plugin in the kube-apiserver.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds information about the request being evaluated","$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReviewSpec"},"status":{"description":"Status is filled in by the server and indicates whether the request can be authenticated.","$ref":"#/definitions/io.k8s.api.authentication.v1.TokenReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"authentication.k8s.io","kind":"TokenReview","version":"v1"}]},"io.k8s.api.authentication.v1.TokenReviewSpec":{"description":"TokenReviewSpec is a description of the token authentication request.","type":"object","properties":{"audiences":{"description":"Audiences is a list of the identifiers that the resource server presented with the token identifies as. Audience-aware token authenticators will verify that the token was intended for at least one of the audiences in this list. If no audiences are provided, the audience will default to the audience of the Kubernetes apiserver.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"token":{"description":"Token is the opaque bearer token.","type":"string"}}},"io.k8s.api.authentication.v1.TokenReviewStatus":{"description":"TokenReviewStatus is the result of the token authentication request.","type":"object","properties":{"audiences":{"description":"Audiences are audience identifiers chosen by the authenticator that are compatible with both the TokenReview and token. An identifier is any identifier in the intersection of the TokenReviewSpec audiences and the token's audiences. A client of the TokenReview API that sets the spec.audiences field should validate that a compatible audience identifier is returned in the status.audiences field to ensure that the TokenReview server is audience aware. If a TokenReview returns an empty status.audience field where status.authenticated is \"true\", the token is valid against the audience of the Kubernetes API server.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"authenticated":{"description":"Authenticated indicates that the token was associated with a known user.","type":"boolean"},"error":{"description":"Error indicates that the token couldn't be checked","type":"string"},"user":{"description":"User is the UserInfo associated with the provided token.","$ref":"#/definitions/io.k8s.api.authentication.v1.UserInfo"}}},"io.k8s.api.authentication.v1.UserInfo":{"description":"UserInfo holds the information about the user needed to implement the user.Info interface.","type":"object","properties":{"extra":{"description":"Any additional information provided by the authenticator.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"groups":{"description":"The names of groups this user is a part of.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"uid":{"description":"A unique value that identifies this user across time. If this user is deleted and another user by the same name is added, they will have different UIDs.","type":"string"},"username":{"description":"The name that uniquely identifies this user among all active users.","type":"string"}}},"io.k8s.api.authorization.v1.FieldSelectorAttributes":{"description":"FieldSelectorAttributes indicates a field limited access. Webhook authors are encouraged to * ensure rawSelector and requirements are not both set * consider the requirements field if set * not try to parse or consider the rawSelector field if set. This is to avoid another CVE-2022-2880 (i.e. getting different systems to agree on how exactly to parse a query is not something we want), see https://www.oxeye.io/resources/golang-parameter-smuggling-attack for more details. For the *SubjectAccessReview endpoints of the kube-apiserver: * If rawSelector is empty and requirements are empty, the request is not limited. * If rawSelector is present and requirements are empty, the rawSelector will be parsed and limited if the parsing succeeds. * If rawSelector is empty and requirements are present, the requirements should be honored * If rawSelector is present and requirements are present, the request is invalid.","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter. Webhook implementations are encouraged to ignore rawSelector. The kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a field selector. All requirements must be met for a resource instance to match the selector. Webhook implementations should handle requirements, but how to handle them is up to the webhook. Since requirements can only limit the request, it is safe to authorize as unlimited request if the requirements are not understood.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.FieldSelectorRequirement"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.authorization.v1.LabelSelectorAttributes":{"description":"LabelSelectorAttributes indicates a label limited access. Webhook authors are encouraged to * ensure rawSelector and requirements are not both set * consider the requirements field if set * not try to parse or consider the rawSelector field if set. This is to avoid another CVE-2022-2880 (i.e. getting different systems to agree on how exactly to parse a query is not something we want), see https://www.oxeye.io/resources/golang-parameter-smuggling-attack for more details. For the *SubjectAccessReview endpoints of the kube-apiserver: * If rawSelector is empty and requirements are empty, the request is not limited. * If rawSelector is present and requirements are empty, the rawSelector will be parsed and limited if the parsing succeeds. * If rawSelector is empty and requirements are present, the requirements should be honored * If rawSelector is present and requirements are present, the request is invalid.","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter. Webhook implementations are encouraged to ignore rawSelector. The kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a label selector. All requirements must be met for a resource instance to match the selector. Webhook implementations should handle requirements, but how to handle them is up to the webhook. Since requirements can only limit the request, it is safe to authorize as unlimited request if the requirements are not understood.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.authorization.v1.LocalSubjectAccessReview":{"description":"LocalSubjectAccessReview checks whether or not a user or group can perform an action in a given namespace. Having a namespace scoped resource makes it much easier to grant namespace scoped policy that includes permissions checking.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds information about the request being evaluated.  spec.namespace must be equal to the namespace you made the request against.  If empty, it is defaulted.","$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReviewSpec"},"status":{"description":"Status is filled in by the server and indicates whether the request is allowed or not","$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"authorization.k8s.io","kind":"LocalSubjectAccessReview","version":"v1"}]},"io.k8s.api.authorization.v1.NonResourceAttributes":{"description":"NonResourceAttributes includes the authorization attributes available for non-resource requests to the Authorizer interface","type":"object","properties":{"path":{"description":"Path is the URL path of the request","type":"string"},"verb":{"description":"Verb is the standard HTTP verb","type":"string"}}},"io.k8s.api.authorization.v1.NonResourceRule":{"description":"NonResourceRule holds information that describes a rule for the non-resource","type":"object","required":["verbs"],"properties":{"nonResourceURLs":{"description":"NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path.  \"*\" means all.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"verbs":{"description":"Verb is a list of kubernetes non-resource API verbs, like: get, post, put, delete, patch, head, options.  \"*\" means all.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.authorization.v1.ResourceAttributes":{"description":"ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface","type":"object","properties":{"fieldSelector":{"description":"fieldSelector describes the limitation on access based on field.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the `AuthorizeWithSelectors` feature gate (disabled by default).","$ref":"#/definitions/io.k8s.api.authorization.v1.FieldSelectorAttributes"},"group":{"description":"Group is the API Group of the Resource.  \"*\" means all.","type":"string"},"labelSelector":{"description":"labelSelector describes the limitation on access based on labels.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the `AuthorizeWithSelectors` feature gate (disabled by default).","$ref":"#/definitions/io.k8s.api.authorization.v1.LabelSelectorAttributes"},"name":{"description":"Name is the name of the resource being requested for a \"get\" or deleted for a \"delete\". \"\" (empty) means all.","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces \"\" (empty) is defaulted for LocalSubjectAccessReviews \"\" (empty) is empty for cluster-scoped resources \"\" (empty) means \"all\" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview","type":"string"},"resource":{"description":"Resource is one of the existing resource types.  \"*\" means all.","type":"string"},"subresource":{"description":"Subresource is one of the existing resource types.  \"\" means none.","type":"string"},"verb":{"description":"Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  \"*\" means all.","type":"string"},"version":{"description":"Version is the API Version of the Resource.  \"*\" means all.","type":"string"}}},"io.k8s.api.authorization.v1.ResourceRule":{"description":"ResourceRule is the list of actions the subject is allowed to perform on resources. The list ordering isn't significant, may contain duplicates, and possibly be incomplete.","type":"object","required":["verbs"],"properties":{"apiGroups":{"description":"APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed.  \"*\" means all.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.  \"*\" means all.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.  \"*\" means all in the specified apiGroups.\n \"*/foo\" represents the subresource 'foo' for all resources in the specified apiGroups.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"verbs":{"description":"Verb is a list of kubernetes resource API verbs, like: get, list, watch, create, update, delete, proxy.  \"*\" means all.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.authorization.v1.SelfSubjectAccessReview":{"description":"SelfSubjectAccessReview checks whether or the current user can perform an action.  Not filling in a spec.namespace means \"in all namespaces\".  Self is a special case, because users should always be able to check whether they can perform an action","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds information about the request being evaluated.  user and groups must be empty","$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectAccessReviewSpec"},"status":{"description":"Status is filled in by the server and indicates whether the request is allowed or not","$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"authorization.k8s.io","kind":"SelfSubjectAccessReview","version":"v1"}]},"io.k8s.api.authorization.v1.SelfSubjectAccessReviewSpec":{"description":"SelfSubjectAccessReviewSpec is a description of the access request.  Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set","type":"object","properties":{"nonResourceAttributes":{"description":"NonResourceAttributes describes information for a non-resource access request","$ref":"#/definitions/io.k8s.api.authorization.v1.NonResourceAttributes"},"resourceAttributes":{"description":"ResourceAuthorizationAttributes describes information for a resource access request","$ref":"#/definitions/io.k8s.api.authorization.v1.ResourceAttributes"}}},"io.k8s.api.authorization.v1.SelfSubjectRulesReview":{"description":"SelfSubjectRulesReview enumerates the set of actions the current user can perform within a namespace. The returned list of actions may be incomplete depending on the server's authorization mode, and any errors experienced during the evaluation. SelfSubjectRulesReview should be used by UIs to show/hide actions, or to quickly let an end user reason about their permissions. It should NOT Be used by external systems to drive authorization decisions as this raises confused deputy, cache lifetime/revocation, and correctness concerns. SubjectAccessReview, and LocalAccessReview are the correct way to defer authorization decisions to the API server.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds information about the request being evaluated.","$ref":"#/definitions/io.k8s.api.authorization.v1.SelfSubjectRulesReviewSpec"},"status":{"description":"Status is filled in by the server and indicates the set of actions a user can perform.","$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectRulesReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"authorization.k8s.io","kind":"SelfSubjectRulesReview","version":"v1"}]},"io.k8s.api.authorization.v1.SelfSubjectRulesReviewSpec":{"description":"SelfSubjectRulesReviewSpec defines the specification for SelfSubjectRulesReview.","type":"object","properties":{"namespace":{"description":"Namespace to evaluate rules for. Required.","type":"string"}}},"io.k8s.api.authorization.v1.SubjectAccessReview":{"description":"SubjectAccessReview checks whether or not a user or group can perform an action.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds information about the request being evaluated","$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReviewSpec"},"status":{"description":"Status is filled in by the server and indicates whether the request is allowed or not","$ref":"#/definitions/io.k8s.api.authorization.v1.SubjectAccessReviewStatus"}},"x-kubernetes-group-version-kind":[{"group":"authorization.k8s.io","kind":"SubjectAccessReview","version":"v1"}]},"io.k8s.api.authorization.v1.SubjectAccessReviewSpec":{"description":"SubjectAccessReviewSpec is a description of the access request.  Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set","type":"object","properties":{"extra":{"description":"Extra corresponds to the user.Info.GetExtra() method from the authenticator.  Since that is input to the authorizer it needs a reflection here.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"groups":{"description":"Groups is the groups you're testing for.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"nonResourceAttributes":{"description":"NonResourceAttributes describes information for a non-resource access request","$ref":"#/definitions/io.k8s.api.authorization.v1.NonResourceAttributes"},"resourceAttributes":{"description":"ResourceAuthorizationAttributes describes information for a resource access request","$ref":"#/definitions/io.k8s.api.authorization.v1.ResourceAttributes"},"uid":{"description":"UID information about the requesting user.","type":"string"},"user":{"description":"User is the user you're testing for. If you specify \"User\" but not \"Groups\", then is it interpreted as \"What if User were not a member of any groups","type":"string"}}},"io.k8s.api.authorization.v1.SubjectAccessReviewStatus":{"description":"SubjectAccessReviewStatus","type":"object","required":["allowed"],"properties":{"allowed":{"description":"Allowed is required. True if the action would be allowed, false otherwise.","type":"boolean"},"denied":{"description":"Denied is optional. True if the action would be denied, otherwise false. If both allowed is false and denied is false, then the authorizer has no opinion on whether to authorize the action. Denied may not be true if Allowed is true.","type":"boolean"},"evaluationError":{"description":"EvaluationError is an indication that some error occurred during the authorization check. It is entirely possible to get an error and be able to continue determine authorization status in spite of it. For instance, RBAC can be missing a role, but enough roles are still present and bound to reason about the request.","type":"string"},"reason":{"description":"Reason is optional.  It indicates why a request was allowed or denied.","type":"string"}}},"io.k8s.api.authorization.v1.SubjectRulesReviewStatus":{"description":"SubjectRulesReviewStatus contains the result of a rules check. This check can be incomplete depending on the set of authorizers the server is configured with and any errors experienced during evaluation. Because authorization rules are additive, if a rule appears in a list it's safe to assume the subject has that permission, even if that list is incomplete.","type":"object","required":["resourceRules","nonResourceRules","incomplete"],"properties":{"evaluationError":{"description":"EvaluationError can appear in combination with Rules. It indicates an error occurred during rule evaluation, such as an authorizer that doesn't support rule evaluation, and that ResourceRules and/or NonResourceRules may be incomplete.","type":"string"},"incomplete":{"description":"Incomplete is true when the rules returned by this call are incomplete. This is most commonly encountered when an authorizer, such as an external authorizer, doesn't support rules evaluation.","type":"boolean"},"nonResourceRules":{"description":"NonResourceRules is the list of actions the subject is allowed to perform on non-resources. The list ordering isn't significant, may contain duplicates, and possibly be incomplete.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.authorization.v1.NonResourceRule"},"x-kubernetes-list-type":"atomic"},"resourceRules":{"description":"ResourceRules is the list of actions the subject is allowed to perform on resources. The list ordering isn't significant, may contain duplicates, and possibly be incomplete.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.authorization.v1.ResourceRule"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.autoscaling.v1.CrossVersionObjectReference":{"description":"CrossVersionObjectReference contains enough information to let you identify the referred resource.","type":"object","required":["kind","name"],"properties":{"apiVersion":{"description":"apiVersion is the API version of the referent","type":"string"},"kind":{"description":"kind is the kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"name is the name of the referent; More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler":{"description":"configuration of a horizontal pod autoscaler.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec defines the behaviour of autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.","$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscalerSpec"},"status":{"description":"status is the current information about the autoscaler.","$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscalerStatus"}},"x-kubernetes-group-version-kind":[{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v1"}]},"io.k8s.api.autoscaling.v1.HorizontalPodAutoscalerList":{"description":"list of horizontal pod autoscaler objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of horizontal pod autoscaler objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.autoscaling.v1.HorizontalPodAutoscaler"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"autoscaling","kind":"HorizontalPodAutoscalerList","version":"v1"}]},"io.k8s.api.autoscaling.v1.HorizontalPodAutoscalerSpec":{"description":"specification of a horizontal pod autoscaler.","type":"object","required":["scaleTargetRef","maxReplicas"],"properties":{"maxReplicas":{"description":"maxReplicas is the upper limit for the number of pods that can be set by the autoscaler; cannot be smaller than MinReplicas.","type":"integer","format":"int32"},"minReplicas":{"description":"minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.","type":"integer","format":"int32"},"scaleTargetRef":{"description":"reference to scaled resource; horizontal pod autoscaler will learn the current resource consumption and will set the desired number of pods by using its Scale subresource.","$ref":"#/definitions/io.k8s.api.autoscaling.v1.CrossVersionObjectReference"},"targetCPUUtilizationPercentage":{"description":"targetCPUUtilizationPercentage is the target average CPU utilization (represented as a percentage of requested CPU) over all the pods; if not specified the default autoscaling policy will be used.","type":"integer","format":"int32"}}},"io.k8s.api.autoscaling.v1.HorizontalPodAutoscalerStatus":{"description":"current status of a horizontal pod autoscaler","type":"object","required":["currentReplicas","desiredReplicas"],"properties":{"currentCPUUtilizationPercentage":{"description":"currentCPUUtilizationPercentage is the current average CPU utilization over all pods, represented as a percentage of requested CPU, e.g. 70 means that an average pod is using now 70% of its requested CPU.","type":"integer","format":"int32"},"currentReplicas":{"description":"currentReplicas is the current number of replicas of pods managed by this autoscaler.","type":"integer","format":"int32"},"desiredReplicas":{"description":"desiredReplicas is the  desired number of replicas of pods managed by this autoscaler.","type":"integer","format":"int32"},"lastScaleTime":{"description":"lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods; used by the autoscaler to control how often the number of pods is changed.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"observedGeneration":{"description":"observedGeneration is the most recent generation observed by this autoscaler.","type":"integer","format":"int64"}}},"io.k8s.api.autoscaling.v1.Scale":{"description":"Scale represents a scaling request for a resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec defines the behavior of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.","$ref":"#/definitions/io.k8s.api.autoscaling.v1.ScaleSpec"},"status":{"description":"status is the current status of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status. Read-only.","$ref":"#/definitions/io.k8s.api.autoscaling.v1.ScaleStatus"}},"x-kubernetes-group-version-kind":[{"group":"autoscaling","kind":"Scale","version":"v1"}]},"io.k8s.api.autoscaling.v1.ScaleSpec":{"description":"ScaleSpec describes the attributes of a scale subresource.","type":"object","properties":{"replicas":{"description":"replicas is the desired number of instances for the scaled object.","type":"integer","format":"int32"}}},"io.k8s.api.autoscaling.v1.ScaleStatus":{"description":"ScaleStatus represents the current status of a scale subresource.","type":"object","required":["replicas"],"properties":{"replicas":{"description":"replicas is the actual number of observed instances of the scaled object.","type":"integer","format":"int32"},"selector":{"description":"selector is the label query over pods that should match the replicas count. This is same as the label selector but in the string format to avoid introspection by clients. The string will be in the same format as the query-param syntax. More info about label selectors: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"string"}}},"io.k8s.api.autoscaling.v2.ContainerResourceMetricSource":{"description":"ContainerResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.  Only one \"target\" type should be set.","type":"object","required":["name","target","container"],"properties":{"container":{"description":"container is the name of the container in the pods of the scaling target","type":"string"},"name":{"description":"name is the name of the resource in question.","type":"string"},"target":{"description":"target specifies the target value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricTarget"}}},"io.k8s.api.autoscaling.v2.ContainerResourceMetricStatus":{"description":"ContainerResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing a single container in each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.","type":"object","required":["name","current","container"],"properties":{"container":{"description":"container is the name of the container in the pods of the scaling target","type":"string"},"current":{"description":"current contains the current value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus"},"name":{"description":"name is the name of the resource in question.","type":"string"}}},"io.k8s.api.autoscaling.v2.CrossVersionObjectReference":{"description":"CrossVersionObjectReference contains enough information to let you identify the referred resource.","type":"object","required":["kind","name"],"properties":{"apiVersion":{"description":"apiVersion is the API version of the referent","type":"string"},"kind":{"description":"kind is the kind of the referent; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"name is the name of the referent; More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}}},"io.k8s.api.autoscaling.v2.ExternalMetricSource":{"description":"ExternalMetricSource indicates how to scale on a metric not associated with any Kubernetes object (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).","type":"object","required":["metric","target"],"properties":{"metric":{"description":"metric identifies the target metric by name and selector","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier"},"target":{"description":"target specifies the target value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricTarget"}}},"io.k8s.api.autoscaling.v2.ExternalMetricStatus":{"description":"ExternalMetricStatus indicates the current value of a global metric not associated with any Kubernetes object.","type":"object","required":["metric","current"],"properties":{"current":{"description":"current contains the current value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus"},"metric":{"description":"metric identifies the target metric by name and selector","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier"}}},"io.k8s.api.autoscaling.v2.HPAScalingPolicy":{"description":"HPAScalingPolicy is a single policy which must hold true for a specified past interval.","type":"object","required":["type","value","periodSeconds"],"properties":{"periodSeconds":{"description":"periodSeconds specifies the window of time for which the policy should hold true. PeriodSeconds must be greater than zero and less than or equal to 1800 (30 min).","type":"integer","format":"int32"},"type":{"description":"type is used to specify the scaling policy.","type":"string"},"value":{"description":"value contains the amount of change which is permitted by the policy. It must be greater than zero","type":"integer","format":"int32"}}},"io.k8s.api.autoscaling.v2.HPAScalingRules":{"description":"HPAScalingRules configures the scaling behavior for one direction. These Rules are applied after calculating DesiredReplicas from metrics for the HPA. They can limit the scaling velocity by specifying scaling policies. They can prevent flapping by specifying the stabilization window, so that the number of replicas is not set instantly, instead, the safest value from the stabilization window is chosen.","type":"object","properties":{"policies":{"description":"policies is a list of potential scaling polices which can be used during scaling. At least one policy must be specified, otherwise the HPAScalingRules will be discarded as invalid","type":"array","items":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HPAScalingPolicy"},"x-kubernetes-list-type":"atomic"},"selectPolicy":{"description":"selectPolicy is used to specify which policy should be used. If not set, the default value Max is used.","type":"string"},"stabilizationWindowSeconds":{"description":"stabilizationWindowSeconds is the number of seconds for which past recommendations should be considered while scaling up or scaling down. StabilizationWindowSeconds must be greater than or equal to zero and less than or equal to 3600 (one hour). If not set, use the default values: - For scale up: 0 (i.e. no stabilization is done). - For scale down: 300 (i.e. the stabilization window is 300 seconds long).","type":"integer","format":"int32"}}},"io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler":{"description":"HorizontalPodAutoscaler is the configuration for a horizontal pod autoscaler, which automatically manages the replica count of any resource implementing the scale subresource based on the metrics specified.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification for the behaviour of the autoscaler. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerSpec"},"status":{"description":"status is the current information about the autoscaler.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerStatus"}},"x-kubernetes-group-version-kind":[{"group":"autoscaling","kind":"HorizontalPodAutoscaler","version":"v2"}]},"io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerBehavior":{"description":"HorizontalPodAutoscalerBehavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively).","type":"object","properties":{"scaleDown":{"description":"scaleDown is scaling policy for scaling Down. If not set, the default value is to allow to scale down to minReplicas pods, with a 300 second stabilization window (i.e., the highest recommendation for the last 300sec is used).","$ref":"#/definitions/io.k8s.api.autoscaling.v2.HPAScalingRules"},"scaleUp":{"description":"scaleUp is scaling policy for scaling Up. If not set, the default value is the higher of:\n  * increase no more than 4 pods per 60 seconds\n  * double the number of pods per 60 seconds\nNo stabilization is used.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.HPAScalingRules"}}},"io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerCondition":{"description":"HorizontalPodAutoscalerCondition describes the state of a HorizontalPodAutoscaler at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"message is a human-readable explanation containing details about the transition","type":"string"},"reason":{"description":"reason is the reason for the condition's last transition.","type":"string"},"status":{"description":"status is the status of the condition (True, False, Unknown)","type":"string"},"type":{"description":"type describes the current condition","type":"string"}}},"io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerList":{"description":"HorizontalPodAutoscalerList is a list of horizontal pod autoscaler objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of horizontal pod autoscaler objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscaler"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"metadata is the standard list metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"autoscaling","kind":"HorizontalPodAutoscalerList","version":"v2"}]},"io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerSpec":{"description":"HorizontalPodAutoscalerSpec describes the desired functionality of the HorizontalPodAutoscaler.","type":"object","required":["scaleTargetRef","maxReplicas"],"properties":{"behavior":{"description":"behavior configures the scaling behavior of the target in both Up and Down directions (scaleUp and scaleDown fields respectively). If not set, the default HPAScalingRules for scale up and scale down are used.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerBehavior"},"maxReplicas":{"description":"maxReplicas is the upper limit for the number of replicas to which the autoscaler can scale up. It cannot be less that minReplicas.","type":"integer","format":"int32"},"metrics":{"description":"metrics contains the specifications for which to use to calculate the desired replica count (the maximum replica count across all metrics will be used).  The desired replica count is calculated multiplying the ratio between the target value and the current value by the current number of pods.  Ergo, metrics used must decrease as the pod count is increased, and vice-versa.  See the individual metric source types for more information about how each type of metric must respond. If not set, the default metric will be set to 80% average CPU utilization.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricSpec"},"x-kubernetes-list-type":"atomic"},"minReplicas":{"description":"minReplicas is the lower limit for the number of replicas to which the autoscaler can scale down.  It defaults to 1 pod.  minReplicas is allowed to be 0 if the alpha feature gate HPAScaleToZero is enabled and at least one Object or External metric is configured.  Scaling is active as long as at least one metric value is available.","type":"integer","format":"int32"},"scaleTargetRef":{"description":"scaleTargetRef points to the target resource to scale, and is used to the pods for which metrics should be collected, as well as to actually change the replica count.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.CrossVersionObjectReference"}}},"io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerStatus":{"description":"HorizontalPodAutoscalerStatus describes the current status of a horizontal pod autoscaler.","type":"object","required":["desiredReplicas"],"properties":{"conditions":{"description":"conditions is the set of conditions required for this autoscaler to scale its target, and indicates whether or not those conditions are met.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.HorizontalPodAutoscalerCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"currentMetrics":{"description":"currentMetrics is the last read state of the metrics used by this autoscaler.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricStatus"},"x-kubernetes-list-type":"atomic"},"currentReplicas":{"description":"currentReplicas is current number of replicas of pods managed by this autoscaler, as last seen by the autoscaler.","type":"integer","format":"int32"},"desiredReplicas":{"description":"desiredReplicas is the desired number of replicas of pods managed by this autoscaler, as last calculated by the autoscaler.","type":"integer","format":"int32"},"lastScaleTime":{"description":"lastScaleTime is the last time the HorizontalPodAutoscaler scaled the number of pods, used by the autoscaler to control how often the number of pods is changed.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"observedGeneration":{"description":"observedGeneration is the most recent generation observed by this autoscaler.","type":"integer","format":"int64"}}},"io.k8s.api.autoscaling.v2.MetricIdentifier":{"description":"MetricIdentifier defines the name and optionally selector for a metric","type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the given metric","type":"string"},"selector":{"description":"selector is the string-encoded form of a standard kubernetes label selector for the given metric When set, it is passed as an additional parameter to the metrics server for more specific metrics scoping. When unset, just the metricName will be used to gather metrics.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"}}},"io.k8s.api.autoscaling.v2.MetricSpec":{"description":"MetricSpec specifies how to scale based on a single metric (only `type` and one other matching field should be set at once).","type":"object","required":["type"],"properties":{"containerResource":{"description":"containerResource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod of the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source. This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ContainerResourceMetricSource"},"external":{"description":"external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ExternalMetricSource"},"object":{"description":"object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ObjectMetricSource"},"pods":{"description":"pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.PodsMetricSource"},"resource":{"description":"resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ResourceMetricSource"},"type":{"description":"type is the type of metric source.  It should be one of \"ContainerResource\", \"External\", \"Object\", \"Pods\" or \"Resource\", each mapping to a matching field in the object. Note: \"ContainerResource\" type is available on when the feature-gate HPAContainerMetrics is enabled","type":"string"}}},"io.k8s.api.autoscaling.v2.MetricStatus":{"description":"MetricStatus describes the last-read state of a single metric.","type":"object","required":["type"],"properties":{"containerResource":{"description":"container resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing a single container in each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ContainerResourceMetricStatus"},"external":{"description":"external refers to a global metric that is not associated with any Kubernetes object. It allows autoscaling based on information coming from components running outside of cluster (for example length of queue in cloud messaging service, or QPS from loadbalancer running outside of cluster).","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ExternalMetricStatus"},"object":{"description":"object refers to a metric describing a single kubernetes object (for example, hits-per-second on an Ingress object).","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ObjectMetricStatus"},"pods":{"description":"pods refers to a metric describing each pod in the current scale target (for example, transactions-processed-per-second).  The values will be averaged together before being compared to the target value.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.PodsMetricStatus"},"resource":{"description":"resource refers to a resource metric (such as those specified in requests and limits) known to Kubernetes describing each pod in the current scale target (e.g. CPU or memory). Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.","$ref":"#/definitions/io.k8s.api.autoscaling.v2.ResourceMetricStatus"},"type":{"description":"type is the type of metric source.  It will be one of \"ContainerResource\", \"External\", \"Object\", \"Pods\" or \"Resource\", each corresponds to a matching field in the object. Note: \"ContainerResource\" type is available on when the feature-gate HPAContainerMetrics is enabled","type":"string"}}},"io.k8s.api.autoscaling.v2.MetricTarget":{"description":"MetricTarget defines the target value, average value, or average utilization of a specific metric","type":"object","required":["type"],"properties":{"averageUtilization":{"description":"averageUtilization is the target value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods. Currently only valid for Resource metric source type","type":"integer","format":"int32"},"averageValue":{"description":"averageValue is the target value of the average of the metric across all relevant pods (as a quantity)","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"},"type":{"description":"type represents whether the metric type is Utilization, Value, or AverageValue","type":"string"},"value":{"description":"value is the target value of the metric (as a quantity).","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}},"io.k8s.api.autoscaling.v2.MetricValueStatus":{"description":"MetricValueStatus holds the current value for a metric","type":"object","properties":{"averageUtilization":{"description":"currentAverageUtilization is the current value of the average of the resource metric across all relevant pods, represented as a percentage of the requested value of the resource for the pods.","type":"integer","format":"int32"},"averageValue":{"description":"averageValue is the current value of the average of the metric across all relevant pods (as a quantity)","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"},"value":{"description":"value is the current value of the metric (as a quantity).","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}},"io.k8s.api.autoscaling.v2.ObjectMetricSource":{"description":"ObjectMetricSource indicates how to scale on a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).","type":"object","required":["describedObject","target","metric"],"properties":{"describedObject":{"description":"describedObject specifies the descriptions of a object,such as kind,name apiVersion","$ref":"#/definitions/io.k8s.api.autoscaling.v2.CrossVersionObjectReference"},"metric":{"description":"metric identifies the target metric by name and selector","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier"},"target":{"description":"target specifies the target value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricTarget"}}},"io.k8s.api.autoscaling.v2.ObjectMetricStatus":{"description":"ObjectMetricStatus indicates the current value of a metric describing a kubernetes object (for example, hits-per-second on an Ingress object).","type":"object","required":["metric","current","describedObject"],"properties":{"current":{"description":"current contains the current value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus"},"describedObject":{"description":"DescribedObject specifies the descriptions of a object,such as kind,name apiVersion","$ref":"#/definitions/io.k8s.api.autoscaling.v2.CrossVersionObjectReference"},"metric":{"description":"metric identifies the target metric by name and selector","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier"}}},"io.k8s.api.autoscaling.v2.PodsMetricSource":{"description":"PodsMetricSource indicates how to scale on a metric describing each pod in the current scale target (for example, transactions-processed-per-second). The values will be averaged together before being compared to the target value.","type":"object","required":["metric","target"],"properties":{"metric":{"description":"metric identifies the target metric by name and selector","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier"},"target":{"description":"target specifies the target value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricTarget"}}},"io.k8s.api.autoscaling.v2.PodsMetricStatus":{"description":"PodsMetricStatus indicates the current value of a metric describing each pod in the current scale target (for example, transactions-processed-per-second).","type":"object","required":["metric","current"],"properties":{"current":{"description":"current contains the current value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus"},"metric":{"description":"metric identifies the target metric by name and selector","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricIdentifier"}}},"io.k8s.api.autoscaling.v2.ResourceMetricSource":{"description":"ResourceMetricSource indicates how to scale on a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  The values will be averaged together before being compared to the target.  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.  Only one \"target\" type should be set.","type":"object","required":["name","target"],"properties":{"name":{"description":"name is the name of the resource in question.","type":"string"},"target":{"description":"target specifies the target value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricTarget"}}},"io.k8s.api.autoscaling.v2.ResourceMetricStatus":{"description":"ResourceMetricStatus indicates the current value of a resource metric known to Kubernetes, as specified in requests and limits, describing each pod in the current scale target (e.g. CPU or memory).  Such metrics are built in to Kubernetes, and have special scaling options on top of those available to normal per-pod metrics using the \"pods\" source.","type":"object","required":["name","current"],"properties":{"current":{"description":"current contains the current value for the given metric","$ref":"#/definitions/io.k8s.api.autoscaling.v2.MetricValueStatus"},"name":{"description":"name is the name of the resource in question.","type":"string"}}},"io.k8s.api.batch.v1.CronJob":{"description":"CronJob represents the configuration of a single cron job.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of a cron job, including the schedule. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.batch.v1.CronJobSpec"},"status":{"description":"Current status of a cron job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.batch.v1.CronJobStatus"}},"x-kubernetes-group-version-kind":[{"group":"batch","kind":"CronJob","version":"v1"}]},"io.k8s.api.batch.v1.CronJobList":{"description":"CronJobList is a collection of cron jobs.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of CronJobs.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.batch.v1.CronJob"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"batch","kind":"CronJobList","version":"v1"}]},"io.k8s.api.batch.v1.CronJobSpec":{"description":"CronJobSpec describes how the job execution will look like and when it will actually run.","type":"object","required":["schedule","jobTemplate"],"properties":{"concurrencyPolicy":{"description":"Specifies how to treat concurrent executions of a Job. Valid values are:\n\n- \"Allow\" (default): allows CronJobs to run concurrently; - \"Forbid\": forbids concurrent runs, skipping next run if previous run hasn't finished yet; - \"Replace\": cancels currently running job and replaces it with a new one\n\nPossible enum values:\n - `\"Allow\"` allows CronJobs to run concurrently.\n - `\"Forbid\"` forbids concurrent runs, skipping next run if previous hasn't finished yet.\n - `\"Replace\"` cancels currently running job and replaces it with a new one.","type":"string","enum":["Allow","Forbid","Replace"]},"failedJobsHistoryLimit":{"description":"The number of failed finished jobs to retain. Value must be non-negative integer. Defaults to 1.","type":"integer","format":"int32"},"jobTemplate":{"description":"Specifies the job that will be created when executing a CronJob.","$ref":"#/definitions/io.k8s.api.batch.v1.JobTemplateSpec"},"schedule":{"description":"The schedule in Cron format, see https://en.wikipedia.org/wiki/Cron.","type":"string"},"startingDeadlineSeconds":{"description":"Optional deadline in seconds for starting the job if it misses scheduled time for any reason.  Missed jobs executions will be counted as failed ones.","type":"integer","format":"int64"},"successfulJobsHistoryLimit":{"description":"The number of successful finished jobs to retain. Value must be non-negative integer. Defaults to 3.","type":"integer","format":"int32"},"suspend":{"description":"This flag tells the controller to suspend subsequent executions, it does not apply to already started executions.  Defaults to false.","type":"boolean"},"timeZone":{"description":"The time zone name for the given schedule, see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones. If not specified, this will default to the time zone of the kube-controller-manager process. The set of valid time zone names and the time zone offset is loaded from the system-wide time zone database by the API server during CronJob validation and the controller manager during execution. If no system-wide time zone database can be found a bundled version of the database is used instead. If the time zone name becomes invalid during the lifetime of a CronJob or due to a change in host configuration, the controller will stop creating new new Jobs and will create a system event with the reason UnknownTimeZone. More information can be found in https://kubernetes.io/docs/concepts/workloads/controllers/cron-jobs/#time-zones","type":"string"}}},"io.k8s.api.batch.v1.CronJobStatus":{"description":"CronJobStatus represents the current state of a cron job.","type":"object","properties":{"active":{"description":"A list of pointers to currently running jobs.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"x-kubernetes-list-type":"atomic"},"lastScheduleTime":{"description":"Information when was the last time the job was successfully scheduled.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastSuccessfulTime":{"description":"Information when was the last time the job successfully completed.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"io.k8s.api.batch.v1.Job":{"description":"Job represents the configuration of a single job.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.batch.v1.JobSpec"},"status":{"description":"Current status of a job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.batch.v1.JobStatus"}},"x-kubernetes-group-version-kind":[{"group":"batch","kind":"Job","version":"v1"}]},"io.k8s.api.batch.v1.JobCondition":{"description":"JobCondition describes current state of a job.","type":"object","required":["type","status"],"properties":{"lastProbeTime":{"description":"Last time the condition was checked.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastTransitionTime":{"description":"Last time the condition transit from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Human readable message indicating details about last transition.","type":"string"},"reason":{"description":"(brief) reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of job condition, Complete or Failed.","type":"string"}}},"io.k8s.api.batch.v1.JobList":{"description":"JobList is a collection of jobs.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of Jobs.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.batch.v1.Job"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"batch","kind":"JobList","version":"v1"}]},"io.k8s.api.batch.v1.JobSpec":{"description":"JobSpec describes how the job execution will look like.","type":"object","required":["template"],"properties":{"activeDeadlineSeconds":{"description":"Specifies the duration in seconds relative to the startTime that the job may be continuously active before the system tries to terminate it; value must be positive integer. If a Job is suspended (at creation or through an update), this timer will effectively be stopped and reset when the Job is resumed again.","type":"integer","format":"int64"},"backoffLimit":{"description":"Specifies the number of retries before marking this job failed. Defaults to 6","type":"integer","format":"int32"},"backoffLimitPerIndex":{"description":"Specifies the limit for the number of retries within an index before marking this index as failed. When enabled the number of failures per index is kept in the pod's batch.kubernetes.io/job-index-failure-count annotation. It can only be set when Job's completionMode=Indexed, and the Pod's restart policy is Never. The field is immutable. This field is beta-level. It can be used when the `JobBackoffLimitPerIndex` feature gate is enabled (enabled by default).","type":"integer","format":"int32"},"completionMode":{"description":"completionMode specifies how Pod completions are tracked. It can be `NonIndexed` (default) or `Indexed`.\n\n`NonIndexed` means that the Job is considered complete when there have been .spec.completions successfully completed Pods. Each Pod completion is homologous to each other.\n\n`Indexed` means that the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1), available in the annotation batch.kubernetes.io/job-completion-index. The Job is considered complete when there is one successfully completed Pod for each index. When value is `Indexed`, .spec.completions must be specified and `.spec.parallelism` must be less than or equal to 10^5. In addition, The Pod name takes the form `$(job-name)-$(index)-$(random-string)`, the Pod hostname takes the form `$(job-name)-$(index)`.\n\nMore completion modes can be added in the future. If the Job controller observes a mode that it doesn't recognize, which is possible during upgrades due to version skew, the controller skips updates for the Job.\n\nPossible enum values:\n - `\"Indexed\"` is a Job completion mode. In this mode, the Pods of a Job get an associated completion index from 0 to (.spec.completions - 1). The Job is considered complete when a Pod completes for each completion index.\n - `\"NonIndexed\"` is a Job completion mode. In this mode, the Job is considered complete when there have been .spec.completions successfully completed Pods. Pod completions are homologous to each other.","type":"string","enum":["Indexed","NonIndexed"]},"completions":{"description":"Specifies the desired number of successfully finished pods the job should be run with.  Setting to null means that the success of any pod signals the success of all pods, and allows parallelism to have any positive value.  Setting to 1 means that parallelism is limited to 1 and the success of that pod signals the success of the job. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/","type":"integer","format":"int32"},"managedBy":{"description":"ManagedBy field indicates the controller that manages a Job. The k8s Job controller reconciles jobs which don't have this field at all or the field value is the reserved string `kubernetes.io/job-controller`, but skips reconciling Jobs with a custom value for this field. The value must be a valid domain-prefixed path (e.g. acme.io/foo) - all characters before the first \"/\" must be a valid subdomain as defined by RFC 1123. All characters trailing the first \"/\" must be valid HTTP Path characters as defined by RFC 3986. The value cannot exceed 63 characters. This field is immutable.\n\nThis field is alpha-level. The job controller accepts setting the field when the feature gate JobManagedBy is enabled (disabled by default).","type":"string"},"manualSelector":{"description":"manualSelector controls generation of pod labels and pod selectors. Leave `manualSelector` unset unless you are certain what you are doing. When false or unset, the system pick labels unique to this job and appends those labels to the pod template.  When true, the user is responsible for picking unique labels and specifying the selector.  Failure to pick a unique label may cause this and other jobs to not function correctly.  However, You may see `manualSelector=true` in jobs that were created with the old `extensions/v1beta1` API. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/#specifying-your-own-pod-selector","type":"boolean"},"maxFailedIndexes":{"description":"Specifies the maximal number of failed indexes before marking the Job as failed, when backoffLimitPerIndex is set. Once the number of failed indexes exceeds this number the entire Job is marked as Failed and its execution is terminated. When left as null the job continues execution of all of its indexes and is marked with the `Complete` Job condition. It can only be specified when backoffLimitPerIndex is set. It can be null or up to completions. It is required and must be less than or equal to 10^4 when is completions greater than 10^5. This field is beta-level. It can be used when the `JobBackoffLimitPerIndex` feature gate is enabled (enabled by default).","type":"integer","format":"int32"},"parallelism":{"description":"Specifies the maximum desired number of pods the job should run at any given time. The actual number of pods running in steady state will be less than this number when ((.spec.completions - .status.successful) < .spec.parallelism), i.e. when the work left to do is less than max parallelism. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/","type":"integer","format":"int32"},"podFailurePolicy":{"description":"Specifies the policy of handling failed pods. In particular, it allows to specify the set of actions and conditions which need to be satisfied to take the associated action. If empty, the default behaviour applies - the counter of failed pods, represented by the jobs's .status.failed field, is incremented and it is checked against the backoffLimit. This field cannot be used in combination with restartPolicy=OnFailure.","$ref":"#/definitions/io.k8s.api.batch.v1.PodFailurePolicy"},"podReplacementPolicy":{"description":"podReplacementPolicy specifies when to create replacement Pods. Possible values are: - TerminatingOrFailed means that we recreate pods\n  when they are terminating (has a metadata.deletionTimestamp) or failed.\n- Failed means to wait until a previously created Pod is fully terminated (has phase\n  Failed or Succeeded) before creating a replacement Pod.\n\nWhen using podFailurePolicy, Failed is the the only allowed value. TerminatingOrFailed and Failed are allowed values when podFailurePolicy is not in use. This is an beta field. To use this, enable the JobPodReplacementPolicy feature toggle. This is on by default.\n\nPossible enum values:\n - `\"Failed\"` means to wait until a previously created Pod is fully terminated (has phase Failed or Succeeded) before creating a replacement Pod.\n - `\"TerminatingOrFailed\"` means that we recreate pods when they are terminating (has a metadata.deletionTimestamp) or failed.","type":"string","enum":["Failed","TerminatingOrFailed"]},"selector":{"description":"A label query over pods that should match the pod count. Normally, the system sets this field for you. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"successPolicy":{"description":"successPolicy specifies the policy when the Job can be declared as succeeded. If empty, the default behavior applies - the Job is declared as succeeded only when the number of succeeded pods equals to the completions. When the field is specified, it must be immutable and works only for the Indexed Jobs. Once the Job meets the SuccessPolicy, the lingering pods are terminated.\n\nThis field is beta-level. To use this field, you must enable the `JobSuccessPolicy` feature gate (enabled by default).","$ref":"#/definitions/io.k8s.api.batch.v1.SuccessPolicy"},"suspend":{"description":"suspend specifies whether the Job controller should create Pods or not. If a Job is created with suspend set to true, no Pods are created by the Job controller. If a Job is suspended after creation (i.e. the flag goes from false to true), the Job controller will delete all active Pods associated with this Job. Users must design their workload to gracefully handle this. Suspending a Job will reset the StartTime field of the Job, effectively resetting the ActiveDeadlineSeconds timer too. Defaults to false.","type":"boolean"},"template":{"description":"Describes the pod that will be created when executing a job. The only allowed template.spec.restartPolicy values are \"Never\" or \"OnFailure\". More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"},"ttlSecondsAfterFinished":{"description":"ttlSecondsAfterFinished limits the lifetime of a Job that has finished execution (either Complete or Failed). If this field is set, ttlSecondsAfterFinished after the Job finishes, it is eligible to be automatically deleted. When the Job is being deleted, its lifecycle guarantees (e.g. finalizers) will be honored. If this field is unset, the Job won't be automatically deleted. If this field is set to zero, the Job becomes eligible to be deleted immediately after it finishes.","type":"integer","format":"int32"}}},"io.k8s.api.batch.v1.JobStatus":{"description":"JobStatus represents the current state of a Job.","type":"object","properties":{"active":{"description":"The number of pending and running pods which are not terminating (without a deletionTimestamp). The value is zero for finished jobs.","type":"integer","format":"int32"},"completedIndexes":{"description":"completedIndexes holds the completed indexes when .spec.completionMode = \"Indexed\" in a text format. The indexes are represented as decimal integers separated by commas. The numbers are listed in increasing order. Three or more consecutive numbers are compressed and represented by the first and last element of the series, separated by a hyphen. For example, if the completed indexes are 1, 3, 4, 5 and 7, they are represented as \"1,3-5,7\".","type":"string"},"completionTime":{"description":"Represents time when the job was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC. The completion time is set when the job finishes successfully, and only then. The value cannot be updated or removed. The value indicates the same or later point in time as the startTime field.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"conditions":{"description":"The latest available observations of an object's current state. When a Job fails, one of the conditions will have type \"Failed\" and status true. When a Job is suspended, one of the conditions will have type \"Suspended\" and status true; when the Job is resumed, the status of this condition will become false. When a Job is completed, one of the conditions will have type \"Complete\" and status true.\n\nA job is considered finished when it is in a terminal condition, either \"Complete\" or \"Failed\". A Job cannot have both the \"Complete\" and \"Failed\" conditions. Additionally, it cannot be in the \"Complete\" and \"FailureTarget\" conditions. The \"Complete\", \"Failed\" and \"FailureTarget\" conditions cannot be disabled.\n\nMore info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.batch.v1.JobCondition"},"x-kubernetes-list-type":"atomic","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"failed":{"description":"The number of pods which reached phase Failed. The value increases monotonically.","type":"integer","format":"int32"},"failedIndexes":{"description":"FailedIndexes holds the failed indexes when spec.backoffLimitPerIndex is set. The indexes are represented in the text format analogous as for the `completedIndexes` field, ie. they are kept as decimal integers separated by commas. The numbers are listed in increasing order. Three or more consecutive numbers are compressed and represented by the first and last element of the series, separated by a hyphen. For example, if the failed indexes are 1, 3, 4, 5 and 7, they are represented as \"1,3-5,7\". The set of failed indexes cannot overlap with the set of completed indexes.\n\nThis field is beta-level. It can be used when the `JobBackoffLimitPerIndex` feature gate is enabled (enabled by default).","type":"string"},"ready":{"description":"The number of active pods which have a Ready condition and are not terminating (without a deletionTimestamp).","type":"integer","format":"int32"},"startTime":{"description":"Represents time when the job controller started processing a job. When a Job is created in the suspended state, this field is not set until the first time it is resumed. This field is reset every time a Job is resumed from suspension. It is represented in RFC3339 form and is in UTC.\n\nOnce set, the field can only be removed when the job is suspended. The field cannot be modified while the job is unsuspended or finished.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"succeeded":{"description":"The number of pods which reached phase Succeeded. The value increases monotonically for a given spec. However, it may decrease in reaction to scale down of elastic indexed jobs.","type":"integer","format":"int32"},"terminating":{"description":"The number of pods which are terminating (in phase Pending or Running and have a deletionTimestamp).\n\nThis field is beta-level. The job controller populates the field when the feature gate JobPodReplacementPolicy is enabled (enabled by default).","type":"integer","format":"int32"},"uncountedTerminatedPods":{"description":"uncountedTerminatedPods holds the UIDs of Pods that have terminated but the job controller hasn't yet accounted for in the status counters.\n\nThe job controller creates pods with a finalizer. When a pod terminates (succeeded or failed), the controller does three steps to account for it in the job status:\n\n1. Add the pod UID to the arrays in this field. 2. Remove the pod finalizer. 3. Remove the pod UID from the arrays while increasing the corresponding\n    counter.\n\nOld jobs might not be tracked using this field, in which case the field remains null. The structure is empty for finished jobs.","$ref":"#/definitions/io.k8s.api.batch.v1.UncountedTerminatedPods"}}},"io.k8s.api.batch.v1.JobTemplateSpec":{"description":"JobTemplateSpec describes the data a Job should have when created from a template","type":"object","properties":{"metadata":{"description":"Standard object's metadata of the jobs created from this template. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the job. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.batch.v1.JobSpec"}}},"io.k8s.api.batch.v1.PodFailurePolicy":{"description":"PodFailurePolicy describes how failed pods influence the backoffLimit.","type":"object","required":["rules"],"properties":{"rules":{"description":"A list of pod failure policy rules. The rules are evaluated in order. Once a rule matches a Pod failure, the remaining of the rules are ignored. When no rule matches the Pod failure, the default handling applies - the counter of pod failures is incremented and it is checked against the backoffLimit. At most 20 elements are allowed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.batch.v1.PodFailurePolicyRule"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.batch.v1.PodFailurePolicyOnExitCodesRequirement":{"description":"PodFailurePolicyOnExitCodesRequirement describes the requirement for handling a failed pod based on its container exit codes. In particular, it lookups the .state.terminated.exitCode for each app container and init container status, represented by the .status.containerStatuses and .status.initContainerStatuses fields in the Pod status, respectively. Containers completed with success (exit code 0) are excluded from the requirement check.","type":"object","required":["operator","values"],"properties":{"containerName":{"description":"Restricts the check for exit codes to the container with the specified name. When null, the rule applies to all containers. When specified, it should match one the container or initContainer names in the pod template.","type":"string"},"operator":{"description":"Represents the relationship between the container exit code(s) and the specified values. Containers completed with success (exit code 0) are excluded from the requirement check. Possible values are:\n\n- In: the requirement is satisfied if at least one container exit code\n  (might be multiple if there are multiple containers not restricted\n  by the 'containerName' field) is in the set of specified values.\n- NotIn: the requirement is satisfied if at least one container exit code\n  (might be multiple if there are multiple containers not restricted\n  by the 'containerName' field) is not in the set of specified values.\nAdditional values are considered to be added in the future. Clients should react to an unknown operator by assuming the requirement is not satisfied.\n\nPossible enum values:\n - `\"In\"`\n - `\"NotIn\"`","type":"string","enum":["In","NotIn"]},"values":{"description":"Specifies the set of values. Each returned container exit code (might be multiple in case of multiple containers) is checked against this set of values with respect to the operator. The list of values must be ordered and must not contain duplicates. Value '0' cannot be used for the In operator. At least one element is required. At most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}},"io.k8s.api.batch.v1.PodFailurePolicyOnPodConditionsPattern":{"description":"PodFailurePolicyOnPodConditionsPattern describes a pattern for matching an actual pod condition type.","type":"object","required":["type","status"],"properties":{"status":{"description":"Specifies the required Pod condition status. To match a pod condition it is required that the specified status equals the pod condition status. Defaults to True.","type":"string"},"type":{"description":"Specifies the required Pod condition type. To match a pod condition it is required that specified type equals the pod condition type.","type":"string"}}},"io.k8s.api.batch.v1.PodFailurePolicyRule":{"description":"PodFailurePolicyRule describes how a pod failure is handled when the requirements are met. One of onExitCodes and onPodConditions, but not both, can be used in each rule.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a pod failure when the requirements are satisfied. Possible values are:\n\n- FailJob: indicates that the pod's job is marked as Failed and all\n  running pods are terminated.\n- FailIndex: indicates that the pod's index is marked as Failed and will\n  not be restarted.\n  This value is beta-level. It can be used when the\n  `JobBackoffLimitPerIndex` feature gate is enabled (enabled by default).\n- Ignore: indicates that the counter towards the .backoffLimit is not\n  incremented and a replacement pod is created.\n- Count: indicates that the pod is handled in the default way - the\n  counter towards the .backoffLimit is incremented.\nAdditional values are considered to be added in the future. Clients should react to an unknown action by skipping the rule.\n\nPossible enum values:\n - `\"Count\"` This is an action which might be taken on a pod failure - the pod failure is handled in the default way - the counter towards .backoffLimit, represented by the job's .status.failed field, is incremented.\n - `\"FailIndex\"` This is an action which might be taken on a pod failure - mark the Job's index as failed to avoid restarts within this index. This action can only be used when backoffLimitPerIndex is set. This value is beta-level.\n - `\"FailJob\"` This is an action which might be taken on a pod failure - mark the pod's job as Failed and terminate all running pods.\n - `\"Ignore\"` This is an action which might be taken on a pod failure - the counter towards .backoffLimit, represented by the job's .status.failed field, is not incremented and a replacement pod is created.","type":"string","enum":["Count","FailIndex","FailJob","Ignore"]},"onExitCodes":{"description":"Represents the requirement on the container exit codes.","$ref":"#/definitions/io.k8s.api.batch.v1.PodFailurePolicyOnExitCodesRequirement"},"onPodConditions":{"description":"Represents the requirement on the pod conditions. The requirement is represented as a list of pod condition patterns. The requirement is satisfied if at least one pattern matches an actual pod condition. At most 20 elements are allowed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.batch.v1.PodFailurePolicyOnPodConditionsPattern"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.batch.v1.SuccessPolicy":{"description":"SuccessPolicy describes when a Job can be declared as succeeded based on the success of some indexes.","type":"object","required":["rules"],"properties":{"rules":{"description":"rules represents the list of alternative rules for the declaring the Jobs as successful before `.status.succeeded >= .spec.completions`. Once any of the rules are met, the \"SucceededCriteriaMet\" condition is added, and the lingering pods are removed. The terminal state for such a Job has the \"Complete\" condition. Additionally, these rules are evaluated in order; Once the Job meets one of the rules, other rules are ignored. At most 20 elements are allowed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.batch.v1.SuccessPolicyRule"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.batch.v1.SuccessPolicyRule":{"description":"SuccessPolicyRule describes rule for declaring a Job as succeeded. Each rule must have at least one of the \"succeededIndexes\" or \"succeededCount\" specified.","type":"object","properties":{"succeededCount":{"description":"succeededCount specifies the minimal required size of the actual set of the succeeded indexes for the Job. When succeededCount is used along with succeededIndexes, the check is constrained only to the set of indexes specified by succeededIndexes. For example, given that succeededIndexes is \"1-4\", succeededCount is \"3\", and completed indexes are \"1\", \"3\", and \"5\", the Job isn't declared as succeeded because only \"1\" and \"3\" indexes are considered in that rules. When this field is null, this doesn't default to any value and is never evaluated at any time. When specified it needs to be a positive integer.","type":"integer","format":"int32"},"succeededIndexes":{"description":"succeededIndexes specifies the set of indexes which need to be contained in the actual set of the succeeded indexes for the Job. The list of indexes must be within 0 to \".spec.completions-1\" and must not contain duplicates. At least one element is required. The indexes are represented as intervals separated by commas. The intervals can be a decimal integer or a pair of decimal integers separated by a hyphen. The number are listed in represented by the first and last element of the series, separated by a hyphen. For example, if the completed indexes are 1, 3, 4, 5 and 7, they are represented as \"1,3-5,7\". When this field is null, this field doesn't default to any value and is never evaluated at any time.","type":"string"}}},"io.k8s.api.batch.v1.UncountedTerminatedPods":{"description":"UncountedTerminatedPods holds UIDs of Pods that have terminated but haven't been accounted in Job status counters.","type":"object","properties":{"failed":{"description":"failed holds UIDs of failed Pods.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"succeeded":{"description":"succeeded holds UIDs of succeeded Pods.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"io.k8s.api.certificates.v1.CertificateSigningRequest":{"description":"CertificateSigningRequest objects provide a mechanism to obtain x509 certificates by submitting a certificate signing request, and having it asynchronously approved and issued.\n\nKubelets use this API to obtain:\n 1. client certificates to authenticate to kube-apiserver (with the \"kubernetes.io/kube-apiserver-client-kubelet\" signerName).\n 2. serving certificates for TLS endpoints kube-apiserver can connect to securely (with the \"kubernetes.io/kubelet-serving\" signerName).\n\nThis API can be used to request client certificates to authenticate to kube-apiserver (with the \"kubernetes.io/kube-apiserver-client\" signerName), or to obtain certificates from custom non-Kubernetes signers.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec contains the certificate request, and is immutable after creation. Only the request, signerName, expirationSeconds, and usages fields can be set on creation. Other fields are derived by Kubernetes and cannot be modified by users.","$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequestSpec"},"status":{"description":"status contains information about whether the request is approved or denied, and the certificate issued by the signer, or the failure condition indicating signer failure.","$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequestStatus"}},"x-kubernetes-group-version-kind":[{"group":"certificates.k8s.io","kind":"CertificateSigningRequest","version":"v1"}]},"io.k8s.api.certificates.v1.CertificateSigningRequestCondition":{"description":"CertificateSigningRequestCondition describes a condition of a CertificateSigningRequest object","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time the condition last transitioned from one status to another. If unset, when a new condition type is added or an existing condition's status is changed, the server defaults this to the current time.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastUpdateTime":{"description":"lastUpdateTime is the time of the last update to this condition","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"message contains a human readable message with details about the request state","type":"string"},"reason":{"description":"reason indicates a brief reason for the request state","type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown. Approved, Denied, and Failed conditions may not be \"False\" or \"Unknown\".","type":"string"},"type":{"description":"type of the condition. Known conditions are \"Approved\", \"Denied\", and \"Failed\".\n\nAn \"Approved\" condition is added via the /approval subresource, indicating the request was approved and should be issued by the signer.\n\nA \"Denied\" condition is added via the /approval subresource, indicating the request was denied and should not be issued by the signer.\n\nA \"Failed\" condition is added via the /status subresource, indicating the signer failed to issue the certificate.\n\nApproved and Denied conditions are mutually exclusive. Approved, Denied, and Failed conditions cannot be removed once added.\n\nOnly one condition of a given type is allowed.","type":"string"}}},"io.k8s.api.certificates.v1.CertificateSigningRequestList":{"description":"CertificateSigningRequestList is a collection of CertificateSigningRequest objects","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a collection of CertificateSigningRequest objects","type":"array","items":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"certificates.k8s.io","kind":"CertificateSigningRequestList","version":"v1"}]},"io.k8s.api.certificates.v1.CertificateSigningRequestSpec":{"description":"CertificateSigningRequestSpec contains the certificate request.","type":"object","required":["request","signerName"],"properties":{"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the issued certificate. The certificate signer may issue a certificate with a different validity duration so a client must check the delta between the notBefore and and notAfter fields in the issued certificate to determine the actual duration.\n\nThe v1.22+ in-tree implementations of the well-known Kubernetes signers will honor this field as long as the requested duration is not greater than the maximum duration they will honor per the --cluster-signing-duration CLI flag to the Kubernetes controller manager.\n\nCertificate signers may not honor this field for various reasons:\n\n  1. Old signer that is unaware of the field (such as the in-tree\n     implementations prior to v1.22)\n  2. Signer whose configured maximum is shorter than the requested duration\n  3. Signer whose configured minimum is longer than the requested duration\n\nThe minimum valid value for expirationSeconds is 600, i.e. 10 minutes.","type":"integer","format":"int32"},"extra":{"description":"extra contains extra attributes of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.","type":"object","additionalProperties":{"type":"array","items":{"type":"string"}}},"groups":{"description":"groups contains group membership of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"request":{"description":"request contains an x509 certificate signing request encoded in a \"CERTIFICATE REQUEST\" PEM block. When serialized as JSON or YAML, the data is additionally base64-encoded.","type":"string","format":"byte","x-kubernetes-list-type":"atomic"},"signerName":{"description":"signerName indicates the requested signer, and is a qualified name.\n\nList/watch requests for CertificateSigningRequests can filter on this field using a \"spec.signerName=NAME\" fieldSelector.\n\nWell-known Kubernetes signers are:\n 1. \"kubernetes.io/kube-apiserver-client\": issues client certificates that can be used to authenticate to kube-apiserver.\n  Requests for this signer are never auto-approved by kube-controller-manager, can be issued by the \"csrsigning\" controller in kube-controller-manager.\n 2. \"kubernetes.io/kube-apiserver-client-kubelet\": issues client certificates that kubelets use to authenticate to kube-apiserver.\n  Requests for this signer can be auto-approved by the \"csrapproving\" controller in kube-controller-manager, and can be issued by the \"csrsigning\" controller in kube-controller-manager.\n 3. \"kubernetes.io/kubelet-serving\" issues serving certificates that kubelets use to serve TLS endpoints, which kube-apiserver can connect to securely.\n  Requests for this signer are never auto-approved by kube-controller-manager, and can be issued by the \"csrsigning\" controller in kube-controller-manager.\n\nMore details are available at https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers\n\nCustom signerNames can also be specified. The signer defines:\n 1. Trust distribution: how trust (CA bundles) are distributed.\n 2. Permitted subjects: and behavior when a disallowed subject is requested.\n 3. Required, permitted, or forbidden x509 extensions in the request (including whether subjectAltNames are allowed, which types, restrictions on allowed values) and behavior when a disallowed extension is requested.\n 4. Required, permitted, or forbidden key usages / extended key usages.\n 5. Expiration/certificate lifetime: whether it is fixed by the signer, configurable by the admin.\n 6. Whether or not requests for CA certificates are allowed.","type":"string"},"uid":{"description":"uid contains the uid of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.","type":"string"},"usages":{"description":"usages specifies a set of key usages requested in the issued certificate.\n\nRequests for TLS client certificates typically request: \"digital signature\", \"key encipherment\", \"client auth\".\n\nRequests for TLS serving certificates typically request: \"key encipherment\", \"digital signature\", \"server auth\".\n\nValid values are:\n \"signing\", \"digital signature\", \"content commitment\",\n \"key encipherment\", \"key agreement\", \"data encipherment\",\n \"cert sign\", \"crl sign\", \"encipher only\", \"decipher only\", \"any\",\n \"server auth\", \"client auth\",\n \"code signing\", \"email protection\", \"s/mime\",\n \"ipsec end system\", \"ipsec tunnel\", \"ipsec user\",\n \"timestamping\", \"ocsp signing\", \"microsoft sgc\", \"netscape sgc\"","type":"array","items":{"type":"string","enum":["any","cert sign","client auth","code signing","content commitment","crl sign","data encipherment","decipher only","digital signature","email protection","encipher only","ipsec end system","ipsec tunnel","ipsec user","key agreement","key encipherment","microsoft sgc","netscape sgc","ocsp signing","s/mime","server auth","signing","timestamping"]},"x-kubernetes-list-type":"atomic"},"username":{"description":"username contains the name of the user that created the CertificateSigningRequest. Populated by the API server on creation and immutable.","type":"string"}}},"io.k8s.api.certificates.v1.CertificateSigningRequestStatus":{"description":"CertificateSigningRequestStatus contains conditions used to indicate approved/denied/failed status of the request, and the issued certificate.","type":"object","properties":{"certificate":{"description":"certificate is populated with an issued certificate by the signer after an Approved condition is present. This field is set via the /status subresource. Once populated, this field is immutable.\n\nIf the certificate signing request is denied, a condition of type \"Denied\" is added and this field remains empty. If the signer cannot issue the certificate, a condition of type \"Failed\" is added and this field remains empty.\n\nValidation requirements:\n 1. certificate must contain one or more PEM blocks.\n 2. All PEM blocks must have the \"CERTIFICATE\" label, contain no headers, and the encoded data\n  must be a BER-encoded ASN.1 Certificate structure as described in section 4 of RFC5280.\n 3. Non-PEM content may appear before or after the \"CERTIFICATE\" PEM blocks and is unvalidated,\n  to allow for explanatory text as described in section 5.2 of RFC7468.\n\nIf more than one PEM block is present, and the definition of the requested spec.signerName does not indicate otherwise, the first block is the issued certificate, and subsequent blocks should be treated as intermediate certificates and presented in TLS handshakes.\n\nThe certificate is encoded in PEM format.\n\nWhen serialized as JSON or YAML, the data is additionally base64-encoded, so it consists of:\n\n    base64(\n    -----BEGIN CERTIFICATE-----\n    ...\n    -----END CERTIFICATE-----\n    )","type":"string","format":"byte","x-kubernetes-list-type":"atomic"},"conditions":{"description":"conditions applied to the request. Known conditions are \"Approved\", \"Denied\", and \"Failed\".","type":"array","items":{"$ref":"#/definitions/io.k8s.api.certificates.v1.CertificateSigningRequestCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}},"io.k8s.api.coordination.v1.Lease":{"description":"Lease defines a lease concept.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec contains the specification of the Lease. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.coordination.v1.LeaseSpec"}},"x-kubernetes-group-version-kind":[{"group":"coordination.k8s.io","kind":"Lease","version":"v1"}]},"io.k8s.api.coordination.v1.LeaseList":{"description":"LeaseList is a list of Lease objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of schema objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.coordination.v1.Lease"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"coordination.k8s.io","kind":"LeaseList","version":"v1"}]},"io.k8s.api.coordination.v1.LeaseSpec":{"description":"LeaseSpec is a specification of a Lease.","type":"object","properties":{"acquireTime":{"description":"acquireTime is a time when the current lease was acquired.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.MicroTime"},"holderIdentity":{"description":"holderIdentity contains the identity of the holder of a current lease. If Coordinated Leader Election is used, the holder identity must be equal to the elected LeaseCandidate.metadata.name field.","type":"string"},"leaseDurationSeconds":{"description":"leaseDurationSeconds is a duration that candidates for a lease need to wait to force acquire it. This is measured against the time of last observed renewTime.","type":"integer","format":"int32"},"leaseTransitions":{"description":"leaseTransitions is the number of transitions of a lease between holders.","type":"integer","format":"int32"},"preferredHolder":{"description":"PreferredHolder signals to a lease holder that the lease has a more optimal holder and should be given up. This field can only be set if Strategy is also set.","type":"string"},"renewTime":{"description":"renewTime is a time when the current holder of a lease has last updated the lease.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.MicroTime"},"strategy":{"description":"Strategy indicates the strategy for picking the leader for coordinated leader election. If the field is not specified, there is no active coordination for this lease. (Alpha) Using this field requires the CoordinatedLeaderElection feature gate to be enabled.","type":"string"}}},"io.k8s.api.core.v1.AWSElasticBlockStoreVolumeSource":{"description":"Represents a Persistent Disk resource in AWS.\n\nAn AWS EBS disk must exist before mounting to a container. The disk must also be in the same AWS zone as the kubelet. An AWS EBS disk can only be mounted as read/write once. AWS EBS volumes support ownership management and SELinux relabeling.","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as \"1\". Similarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"io.k8s.api.core.v1.Affinity":{"description":"Affinity is a group of affinity scheduling rules.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","$ref":"#/definitions/io.k8s.api.core.v1.NodeAffinity"},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","$ref":"#/definitions/io.k8s.api.core.v1.PodAffinity"},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","$ref":"#/definitions/io.k8s.api.core.v1.PodAntiAffinity"}}},"io.k8s.api.core.v1.AppArmorProfile":{"description":"AppArmorProfile defines a pod or container's AppArmor settings.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used. The profile must be preconfigured on the node to work. Must match the loaded name of the profile. Must be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied. Valid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.\n\nPossible enum values:\n - `\"Localhost\"` indicates that a profile pre-loaded on the node should be used.\n - `\"RuntimeDefault\"` indicates that the container runtime's default AppArmor profile should be used.\n - `\"Unconfined\"` indicates that no AppArmor profile should be enforced.","type":"string","enum":["Localhost","RuntimeDefault","Unconfined"]}},"x-kubernetes-unions":[{"discriminator":"type","fields-to-discriminateBy":{"localhostProfile":"LocalhostProfile"}}]},"io.k8s.api.core.v1.AttachedVolume":{"description":"AttachedVolume describes a volume attached to a node","type":"object","required":["name","devicePath"],"properties":{"devicePath":{"description":"DevicePath represents the device path where the volume should be available","type":"string"},"name":{"description":"Name of the attached volume","type":"string"}}},"io.k8s.api.core.v1.AzureDiskVolumeSource":{"description":"AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.\n\nPossible enum values:\n - `\"None\"`\n - `\"ReadOnly\"`\n - `\"ReadWrite\"`","type":"string","enum":["None","ReadOnly","ReadWrite"]},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared\n\nPossible enum values:\n - `\"Dedicated\"`\n - `\"Managed\"`\n - `\"Shared\"`","type":"string","enum":["Dedicated","Managed","Shared"]},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"}}},"io.k8s.api.core.v1.AzureFilePersistentVolumeSource":{"description":"AzureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the name of secret that contains Azure Storage Account Name and Key","type":"string"},"secretNamespace":{"description":"secretNamespace is the namespace of the secret that contains Azure Storage Account Name and Key default is the same as the Pod","type":"string"},"shareName":{"description":"shareName is the azure Share Name","type":"string"}}},"io.k8s.api.core.v1.AzureFileVolumeSource":{"description":"AzureFile represents an Azure File Service mount on the host and bind mount to the pod.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"io.k8s.api.core.v1.Binding":{"description":"Binding ties one object to another; for example, a pod is bound to a node by a scheduler. Deprecated in 1.7, please use the bindings subresource of pods instead.","type":"object","required":["target"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"target":{"description":"The target object that you want to bind to the standard object.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Binding","version":"v1"}]},"io.k8s.api.core.v1.CSIPersistentVolumeSource":{"description":"Represents storage that is managed by an external CSI volume driver (Beta feature)","type":"object","required":["driver","volumeHandle"],"properties":{"controllerExpandSecretRef":{"description":"controllerExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerExpandVolume call. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"controllerPublishSecretRef":{"description":"controllerPublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI ControllerPublishVolume and ControllerUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"driver":{"description":"driver is the name of the driver to use for this volume. Required.","type":"string"},"fsType":{"description":"fsType to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\".","type":"string"},"nodeExpandSecretRef":{"description":"nodeExpandSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeExpandVolume call. This field is optional, may be omitted if no secret is required. If the secret object contains more than one secret, all secrets are passed.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"nodeStageSecretRef":{"description":"nodeStageSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodeStageVolume and NodeStageVolume and NodeUnstageVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secrets are passed.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"readOnly":{"description":"readOnly value to pass to ControllerPublishVolumeRequest. Defaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes of the volume to publish.","type":"object","additionalProperties":{"type":"string"}},"volumeHandle":{"description":"volumeHandle is the unique volume name returned by the CSI volume plugin’s CreateVolume to refer to the volume on all subsequent calls. Required.","type":"string"}}},"io.k8s.api.core.v1.CSIVolumeSource":{"description":"Represents a source location of a volume to mount, managed by an external CSI driver","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\". If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and  may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"io.k8s.api.core.v1.Capabilities":{"description":"Adds and removes POSIX capabilities from running containers.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.Capabilities_v2":{"description":"Adds and removes POSIX capabilities from running containers.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"type":"string"}},"drop":{"description":"Removed capabilities","type":"array","items":{"type":"string"}}}},"io.k8s.api.core.v1.CephFSPersistentVolumeSource":{"description":"Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"user":{"description":"user is Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.CephFSVolumeSource":{"description":"Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"user":{"description":"user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.CephFSVolumeSource_v2":{"description":"Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"user":{"description":"user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.CephFSVolumeSource_v3":{"description":"Represents a Ceph Filesystem mount that lasts the lifetime of a pod Cephfs volumes do not support ownership management or SELinux relabeling.","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"user":{"description":"user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.CinderPersistentVolumeSource":{"description":"Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is Optional: points to a secret object containing parameters used to connect to OpenStack.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"volumeID":{"description":"volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"io.k8s.api.core.v1.CinderVolumeSource":{"description":"Represents a cinder volume resource in Openstack. A Cinder volume must exist before mounting to a container. The volume must also be in the same region as the kubelet. Cinder volumes support ownership management and SELinux relabeling.","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect to OpenStack.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"volumeID":{"description":"volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"io.k8s.api.core.v1.ClaimSource":{"description":"ClaimSource describes a reference to a ResourceClaim.\n\nExactly one of these fields should be set.  Consumers of this type must treat an empty object as if it has an unknown value.","type":"object","properties":{"resourceClaimName":{"description":"ResourceClaimName is the name of a ResourceClaim object in the same namespace as this pod.","type":"string"},"resourceClaimTemplateName":{"description":"ResourceClaimTemplateName is the name of a ResourceClaimTemplate object in the same namespace as this pod.\n\nThe template will be used to create a new ResourceClaim, which will be bound to this pod. When this pod is deleted, the ResourceClaim will also be deleted. The pod name and resource name, along with a generated component, will be used to form a unique name for the ResourceClaim, which will be recorded in pod.status.resourceClaimStatuses.\n\nThis field is immutable and no changes will be made to the corresponding ResourceClaim by the control plane after creating the ResourceClaim.","type":"string"}}},"io.k8s.api.core.v1.ClientIPConfig":{"description":"ClientIPConfig represents the configurations of Client IP based session affinity.","type":"object","properties":{"timeoutSeconds":{"description":"timeoutSeconds specifies the seconds of ClientIP type session sticky time. The value must be >0 && <=86400(for 1 day) if ServiceAffinity == \"ClientIP\". Default value is 10800(for 3 hours).","type":"integer","format":"int32"}}},"io.k8s.api.core.v1.ClusterTrustBundleProjection":{"description":"ClusterTrustBundleProjection describes how to select a set of ClusterTrustBundle objects and project their contents into the pod filesystem.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has effect if signerName is set.  Mutually-exclusive with name.  If unset, interpreted as \"match nothing\".  If set but empty, interpreted as \"match everything\".","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive with signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available.  If using name, then the named ClusterTrustBundle is allowed not to exist.  If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name.  The contents of all selected ClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"io.k8s.api.core.v1.ComponentCondition":{"description":"Information about the condition of a component.","type":"object","required":["type","status"],"properties":{"error":{"description":"Condition error code for a component. For example, a health check error code.","type":"string"},"message":{"description":"Message about the condition for a component. For example, information about a health check.","type":"string"},"status":{"description":"Status of the condition for a component. Valid values for \"Healthy\": \"True\", \"False\", or \"Unknown\".","type":"string"},"type":{"description":"Type of condition for a component. Valid value: \"Healthy\"","type":"string"}}},"io.k8s.api.core.v1.ComponentStatus":{"description":"ComponentStatus (and ComponentStatusList) holds the cluster validation info. Deprecated: This API is deprecated in v1.19+","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"conditions":{"description":"List of component conditions observed","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ComponentCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ComponentStatus","version":"v1"}]},"io.k8s.api.core.v1.ComponentStatusList":{"description":"Status of all the conditions for the component as a list of ComponentStatus objects. Deprecated: This API is deprecated in v1.19+","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ComponentStatus objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ComponentStatus"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ComponentStatusList","version":"v1"}]},"io.k8s.api.core.v1.ConfigMap":{"description":"ConfigMap holds configuration data for pods to consume.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"binaryData":{"description":"BinaryData contains the binary data. Each key must consist of alphanumeric characters, '-', '_' or '.'. BinaryData can contain byte sequences that are not in the UTF-8 range. The keys stored in BinaryData must not overlap with the ones in the Data field, this is enforced during validation process. Using this field will require 1.10+ apiserver and kubelet.","type":"object","additionalProperties":{"type":"string","format":"byte"}},"data":{"description":"Data contains the configuration data. Each key must consist of alphanumeric characters, '-', '_' or '.'. Values with non-UTF-8 byte sequences must use the BinaryData field. The keys stored in Data must not overlap with the keys in the BinaryData field, this is enforced during validation process.","type":"object","additionalProperties":{"type":"string"}},"immutable":{"description":"Immutable, if set to true, ensures that data stored in the ConfigMap cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ConfigMap","version":"v1"}]},"io.k8s.api.core.v1.ConfigMapEnvSource":{"description":"ConfigMapEnvSource selects a ConfigMap to populate the environment variables with.\n\nThe contents of the target ConfigMap's Data field will represent the key-value pairs as environment variables.","type":"object","properties":{"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}}},"io.k8s.api.core.v1.ConfigMapEnvSource_v2":{"description":"ConfigMapEnvSource selects a ConfigMap to populate the environment variables with.\n\nThe contents of the target ConfigMap's Data field will represent the key-value pairs as environment variables.","type":"object","properties":{"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}}},"io.k8s.api.core.v1.ConfigMapKeySelector":{"description":"Selects a key from a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.ConfigMapKeySelector_v2":{"description":"Selects a key from a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.ConfigMapList":{"description":"ConfigMapList is a resource containing a list of ConfigMap objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of ConfigMaps.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ConfigMap"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ConfigMapList","version":"v1"}]},"io.k8s.api.core.v1.ConfigMapNodeConfigSource":{"description":"ConfigMapNodeConfigSource contains the information to reference a ConfigMap as a config source for the Node. This API is deprecated since 1.22: https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configuration","type":"object","required":["namespace","name","kubeletConfigKey"],"properties":{"kubeletConfigKey":{"description":"KubeletConfigKey declares which key of the referenced ConfigMap corresponds to the KubeletConfiguration structure This field is required in all cases.","type":"string"},"name":{"description":"Name is the metadata.name of the referenced ConfigMap. This field is required in all cases.","type":"string"},"namespace":{"description":"Namespace is the metadata.namespace of the referenced ConfigMap. This field is required in all cases.","type":"string"},"resourceVersion":{"description":"ResourceVersion is the metadata.ResourceVersion of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status.","type":"string"},"uid":{"description":"UID is the metadata.UID of the referenced ConfigMap. This field is forbidden in Node.Spec, and required in Node.Status.","type":"string"}}},"io.k8s.api.core.v1.ConfigMapProjection":{"description":"Adapts a ConfigMap into a projected volume.\n\nThe contents of the target ConfigMap's Data field will be presented in a projected volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. Note that this is identical to a configmap volume source without the default mode.","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}}},"io.k8s.api.core.v1.ConfigMapProjection_v2":{"description":"Adapts a ConfigMap into a projected volume.\n\nThe contents of the target ConfigMap's Data field will be presented in a projected volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. Note that this is identical to a configmap volume source without the default mode.","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"}},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}}},"io.k8s.api.core.v1.ConfigMapVolumeSource":{"description":"Adapts a ConfigMap into a volume.\n\nThe contents of the target ConfigMap's Data field will be presented in a volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. ConfigMap volumes support ownership management and SELinux relabeling.","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}}},"io.k8s.api.core.v1.ConfigMapVolumeSource_v2":{"description":"Adapts a ConfigMap into a volume.\n\nThe contents of the target ConfigMap's Data field will be presented in a volume as files using the keys in the Data field as the file names, unless the items element is populated with specific mappings of keys to paths. ConfigMap volumes support ownership management and SELinux relabeling.","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"}},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}}},"io.k8s.api.core.v1.Container":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint. The container image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell. The container image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"envFrom":{"description":"List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvFromSource"},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\nPossible enum values:\n - `\"Always\"` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.\n - `\"IfNotPresent\"` means that kubelet pulls if the image isn't present on disk. Container will fail if the image isn't present and the pull fails.\n - `\"Never\"` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn't present","type":"string","enum":["Always","IfNotPresent","Never"]},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events. Cannot be updated.","$ref":"#/definitions/io.k8s.api.core.v1.Lifecycle"},"livenessProbe":{"description":"Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"name":{"description":"Name of the container specified as a DNS_LABEL. Each container in a pod must have a unique name (DNS_LABEL). Cannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Modifying this array with strategic merge patch may corrupt the data. For more information See https://github.com/kubernetes/kubernetes/issues/108255. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerPort"},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"containerPort","x-kubernetes-patch-strategy":"merge"},"readinessProbe":{"description":"Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerResizePolicy"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod. This field may only be set for init containers, and the only allowed value is \"Always\". For non-init containers or when this field is not specified, the restart behavior is defined by the Pod's restart policy and the container type. Setting the RestartPolicy as \"Always\" for the init container will have the following effect: this init container will be continually restarted on exit until all regular containers have terminated. Once all regular containers have completed, all init containers with restartPolicy \"Always\" will be shut down. This lifecycle differs from normal init containers and is often referred to as a \"sidecar\" container. Although this init container still starts in the init container sequence, it does not wait for the container to complete before proceeding to the next init container. Instead, the next init container starts immediately after this init container is started, or after any startupProbe has successfully completed.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","$ref":"#/definitions/io.k8s.api.core.v1.SecurityContext"},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\nPossible enum values:\n - `\"FallbackToLogsOnError\"` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.\n - `\"File\"` is the default behavior and will set the container status message to the contents of the container's terminationMessagePath when the container exits.","type":"string","enum":["FallbackToLogsOnError","File"]},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeDevice"},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"devicePath","x-kubernetes-patch-strategy":"merge"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeMount"},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"mountPath","x-kubernetes-patch-strategy":"merge"},"workingDir":{"description":"Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.","type":"string"}}},"io.k8s.api.core.v1.ContainerImage":{"description":"Describe a container image","type":"object","properties":{"names":{"description":"Names by which this image is known. e.g. [\"kubernetes.example/hyperkube:v1.0.7\", \"cloud-vendor.registry.example/cloud-vendor/hyperkube:v1.0.7\"]","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"sizeBytes":{"description":"The size of the image in bytes.","type":"integer","format":"int64"}}},"io.k8s.api.core.v1.ContainerPort":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address. This must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host. If specified, this must be a valid port number, 0 < x < 65536. If HostNetwork is specified, this must match ContainerPort. Most containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP. Defaults to \"TCP\".\n\nPossible enum values:\n - `\"SCTP\"` is the SCTP protocol.\n - `\"TCP\"` is the TCP protocol.\n - `\"UDP\"` is the UDP protocol.","type":"string","enum":["SCTP","TCP","UDP"]}}},"io.k8s.api.core.v1.ContainerResizePolicy":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies. Supported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized. If not specified, it defaults to NotRequired.","type":"string"}}},"io.k8s.api.core.v1.ContainerState":{"description":"ContainerState holds a possible state of container. Only one of its members may be specified. If none of them is specified, the default one is ContainerStateWaiting.","type":"object","properties":{"running":{"description":"Details about a running container","$ref":"#/definitions/io.k8s.api.core.v1.ContainerStateRunning"},"terminated":{"description":"Details about a terminated container","$ref":"#/definitions/io.k8s.api.core.v1.ContainerStateTerminated"},"waiting":{"description":"Details about a waiting container","$ref":"#/definitions/io.k8s.api.core.v1.ContainerStateWaiting"}}},"io.k8s.api.core.v1.ContainerStateRunning":{"description":"ContainerStateRunning is a running state of a container.","type":"object","properties":{"startedAt":{"description":"Time at which the container was last (re-)started","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"io.k8s.api.core.v1.ContainerStateTerminated":{"description":"ContainerStateTerminated is a terminated state of a container.","type":"object","required":["exitCode"],"properties":{"containerID":{"description":"Container's ID in the format '<type>://<container_id>'","type":"string"},"exitCode":{"description":"Exit status from the last termination of the container","type":"integer","format":"int32"},"finishedAt":{"description":"Time at which the container last terminated","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Message regarding the last termination of the container","type":"string"},"reason":{"description":"(brief) reason from the last termination of the container","type":"string"},"signal":{"description":"Signal from the last termination of the container","type":"integer","format":"int32"},"startedAt":{"description":"Time at which previous execution of the container started","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"io.k8s.api.core.v1.ContainerStateWaiting":{"description":"ContainerStateWaiting is a waiting state of a container.","type":"object","properties":{"message":{"description":"Message regarding why the container is not yet running.","type":"string"},"reason":{"description":"(brief) reason the container is not yet running.","type":"string"}}},"io.k8s.api.core.v1.ContainerStatus":{"description":"ContainerStatus contains details for the current status of this container.","type":"object","required":["name","ready","restartCount","image","imageID"],"properties":{"allocatedResources":{"description":"AllocatedResources represents the compute resources allocated for this container by the node. Kubelet sets this value to Container.Resources.Requests upon successful pod admission and after successfully admitting desired pod resize.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"allocatedResourcesStatus":{"description":"AllocatedResourcesStatus represents the status of various resources allocated for this Pod.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceStatus"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"containerID":{"description":"ContainerID is the ID of the container in the format '<type>://<container_id>'. Where type is a container runtime identifier, returned from Version call of CRI API (for example \"containerd\").","type":"string"},"image":{"description":"Image is the name of container image that the container is running. The container image may not match the image used in the PodSpec, as it may have been resolved by the runtime. More info: https://kubernetes.io/docs/concepts/containers/images.","type":"string"},"imageID":{"description":"ImageID is the image ID of the container's image. The image ID may not match the image ID of the image used in the PodSpec, as it may have been resolved by the runtime.","type":"string"},"lastState":{"description":"LastTerminationState holds the last termination state of the container to help debug container crashes and restarts. This field is not populated if the container is still running and RestartCount is 0.","$ref":"#/definitions/io.k8s.api.core.v1.ContainerState"},"name":{"description":"Name is a DNS_LABEL representing the unique name of the container. Each container in a pod must have a unique name across all container types. Cannot be updated.","type":"string"},"ready":{"description":"Ready specifies whether the container is currently passing its readiness check. The value will change as readiness probes keep executing. If no readiness probes are specified, this field defaults to true once the container is fully started (see Started field).\n\nThe value is typically used to determine whether a container is ready to accept traffic.","type":"boolean"},"resources":{"description":"Resources represents the compute resource requests and limits that have been successfully enacted on the running container after it has been started or has been successfully resized.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"restartCount":{"description":"RestartCount holds the number of times the container has been restarted. Kubelet makes an effort to always increment the value, but there are cases when the state may be lost due to node restarts and then the value may be reset to 0. The value is never negative.","type":"integer","format":"int32"},"started":{"description":"Started indicates whether the container has finished its postStart lifecycle hook and passed its startup probe. Initialized as false, becomes true after startupProbe is considered successful. Resets to false when the container is restarted, or if kubelet loses state temporarily. In both cases, startup probes will run again. Is always true when no startupProbe is defined and container is running and has passed the postStart lifecycle hook. The null value must be treated the same as false.","type":"boolean"},"state":{"description":"State holds details about the container's current condition.","$ref":"#/definitions/io.k8s.api.core.v1.ContainerState"},"user":{"description":"User represents user identity information initially attached to the first process of the container","$ref":"#/definitions/io.k8s.api.core.v1.ContainerUser"},"volumeMounts":{"description":"Status of volume mounts.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeMountStatus"},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"mountPath","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.core.v1.ContainerUser":{"description":"ContainerUser represents user identity information","type":"object","properties":{"linux":{"description":"Linux holds user identity information initially attached to the first process of the containers in Linux. Note that the actual running identity can be changed if the process has enough privilege to do so.","$ref":"#/definitions/io.k8s.api.core.v1.LinuxContainerUser"}}},"io.k8s.api.core.v1.Container_v2":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint. The container image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell. The container image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"envFrom":{"description":"List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvFromSource"}},"image":{"description":"Container image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\nPossible enum values:\n - `\"Always\"` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.\n - `\"IfNotPresent\"` means that kubelet pulls if the image isn't present on disk. Container will fail if the image isn't present and the pull fails.\n - `\"Never\"` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn't present","type":"string","enum":["Always","IfNotPresent","Never"]},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events. Cannot be updated.","$ref":"#/definitions/io.k8s.api.core.v1.Lifecycle"},"livenessProbe":{"description":"Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"name":{"description":"Name of the container specified as a DNS_LABEL. Each container in a pod must have a unique name (DNS_LABEL). Cannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Modifying this array with strategic merge patch may corrupt the data. For more information See https://github.com/kubernetes/kubernetes/issues/108255. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerPort"},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"containerPort","x-kubernetes-patch-strategy":"merge"},"readinessProbe":{"description":"Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerResizePolicy"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod. This field may only be set for init containers, and the only allowed value is \"Always\". For non-init containers or when this field is not specified, the restart behavior is defined by the Pod's restart policy and the container type. Setting the RestartPolicy as \"Always\" for the init container will have the following effect: this init container will be continually restarted on exit until all regular containers have terminated. Once all regular containers have completed, all init containers with restartPolicy \"Always\" will be shut down. This lifecycle differs from normal init containers and is often referred to as a \"sidecar\" container. Although this init container still starts in the init container sequence, it does not wait for the container to complete before proceeding to the next init container. Instead, the next init container starts immediately after this init container is started, or after any startupProbe has successfully completed.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","$ref":"#/definitions/io.k8s.api.core.v1.SecurityContext_v2"},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\nPossible enum values:\n - `\"FallbackToLogsOnError\"` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.\n - `\"File\"` is the default behavior and will set the container status message to the contents of the container's terminationMessagePath when the container exits.","type":"string","enum":["FallbackToLogsOnError","File"]},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeDevice"},"x-kubernetes-patch-merge-key":"devicePath","x-kubernetes-patch-strategy":"merge"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeMount_v2"},"x-kubernetes-patch-merge-key":"mountPath","x-kubernetes-patch-strategy":"merge"},"workingDir":{"description":"Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.","type":"string"}}},"io.k8s.api.core.v1.Container_v3":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint. The container image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell. The container image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"envFrom":{"description":"List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvFromSource"}},"image":{"description":"Container image name. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\nPossible enum values:\n - `\"Always\"` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.\n - `\"IfNotPresent\"` means that kubelet pulls if the image isn't present on disk. Container will fail if the image isn't present and the pull fails.\n - `\"Never\"` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn't present","type":"string","enum":["Always","IfNotPresent","Never"]},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events. Cannot be updated.","$ref":"#/definitions/io.k8s.api.core.v1.Lifecycle"},"livenessProbe":{"description":"Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"name":{"description":"Name of the container specified as a DNS_LABEL. Each container in a pod must have a unique name (DNS_LABEL). Cannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Modifying this array with strategic merge patch may corrupt the data. For more information See https://github.com/kubernetes/kubernetes/issues/108255. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerPort"},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"containerPort","x-kubernetes-patch-strategy":"merge"},"readinessProbe":{"description":"Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerResizePolicy"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod. This field may only be set for init containers, and the only allowed value is \"Always\". For non-init containers or when this field is not specified, the restart behavior is defined by the Pod's restart policy and the container type. Setting the RestartPolicy as \"Always\" for the init container will have the following effect: this init container will be continually restarted on exit until all regular containers have terminated. Once all regular containers have completed, all init containers with restartPolicy \"Always\" will be shut down. This lifecycle differs from normal init containers and is often referred to as a \"sidecar\" container. Although this init container still starts in the init container sequence, it does not wait for the container to complete before proceeding to the next init container. Instead, the next init container starts immediately after this init container is started, or after any startupProbe has successfully completed.","type":"string"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","$ref":"#/definitions/io.k8s.api.core.v1.SecurityContext_v3"},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\nPossible enum values:\n - `\"FallbackToLogsOnError\"` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.\n - `\"File\"` is the default behavior and will set the container status message to the contents of the container's terminationMessagePath when the container exits.","type":"string","enum":["FallbackToLogsOnError","File"]},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeDevice"},"x-kubernetes-patch-merge-key":"devicePath","x-kubernetes-patch-strategy":"merge"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeMount_v2"},"x-kubernetes-patch-merge-key":"mountPath","x-kubernetes-patch-strategy":"merge"},"workingDir":{"description":"Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.","type":"string"}}},"io.k8s.api.core.v1.DaemonEndpoint":{"description":"DaemonEndpoint contains information about a single Daemon endpoint.","type":"object","required":["Port"],"properties":{"Port":{"description":"Port number of the given endpoint.","type":"integer","format":"int32"}}},"io.k8s.api.core.v1.DownwardAPIProjection":{"description":"Represents downward API info for projecting into a projected volume. Note that this is identical to a downwardAPI volume source without the default mode.","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeFile"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.DownwardAPIProjection_v2":{"description":"Represents downward API info for projecting into a projected volume. Note that this is identical to a downwardAPI volume source without the default mode.","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeFile_v2"}}}},"io.k8s.api.core.v1.DownwardAPIProjection_v3":{"description":"Represents downward API info for projecting into a projected volume. Note that this is identical to a downwardAPI volume source without the default mode.","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeFile_v2"}}}},"io.k8s.api.core.v1.DownwardAPIVolumeFile":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectFieldSelector"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceFieldSelector"}}},"io.k8s.api.core.v1.DownwardAPIVolumeFile_v2":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectFieldSelector"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceFieldSelector"}}},"io.k8s.api.core.v1.DownwardAPIVolumeSource":{"description":"DownwardAPIVolumeSource represents a volume containing downward API info. Downward API volumes support ownership management and SELinux relabeling.","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeFile"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.DownwardAPIVolumeSource_v2":{"description":"DownwardAPIVolumeSource represents a volume containing downward API info. Downward API volumes support ownership management and SELinux relabeling.","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeFile_v2"}}}},"io.k8s.api.core.v1.DownwardAPIVolumeSource_v3":{"description":"DownwardAPIVolumeSource represents a volume containing downward API info. Downward API volumes support ownership management and SELinux relabeling.","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeFile_v2"}}}},"io.k8s.api.core.v1.EmptyDirVolumeSource":{"description":"Represents an empty directory for a pod. Empty directory volumes support ownership management and SELinux relabeling.","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory. The default is \"\" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}},"io.k8s.api.core.v1.EndpointAddress":{"description":"EndpointAddress is a tuple that describes single IP address.","type":"object","required":["ip"],"properties":{"hostname":{"description":"The Hostname of this endpoint","type":"string"},"ip":{"description":"The IP of this endpoint. May not be loopback (127.0.0.0/8 or ::1), link-local (169.254.0.0/16 or fe80::/10), or link-local multicast (224.0.0.0/24 or ff02::/16).","type":"string"},"nodeName":{"description":"Optional: Node hosting this endpoint. This can be used to determine endpoints local to a node.","type":"string"},"targetRef":{"description":"Reference to object providing the endpoint.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.EndpointPort":{"description":"EndpointPort is a tuple that describes a single port.","type":"object","required":["port"],"properties":{"appProtocol":{"description":"The application protocol for this port. This is used as a hint for implementations to offer richer behavior for protocols that they understand. This field follows standard Kubernetes label syntax. Valid values are either:\n\n* Un-prefixed protocol names - reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names).\n\n* Kubernetes-defined prefixed names:\n  * 'kubernetes.io/h2c' - HTTP/2 prior knowledge over cleartext as described in https://www.rfc-editor.org/rfc/rfc9113.html#name-starting-http-2-with-prior-\n  * 'kubernetes.io/ws'  - WebSocket over cleartext as described in https://www.rfc-editor.org/rfc/rfc6455\n  * 'kubernetes.io/wss' - WebSocket over TLS as described in https://www.rfc-editor.org/rfc/rfc6455\n\n* Other protocols should use implementation-defined prefixed names such as mycompany.com/my-custom-protocol.","type":"string"},"name":{"description":"The name of this port.  This must match the 'name' field in the corresponding ServicePort. Must be a DNS_LABEL. Optional only if one port is defined.","type":"string"},"port":{"description":"The port number of the endpoint.","type":"integer","format":"int32"},"protocol":{"description":"The IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.\n\nPossible enum values:\n - `\"SCTP\"` is the SCTP protocol.\n - `\"TCP\"` is the TCP protocol.\n - `\"UDP\"` is the UDP protocol.","type":"string","enum":["SCTP","TCP","UDP"]}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.EndpointSubset":{"description":"EndpointSubset is a group of addresses with a common set of ports. The expanded set of endpoints is the Cartesian product of Addresses x Ports. For example, given:\n\n\t{\n\t  Addresses: [{\"ip\": \"10.10.1.1\"}, {\"ip\": \"10.10.2.2\"}],\n\t  Ports:     [{\"name\": \"a\", \"port\": 8675}, {\"name\": \"b\", \"port\": 309}]\n\t}\n\nThe resulting set of endpoints can be viewed as:\n\n\ta: [ 10.10.1.1:8675, 10.10.2.2:8675 ],\n\tb: [ 10.10.1.1:309, 10.10.2.2:309 ]","type":"object","properties":{"addresses":{"description":"IP addresses which offer the related ports that are marked as ready. These endpoints should be considered safe for load balancers and clients to utilize.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EndpointAddress"},"x-kubernetes-list-type":"atomic"},"notReadyAddresses":{"description":"IP addresses which offer the related ports but are not currently marked as ready because they have not yet finished starting, have recently failed a readiness check, or have recently failed a liveness check.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EndpointAddress"},"x-kubernetes-list-type":"atomic"},"ports":{"description":"Port numbers available on the related IP addresses.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EndpointPort"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.Endpoints":{"description":"Endpoints is a collection of endpoints that implement the actual service. Example:\n\n\t Name: \"mysvc\",\n\t Subsets: [\n\t   {\n\t     Addresses: [{\"ip\": \"10.10.1.1\"}, {\"ip\": \"10.10.2.2\"}],\n\t     Ports: [{\"name\": \"a\", \"port\": 8675}, {\"name\": \"b\", \"port\": 309}]\n\t   },\n\t   {\n\t     Addresses: [{\"ip\": \"10.10.3.3\"}],\n\t     Ports: [{\"name\": \"a\", \"port\": 93}, {\"name\": \"b\", \"port\": 76}]\n\t   },\n\t]","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"subsets":{"description":"The set of all endpoints is the union of all subsets. Addresses are placed into subsets according to the IPs they share. A single address with multiple ports, some of which are ready and some of which are not (because they come from different containers) will result in the address being displayed in different subsets for the different ports. No address will appear in both Addresses and NotReadyAddresses in the same subset. Sets of addresses and ports that comprise a service.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EndpointSubset"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Endpoints","version":"v1"}]},"io.k8s.api.core.v1.EndpointsList":{"description":"EndpointsList is a list of endpoints.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of endpoints.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Endpoints"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"EndpointsList","version":"v1"}]},"io.k8s.api.core.v1.EnvFromSource":{"description":"EnvFromSource represents the source of a set of ConfigMaps","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapEnvSource"},"prefix":{"description":"An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.","type":"string"},"secretRef":{"description":"The Secret to select from","$ref":"#/definitions/io.k8s.api.core.v1.SecretEnvSource"}}},"io.k8s.api.core.v1.EnvVar":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded using the previously defined environment variables in the container and any service environment variables. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Defaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","$ref":"#/definitions/io.k8s.api.core.v1.EnvVarSource"}}},"io.k8s.api.core.v1.EnvVarSource":{"description":"EnvVarSource represents a source for the value of an EnvVar.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapKeySelector"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`, spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectFieldSelector"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceFieldSelector"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","$ref":"#/definitions/io.k8s.api.core.v1.SecretKeySelector"}}},"io.k8s.api.core.v1.EphemeralContainer":{"description":"An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"envFrom":{"description":"List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvFromSource"},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name. More info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\nPossible enum values:\n - `\"Always\"` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.\n - `\"IfNotPresent\"` means that kubelet pulls if the image isn't present on disk. Container will fail if the image isn't present and the pull fails.\n - `\"Never\"` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn't present","type":"string","enum":["Always","IfNotPresent","Never"]},"lifecycle":{"description":"Lifecycle is not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Lifecycle"},"livenessProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"name":{"description":"Name of the ephemeral container specified as a DNS_LABEL. This name must be unique among all containers, init containers and ephemeral containers.","type":"string"},"ports":{"description":"Ports are not allowed for ephemeral containers.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerPort"},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"containerPort","x-kubernetes-patch-strategy":"merge"},"readinessProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerResizePolicy"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources already allocated to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"restartPolicy":{"description":"Restart policy for the container to manage the restart behavior of each container within a pod. This may only be set for init containers. You cannot set this field on ephemeral containers.","type":"string"},"securityContext":{"description":"Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.","$ref":"#/definitions/io.k8s.api.core.v1.SecurityContext"},"startupProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false","type":"boolean"},"targetContainerName":{"description":"If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.","type":"string"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\nPossible enum values:\n - `\"FallbackToLogsOnError\"` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.\n - `\"File\"` is the default behavior and will set the container status message to the contents of the container's terminationMessagePath when the container exits.","type":"string","enum":["FallbackToLogsOnError","File"]},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeDevice"},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"devicePath","x-kubernetes-patch-strategy":"merge"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeMount"},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"mountPath","x-kubernetes-patch-strategy":"merge"},"workingDir":{"description":"Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.","type":"string"}}},"io.k8s.api.core.v1.EphemeralContainer_v2":{"description":"An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"envFrom":{"description":"List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvFromSource"}},"image":{"description":"Container image name. More info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\nPossible enum values:\n - `\"Always\"` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.\n - `\"IfNotPresent\"` means that kubelet pulls if the image isn't present on disk. Container will fail if the image isn't present and the pull fails.\n - `\"Never\"` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn't present","type":"string","enum":["Always","IfNotPresent","Never"]},"lifecycle":{"description":"Lifecycle is not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Lifecycle"},"livenessProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"name":{"description":"Name of the ephemeral container specified as a DNS_LABEL. This name must be unique among all containers, init containers and ephemeral containers.","type":"string"},"ports":{"description":"Ports are not allowed for ephemeral containers.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerPort"},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"containerPort","x-kubernetes-patch-strategy":"merge"},"readinessProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerResizePolicy"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources already allocated to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"restartPolicy":{"description":"Restart policy for the container to manage the restart behavior of each container within a pod. This may only be set for init containers. You cannot set this field on ephemeral containers.","type":"string"},"securityContext":{"description":"Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.","$ref":"#/definitions/io.k8s.api.core.v1.SecurityContext_v2"},"startupProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false","type":"boolean"},"targetContainerName":{"description":"If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.","type":"string"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\nPossible enum values:\n - `\"FallbackToLogsOnError\"` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.\n - `\"File\"` is the default behavior and will set the container status message to the contents of the container's terminationMessagePath when the container exits.","type":"string","enum":["FallbackToLogsOnError","File"]},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeDevice"},"x-kubernetes-patch-merge-key":"devicePath","x-kubernetes-patch-strategy":"merge"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeMount_v2"},"x-kubernetes-patch-merge-key":"mountPath","x-kubernetes-patch-strategy":"merge"},"workingDir":{"description":"Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.","type":"string"}}},"io.k8s.api.core.v1.EphemeralContainer_v3":{"description":"An EphemeralContainer is a temporary container that you may add to an existing Pod for user-initiated activities such as debugging. Ephemeral containers have no resource or scheduling guarantees, and they will not be restarted when they exit or when a Pod is removed or restarted. The kubelet may evict a Pod if an ephemeral container causes the Pod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing Pod. Ephemeral containers may not be removed or restarted.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"command":{"description":"Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"}},"env":{"description":"List of environment variables to set in the container. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvVar"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"envFrom":{"description":"List of sources to populate environment variables in the container. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EnvFromSource"}},"image":{"description":"Container image name. More info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images\n\nPossible enum values:\n - `\"Always\"` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.\n - `\"IfNotPresent\"` means that kubelet pulls if the image isn't present on disk. Container will fail if the image isn't present and the pull fails.\n - `\"Never\"` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn't present","type":"string","enum":["Always","IfNotPresent","Never"]},"lifecycle":{"description":"Lifecycle is not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Lifecycle"},"livenessProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"name":{"description":"Name of the ephemeral container specified as a DNS_LABEL. This name must be unique among all containers, init containers and ephemeral containers.","type":"string"},"ports":{"description":"Ports are not allowed for ephemeral containers.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerPort"},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"containerPort","x-kubernetes-patch-strategy":"merge"},"readinessProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerResizePolicy"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources already allocated to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.ResourceRequirements"},"restartPolicy":{"description":"Restart policy for the container to manage the restart behavior of each container within a pod. This may only be set for init containers. You cannot set this field on ephemeral containers.","type":"string"},"securityContext":{"description":"Optional: SecurityContext defines the security options the ephemeral container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.","$ref":"#/definitions/io.k8s.api.core.v1.SecurityContext_v3"},"startupProbe":{"description":"Probes are not allowed for ephemeral containers.","$ref":"#/definitions/io.k8s.api.core.v1.Probe"},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false","type":"boolean"},"targetContainerName":{"description":"If set, the name of the container from PodSpec that this ephemeral container targets. The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container. If not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not support namespace targeting then the result of setting this field is undefined.","type":"string"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.\n\nPossible enum values:\n - `\"FallbackToLogsOnError\"` will read the most recent contents of the container logs for the container status message when the container exits with an error and the terminationMessagePath has no contents.\n - `\"File\"` is the default behavior and will set the container status message to the contents of the container's terminationMessagePath when the container exits.","type":"string","enum":["FallbackToLogsOnError","File"]},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeDevice"},"x-kubernetes-patch-merge-key":"devicePath","x-kubernetes-patch-strategy":"merge"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeMount_v2"},"x-kubernetes-patch-merge-key":"mountPath","x-kubernetes-patch-strategy":"merge"},"workingDir":{"description":"Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.","type":"string"}}},"io.k8s.api.core.v1.EphemeralVolumeSource":{"description":"Represents an ephemeral volume that is handled by a normal storage driver.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume. The pod in which this EphemeralVolumeSource is embedded will be the owner of the PVC, i.e. the PVC will be deleted together with the pod.  The name of the PVC will be `<pod name>-<volume name>` where `<volume name>` is the name from the `PodSpec.Volumes` array entry. Pod validation will reject the pod if the concatenated name is not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod will *not* be used for the pod to avoid using an unrelated volume by mistake. Starting the pod is then blocked until the unrelated PVC is removed. If such a pre-created PVC is meant to be used by the pod, the PVC has to updated with an owner reference to the pod once the pod exists. Normally this should not be necessary, but it may be useful when manually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes to the PVC after it has been created.\n\nRequired, must not be nil.","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimTemplate"}}},"io.k8s.api.core.v1.Event":{"description":"Event is a report of an event somewhere in the cluster.  Events have a limited retention time and triggers and messages may evolve with time.  Event consumers should not rely on the timing of an event with a given Reason reflecting a consistent underlying trigger, or the continued existence of events with that Reason.  Events should be treated as informative, best-effort, supplemental data.","type":"object","required":["metadata","involvedObject"],"properties":{"action":{"description":"What action was taken/failed regarding to the Regarding object.","type":"string"},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"count":{"description":"The number of times this event has occurred.","type":"integer","format":"int32"},"eventTime":{"description":"Time when this Event was first observed.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.MicroTime"},"firstTimestamp":{"description":"The time at which the event was first recorded. (Time of server receipt is in TypeMeta.)","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"involvedObject":{"description":"The object that this event is about.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"lastTimestamp":{"description":"The time at which the most recent occurrence of this event was recorded.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"reason":{"description":"This should be a short, machine understandable string that gives the reason for the transition into the object's current status.","type":"string"},"related":{"description":"Optional secondary object for more complex actions.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"reportingComponent":{"description":"Name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`.","type":"string"},"reportingInstance":{"description":"ID of the controller instance, e.g. `kubelet-xyzf`.","type":"string"},"series":{"description":"Data about the Event series this event represents or nil if it's a singleton Event.","$ref":"#/definitions/io.k8s.api.core.v1.EventSeries"},"source":{"description":"The component reporting this event. Should be a short machine understandable string.","$ref":"#/definitions/io.k8s.api.core.v1.EventSource"},"type":{"description":"Type of this event (Normal, Warning), new types could be added in the future","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Event","version":"v1"}]},"io.k8s.api.core.v1.EventList":{"description":"EventList is a list of events.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of events","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Event"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"EventList","version":"v1"}]},"io.k8s.api.core.v1.EventSeries":{"description":"EventSeries contain information on series of events, i.e. thing that was/is happening continuously for some time.","type":"object","properties":{"count":{"description":"Number of occurrences in this series up to the last heartbeat time","type":"integer","format":"int32"},"lastObservedTime":{"description":"Time of the last occurrence observed","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.MicroTime"}}},"io.k8s.api.core.v1.EventSource":{"description":"EventSource contains information for an event.","type":"object","properties":{"component":{"description":"Component from which the event is generated.","type":"string"},"host":{"description":"Node name on which the event is generated.","type":"string"}}},"io.k8s.api.core.v1.ExecAction":{"description":"ExecAction describes a \"run in container\" action.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the command  is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.ExecAction_v2":{"description":"ExecAction describes a \"run in container\" action.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the command  is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"}}}},"io.k8s.api.core.v1.FCVolumeSource":{"description":"Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.FCVolumeSource_v2":{"description":"Represents a Fibre Channel volume. Fibre Channel volumes can only be mounted as read/write once. Fibre Channel volumes support ownership management and SELinux relabeling.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"}},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"}}}},"io.k8s.api.core.v1.FlexPersistentVolumeSource":{"description":"FlexPersistentVolumeSource represents a generic persistent volume resource that is provisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"}}},"io.k8s.api.core.v1.FlexVolumeSource":{"description":"FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"}}},"io.k8s.api.core.v1.FlockerVolumeSource":{"description":"Represents a Flocker volume mounted by the Flocker agent. One and only one of datasetName and datasetUUID should be set. Flocker volumes do not support ownership management or SELinux relabeling.","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"io.k8s.api.core.v1.GCEPersistentDiskVolumeSource":{"description":"Represents a Persistent Disk resource in Google Compute Engine.\n\nA GCE PD must exist before mounting to a container. The disk must also be in the same GCE project and zone as the kubelet. A GCE PD can only be mounted as read/write once or read-only many times. GCE PDs support ownership management and SELinux relabeling.","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as \"1\". Similarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"io.k8s.api.core.v1.GRPCAction":{"type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"io.k8s.api.core.v1.GitRepoVolumeSource":{"description":"Represents a volume that is populated with the contents of a git repository. Git repo volumes do not support ownership management. Git repo volumes support SELinux relabeling.\n\nDEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name. Must not contain or start with '..'.  If '.' is supplied, the volume directory will be the git repository.  Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"io.k8s.api.core.v1.GlusterfsPersistentVolumeSource":{"description":"Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"endpointsNamespace":{"description":"endpointsNamespace is the namespace that contains Glusterfs endpoint. If this field is empty, the EndpointNamespace defaults to the same namespace as the bound PVC. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"io.k8s.api.core.v1.GlusterfsVolumeSource":{"description":"Represents a Glusterfs mount that lasts the lifetime of a pod. Glusterfs volumes do not support ownership management or SELinux relabeling.","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"path":{"description":"path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"io.k8s.api.core.v1.HTTPGetAction":{"description":"HTTPGetAction describes an action based on HTTP Get requests.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.HTTPHeader"},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"scheme":{"description":"Scheme to use for connecting to the host. Defaults to HTTP.\n\nPossible enum values:\n - `\"HTTP\"` means that the scheme used will be http://\n - `\"HTTPS\"` means that the scheme used will be https://","type":"string","enum":["HTTP","HTTPS"]}}},"io.k8s.api.core.v1.HTTPGetAction_v2":{"description":"HTTPGetAction describes an action based on HTTP Get requests.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.HTTPHeader"}},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"scheme":{"description":"Scheme to use for connecting to the host. Defaults to HTTP.\n\nPossible enum values:\n - `\"HTTP\"` means that the scheme used will be http://\n - `\"HTTPS\"` means that the scheme used will be https://","type":"string","enum":["HTTP","HTTPS"]}}},"io.k8s.api.core.v1.HTTPHeader":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"io.k8s.api.core.v1.HostAlias":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the pod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"io.k8s.api.core.v1.HostAlias_v2":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the pod's hosts file.","type":"object","properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"}},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"io.k8s.api.core.v1.HostIP":{"description":"HostIP represents a single IP address allocated to the host.","type":"object","required":["ip"],"properties":{"ip":{"description":"IP is the IP address assigned to the host","type":"string"}}},"io.k8s.api.core.v1.HostPathVolumeSource":{"description":"Represents a host path mapped into a pod. Host path volumes do not support ownership management or SELinux relabeling.","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume Defaults to \"\" More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath\n\nPossible enum values:\n - `\"\"` For backwards compatible, leave it empty if unset\n - `\"BlockDevice\"` A block device must exist at the given path\n - `\"CharDevice\"` A character device must exist at the given path\n - `\"Directory\"` A directory must exist at the given path\n - `\"DirectoryOrCreate\"` If nothing exists at the given path, an empty directory will be created there as needed with file mode 0755, having the same group and ownership with Kubelet.\n - `\"File\"` A file must exist at the given path\n - `\"FileOrCreate\"` If nothing exists at the given path, an empty file will be created there as needed with file mode 0644, having the same group and ownership with Kubelet.\n - `\"Socket\"` A UNIX socket must exist at the given path","type":"string","enum":["","BlockDevice","CharDevice","Directory","DirectoryOrCreate","File","FileOrCreate","Socket"]}}},"io.k8s.api.core.v1.ISCSIPersistentVolumeSource":{"description":"ISCSIPersistentVolumeSource represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.","type":"object","required":["targetPortal","iqn","lun"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is Target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun is iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"string"}}},"io.k8s.api.core.v1.ISCSIVolumeSource":{"description":"Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.","type":"object","required":["targetPortal","iqn","lun"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"string"}}},"io.k8s.api.core.v1.ISCSIVolumeSource_v2":{"description":"Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.","type":"object","required":["targetPortal","iqn","lun"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"}},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"string"}}},"io.k8s.api.core.v1.ISCSIVolumeSource_v3":{"description":"Represents an ISCSI disk. ISCSI volumes can only be mounted as read/write once. ISCSI volumes support ownership management and SELinux relabeling.","type":"object","required":["targetPortal","iqn","lun"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface <target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"}},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).","type":"string"}}},"io.k8s.api.core.v1.ImageVolumeSource":{"description":"ImageVolumeSource represents a image volume resource.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are: Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails. Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present. IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise.\n\nPossible enum values:\n - `\"Always\"` means that kubelet always attempts to pull the latest image. Container will fail If the pull fails.\n - `\"IfNotPresent\"` means that kubelet pulls if the image isn't present on disk. Container will fail if the image isn't present and the pull fails.\n - `\"Never\"` means that kubelet never pulls an image, but only uses a local image. Container will fail if the image isn't present","type":"string","enum":["Always","IfNotPresent","Never"]},"reference":{"description":"Required: Image or artifact reference to be used. Behaves in the same way as pod.spec.containers[*].image. Pull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets. More info: https://kubernetes.io/docs/concepts/containers/images This field is optional to allow higher level config management to default or override container images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"io.k8s.api.core.v1.KeyToPath":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.","type":"string"}}},"io.k8s.api.core.v1.Lifecycle":{"description":"Lifecycle describes actions that the management system should take in response to container lifecycle events. For the PostStart and PreStop lifecycle handlers, management of the container blocks until the action is complete, unless the container process fails, in which case the handler is aborted.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails, the container is terminated and restarted according to its restart policy. Other management of the container blocks until the hook completes. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","$ref":"#/definitions/io.k8s.api.core.v1.LifecycleHandler"},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an API request or management event such as liveness/startup probe failure, preemption, resource contention, etc. The handler is not called if the container crashes or exits. The Pod's termination grace period countdown begins before the PreStop hook is executed. Regardless of the outcome of the handler, the container will eventually terminate within the Pod's termination grace period (unless delayed by finalizers). Other management of the container blocks until the hook completes or until the termination grace period is reached. More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","$ref":"#/definitions/io.k8s.api.core.v1.LifecycleHandler"}}},"io.k8s.api.core.v1.LifecycleHandler":{"description":"LifecycleHandler defines a specific action that should be taken in a lifecycle hook. One and only one of the fields, except TCPSocket must be specified.","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","$ref":"#/definitions/io.k8s.api.core.v1.ExecAction"},"httpGet":{"description":"HTTPGet specifies the http request to perform.","$ref":"#/definitions/io.k8s.api.core.v1.HTTPGetAction"},"sleep":{"description":"Sleep represents the duration that the container should sleep before being terminated.","$ref":"#/definitions/io.k8s.api.core.v1.SleepAction"},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified.","$ref":"#/definitions/io.k8s.api.core.v1.TCPSocketAction"}}},"io.k8s.api.core.v1.LimitRange":{"description":"LimitRange sets resource usage limits for each kind of resource in a Namespace.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the limits enforced. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.LimitRangeSpec"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"LimitRange","version":"v1"}]},"io.k8s.api.core.v1.LimitRangeItem":{"description":"LimitRangeItem defines a min/max usage limit for any resource that matches on kind.","type":"object","required":["type"],"properties":{"default":{"description":"Default resource requirement limit value by resource name if resource limit is omitted.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"defaultRequest":{"description":"DefaultRequest is the default resource requirement request value by resource name if resource request is omitted.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"max":{"description":"Max usage constraints on this kind by resource name.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"maxLimitRequestRatio":{"description":"MaxLimitRequestRatio if specified, the named resource must have a request and limit that are both non-zero where limit divided by request is less than or equal to the enumerated value; this represents the max burst for the named resource.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"min":{"description":"Min usage constraints on this kind by resource name.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"type":{"description":"Type of resource that this limit applies to.","type":"string"}}},"io.k8s.api.core.v1.LimitRangeList":{"description":"LimitRangeList is a list of LimitRange items.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of LimitRange objects. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRange"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"LimitRangeList","version":"v1"}]},"io.k8s.api.core.v1.LimitRangeSpec":{"description":"LimitRangeSpec defines a min/max usage limit for resources that match on kind.","type":"object","required":["limits"],"properties":{"limits":{"description":"Limits is the list of LimitRangeItem objects that are enforced.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.LimitRangeItem"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.LinuxContainerUser":{"description":"LinuxContainerUser represents user identity information in Linux containers","type":"object","required":["uid","gid"],"properties":{"gid":{"description":"GID is the primary gid initially attached to the first process in the container","type":"integer","format":"int64"},"supplementalGroups":{"description":"SupplementalGroups are the supplemental groups initially attached to the first process in the container","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"uid":{"description":"UID is the primary uid initially attached to the first process in the container","type":"integer","format":"int64"}}},"io.k8s.api.core.v1.LoadBalancerIngress":{"description":"LoadBalancerIngress represents the status of a load-balancer ingress point: traffic intended for the service should be sent to an ingress point.","type":"object","properties":{"hostname":{"description":"Hostname is set for load-balancer ingress points that are DNS based (typically AWS load-balancers)","type":"string"},"ip":{"description":"IP is set for load-balancer ingress points that are IP based (typically GCE or OpenStack load-balancers)","type":"string"},"ipMode":{"description":"IPMode specifies how the load-balancer IP behaves, and may only be specified when the ip field is specified. Setting this to \"VIP\" indicates that traffic is delivered to the node with the destination set to the load-balancer's IP and port. Setting this to \"Proxy\" indicates that traffic is delivered to the node or pod with the destination set to the node's IP and node port or the pod's IP and port. Service implementations may use this information to adjust traffic routing.","type":"string"},"ports":{"description":"Ports is a list of records of service ports If used, every port defined in the service should have an entry in it","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PortStatus"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.LoadBalancerStatus":{"description":"LoadBalancerStatus represents the status of a load-balancer.","type":"object","properties":{"ingress":{"description":"Ingress is a list containing ingress points for the load-balancer. Traffic intended for the service should be sent to these ingress points.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.LoadBalancerIngress"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.LocalObjectReference":{"description":"LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.LocalObjectReference_v2":{"description":"LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.LocalVolumeSource":{"description":"Local represents directly-attached storage with node affinity (Beta feature)","type":"object","required":["path"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount. It applies only when the Path is a block device. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". The default value is to auto-select a filesystem if unspecified.","type":"string"},"path":{"description":"path of the full path to the volume on the node. It can be either a directory or block device (disk, partition, ...).","type":"string"}}},"io.k8s.api.core.v1.ModifyVolumeStatus":{"description":"ModifyVolumeStatus represents the status object of ControllerModifyVolume operation","type":"object","required":["status"],"properties":{"status":{"description":"status is the status of the ControllerModifyVolume operation. It can be in any of following states:\n - Pending\n   Pending indicates that the PersistentVolumeClaim cannot be modified due to unmet requirements, such as\n   the specified VolumeAttributesClass not existing.\n - InProgress\n   InProgress indicates that the volume is being modified.\n - Infeasible\n  Infeasible indicates that the request has been rejected as invalid by the CSI driver. To\n\t  resolve the error, a valid VolumeAttributesClass needs to be specified.\nNote: New statuses can be added in the future. Consumers should check for unknown statuses and fail appropriately.\n\nPossible enum values:\n - `\"InProgress\"` InProgress indicates that the volume is being modified\n - `\"Infeasible\"` Infeasible indicates that the request has been rejected as invalid by the CSI driver. To resolve the error, a valid VolumeAttributesClass needs to be specified\n - `\"Pending\"` Pending indicates that the PersistentVolumeClaim cannot be modified due to unmet requirements, such as the specified VolumeAttributesClass not existing","type":"string","enum":["InProgress","Infeasible","Pending"]},"targetVolumeAttributesClassName":{"description":"targetVolumeAttributesClassName is the name of the VolumeAttributesClass the PVC currently being reconciled","type":"string"}}},"io.k8s.api.core.v1.NFSVolumeSource":{"description":"Represents an NFS mount that lasts the lifetime of a pod. NFS volumes do not support ownership management or SELinux relabeling.","type":"object","required":["server","path"],"properties":{"path":{"description":"path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"io.k8s.api.core.v1.Namespace":{"description":"Namespace provides a scope for Names. Use of multiple namespaces is optional.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the behavior of the Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.NamespaceSpec"},"status":{"description":"Status describes the current status of a Namespace. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.NamespaceStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Namespace","version":"v1"}]},"io.k8s.api.core.v1.NamespaceCondition":{"description":"NamespaceCondition contains details about state of namespace.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of namespace controller condition.","type":"string"}}},"io.k8s.api.core.v1.NamespaceList":{"description":"NamespaceList is a list of Namespaces.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of Namespace objects in the list. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Namespace"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"NamespaceList","version":"v1"}]},"io.k8s.api.core.v1.NamespaceSpec":{"description":"NamespaceSpec describes the attributes on a Namespace.","type":"object","properties":{"finalizers":{"description":"Finalizers is an opaque list of values that must be empty to permanently remove object from storage. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.NamespaceStatus":{"description":"NamespaceStatus is information about the current status of a Namespace.","type":"object","properties":{"conditions":{"description":"Represents the latest available observations of a namespace's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NamespaceCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"phase":{"description":"Phase is the current lifecycle phase of the namespace. More info: https://kubernetes.io/docs/tasks/administer-cluster/namespaces/\n\nPossible enum values:\n - `\"Active\"` means the namespace is available for use in the system\n - `\"Terminating\"` means the namespace is undergoing graceful termination","type":"string","enum":["Active","Terminating"]}}},"io.k8s.api.core.v1.Node":{"description":"Node is a worker node in Kubernetes. Each node will have a unique identifier in the cache (i.e. in etcd).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the behavior of a node. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.NodeSpec"},"status":{"description":"Most recently observed status of the node. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.NodeStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Node","version":"v1"}]},"io.k8s.api.core.v1.NodeAddress":{"description":"NodeAddress contains information for the node's address.","type":"object","required":["type","address"],"properties":{"address":{"description":"The node address.","type":"string"},"type":{"description":"Node address type, one of Hostname, ExternalIP or InternalIP.","type":"string"}}},"io.k8s.api.core.v1.NodeAffinity":{"description":"Node affinity is a group of node affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PreferredSchedulingTerm"},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.","$ref":"#/definitions/io.k8s.api.core.v1.NodeSelector"}}},"io.k8s.api.core.v1.NodeAffinity_v2":{"description":"Node affinity is a group of node affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PreferredSchedulingTerm"}},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.","$ref":"#/definitions/io.k8s.api.core.v1.NodeSelector_v2"}}},"io.k8s.api.core.v1.NodeAffinity_v3":{"description":"Node affinity is a group of node affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PreferredSchedulingTerm"}},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.","$ref":"#/definitions/io.k8s.api.core.v1.NodeSelector_v3"}}},"io.k8s.api.core.v1.NodeCondition":{"description":"NodeCondition contains condition information for a node.","type":"object","required":["type","status"],"properties":{"lastHeartbeatTime":{"description":"Last time we got an update on a given condition.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastTransitionTime":{"description":"Last time the condition transit from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Human readable message indicating details about last transition.","type":"string"},"reason":{"description":"(brief) reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of node condition.","type":"string"}}},"io.k8s.api.core.v1.NodeConfigSource":{"description":"NodeConfigSource specifies a source of node configuration. Exactly one subfield (excluding metadata) must be non-nil. This API is deprecated since 1.22","type":"object","properties":{"configMap":{"description":"ConfigMap is a reference to a Node's ConfigMap","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapNodeConfigSource"}}},"io.k8s.api.core.v1.NodeConfigStatus":{"description":"NodeConfigStatus describes the status of the config assigned by Node.Spec.ConfigSource.","type":"object","properties":{"active":{"description":"Active reports the checkpointed config the node is actively using. Active will represent either the current version of the Assigned config, or the current LastKnownGood config, depending on whether attempting to use the Assigned config results in an error.","$ref":"#/definitions/io.k8s.api.core.v1.NodeConfigSource"},"assigned":{"description":"Assigned reports the checkpointed config the node will try to use. When Node.Spec.ConfigSource is updated, the node checkpoints the associated config payload to local disk, along with a record indicating intended config. The node refers to this record to choose its config checkpoint, and reports this record in Assigned. Assigned only updates in the status after the record has been checkpointed to disk. When the Kubelet is restarted, it tries to make the Assigned config the Active config by loading and validating the checkpointed payload identified by Assigned.","$ref":"#/definitions/io.k8s.api.core.v1.NodeConfigSource"},"error":{"description":"Error describes any problems reconciling the Spec.ConfigSource to the Active config. Errors may occur, for example, attempting to checkpoint Spec.ConfigSource to the local Assigned record, attempting to checkpoint the payload associated with Spec.ConfigSource, attempting to load or validate the Assigned config, etc. Errors may occur at different points while syncing config. Earlier errors (e.g. download or checkpointing errors) will not result in a rollback to LastKnownGood, and may resolve across Kubelet retries. Later errors (e.g. loading or validating a checkpointed config) will result in a rollback to LastKnownGood. In the latter case, it is usually possible to resolve the error by fixing the config assigned in Spec.ConfigSource. You can find additional information for debugging by searching the error message in the Kubelet log. Error is a human-readable description of the error state; machines can check whether or not Error is empty, but should not rely on the stability of the Error text across Kubelet versions.","type":"string"},"lastKnownGood":{"description":"LastKnownGood reports the checkpointed config the node will fall back to when it encounters an error attempting to use the Assigned config. The Assigned config becomes the LastKnownGood config when the node determines that the Assigned config is stable and correct. This is currently implemented as a 10-minute soak period starting when the local record of Assigned config is updated. If the Assigned config is Active at the end of this period, it becomes the LastKnownGood. Note that if Spec.ConfigSource is reset to nil (use local defaults), the LastKnownGood is also immediately reset to nil, because the local default config is always assumed good. You should not make assumptions about the node's method of determining config stability and correctness, as this may change or become configurable in the future.","$ref":"#/definitions/io.k8s.api.core.v1.NodeConfigSource"}}},"io.k8s.api.core.v1.NodeDaemonEndpoints":{"description":"NodeDaemonEndpoints lists ports opened by daemons running on the Node.","type":"object","properties":{"kubeletEndpoint":{"description":"Endpoint on which Kubelet is listening.","$ref":"#/definitions/io.k8s.api.core.v1.DaemonEndpoint"}}},"io.k8s.api.core.v1.NodeFeatures":{"description":"NodeFeatures describes the set of features implemented by the CRI implementation. The features contained in the NodeFeatures should depend only on the cri implementation independent of runtime handlers.","type":"object","properties":{"supplementalGroupsPolicy":{"description":"SupplementalGroupsPolicy is set to true if the runtime supports SupplementalGroupsPolicy and ContainerUser.","type":"boolean"}}},"io.k8s.api.core.v1.NodeList":{"description":"NodeList is the whole list of all Nodes which have been registered with master.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of nodes","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Node"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"NodeList","version":"v1"}]},"io.k8s.api.core.v1.NodeRuntimeHandler":{"description":"NodeRuntimeHandler is a set of runtime handler information.","type":"object","properties":{"features":{"description":"Supported features.","$ref":"#/definitions/io.k8s.api.core.v1.NodeRuntimeHandlerFeatures"},"name":{"description":"Runtime handler name. Empty for the default runtime handler.","type":"string"}}},"io.k8s.api.core.v1.NodeRuntimeHandlerFeatures":{"description":"NodeRuntimeHandlerFeatures is a set of features implemented by the runtime handler.","type":"object","properties":{"recursiveReadOnlyMounts":{"description":"RecursiveReadOnlyMounts is set to true if the runtime handler supports RecursiveReadOnlyMounts.","type":"boolean"},"userNamespaces":{"description":"UserNamespaces is set to true if the runtime handler supports UserNamespaces, including for volumes.","type":"boolean"}}},"io.k8s.api.core.v1.NodeSelector":{"description":"A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorTerm"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.NodeSelectorRequirement":{"description":"A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.\n\nPossible enum values:\n - `\"DoesNotExist\"`\n - `\"Exists\"`\n - `\"Gt\"`\n - `\"In\"`\n - `\"Lt\"`\n - `\"NotIn\"`","type":"string","enum":["DoesNotExist","Exists","Gt","In","Lt","NotIn"]},"values":{"description":"An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.NodeSelectorRequirement_v2":{"description":"A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.\n\nPossible enum values:\n - `\"DoesNotExist\"`\n - `\"Exists\"`\n - `\"Gt\"`\n - `\"In\"`\n - `\"Lt\"`\n - `\"NotIn\"`","type":"string","enum":["DoesNotExist","Exists","Gt","In","Lt","NotIn"]},"values":{"description":"An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}},"io.k8s.api.core.v1.NodeSelectorTerm":{"description":"A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorRequirement"},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorRequirement"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.NodeSelectorTerm_v2":{"description":"A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorRequirement_v2"}},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorRequirement_v2"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.NodeSelectorTerm_v3":{"description":"A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorRequirement_v2"}},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorRequirement_v2"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.NodeSelector_v2":{"description":"A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorTerm_v2"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.NodeSelector_v3":{"description":"A node selector represents the union of the results of one or more label queries over a set of nodes; that is, it represents the OR of the selectors represented by the node selector terms.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorTerm_v3"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.NodeSpec":{"description":"NodeSpec describes the attributes that a node is created with.","type":"object","properties":{"configSource":{"description":"Deprecated: Previously used to specify the source of the node's configuration for the DynamicKubeletConfig feature. This feature is removed.","$ref":"#/definitions/io.k8s.api.core.v1.NodeConfigSource"},"externalID":{"description":"Deprecated. Not all kubelets will set this field. Remove field after 1.13. see: https://issues.k8s.io/61966","type":"string"},"podCIDR":{"description":"PodCIDR represents the pod IP range assigned to the node.","type":"string"},"podCIDRs":{"description":"podCIDRs represents the IP ranges assigned to the node for usage by Pods on that node. If this field is specified, the 0th entry must match the podCIDR field. It may contain at most 1 value for each of IPv4 and IPv6.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set","x-kubernetes-patch-strategy":"merge"},"providerID":{"description":"ID of the node assigned by the cloud provider in the format: <ProviderName>://<ProviderSpecificNodeID>","type":"string"},"taints":{"description":"If specified, the node's taints.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Taint"},"x-kubernetes-list-type":"atomic"},"unschedulable":{"description":"Unschedulable controls node schedulability of new pods. By default, node is schedulable. More info: https://kubernetes.io/docs/concepts/nodes/node/#manual-node-administration","type":"boolean"}}},"io.k8s.api.core.v1.NodeStatus":{"description":"NodeStatus is information about the current status of a node.","type":"object","properties":{"addresses":{"description":"List of addresses reachable to the node. Queried from cloud provider, if available. More info: https://kubernetes.io/docs/concepts/nodes/node/#addresses Note: This field is declared as mergeable, but the merge key is not sufficiently unique, which can cause data corruption when it is merged. Callers should instead use a full-replacement patch. See https://pr.k8s.io/79391 for an example. Consumers should assume that addresses can change during the lifetime of a Node. However, there are some exceptions where this may not be possible, such as Pods that inherit a Node's address in its own status or consumers of the downward API (status.hostIP).","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeAddress"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"allocatable":{"description":"Allocatable represents the resources of a node that are available for scheduling. Defaults to Capacity.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"capacity":{"description":"Capacity represents the total resources of a node. More info: https://kubernetes.io/docs/reference/node/node-status/#capacity","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"conditions":{"description":"Conditions is an array of current observed node conditions. More info: https://kubernetes.io/docs/concepts/nodes/node/#condition","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"config":{"description":"Status of the config assigned to the node via the dynamic Kubelet config feature.","$ref":"#/definitions/io.k8s.api.core.v1.NodeConfigStatus"},"daemonEndpoints":{"description":"Endpoints of daemons running on the Node.","$ref":"#/definitions/io.k8s.api.core.v1.NodeDaemonEndpoints"},"features":{"description":"Features describes the set of features implemented by the CRI implementation.","$ref":"#/definitions/io.k8s.api.core.v1.NodeFeatures"},"images":{"description":"List of container images on this node","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerImage"},"x-kubernetes-list-type":"atomic"},"nodeInfo":{"description":"Set of ids/uuids to uniquely identify the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#info","$ref":"#/definitions/io.k8s.api.core.v1.NodeSystemInfo"},"phase":{"description":"NodePhase is the recently observed lifecycle phase of the node. More info: https://kubernetes.io/docs/concepts/nodes/node/#phase The field is never populated, and now is deprecated.\n\nPossible enum values:\n - `\"Pending\"` means the node has been created/added by the system, but not configured.\n - `\"Running\"` means the node has been configured and has Kubernetes components running.\n - `\"Terminated\"` means the node has been removed from the cluster.","type":"string","enum":["Pending","Running","Terminated"]},"runtimeHandlers":{"description":"The available runtime handlers.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.NodeRuntimeHandler"},"x-kubernetes-list-type":"atomic"},"volumesAttached":{"description":"List of volumes that are attached to the node.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.AttachedVolume"},"x-kubernetes-list-type":"atomic"},"volumesInUse":{"description":"List of attachable volumes in use (mounted) by the node.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.NodeSystemInfo":{"description":"NodeSystemInfo is a set of ids/uuids to uniquely identify the node.","type":"object","required":["machineID","systemUUID","bootID","kernelVersion","osImage","containerRuntimeVersion","kubeletVersion","kubeProxyVersion","operatingSystem","architecture"],"properties":{"architecture":{"description":"The Architecture reported by the node","type":"string"},"bootID":{"description":"Boot ID reported by the node.","type":"string"},"containerRuntimeVersion":{"description":"ContainerRuntime Version reported by the node through runtime remote API (e.g. containerd://1.4.2).","type":"string"},"kernelVersion":{"description":"Kernel Version reported by the node from 'uname -r' (e.g. 3.16.0-0.bpo.4-amd64).","type":"string"},"kubeProxyVersion":{"description":"Deprecated: KubeProxy Version reported by the node.","type":"string"},"kubeletVersion":{"description":"Kubelet Version reported by the node.","type":"string"},"machineID":{"description":"MachineID reported by the node. For unique machine identification in the cluster this field is preferred. Learn more from man(5) machine-id: http://man7.org/linux/man-pages/man5/machine-id.5.html","type":"string"},"operatingSystem":{"description":"The Operating System reported by the node","type":"string"},"osImage":{"description":"OS Image reported by the node from /etc/os-release (e.g. Debian GNU/Linux 7 (wheezy)).","type":"string"},"systemUUID":{"description":"SystemUUID reported by the node. For unique machine identification MachineID is preferred. This field is specific to Red Hat hosts https://access.redhat.com/documentation/en-us/red_hat_subscription_management/1/html/rhsm/uuid","type":"string"}}},"io.k8s.api.core.v1.ObjectFieldSelector":{"description":"ObjectFieldSelector selects an APIVersioned field of an object.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.ObjectReference":{"description":"ObjectReference contains enough information to let you inspect or modify the referred object.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.PersistentVolume":{"description":"PersistentVolume (PV) is a storage resource provisioned by an administrator. It is analogous to a node. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec defines a specification of a persistent volume owned by the cluster. Provisioned by an administrator. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeSpec"},"status":{"description":"status represents the current information/status for the persistent volume. Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PersistentVolume","version":"v1"}]},"io.k8s.api.core.v1.PersistentVolumeClaim":{"description":"PersistentVolumeClaim is a user's request for and claim to a persistent volume","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimSpec"},"status":{"description":"status represents the current information/status of a persistent volume claim. Read-only. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PersistentVolumeClaim","version":"v1"}]},"io.k8s.api.core.v1.PersistentVolumeClaimCondition":{"description":"PersistentVolumeClaimCondition contains details about state of pvc","type":"object","required":["type","status"],"properties":{"lastProbeTime":{"description":"lastProbeTime is the time we probed the condition.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastTransitionTime":{"description":"lastTransitionTime is the time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"message is the human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"reason is a unique, this should be a short, machine understandable string that gives the reason for condition's last transition. If it reports \"Resizing\" that means the underlying persistent volume is being resized.","type":"string"},"status":{"type":"string"},"type":{"type":"string"}}},"io.k8s.api.core.v1.PersistentVolumeClaimList":{"description":"PersistentVolumeClaimList is a list of PersistentVolumeClaim items.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of persistent volume claims. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaim"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PersistentVolumeClaimList","version":"v1"}]},"io.k8s.api.core.v1.PersistentVolumeClaimSpec":{"description":"PersistentVolumeClaimSpec describes the common attributes of storage devices and allows a Source for provider-specific attributes","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string","enum":["ReadOnlyMany","ReadWriteMany","ReadWriteOnce","ReadWriteOncePod"]},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.","$ref":"#/definitions/io.k8s.api.core.v1.TypedLocalObjectReference"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","$ref":"#/definitions/io.k8s.api.core.v1.TypedObjectReference"},"resources":{"description":"resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","$ref":"#/definitions/io.k8s.api.core.v1.VolumeResourceRequirements"},"selector":{"description":"selector is a label query over volumes to consider for binding.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Beta) Using this field requires the VolumeAttributesClass feature gate to be enabled (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.\n\nPossible enum values:\n - `\"Block\"` means the volume will not be formatted with a filesystem and will remain a raw block device.\n - `\"Filesystem\"` means the volume will be or is formatted with a filesystem.","type":"string","enum":["Block","Filesystem"]},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}},"io.k8s.api.core.v1.PersistentVolumeClaimSpec_v2":{"description":"PersistentVolumeClaimSpec describes the common attributes of storage devices and allows a Source for provider-specific attributes","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"}},"dataSource":{"description":"dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.","$ref":"#/definitions/io.k8s.api.core.v1.TypedLocalObjectReference"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","$ref":"#/definitions/io.k8s.api.core.v1.TypedObjectReference"},"resources":{"description":"resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","$ref":"#/definitions/io.k8s.api.core.v1.VolumeResourceRequirements"},"selector":{"description":"selector is a label query over volumes to consider for binding.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v2"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#volumeattributesclass (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.\n\nPossible enum values:\n - `\"Block\"` means the volume will not be formatted with a filesystem and will remain a raw block device.\n - `\"Filesystem\"` means the volume will be or is formatted with a filesystem.","type":"string","enum":["Block","Filesystem"]},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}},"io.k8s.api.core.v1.PersistentVolumeClaimSpec_v3":{"description":"PersistentVolumeClaimSpec describes the common attributes of storage devices and allows a Source for provider-specific attributes","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"}},"dataSource":{"description":"dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.","$ref":"#/definitions/io.k8s.api.core.v1.TypedLocalObjectReference"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","$ref":"#/definitions/io.k8s.api.core.v1.TypedObjectReference"},"resources":{"description":"resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","$ref":"#/definitions/io.k8s.api.core.v1.VolumeResourceRequirements"},"selector":{"description":"selector is a label query over volumes to consider for binding.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v5"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#volumeattributesclass (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.\n\nPossible enum values:\n - `\"Block\"` means the volume will not be formatted with a filesystem and will remain a raw block device.\n - `\"Filesystem\"` means the volume will be or is formatted with a filesystem.","type":"string","enum":["Block","Filesystem"]},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}},"io.k8s.api.core.v1.PersistentVolumeClaimStatus":{"description":"PersistentVolumeClaimStatus is the current status of a persistent volume claim.","type":"object","properties":{"accessModes":{"description":"accessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string","enum":["ReadOnlyMany","ReadWriteMany","ReadWriteOnce","ReadWriteOncePod"]},"x-kubernetes-list-type":"atomic"},"allocatedResourceStatuses":{"description":"allocatedResourceStatuses stores status of resource being resized for the given PVC. Key names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered reserved and hence may not be used.\n\nClaimResourceStatus can be in any of following states:\n\t- ControllerResizeInProgress:\n\t\tState set when resize controller starts resizing the volume in control-plane.\n\t- ControllerResizeFailed:\n\t\tState set when resize has failed in resize controller with a terminal error.\n\t- NodeResizePending:\n\t\tState set when resize controller has finished resizing the volume but further resizing of\n\t\tvolume is needed on the node.\n\t- NodeResizeInProgress:\n\t\tState set when kubelet starts resizing the volume.\n\t- NodeResizeFailed:\n\t\tState set when resizing has failed in kubelet with a terminal error. Transient errors don't set\n\t\tNodeResizeFailed.\nFor example: if expanding a PVC for more capacity - this field can be one of the following states:\n\t- pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"ControllerResizeFailed\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizePending\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeInProgress\"\n     - pvc.status.allocatedResourceStatus['storage'] = \"NodeResizeFailed\"\nWhen this field is not set, it means that no resize operation is in progress for the given PVC.\n\nA controller that receives PVC update with previously unknown resourceName or ClaimResourceStatus should ignore the update for the purpose it was designed. For example - a controller that only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid resources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"type":"string","enum":["ControllerResizeInProgress","ControllerResizeInfeasible","NodeResizeInProgress","NodeResizeInfeasible","NodeResizePending"]},"x-kubernetes-map-type":"granular"},"allocatedResources":{"description":"allocatedResources tracks the resources allocated to a PVC including its capacity. Key names follow standard Kubernetes label syntax. Valid values are either:\n\t* Un-prefixed keys:\n\t\t- storage - the capacity of the volume.\n\t* Custom resources must use implementation-defined prefixed names such as \"example.com/my-custom-resource\"\nApart from above values - keys that are unprefixed or have kubernetes.io prefix are considered reserved and hence may not be used.\n\nCapacity reported here may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity.\n\nA controller that receives PVC update with previously unknown resourceName should ignore the update for the purpose it was designed. For example - a controller that only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid resources associated with PVC.\n\nThis is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"capacity":{"description":"capacity represents the actual resources of the underlying volume.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"conditions":{"description":"conditions is the current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to 'Resizing'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"currentVolumeAttributesClassName":{"description":"currentVolumeAttributesClassName is the current name of the VolumeAttributesClass the PVC is using. When unset, there is no VolumeAttributeClass applied to this PersistentVolumeClaim This is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"string"},"modifyVolumeStatus":{"description":"ModifyVolumeStatus represents the status object of ControllerModifyVolume operation. When this is unset, there is no ModifyVolume operation being attempted. This is a beta field and requires enabling VolumeAttributesClass feature (off by default).","$ref":"#/definitions/io.k8s.api.core.v1.ModifyVolumeStatus"},"phase":{"description":"phase represents the current phase of PersistentVolumeClaim.\n\nPossible enum values:\n - `\"Bound\"` used for PersistentVolumeClaims that are bound\n - `\"Lost\"` used for PersistentVolumeClaims that lost their underlying PersistentVolume. The claim was bound to a PersistentVolume and this volume does not exist any longer and all data on it was lost.\n - `\"Pending\"` used for PersistentVolumeClaims that are not yet bound","type":"string","enum":["Bound","Lost","Pending"]}}},"io.k8s.api.core.v1.PersistentVolumeClaimTemplate":{"description":"PersistentVolumeClaimTemplate is used to produce PersistentVolumeClaim objects as part of an EphemeralVolumeSource.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC when creating it. No other fields are allowed and will be rejected during validation.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is copied unchanged into the PVC that gets created from this template. The same fields as in a PersistentVolumeClaim are also valid here.","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimSpec"}}},"io.k8s.api.core.v1.PersistentVolumeClaimVolumeSource":{"description":"PersistentVolumeClaimVolumeSource references the user's PVC in the same namespace. This volume finds the bound PV and mounts that volume for the pod. A PersistentVolumeClaimVolumeSource is, essentially, a wrapper around another type of volume that is owned by someone else (the system).","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts. Default false.","type":"boolean"}}},"io.k8s.api.core.v1.PersistentVolumeList":{"description":"PersistentVolumeList is a list of PersistentVolume items.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of persistent volumes. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolume"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PersistentVolumeList","version":"v1"}]},"io.k8s.api.core.v1.PersistentVolumeSpec":{"description":"PersistentVolumeSpec is the specification of a persistent volume.","type":"object","properties":{"accessModes":{"description":"accessModes contains all ways the volume can be mounted. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes","type":"array","items":{"type":"string","enum":["ReadOnlyMany","ReadWriteMany","ReadWriteOnce","ReadWriteOncePod"]},"x-kubernetes-list-type":"atomic"},"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","$ref":"#/definitions/io.k8s.api.core.v1.AWSElasticBlockStoreVolumeSource"},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureDiskVolumeSource"},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureFilePersistentVolumeSource"},"capacity":{"description":"capacity is the description of the persistent volume's resources and capacity. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#capacity","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.CephFSPersistentVolumeSource"},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.CinderPersistentVolumeSource"},"claimRef":{"description":"claimRef is part of a bi-directional binding between PersistentVolume and PersistentVolumeClaim. Expected to be non-nil when bound. claim.VolumeName is the authoritative bind between PV and PVC. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference","x-kubernetes-map-type":"granular"},"csi":{"description":"csi represents storage that is handled by an external CSI driver (Beta feature).","$ref":"#/definitions/io.k8s.api.core.v1.CSIPersistentVolumeSource"},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.FCVolumeSource"},"flexVolume":{"description":"flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.","$ref":"#/definitions/io.k8s.api.core.v1.FlexPersistentVolumeSource"},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine and exposed to the pod for its usage. This depends on the Flocker control service being running","$ref":"#/definitions/io.k8s.api.core.v1.FlockerVolumeSource"},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","$ref":"#/definitions/io.k8s.api.core.v1.GCEPersistentDiskVolumeSource"},"glusterfs":{"description":"glusterfs represents a Glusterfs volume that is attached to a host and exposed to the pod. Provisioned by an admin. More info: https://examples.k8s.io/volumes/glusterfs/README.md","$ref":"#/definitions/io.k8s.api.core.v1.GlusterfsPersistentVolumeSource"},"hostPath":{"description":"hostPath represents a directory on the host. Provisioned by a developer or tester. This is useful for single-node development and testing only! On-host storage is not supported in any way and WILL NOT WORK in a multi-node cluster. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","$ref":"#/definitions/io.k8s.api.core.v1.HostPathVolumeSource"},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. Provisioned by an admin.","$ref":"#/definitions/io.k8s.api.core.v1.ISCSIPersistentVolumeSource"},"local":{"description":"local represents directly-attached storage with node affinity","$ref":"#/definitions/io.k8s.api.core.v1.LocalVolumeSource"},"mountOptions":{"description":"mountOptions is the list of mount options, e.g. [\"ro\", \"soft\"]. Not validated - mount will simply fail if one is invalid. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#mount-options","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"nfs":{"description":"nfs represents an NFS mount on the host. Provisioned by an admin. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","$ref":"#/definitions/io.k8s.api.core.v1.NFSVolumeSource"},"nodeAffinity":{"description":"nodeAffinity defines constraints that limit what nodes this volume can be accessed from. This field influences the scheduling of pods that use this volume.","$ref":"#/definitions/io.k8s.api.core.v1.VolumeNodeAffinity"},"persistentVolumeReclaimPolicy":{"description":"persistentVolumeReclaimPolicy defines what happens to a persistent volume when released from its claim. Valid options are Retain (default for manually created PersistentVolumes), Delete (default for dynamically provisioned PersistentVolumes), and Recycle (deprecated). Recycle must be supported by the volume plugin underlying this PersistentVolume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#reclaiming\n\nPossible enum values:\n - `\"Delete\"` means the volume will be deleted from Kubernetes on release from its claim. The volume plugin must support Deletion.\n - `\"Recycle\"` means the volume will be recycled back into the pool of unbound persistent volumes on release from its claim. The volume plugin must support Recycling.\n - `\"Retain\"` means the volume will be left in its current phase (Released) for manual reclamation by the administrator. The default policy is Retain.","type":"string","enum":["Delete","Recycle","Retain"]},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PhotonPersistentDiskVolumeSource"},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PortworxVolumeSource"},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.QuobyteVolumeSource"},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.RBDPersistentVolumeSource"},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","$ref":"#/definitions/io.k8s.api.core.v1.ScaleIOPersistentVolumeSource"},"storageClassName":{"description":"storageClassName is the name of StorageClass to which this persistent volume belongs. Empty value means that this volume does not belong to any StorageClass.","type":"string"},"storageos":{"description":"storageOS represents a StorageOS volume that is attached to the kubelet's host machine and mounted into the pod More info: https://examples.k8s.io/volumes/storageos/README.md","$ref":"#/definitions/io.k8s.api.core.v1.StorageOSPersistentVolumeSource"},"volumeAttributesClassName":{"description":"Name of VolumeAttributesClass to which this persistent volume belongs. Empty value is not allowed. When this field is not set, it indicates that this volume does not belong to any VolumeAttributesClass. This field is mutable and can be changed by the CSI driver after a volume has been updated successfully to a new class. For an unbound PersistentVolume, the volumeAttributesClassName will be matched with unbound PersistentVolumeClaims during the binding process. This is a beta field and requires enabling VolumeAttributesClass feature (off by default).","type":"string"},"volumeMode":{"description":"volumeMode defines if a volume is intended to be used with a formatted filesystem or to remain in raw block state. Value of Filesystem is implied when not included in spec.\n\nPossible enum values:\n - `\"Block\"` means the volume will not be formatted with a filesystem and will remain a raw block device.\n - `\"Filesystem\"` means the volume will be or is formatted with a filesystem.","type":"string","enum":["Block","Filesystem"]},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.VsphereVirtualDiskVolumeSource"}}},"io.k8s.api.core.v1.PersistentVolumeStatus":{"description":"PersistentVolumeStatus is the current status of a persistent volume.","type":"object","properties":{"lastPhaseTransitionTime":{"description":"lastPhaseTransitionTime is the time the phase transitioned from one to another and automatically resets to current time everytime a volume phase transitions.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"message is a human-readable message indicating details about why the volume is in this state.","type":"string"},"phase":{"description":"phase indicates if a volume is available, bound to a claim, or released by a claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#phase\n\nPossible enum values:\n - `\"Available\"` used for PersistentVolumes that are not yet bound Available volumes are held by the binder and matched to PersistentVolumeClaims\n - `\"Bound\"` used for PersistentVolumes that are bound\n - `\"Failed\"` used for PersistentVolumes that failed to be correctly recycled or deleted after being released from a claim\n - `\"Pending\"` used for PersistentVolumes that are not available\n - `\"Released\"` used for PersistentVolumes where the bound PersistentVolumeClaim was deleted released volumes must be recycled before becoming available again this phase is used by the persistent volume claim binder to signal to another process to reclaim the resource","type":"string","enum":["Available","Bound","Failed","Pending","Released"]},"reason":{"description":"reason is a brief CamelCase string that describes any failure and is meant for machine parsing and tidy display in the CLI.","type":"string"}}},"io.k8s.api.core.v1.PhotonPersistentDiskVolumeSource":{"description":"Represents a Photon Controller persistent disk resource.","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"io.k8s.api.core.v1.Pod":{"description":"Pod is a collection of containers that can run on a host. This resource is created by clients and scheduled onto hosts.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.PodSpec"},"status":{"description":"Most recently observed status of the pod. This data may not be up to date. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.PodStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Pod","version":"v1"}]},"io.k8s.api.core.v1.PodAffinity":{"description":"Pod affinity is a group of inter pod affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.WeightedPodAffinityTerm"},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodAffinityTerm"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.PodAffinityTerm":{"description":"Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key <topologyKey> matches that of any node on which a pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)` to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)` to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.","type":"string"}}},"io.k8s.api.core.v1.PodAffinityTerm_v2":{"description":"Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key <topologyKey> matches that of any node on which a pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v2"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with `LabelSelector` as `key in (value)` to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. Also, MatchLabelKeys cannot be set when LabelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with `LabelSelector` as `key notin (value)` to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector. Also, MismatchLabelKeys cannot be set when LabelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v2"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"}},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.","type":"string"}}},"io.k8s.api.core.v1.PodAffinityTerm_v3":{"description":"Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key <topologyKey> matches that of any node on which a pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v5"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with `LabelSelector` as `key in (value)` to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. Also, MatchLabelKeys cannot be set when LabelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with `LabelSelector` as `key notin (value)` to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector. Also, MismatchLabelKeys cannot be set when LabelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v5"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"}},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.","type":"string"}}},"io.k8s.api.core.v1.PodAffinity_v2":{"description":"Pod affinity is a group of inter pod affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.WeightedPodAffinityTerm"}},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodAffinityTerm_v2"}}}},"io.k8s.api.core.v1.PodAffinity_v3":{"description":"Pod affinity is a group of inter pod affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.WeightedPodAffinityTerm"}},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodAffinityTerm_v3"}}}},"io.k8s.api.core.v1.PodAntiAffinity":{"description":"Pod anti affinity is a group of inter pod anti affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.WeightedPodAffinityTerm"},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodAffinityTerm"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.PodAntiAffinity_v2":{"description":"Pod anti affinity is a group of inter pod anti affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.WeightedPodAffinityTerm"}},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodAffinityTerm_v2"}}}},"io.k8s.api.core.v1.PodAntiAffinity_v3":{"description":"Pod anti affinity is a group of inter pod anti affinity scheduling rules.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.WeightedPodAffinityTerm"}},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodAffinityTerm_v3"}}}},"io.k8s.api.core.v1.PodCondition":{"description":"PodCondition contains details for the current condition of this pod.","type":"object","required":["type","status"],"properties":{"lastProbeTime":{"description":"Last time we probed the condition.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"Unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"Status is the status of the condition. Can be True, False, Unknown. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions","type":"string"},"type":{"description":"Type is the type of the condition. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions","type":"string"}}},"io.k8s.api.core.v1.PodDNSConfig":{"description":"PodDNSConfig defines the DNS parameters of a pod in addition to those generated from DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodDNSConfigOption"},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.PodDNSConfigOption":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Required.","type":"string"},"value":{"type":"string"}}},"io.k8s.api.core.v1.PodDNSConfig_v2":{"description":"PodDNSConfig defines the DNS parameters of a pod in addition to those generated from DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.","type":"array","items":{"type":"string"}},"options":{"description":"A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodDNSConfigOption"}},"searches":{"description":"A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.","type":"array","items":{"type":"string"}}}},"io.k8s.api.core.v1.PodIP":{"description":"PodIP represents a single IP address allocated to the pod.","type":"object","required":["ip"],"properties":{"ip":{"description":"IP is the IP address assigned to the pod","type":"string"}}},"io.k8s.api.core.v1.PodList":{"description":"PodList is a list of Pods.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pods. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Pod"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PodList","version":"v1"}]},"io.k8s.api.core.v1.PodOS":{"description":"PodOS defines the OS parameters of a pod.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the operating system. The currently supported values are linux and windows. Additional value may be defined in future and can be one of: https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration Clients should expect to handle additional values and treat unrecognized values in this field as os: null","type":"string"}}},"io.k8s.api.core.v1.PodReadinessGate":{"description":"PodReadinessGate contains the reference to a pod condition","type":"object","required":["conditionType"],"properties":{"conditionType":{"description":"ConditionType refers to a condition in the pod's condition list with matching type.","type":"string"}}},"io.k8s.api.core.v1.PodResourceClaim":{"description":"PodResourceClaim references exactly one ResourceClaim, either directly or by naming a ResourceClaimTemplate which is then turned into a ResourceClaim for the pod.\n\nIt adds a name to it that uniquely identifies the ResourceClaim inside the Pod. Containers that need access to the ResourceClaim reference it with this name.","type":"object","required":["name"],"properties":{"name":{"description":"Name uniquely identifies this resource claim inside the pod. This must be a DNS_LABEL.","type":"string"},"resourceClaimName":{"description":"ResourceClaimName is the name of a ResourceClaim object in the same namespace as this pod.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must be set.","type":"string"},"resourceClaimTemplateName":{"description":"ResourceClaimTemplateName is the name of a ResourceClaimTemplate object in the same namespace as this pod.\n\nThe template will be used to create a new ResourceClaim, which will be bound to this pod. When this pod is deleted, the ResourceClaim will also be deleted. The pod name and resource name, along with a generated component, will be used to form a unique name for the ResourceClaim, which will be recorded in pod.status.resourceClaimStatuses.\n\nThis field is immutable and no changes will be made to the corresponding ResourceClaim by the control plane after creating the ResourceClaim.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must be set.","type":"string"}}},"io.k8s.api.core.v1.PodResourceClaimStatus":{"description":"PodResourceClaimStatus is stored in the PodStatus for each PodResourceClaim which references a ResourceClaimTemplate. It stores the generated name for the corresponding ResourceClaim.","type":"object","required":["name"],"properties":{"name":{"description":"Name uniquely identifies this resource claim inside the pod. This must match the name of an entry in pod.spec.resourceClaims, which implies that the string must be a DNS_LABEL.","type":"string"},"resourceClaimName":{"description":"ResourceClaimName is the name of the ResourceClaim that was generated for the Pod in the namespace of the Pod. If this is unset, then generating a ResourceClaim was not necessary. The pod.spec.resourceClaims entry can be ignored in this case.","type":"string"}}},"io.k8s.api.core.v1.PodResourceClaim_v2":{"description":"PodResourceClaim references exactly one ResourceClaim through a ClaimSource. It adds a name to it that uniquely identifies the ResourceClaim inside the Pod. Containers that need access to the ResourceClaim reference it with this name.","type":"object","required":["name"],"properties":{"name":{"description":"Name uniquely identifies this resource claim inside the pod. This must be a DNS_LABEL.","type":"string"},"source":{"description":"Source describes where to find the ResourceClaim.","$ref":"#/definitions/io.k8s.api.core.v1.ClaimSource"}}},"io.k8s.api.core.v1.PodSchedulingGate":{"description":"PodSchedulingGate is associated to a Pod to guard its scheduling.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the scheduling gate. Each scheduling gate must have a unique name field.","type":"string"}}},"io.k8s.api.core.v1.PodSecurityContext":{"description":"PodSecurityContext holds pod-level security attributes and common container settings. Some fields are also present in container.securityContext.  Field values of container.securityContext take precedence over field values of PodSecurityContext.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.AppArmorProfile"},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod. Some volume types allow the Kubelet to change the ownership of that volume to be owned by the pod:\n\n1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used. Note that this field cannot be set when spec.os.name is windows.\n\nPossible enum values:\n - `\"Always\"` indicates that volume's ownership and permissions should always be changed whenever volume is mounted inside a Pod. This the default behavior.\n - `\"OnRootMismatch\"` indicates that volume's ownership and permissions will be changed only when permission and ownership of root directory does not match with expected permissions on the volume. This can help shorten the time it takes to change ownership and permissions of a volume.","type":"string","enum":["Always","OnRootMismatch"]},"runAsGroup":{"description":"The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SELinuxOptions"},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SeccompProfile"},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition to the container's primary GID and fsGroup (if specified).  If the SupplementalGroupsPolicy feature is enabled, the supplementalGroupsPolicy field determines whether these are in addition to or instead of any group memberships defined in the container image. If unspecified, no additional groups are added, though group memberships defined in the container image may still be used, depending on the supplementalGroupsPolicy field. Note that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated. Valid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used. (Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled and the container runtime must implement support for this feature. Note that this field cannot be set when spec.os.name is windows.\n\nPossible enum values:\n - `\"Merge\"` means that the container's provided SupplementalGroups and FsGroup (specified in SecurityContext) will be merged with the primary user's groups as defined in the container image (in /etc/group).\n - `\"Strict\"` means that the container's provided SupplementalGroups and FsGroup (specified in SecurityContext) will be used instead of any groups defined in the container image.","type":"string","enum":["Merge","Strict"]},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch. Note that this field cannot be set when spec.os.name is windows.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Sysctl"},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers. If unspecified, the options within a container's SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.","$ref":"#/definitions/io.k8s.api.core.v1.WindowsSecurityContextOptions"}}},"io.k8s.api.core.v1.PodSecurityContext_v2":{"description":"PodSecurityContext holds pod-level security attributes and common container settings. Some fields are also present in container.securityContext.  Field values of container.securityContext take precedence over field values of PodSecurityContext.","type":"object","properties":{"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod. Some volume types allow the Kubelet to change the ownership of that volume to be owned by the pod:\n\n1. The owning GID will be the FSGroup 2. The setgid bit is set (new files created in the volume will be owned by FSGroup) 3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume before being exposed inside Pod. This field will only apply to volume types which support fsGroup based ownership(and permissions). It will have no effect on ephemeral volume types such as: secret, configmaps and emptydir. Valid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used. Note that this field cannot be set when spec.os.name is windows.\n\nPossible enum values:\n - `\"Always\"` indicates that volume's ownership and permissions should always be changed whenever volume is mounted inside a Pod. This the default behavior.\n - `\"OnRootMismatch\"` indicates that volume's ownership and permissions will be changed only when permission and ownership of root directory does not match with expected permissions on the volume. This can help shorten the time it takes to change ownership and permissions of a volume.","type":"string","enum":["Always","OnRootMismatch"]},"runAsGroup":{"description":"The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in SecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence for that container. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SELinuxOptions"},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SeccompProfile"},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in addition to the container's primary GID, the fsGroup (if specified), and group memberships defined in the container image for the uid of the container process. If unspecified, no additional groups are added to any container. Note that group memberships defined in the container image for the uid of the container process are still effective, even if they are not included in this list. Note that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported sysctls (by the container runtime) might fail to launch. Note that this field cannot be set when spec.os.name is windows.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Sysctl"}},"windowsOptions":{"description":"The Windows specific settings applied to all containers. If unspecified, the options within a container's SecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.","$ref":"#/definitions/io.k8s.api.core.v1.WindowsSecurityContextOptions"}}},"io.k8s.api.core.v1.PodSpec":{"description":"PodSpec is a description of a pod.","type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"description":"Optional duration in seconds the pod may be active on the node relative to StartTime before the system will actively try to mark it failed and kill associated containers. Value must be a positive integer.","type":"integer","format":"int64"},"affinity":{"description":"If specified, the pod's scheduling constraints","$ref":"#/definitions/io.k8s.api.core.v1.Affinity"},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.","type":"boolean"},"containers":{"description":"List of containers belonging to the pod. Containers cannot currently be added or removed. There must be at least one container in a Pod. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Container"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.","$ref":"#/definitions/io.k8s.api.core.v1.PodDNSConfig"},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.\n\nPossible enum values:\n - `\"ClusterFirst\"` indicates that the pod should use cluster DNS first unless hostNetwork is true, if it is available, then fall back on the default (as determined by kubelet) DNS settings.\n - `\"ClusterFirstWithHostNet\"` indicates that the pod should use cluster DNS first, if it is available, then fall back on the default (as determined by kubelet) DNS settings.\n - `\"Default\"` indicates that the pod should use the default (as determined by kubelet) DNS settings.\n - `\"None\"` indicates that the pod should use empty DNS settings. DNS parameters such as nameservers and search paths should be defined via DNSConfig.","type":"string","enum":["ClusterFirst","ClusterFirstWithHostNet","Default","None"]},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.","type":"boolean"},"ephemeralContainers":{"description":"List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EphemeralContainer"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.HostAlias"},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"ip","x-kubernetes-patch-strategy":"merge"},"hostIPC":{"description":"Use the host's ipc namespace. Optional: Default to false.","type":"boolean"},"hostNetwork":{"description":"Host networking requested for this pod. Use the host's network namespace. If this option is set, the ports that will be used must be specified. Default to false.","type":"boolean"},"hostPID":{"description":"Use the host's pid namespace. Optional: Default to false.","type":"boolean"},"hostUsers":{"description":"Use the host's user namespace. Optional: Default to true. If set to true or not present, the pod will be run in the host user namespace, useful for when the pod needs a feature only available to the host user namespace, such as loading a kernel module with CAP_SYS_MODULE. When set to false, a new userns is created for the pod. Setting false is useful for mitigating container breakout vulnerabilities even allowing users to run their containers as root without actually having root privileges on the host. This field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.","type":"boolean"},"hostname":{"description":"Specifies the hostname of the Pod If not specified, the pod's hostname will be set to a system-defined value.","type":"string"},"imagePullSecrets":{"description":"ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"initContainers":{"description":"List of initialization containers belonging to the pod. Init containers are executed in order prior to containers being started. If any init container fails, the pod is considered to have failed and is handled according to its restartPolicy. The name for an init container or normal container must be unique among all containers. Init containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes. The resourceRequirements of an init container are taken into account during scheduling by finding the highest request/limit for each resource type, and then using the max of of that value or the sum of the normal containers. Limits are applied to init containers in a similar fashion. Init containers cannot currently be added or removed. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Container"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"nodeName":{"description":"NodeName indicates in which node this pod is scheduled. If empty, this pod is a candidate for scheduling by the scheduler defined in schedulerName. Once this field is set, the kubelet for this node becomes responsible for the lifecycle of this pod. This field should not be used to express a desire for the pod to be scheduled on a specific node. https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#nodename","type":"string"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"description":"Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.hostUsers - spec.securityContext.appArmorProfile - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.securityContext.supplementalGroupsPolicy - spec.containers[*].securityContext.appArmorProfile - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup","$ref":"#/definitions/io.k8s.api.core.v1.PodOS"},"overhead":{"description":"Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"preemptionPolicy":{"description":"PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.\n\nPossible enum values:\n - `\"Never\"` means that pod never preempts other pods with lower priority.\n - `\"PreemptLowerPriority\"` means that pod can preempt other pods with lower priority.","type":"string","enum":["Never","PreemptLowerPriority"]},"priority":{"description":"The priority value. Various system components use this field to find the priority of the pod. When Priority Admission Controller is enabled, it prevents users from setting this field. The admission controller populates this field from PriorityClassName. The higher the value, the higher the priority.","type":"integer","format":"int32"},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.","type":"string"},"readinessGates":{"description":"If specified, all readiness gates will be evaluated for pod readiness. A pod is ready when all its containers are ready AND all conditions specified in the readiness gates have status equal to \"True\" More info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodReadinessGate"},"x-kubernetes-list-type":"atomic"},"resourceClaims":{"description":"ResourceClaims defines which ResourceClaims must be allocated and reserved before the Pod is allowed to start. The resources will be made available to those containers which consume them by name.\n\nThis is an alpha field and requires enabling the DynamicResourceAllocation feature gate.\n\nThis field is immutable.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodResourceClaim"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge,retainKeys"},"restartPolicy":{"description":"Restart policy for all containers within the pod. One of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy\n\nPossible enum values:\n - `\"Always\"`\n - `\"Never\"`\n - `\"OnFailure\"`","type":"string","enum":["Always","Never","OnFailure"]},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class","type":"string"},"schedulerName":{"description":"If specified, the pod will be dispatched by specified scheduler. If not specified, the pod will be dispatched by default scheduler.","type":"string"},"schedulingGates":{"description":"SchedulingGates is an opaque list of values that if specified will block scheduling the pod. If schedulingGates is not empty, the pod will stay in the SchedulingGated state and the scheduler will not attempt to schedule the pod.\n\nSchedulingGates can only be set at pod creation time, and be removed only afterwards.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodSchedulingGate"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty.  See type description for default values of each field.","$ref":"#/definitions/io.k8s.api.core.v1.PodSecurityContext"},"serviceAccount":{"description":"DeprecatedServiceAccount is a deprecated alias for ServiceAccountName. Deprecated: Use serviceAccountName instead.","type":"string"},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run this pod. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"string"},"setHostnameAsFQDN":{"description":"If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default). In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname). In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters to FQDN. If a pod does not have FQDN, this has no effect. Default to false.","type":"boolean"},"shareProcessNamespace":{"description":"Share a single process namespace between all of the containers in a pod. When this is set containers will be able to view and signal processes from other containers in the same pod, and the first process in each container will not be assigned PID 1. HostPID and ShareProcessNamespace cannot both be set. Optional: Default to false.","type":"boolean"},"subdomain":{"description":"If specified, the fully qualified Pod hostname will be \"<hostname>.<subdomain>.<pod namespace>.svc.<cluster domain>\". If not specified, the pod will not have a domainname at all.","type":"string"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). If this value is nil, the default grace period will be used instead. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. Defaults to 30 seconds.","type":"integer","format":"int64"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Toleration"},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints describes how a group of pods ought to spread across topology domains. Scheduler will schedule pods in a way which abides by the constraints. All topologySpreadConstraints are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.TopologySpreadConstraint"},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"topologyKey","x-kubernetes-patch-strategy":"merge"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Volume"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge,retainKeys"}}},"io.k8s.api.core.v1.PodSpec_v2":{"description":"PodSpec is a description of a pod.","type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"description":"Optional duration in seconds the pod may be active on the node relative to StartTime before the system will actively try to mark it failed and kill associated containers. Value must be a positive integer.","type":"integer","format":"int64"},"affinity":{"description":"If specified, the pod's scheduling constraints","$ref":"#/definitions/io.k8s.api.core.v1.Affinity"},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.","type":"boolean"},"containers":{"description":"List of containers belonging to the pod. Containers cannot currently be added or removed. There must be at least one container in a Pod. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Container_v2"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.","$ref":"#/definitions/io.k8s.api.core.v1.PodDNSConfig_v2"},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.\n\nPossible enum values:\n - `\"ClusterFirst\"` indicates that the pod should use cluster DNS first unless hostNetwork is true, if it is available, then fall back on the default (as determined by kubelet) DNS settings.\n - `\"ClusterFirstWithHostNet\"` indicates that the pod should use cluster DNS first, if it is available, then fall back on the default (as determined by kubelet) DNS settings.\n - `\"Default\"` indicates that the pod should use the default (as determined by kubelet) DNS settings.\n - `\"None\"` indicates that the pod should use empty DNS settings. DNS parameters such as nameservers and search paths should be defined via DNSConfig.","type":"string","enum":["ClusterFirst","ClusterFirstWithHostNet","Default","None"]},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.","type":"boolean"},"ephemeralContainers":{"description":"List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EphemeralContainer_v2"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.HostAlias_v2"},"x-kubernetes-patch-merge-key":"ip","x-kubernetes-patch-strategy":"merge"},"hostIPC":{"description":"Use the host's ipc namespace. Optional: Default to false.","type":"boolean"},"hostNetwork":{"description":"Host networking requested for this pod. Use the host's network namespace. If this option is set, the ports that will be used must be specified. Default to false.","type":"boolean"},"hostPID":{"description":"Use the host's pid namespace. Optional: Default to false.","type":"boolean"},"hostUsers":{"description":"Use the host's user namespace. Optional: Default to true. If set to true or not present, the pod will be run in the host user namespace, useful for when the pod needs a feature only available to the host user namespace, such as loading a kernel module with CAP_SYS_MODULE. When set to false, a new userns is created for the pod. Setting false is useful for mitigating container breakout vulnerabilities even allowing users to run their containers as root without actually having root privileges on the host. This field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.","type":"boolean"},"hostname":{"description":"Specifies the hostname of the Pod If not specified, the pod's hostname will be set to a system-defined value.","type":"string"},"imagePullSecrets":{"description":"ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"initContainers":{"description":"List of initialization containers belonging to the pod. Init containers are executed in order prior to containers being started. If any init container fails, the pod is considered to have failed and is handled according to its restartPolicy. The name for an init container or normal container must be unique among all containers. Init containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes. The resourceRequirements of an init container are taken into account during scheduling by finding the highest request/limit for each resource type, and then using the max of of that value or the sum of the normal containers. Limits are applied to init containers in a similar fashion. Init containers cannot currently be added or removed. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Container_v2"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"nodeName":{"description":"NodeName is a request to schedule this pod onto a specific node. If it is non-empty, the scheduler simply schedules this pod onto that node, assuming that it fits resource requirements.","type":"string"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"description":"Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.hostUsers - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup","$ref":"#/definitions/io.k8s.api.core.v1.PodOS"},"overhead":{"description":"Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"preemptionPolicy":{"description":"PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.\n\nPossible enum values:\n - `\"Never\"` means that pod never preempts other pods with lower priority.\n - `\"PreemptLowerPriority\"` means that pod can preempt other pods with lower priority.","type":"string","enum":["Never","PreemptLowerPriority"]},"priority":{"description":"The priority value. Various system components use this field to find the priority of the pod. When Priority Admission Controller is enabled, it prevents users from setting this field. The admission controller populates this field from PriorityClassName. The higher the value, the higher the priority.","type":"integer","format":"int32"},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.","type":"string"},"readinessGates":{"description":"If specified, all readiness gates will be evaluated for pod readiness. A pod is ready when all its containers are ready AND all conditions specified in the readiness gates have status equal to \"True\" More info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodReadinessGate"}},"resourceClaims":{"description":"ResourceClaims defines which ResourceClaims must be allocated and reserved before the Pod is allowed to start. The resources will be made available to those containers which consume them by name.\n\nThis is an alpha field and requires enabling the DynamicResourceAllocation feature gate.\n\nThis field is immutable.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodResourceClaim_v2"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge,retainKeys"},"restartPolicy":{"description":"Restart policy for all containers within the pod. One of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy\n\nPossible enum values:\n - `\"Always\"`\n - `\"Never\"`\n - `\"OnFailure\"`","type":"string","enum":["Always","Never","OnFailure"]},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class","type":"string"},"schedulerName":{"description":"If specified, the pod will be dispatched by specified scheduler. If not specified, the pod will be dispatched by default scheduler.","type":"string"},"schedulingGates":{"description":"SchedulingGates is an opaque list of values that if specified will block scheduling the pod. If schedulingGates is not empty, the pod will stay in the SchedulingGated state and the scheduler will not attempt to schedule the pod.\n\nSchedulingGates can only be set at pod creation time, and be removed only afterwards.\n\nThis is a beta feature enabled by the PodSchedulingReadiness feature gate.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodSchedulingGate"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty.  See type description for default values of each field.","$ref":"#/definitions/io.k8s.api.core.v1.PodSecurityContext_v2"},"serviceAccount":{"description":"DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. Deprecated: Use serviceAccountName instead.","type":"string"},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run this pod. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"string"},"setHostnameAsFQDN":{"description":"If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default). In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname). In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters to FQDN. If a pod does not have FQDN, this has no effect. Default to false.","type":"boolean"},"shareProcessNamespace":{"description":"Share a single process namespace between all of the containers in a pod. When this is set containers will be able to view and signal processes from other containers in the same pod, and the first process in each container will not be assigned PID 1. HostPID and ShareProcessNamespace cannot both be set. Optional: Default to false.","type":"boolean"},"subdomain":{"description":"If specified, the fully qualified Pod hostname will be \"<hostname>.<subdomain>.<pod namespace>.svc.<cluster domain>\". If not specified, the pod will not have a domainname at all.","type":"string"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). If this value is nil, the default grace period will be used instead. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. Defaults to 30 seconds.","type":"integer","format":"int64"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Toleration"}},"topologySpreadConstraints":{"description":"TopologySpreadConstraints describes how a group of pods ought to spread across topology domains. Scheduler will schedule pods in a way which abides by the constraints. All topologySpreadConstraints are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.TopologySpreadConstraint_v2"},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"topologyKey","x-kubernetes-patch-strategy":"merge"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Volume_v2"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge,retainKeys"}}},"io.k8s.api.core.v1.PodSpec_v3":{"description":"PodSpec is a description of a pod.","type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"description":"Optional duration in seconds the pod may be active on the node relative to StartTime before the system will actively try to mark it failed and kill associated containers. Value must be a positive integer.","type":"integer","format":"int64"},"affinity":{"description":"If specified, the pod's scheduling constraints","$ref":"#/definitions/io.k8s.api.core.v1.Affinity"},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.","type":"boolean"},"containers":{"description":"List of containers belonging to the pod. Containers cannot currently be added or removed. There must be at least one container in a Pod. Cannot be updated.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Container_v3"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.","$ref":"#/definitions/io.k8s.api.core.v1.PodDNSConfig_v2"},"dnsPolicy":{"description":"Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.\n\nPossible enum values:\n - `\"ClusterFirst\"` indicates that the pod should use cluster DNS first unless hostNetwork is true, if it is available, then fall back on the default (as determined by kubelet) DNS settings.\n - `\"ClusterFirstWithHostNet\"` indicates that the pod should use cluster DNS first, if it is available, then fall back on the default (as determined by kubelet) DNS settings.\n - `\"Default\"` indicates that the pod should use the default (as determined by kubelet) DNS settings.\n - `\"None\"` indicates that the pod should use empty DNS settings. DNS parameters such as nameservers and search paths should be defined via DNSConfig.","type":"string","enum":["ClusterFirst","ClusterFirstWithHostNet","Default","None"]},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.","type":"boolean"},"ephemeralContainers":{"description":"List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing pod to perform user-initiated actions such as debugging. This list cannot be specified when creating a pod, and it cannot be modified by updating the pod spec. In order to add an ephemeral container to an existing pod, use the pod's ephemeralcontainers subresource.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.EphemeralContainer_v3"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.HostAlias_v2"},"x-kubernetes-patch-merge-key":"ip","x-kubernetes-patch-strategy":"merge"},"hostIPC":{"description":"Use the host's ipc namespace. Optional: Default to false.","type":"boolean"},"hostNetwork":{"description":"Host networking requested for this pod. Use the host's network namespace. If this option is set, the ports that will be used must be specified. Default to false.","type":"boolean"},"hostPID":{"description":"Use the host's pid namespace. Optional: Default to false.","type":"boolean"},"hostUsers":{"description":"Use the host's user namespace. Optional: Default to true. If set to true or not present, the pod will be run in the host user namespace, useful for when the pod needs a feature only available to the host user namespace, such as loading a kernel module with CAP_SYS_MODULE. When set to false, a new userns is created for the pod. Setting false is useful for mitigating container breakout vulnerabilities even allowing users to run their containers as root without actually having root privileges on the host. This field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.","type":"boolean"},"hostname":{"description":"Specifies the hostname of the Pod If not specified, the pod's hostname will be set to a system-defined value.","type":"string"},"imagePullSecrets":{"description":"ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec. If specified, these secrets will be passed to individual puller implementations for them to use. More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"initContainers":{"description":"List of initialization containers belonging to the pod. Init containers are executed in order prior to containers being started. If any init container fails, the pod is considered to have failed and is handled according to its restartPolicy. The name for an init container or normal container must be unique among all containers. Init containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes. The resourceRequirements of an init container are taken into account during scheduling by finding the highest request/limit for each resource type, and then using the max of of that value or the sum of the normal containers. Limits are applied to init containers in a similar fashion. Init containers cannot currently be added or removed. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Container_v3"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"nodeName":{"description":"NodeName is a request to schedule this pod onto a specific node. If it is non-empty, the scheduler simply schedules this pod onto that node, assuming that it fits resource requirements.","type":"string"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"description":"Specifies the OS of the containers in the pod. Some pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset: -securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset: - spec.hostPID - spec.hostIPC - spec.hostUsers - spec.securityContext.seLinuxOptions - spec.securityContext.seccompProfile - spec.securityContext.fsGroup - spec.securityContext.fsGroupChangePolicy - spec.securityContext.sysctls - spec.shareProcessNamespace - spec.securityContext.runAsUser - spec.securityContext.runAsGroup - spec.securityContext.supplementalGroups - spec.containers[*].securityContext.seLinuxOptions - spec.containers[*].securityContext.seccompProfile - spec.containers[*].securityContext.capabilities - spec.containers[*].securityContext.readOnlyRootFilesystem - spec.containers[*].securityContext.privileged - spec.containers[*].securityContext.allowPrivilegeEscalation - spec.containers[*].securityContext.procMount - spec.containers[*].securityContext.runAsUser - spec.containers[*].securityContext.runAsGroup","$ref":"#/definitions/io.k8s.api.core.v1.PodOS"},"overhead":{"description":"Overhead represents the resource overhead associated with running a pod for a given RuntimeClass. This field will be autopopulated at admission time by the RuntimeClass admission controller. If the RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests. The RuntimeClass admission controller will reject Pod create requests which have the overhead already set. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value defined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero. More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"preemptionPolicy":{"description":"PreemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.\n\nPossible enum values:\n - `\"Never\"` means that pod never preempts other pods with lower priority.\n - `\"PreemptLowerPriority\"` means that pod can preempt other pods with lower priority.","type":"string","enum":["Never","PreemptLowerPriority"]},"priority":{"description":"The priority value. Various system components use this field to find the priority of the pod. When Priority Admission Controller is enabled, it prevents users from setting this field. The admission controller populates this field from PriorityClassName. The higher the value, the higher the priority.","type":"integer","format":"int32"},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.","type":"string"},"readinessGates":{"description":"If specified, all readiness gates will be evaluated for pod readiness. A pod is ready when all its containers are ready AND all conditions specified in the readiness gates have status equal to \"True\" More info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodReadinessGate"}},"resourceClaims":{"description":"ResourceClaims defines which ResourceClaims must be allocated and reserved before the Pod is allowed to start. The resources will be made available to those containers which consume them by name.\n\nThis is an alpha field and requires enabling the DynamicResourceAllocation feature gate.\n\nThis field is immutable.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodResourceClaim_v2"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge,retainKeys"},"restartPolicy":{"description":"Restart policy for all containers within the pod. One of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted. Default to Always. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy\n\nPossible enum values:\n - `\"Always\"`\n - `\"Never\"`\n - `\"OnFailure\"`","type":"string","enum":["Always","Never","OnFailure"]},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class","type":"string"},"schedulerName":{"description":"If specified, the pod will be dispatched by specified scheduler. If not specified, the pod will be dispatched by default scheduler.","type":"string"},"schedulingGates":{"description":"SchedulingGates is an opaque list of values that if specified will block scheduling the pod. If schedulingGates is not empty, the pod will stay in the SchedulingGated state and the scheduler will not attempt to schedule the pod.\n\nSchedulingGates can only be set at pod creation time, and be removed only afterwards.\n\nThis is a beta feature enabled by the PodSchedulingReadiness feature gate.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodSchedulingGate"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty.  See type description for default values of each field.","$ref":"#/definitions/io.k8s.api.core.v1.PodSecurityContext_v2"},"serviceAccount":{"description":"DeprecatedServiceAccount is a depreciated alias for ServiceAccountName. Deprecated: Use serviceAccountName instead.","type":"string"},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run this pod. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"string"},"setHostnameAsFQDN":{"description":"If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default). In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname). In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters to FQDN. If a pod does not have FQDN, this has no effect. Default to false.","type":"boolean"},"shareProcessNamespace":{"description":"Share a single process namespace between all of the containers in a pod. When this is set containers will be able to view and signal processes from other containers in the same pod, and the first process in each container will not be assigned PID 1. HostPID and ShareProcessNamespace cannot both be set. Optional: Default to false.","type":"boolean"},"subdomain":{"description":"If specified, the fully qualified Pod hostname will be \"<hostname>.<subdomain>.<pod namespace>.svc.<cluster domain>\". If not specified, the pod will not have a domainname at all.","type":"string"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). If this value is nil, the default grace period will be used instead. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. Defaults to 30 seconds.","type":"integer","format":"int64"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Toleration"}},"topologySpreadConstraints":{"description":"TopologySpreadConstraints describes how a group of pods ought to spread across topology domains. Scheduler will schedule pods in a way which abides by the constraints. All topologySpreadConstraints are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.TopologySpreadConstraint_v3"},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"topologyKey","x-kubernetes-patch-strategy":"merge"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Volume_v3"},"x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge,retainKeys"}}},"io.k8s.api.core.v1.PodStatus":{"description":"PodStatus represents information about the status of a pod. Status may trail the actual state of a system, especially if the node that hosts the pod cannot contact the control plane.","type":"object","properties":{"conditions":{"description":"Current service state of pod. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-conditions","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"containerStatuses":{"description":"The list has one entry per container in the manifest. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerStatus"},"x-kubernetes-list-type":"atomic"},"ephemeralContainerStatuses":{"description":"Status for any ephemeral containers that have run in this pod.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerStatus"},"x-kubernetes-list-type":"atomic"},"hostIP":{"description":"hostIP holds the IP address of the host to which the pod is assigned. Empty if the pod has not started yet. A pod can be assigned to a node that has a problem in kubelet which in turns mean that HostIP will not be updated even if there is a node is assigned to pod","type":"string"},"hostIPs":{"description":"hostIPs holds the IP addresses allocated to the host. If this field is specified, the first entry must match the hostIP field. This list is empty if the pod has not started yet. A pod can be assigned to a node that has a problem in kubelet which in turns means that HostIPs will not be updated even if there is a node is assigned to this pod.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.HostIP"},"x-kubernetes-list-type":"atomic","x-kubernetes-patch-merge-key":"ip","x-kubernetes-patch-strategy":"merge"},"initContainerStatuses":{"description":"The list has one entry per init container in the manifest. The most recent successful init container will have ready = true, the most recently started container will have startTime set. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-and-container-status","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ContainerStatus"},"x-kubernetes-list-type":"atomic"},"message":{"description":"A human readable message indicating details about why the pod is in this condition.","type":"string"},"nominatedNodeName":{"description":"nominatedNodeName is set only when this pod preempts other pods on the node, but it cannot be scheduled right away as preemption victims receive their graceful termination periods. This field does not guarantee that the pod will be scheduled on this node. Scheduler may decide to place the pod elsewhere if other nodes become available sooner. Scheduler may also decide to give the resources on this node to a higher priority pod that is created after preemption. As a result, this field may be different than PodSpec.nodeName when the pod is scheduled.","type":"string"},"phase":{"description":"The phase of a Pod is a simple, high-level summary of where the Pod is in its lifecycle. The conditions array, the reason and message fields, and the individual container status arrays contain more detail about the pod's status. There are five possible phase values:\n\nPending: The pod has been accepted by the Kubernetes system, but one or more of the container images has not been created. This includes time before being scheduled as well as time spent downloading images over the network, which could take a while. Running: The pod has been bound to a node, and all of the containers have been created. At least one container is still running, or is in the process of starting or restarting. Succeeded: All containers in the pod have terminated in success, and will not be restarted. Failed: All containers in the pod have terminated, and at least one container has terminated in failure. The container either exited with non-zero status or was terminated by the system. Unknown: For some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod.\n\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phase\n\nPossible enum values:\n - `\"Failed\"` means that all containers in the pod have terminated, and at least one container has terminated in a failure (exited with a non-zero exit code or was stopped by the system).\n - `\"Pending\"` means the pod has been accepted by the system, but one or more of the containers has not been started. This includes time before being bound to a node, as well as time spent pulling images onto the host.\n - `\"Running\"` means the pod has been bound to a node and all of the containers have been started. At least one container is still running or is in the process of being restarted.\n - `\"Succeeded\"` means that all containers in the pod have voluntarily terminated with a container exit code of 0, and the system is not going to restart any of these containers.\n - `\"Unknown\"` means that for some reason the state of the pod could not be obtained, typically due to an error in communicating with the host of the pod. Deprecated: It isn't being set since 2015 (74da3b14b0c0f658b3bb8d2def5094686d0e9095)","type":"string","enum":["Failed","Pending","Running","Succeeded","Unknown"]},"podIP":{"description":"podIP address allocated to the pod. Routable at least within the cluster. Empty if not yet allocated.","type":"string"},"podIPs":{"description":"podIPs holds the IP addresses allocated to the pod. If this field is specified, the 0th entry must match the podIP field. Pods may be allocated at most 1 value for each of IPv4 and IPv6. This list is empty if no IPs have been allocated yet.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodIP"},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"ip","x-kubernetes-patch-strategy":"merge"},"qosClass":{"description":"The Quality of Service (QOS) classification assigned to the pod based on resource requirements See PodQOSClass type for available QOS classes More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-qos/#quality-of-service-classes\n\nPossible enum values:\n - `\"BestEffort\"` is the BestEffort qos class.\n - `\"Burstable\"` is the Burstable qos class.\n - `\"Guaranteed\"` is the Guaranteed qos class.","type":"string","enum":["BestEffort","Burstable","Guaranteed"]},"reason":{"description":"A brief CamelCase message indicating details about why the pod is in this state. e.g. 'Evicted'","type":"string"},"resize":{"description":"Status of resources resize desired for pod's containers. It is empty if no resources resize is pending. Any changes to container resources will automatically set this to \"Proposed\"","type":"string"},"resourceClaimStatuses":{"description":"Status of resource claims.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodResourceClaimStatus"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge,retainKeys"},"startTime":{"description":"RFC 3339 date and time at which the object was acknowledged by the Kubelet. This is before the Kubelet pulled the container image(s) for the pod.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"io.k8s.api.core.v1.PodTemplate":{"description":"PodTemplate describes a template for creating copies of a predefined pod.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"template":{"description":"Template defines the pods that will be created from this pod template. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PodTemplate","version":"v1"}]},"io.k8s.api.core.v1.PodTemplateList":{"description":"PodTemplateList is a list of PodTemplates.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pod templates","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.PodTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"PodTemplateList","version":"v1"}]},"io.k8s.api.core.v1.PodTemplateSpec":{"description":"PodTemplateSpec describes the data a pod should have when created from a template","type":"object","properties":{"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the pod. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.PodSpec"}}},"io.k8s.api.core.v1.PortStatus":{"type":"object","required":["port","protocol"],"properties":{"error":{"description":"Error is to record the problem with the service port The format of the error shall comply with the following rules: - built-in error values shall be specified in this file and those shall use\n  CamelCase names\n- cloud provider specific error values must have names that comply with the\n  format foo.example.com/CamelCase.","type":"string"},"port":{"description":"Port is the port number of the service port of which status is recorded here","type":"integer","format":"int32"},"protocol":{"description":"Protocol is the protocol of the service port of which status is recorded here The supported values are: \"TCP\", \"UDP\", \"SCTP\"\n\nPossible enum values:\n - `\"SCTP\"` is the SCTP protocol.\n - `\"TCP\"` is the TCP protocol.\n - `\"UDP\"` is the UDP protocol.","type":"string","enum":["SCTP","TCP","UDP"]}}},"io.k8s.api.core.v1.PortworxVolumeSource":{"description":"PortworxVolumeSource represents a Portworx volume resource.","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"io.k8s.api.core.v1.PreferredSchedulingTerm":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["weight","preference"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","$ref":"#/definitions/io.k8s.api.core.v1.NodeSelectorTerm"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"io.k8s.api.core.v1.Probe":{"description":"Probe describes a health check to be performed against a container to determine whether it is alive or ready to receive traffic.","type":"object","properties":{"exec":{"description":"Exec specifies the action to take.","$ref":"#/definitions/io.k8s.api.core.v1.ExecAction"},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies an action involving a GRPC port.","$ref":"#/definitions/io.k8s.api.core.v1.GRPCAction"},"httpGet":{"description":"HTTPGet specifies the http request to perform.","$ref":"#/definitions/io.k8s.api.core.v1.HTTPGetAction"},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies an action involving a TCP port.","$ref":"#/definitions/io.k8s.api.core.v1.TCPSocketAction"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure. The grace period is the duration in seconds after the processes running in the pod are sent a termination signal and the time when the processes are forcibly halted with a kill signal. Set this value longer than the expected cleanup time for your process. If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this value overrides the value provided by the pod spec. Value must be non-negative integer. The value zero indicates stop immediately via the kill signal (no opportunity to shut down). This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate. Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"io.k8s.api.core.v1.ProjectedVolumeSource":{"description":"Represents a projected volume source","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list handles one source.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeProjection"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.ProjectedVolumeSource_v2":{"description":"Represents a projected volume source","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeProjection_v2"}}}},"io.k8s.api.core.v1.ProjectedVolumeSource_v3":{"description":"Represents a projected volume source","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.VolumeProjection_v3"}}}},"io.k8s.api.core.v1.QuobyteVolumeSource":{"description":"Represents a Quobyte mount that lasts the lifetime of a pod. Quobyte volumes do not support ownership management or SELinux relabeling.","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to Default is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to Defaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"io.k8s.api.core.v1.RBDPersistentVolumeSource":{"description":"Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.","type":"object","required":["monitors","image"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"user":{"description":"user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.RBDVolumeSource":{"description":"Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.","type":"object","required":["monitors","image"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"user":{"description":"user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.RBDVolumeSource_v2":{"description":"Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.","type":"object","required":["monitors","image"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"pool":{"description":"pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"user":{"description":"user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.RBDVolumeSource_v3":{"description":"Represents a Rados Block Device mount that lasts the lifetime of a pod. RBD volumes support ownership management and SELinux relabeling.","type":"object","required":["monitors","image"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"}},"pool":{"description":"pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference_v2"},"user":{"description":"user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"io.k8s.api.core.v1.ReplicationController":{"description":"ReplicationController represents the configuration of a replication controller.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"If the Labels of a ReplicationController are empty, they are defaulted to be the same as the Pod(s) that the replication controller manages. Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the specification of the desired behavior of the replication controller. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.ReplicationControllerSpec"},"status":{"description":"Status is the most recently observed status of the replication controller. This data may be out of date by some window of time. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.ReplicationControllerStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ReplicationController","version":"v1"}]},"io.k8s.api.core.v1.ReplicationControllerCondition":{"description":"ReplicationControllerCondition describes the state of a replication controller at a certain point.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"The last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of replication controller condition.","type":"string"}}},"io.k8s.api.core.v1.ReplicationControllerList":{"description":"ReplicationControllerList is a collection of replication controllers.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of replication controllers. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationController"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ReplicationControllerList","version":"v1"}]},"io.k8s.api.core.v1.ReplicationControllerSpec":{"description":"ReplicationControllerSpec is the specification of a replication controller.","type":"object","properties":{"minReadySeconds":{"description":"Minimum number of seconds for which a newly created pod should be ready without any of its container crashing, for it to be considered available. Defaults to 0 (pod will be considered available as soon as it is ready)","type":"integer","format":"int32"},"replicas":{"description":"Replicas is the number of desired replicas. This is a pointer to distinguish between explicit zero and unspecified. Defaults to 1. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller","type":"integer","format":"int32"},"selector":{"description":"Selector is a label query over pods that should match the Replicas count. If Selector is empty, it is defaulted to the labels present on the Pod template. Label keys and values that must match in order to be controlled by this replication controller, if empty defaulted to labels on Pod template. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"template":{"description":"Template is the object that describes the pod that will be created if insufficient replicas are detected. This takes precedence over a TemplateRef. The only allowed template.spec.restartPolicy value is \"Always\". More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-template","$ref":"#/definitions/io.k8s.api.core.v1.PodTemplateSpec"}}},"io.k8s.api.core.v1.ReplicationControllerStatus":{"description":"ReplicationControllerStatus represents the current status of a replication controller.","type":"object","required":["replicas"],"properties":{"availableReplicas":{"description":"The number of available replicas (ready for at least minReadySeconds) for this replication controller.","type":"integer","format":"int32"},"conditions":{"description":"Represents the latest available observations of a replication controller's current state.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ReplicationControllerCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"fullyLabeledReplicas":{"description":"The number of pods that have labels matching the labels of the pod template of the replication controller.","type":"integer","format":"int32"},"observedGeneration":{"description":"ObservedGeneration reflects the generation of the most recently observed replication controller.","type":"integer","format":"int64"},"readyReplicas":{"description":"The number of ready replicas for this replication controller.","type":"integer","format":"int32"},"replicas":{"description":"Replicas is the most recently observed number of replicas. More info: https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#what-is-a-replicationcontroller","type":"integer","format":"int32"}}},"io.k8s.api.core.v1.ResourceClaim":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim. If empty, everything from the claim is made available, otherwise only the result of this request.","type":"string"}}},"io.k8s.api.core.v1.ResourceClaim_v2":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.","type":"string"}}},"io.k8s.api.core.v1.ResourceFieldSelector":{"description":"ResourceFieldSelector represents container resources (cpu, memory) and their output format","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.ResourceHealth":{"description":"ResourceHealth represents the health of a resource. It has the latest device health information. This is a part of KEP https://kep.k8s.io/4680 and historical health changes are planned to be added in future iterations of a KEP.","type":"object","required":["resourceID"],"properties":{"health":{"description":"Health of the resource. can be one of:\n - Healthy: operates as normal\n - Unhealthy: reported unhealthy. We consider this a temporary health issue\n              since we do not have a mechanism today to distinguish\n              temporary and permanent issues.\n - Unknown: The status cannot be determined.\n            For example, Device Plugin got unregistered and hasn't been re-registered since.\n\nIn future we may want to introduce the PermanentlyUnhealthy Status.","type":"string"},"resourceID":{"description":"ResourceID is the unique identifier of the resource. See the ResourceID type for more information.","type":"string"}}},"io.k8s.api.core.v1.ResourceQuota":{"description":"ResourceQuota sets aggregate quota restrictions enforced per namespace","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired quota. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuotaSpec"},"status":{"description":"Status defines the actual enforced quota and its current usage. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuotaStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ResourceQuota","version":"v1"}]},"io.k8s.api.core.v1.ResourceQuotaList":{"description":"ResourceQuotaList is a list of ResourceQuota items.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of ResourceQuota objects. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceQuota"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ResourceQuotaList","version":"v1"}]},"io.k8s.api.core.v1.ResourceQuotaSpec":{"description":"ResourceQuotaSpec defines the desired hard limits to enforce for Quota.","type":"object","properties":{"hard":{"description":"hard is the set of desired hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"scopeSelector":{"description":"scopeSelector is also a collection of filters like scopes that must match each object tracked by a quota but expressed using ScopeSelectorOperator in combination with possible values. For a resource to match, both scopes AND scopeSelector (if specified in spec), must be matched.","$ref":"#/definitions/io.k8s.api.core.v1.ScopeSelector"},"scopes":{"description":"A collection of filters that must match each object tracked by a quota. If not specified, the quota matches all objects.","type":"array","items":{"type":"string","enum":["BestEffort","CrossNamespacePodAffinity","NotBestEffort","NotTerminating","PriorityClass","Terminating"]},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.ResourceQuotaSpec_v2":{"description":"ResourceQuotaSpec defines the desired hard limits to enforce for Quota.","type":"object","properties":{"hard":{"description":"hard is the set of desired hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"scopeSelector":{"description":"scopeSelector is also a collection of filters like scopes that must match each object tracked by a quota but expressed using ScopeSelectorOperator in combination with possible values. For a resource to match, both scopes AND scopeSelector (if specified in spec), must be matched.","$ref":"#/definitions/io.k8s.api.core.v1.ScopeSelector_v2"},"scopes":{"description":"A collection of filters that must match each object tracked by a quota. If not specified, the quota matches all objects.","type":"array","items":{"type":"string"}}}},"io.k8s.api.core.v1.ResourceQuotaStatus":{"description":"ResourceQuotaStatus defines the enforced hard limits and observed use.","type":"object","properties":{"hard":{"description":"Hard is the set of enforced hard limits for each named resource. More info: https://kubernetes.io/docs/concepts/policy/resource-quotas/","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"used":{"description":"Used is the current observed total usage of the resource in the namespace.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}}},"io.k8s.api.core.v1.ResourceRequirements":{"description":"ResourceRequirements describes the compute resource requirements.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container.\n\nThis is an alpha field and requires enabling the DynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceClaim"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"requests":{"description":"Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}}},"io.k8s.api.core.v1.ResourceStatus":{"type":"object","required":["name"],"properties":{"name":{"description":"Name of the resource. Must be unique within the pod and match one of the resources from the pod spec.","type":"string"},"resources":{"description":"List of unique Resources health. Each element in the list contains an unique resource ID and resource health. At a minimum, ResourceID must uniquely identify the Resource allocated to the Pod on the Node for the lifetime of a Pod. See ResourceID type for it's definition.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ResourceHealth"},"x-kubernetes-list-map-keys":["resourceID"],"x-kubernetes-list-type":"map"}}},"io.k8s.api.core.v1.SELinuxOptions":{"description":"SELinuxOptions are the labels to be applied to the container","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"io.k8s.api.core.v1.ScaleIOPersistentVolumeSource":{"description":"ScaleIOPersistentVolumeSource represents a persistent ScaleIO volume","type":"object","required":["gateway","system","secretRef"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Default is \"xfs\"","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.","$ref":"#/definitions/io.k8s.api.core.v1.SecretReference"},"sslEnabled":{"description":"sslEnabled is the flag to enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.","type":"string"}}},"io.k8s.api.core.v1.ScaleIOVolumeSource":{"description":"ScaleIOVolumeSource represents a persistent ScaleIO volume","type":"object","required":["gateway","system","secretRef"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Default is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.","type":"string"}}},"io.k8s.api.core.v1.ScopeSelector":{"description":"A scope selector represents the AND of the selectors represented by the scoped-resource selector requirements.","type":"object","properties":{"matchExpressions":{"description":"A list of scope selector requirements by scope of the resources.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ScopedResourceSelectorRequirement"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.ScopeSelector_v2":{"description":"A scope selector represents the AND of the selectors represented by the scoped-resource selector requirements.","type":"object","properties":{"matchExpressions":{"description":"A list of scope selector requirements by scope of the resources.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ScopedResourceSelectorRequirement_v2"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.ScopedResourceSelectorRequirement":{"description":"A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator that relates the scope name and values.","type":"object","required":["scopeName","operator"],"properties":{"operator":{"description":"Represents a scope's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist.\n\nPossible enum values:\n - `\"DoesNotExist\"`\n - `\"Exists\"`\n - `\"In\"`\n - `\"NotIn\"`","type":"string","enum":["DoesNotExist","Exists","In","NotIn"]},"scopeName":{"description":"The name of the scope that the selector applies to.\n\nPossible enum values:\n - `\"BestEffort\"` Match all pod objects that have best effort quality of service\n - `\"CrossNamespacePodAffinity\"` Match all pod objects that have cross-namespace pod (anti)affinity mentioned.\n - `\"NotBestEffort\"` Match all pod objects that do not have best effort quality of service\n - `\"NotTerminating\"` Match all pod objects where spec.activeDeadlineSeconds is nil\n - `\"PriorityClass\"` Match all pod objects that have priority class mentioned\n - `\"Terminating\"` Match all pod objects where spec.activeDeadlineSeconds >=0","type":"string","enum":["BestEffort","CrossNamespacePodAffinity","NotBestEffort","NotTerminating","PriorityClass","Terminating"]},"values":{"description":"An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.ScopedResourceSelectorRequirement_v2":{"description":"A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator that relates the scope name and values.","type":"object","required":["scopeName","operator"],"properties":{"operator":{"description":"Represents a scope's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist.\n\nPossible enum values:\n - `\"DoesNotExist\"`\n - `\"Exists\"`\n - `\"In\"`\n - `\"NotIn\"`","type":"string","enum":["DoesNotExist","Exists","In","NotIn"]},"scopeName":{"description":"The name of the scope that the selector applies to.\n\nPossible enum values:\n - `\"BestEffort\"` Match all pod objects that have best effort quality of service\n - `\"CrossNamespacePodAffinity\"` Match all pod objects that have cross-namespace pod (anti)affinity mentioned.\n - `\"NotBestEffort\"` Match all pod objects that do not have best effort quality of service\n - `\"NotTerminating\"` Match all pod objects where spec.activeDeadlineSeconds is nil\n - `\"PriorityClass\"` Match all pod objects that have priority class mentioned\n - `\"Terminating\"` Match all pod objects where spec.activeDeadlineSeconds >=0","type":"string","enum":["BestEffort","CrossNamespacePodAffinity","NotBestEffort","NotTerminating","PriorityClass","Terminating"]},"values":{"description":"An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}},"io.k8s.api.core.v1.SeccompProfile":{"description":"SeccompProfile defines a pod/container's seccomp profile settings. Only one profile source may be set.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied. Valid options are:\n\nLocalhost - a profile defined in a file on the node should be used. RuntimeDefault - the container runtime default profile should be used. Unconfined - no profile should be applied.\n\nPossible enum values:\n - `\"Localhost\"` indicates a profile defined in a file on the node should be used. The file's location relative to <kubelet-root-dir>/seccomp.\n - `\"RuntimeDefault\"` represents the default container runtime seccomp profile.\n - `\"Unconfined\"` indicates no seccomp profile is applied (A.K.A. unconfined).","type":"string","enum":["Localhost","RuntimeDefault","Unconfined"]}},"x-kubernetes-unions":[{"discriminator":"type","fields-to-discriminateBy":{"localhostProfile":"LocalhostProfile"}}]},"io.k8s.api.core.v1.Secret":{"description":"Secret holds secret data of a certain type. The total bytes of the values in the Data field must be less than MaxSecretSize bytes.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"data":{"description":"Data contains the secret data. Each key must consist of alphanumeric characters, '-', '_' or '.'. The serialized form of the secret data is a base64 encoded string, representing the arbitrary (possibly non-string) data value here. Described in https://tools.ietf.org/html/rfc4648#section-4","type":"object","additionalProperties":{"type":"string","format":"byte"}},"immutable":{"description":"Immutable, if set to true, ensures that data stored in the Secret cannot be updated (only object metadata can be modified). If not set to true, the field can be modified at any time. Defaulted to nil.","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"stringData":{"description":"stringData allows specifying non-binary secret data in string form. It is provided as a write-only input field for convenience. All keys and values are merged into the data field on write, overwriting any existing values. The stringData field is never output when reading from the API.","type":"object","additionalProperties":{"type":"string"}},"type":{"description":"Used to facilitate programmatic handling of secret data. More info: https://kubernetes.io/docs/concepts/configuration/secret/#secret-types","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Secret","version":"v1"}]},"io.k8s.api.core.v1.SecretEnvSource":{"description":"SecretEnvSource selects a Secret to populate the environment variables with.\n\nThe contents of the target Secret's Data field will represent the key-value pairs as environment variables.","type":"object","properties":{"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}}},"io.k8s.api.core.v1.SecretEnvSource_v2":{"description":"SecretEnvSource selects a Secret to populate the environment variables with.\n\nThe contents of the target Secret's Data field will represent the key-value pairs as environment variables.","type":"object","properties":{"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}}},"io.k8s.api.core.v1.SecretKeySelector":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.SecretKeySelector_v2":{"description":"SecretKeySelector selects a key of a Secret.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.SecretList":{"description":"SecretList is a list of Secret.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of secret objects. More info: https://kubernetes.io/docs/concepts/configuration/secret","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Secret"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"SecretList","version":"v1"}]},"io.k8s.api.core.v1.SecretProjection":{"description":"Adapts a secret into a projected volume.\n\nThe contents of the target Secret's Data field will be presented in a projected volume as files using the keys in the Data field as the file names. Note that this is identical to a secret volume source without the default mode.","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent. This field is effectively required, but due to backwards compatibility is allowed to be empty. Instances of this type with an empty value here are almost certainly wrong. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}}},"io.k8s.api.core.v1.SecretProjection_v2":{"description":"Adapts a secret into a projected volume.\n\nThe contents of the target Secret's Data field will be presented in a projected volume as files using the keys in the Data field as the file names. Note that this is identical to a secret volume source without the default mode.","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"}},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}}},"io.k8s.api.core.v1.SecretReference":{"description":"SecretReference represents a Secret Reference. It has enough information to retrieve secret in any namespace","type":"object","properties":{"name":{"description":"name is unique within a namespace to reference a secret resource.","type":"string"},"namespace":{"description":"namespace defines the space within which the secret name must be unique.","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.SecretVolumeSource":{"description":"Adapts a Secret into a volume.\n\nThe contents of the target Secret's Data field will be presented in a volume as files using the keys in the Data field as the file names. Secret volumes support ownership management and SELinux relabeling.","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"io.k8s.api.core.v1.SecretVolumeSource_v2":{"description":"Adapts a Secret into a volume.\n\nThe contents of the target Secret's Data field will be presented in a volume as files using the keys in the Data field as the file names. Secret volumes support ownership management and SELinux relabeling.","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.KeyToPath"}},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"io.k8s.api.core.v1.SecurityContext":{"description":"SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile overrides the pod's appArmorProfile. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.AppArmorProfile"},"capabilities":{"description":"The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.Capabilities"},"privileged":{"description":"Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers. The default value is Default which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.\n\nPossible enum values:\n - `\"Default\"` uses the container runtime defaults for readonly and masked paths for /proc. Most container runtimes mask certain paths in /proc to avoid accidental security exposure of special devices or information.\n - `\"Unmasked\"` bypasses the default masking behavior of the container runtime and ensures the newly created /proc the container stays in tact with no modifications.","type":"string","enum":["Default","Unmasked"]},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SELinuxOptions"},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SeccompProfile"},"windowsOptions":{"description":"The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.","$ref":"#/definitions/io.k8s.api.core.v1.WindowsSecurityContextOptions"}}},"io.k8s.api.core.v1.SecurityContext_v2":{"description":"SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.Capabilities_v2"},"privileged":{"description":"Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.\n\nPossible enum values:\n - `\"Default\"` uses the container runtime defaults for readonly and masked paths for /proc. Most container runtimes mask certain paths in /proc to avoid accidental security exposure of special devices or information.\n - `\"Unmasked\"` bypasses the default masking behavior of the container runtime and ensures the newly created /proc the container stays in tact with no modifications.","type":"string","enum":["Default","Unmasked"]},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SELinuxOptions"},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SeccompProfile"},"windowsOptions":{"description":"The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.","$ref":"#/definitions/io.k8s.api.core.v1.WindowsSecurityContextOptions"}}},"io.k8s.api.core.v1.SecurityContext_v3":{"description":"SecurityContext holds security configuration that will be applied to a container. Some fields are present in both SecurityContext and PodSecurityContext.  When both are set, the values in SecurityContext take precedence.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"capabilities":{"description":"The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.Capabilities_v2"},"privileged":{"description":"Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.\n\nPossible enum values:\n - `\"Default\"` uses the container runtime defaults for readonly and masked paths for /proc. Most container runtimes mask certain paths in /proc to avoid accidental security exposure of special devices or information.\n - `\"Unmasked\"` bypasses the default masking behavior of the container runtime and ensures the newly created /proc the container stays in tact with no modifications.","type":"string","enum":["Default","Unmasked"]},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem. Default is false. Note that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process. Uses runtime default if unset. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user. If true, the Kubelet will validate the image at runtime to ensure that it does not run as UID 0 (root) and fail to start the container if it does. If unset or false, no such validation will be performed. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container. If unspecified, the container runtime will allocate a random SELinux context for each container.  May also be set in PodSecurityContext.  If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SELinuxOptions"},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows.","$ref":"#/definitions/io.k8s.api.core.v1.SeccompProfile"},"windowsOptions":{"description":"The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux.","$ref":"#/definitions/io.k8s.api.core.v1.WindowsSecurityContextOptions"}}},"io.k8s.api.core.v1.Service":{"description":"Service is a named abstraction of software service (for example, mysql) consisting of local port (for example 3306) that the proxy listens on, and the selector that determines which pods will answer requests sent through the proxy.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the behavior of a service. https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.ServiceSpec"},"status":{"description":"Most recently observed status of the service. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.core.v1.ServiceStatus"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Service","version":"v1"}]},"io.k8s.api.core.v1.ServiceAccount":{"description":"ServiceAccount binds together: * a name, understood by users, and perhaps by peripheral systems, for an identity * a principal that can be authenticated and authorized * a set of secrets","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted. Can be overridden at the pod level.","type":"boolean"},"imagePullSecrets":{"description":"ImagePullSecrets is a list of references to secrets in the same namespace to use for pulling any images in pods that reference this ServiceAccount. ImagePullSecrets are distinct from Secrets because Secrets can be mounted in the pod, but ImagePullSecrets are only accessed by the kubelet. More info: https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"secrets":{"description":"Secrets is a list of the secrets in the same namespace that pods running using this ServiceAccount are allowed to use. Pods are only limited to this list if this service account has a \"kubernetes.io/enforce-mountable-secrets\" annotation set to \"true\". This field should not be used to find auto-generated service account token secrets for use outside of pods. Instead, tokens can be requested directly using the TokenRequest API, or service account token secrets can be manually created. More info: https://kubernetes.io/docs/concepts/configuration/secret","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ServiceAccount","version":"v1"}]},"io.k8s.api.core.v1.ServiceAccountList":{"description":"ServiceAccountList is a list of ServiceAccount objects","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ServiceAccounts. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccount"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ServiceAccountList","version":"v1"}]},"io.k8s.api.core.v1.ServiceAccountTokenProjection":{"description":"ServiceAccountTokenProjection represents a projected service account token volume. This projection can be used to insert a service account token into the pods runtime filesystem for use against APIs (Kubernetes API Server or otherwise).","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the token into.","type":"string"}}},"io.k8s.api.core.v1.ServiceList":{"description":"ServiceList holds a list of services.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of services","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Service"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"ServiceList","version":"v1"}]},"io.k8s.api.core.v1.ServicePort":{"description":"ServicePort contains information on service's port.","type":"object","required":["port"],"properties":{"appProtocol":{"description":"The application protocol for this port. This is used as a hint for implementations to offer richer behavior for protocols that they understand. This field follows standard Kubernetes label syntax. Valid values are either:\n\n* Un-prefixed protocol names - reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names).\n\n* Kubernetes-defined prefixed names:\n  * 'kubernetes.io/h2c' - HTTP/2 prior knowledge over cleartext as described in https://www.rfc-editor.org/rfc/rfc9113.html#name-starting-http-2-with-prior-\n  * 'kubernetes.io/ws'  - WebSocket over cleartext as described in https://www.rfc-editor.org/rfc/rfc6455\n  * 'kubernetes.io/wss' - WebSocket over TLS as described in https://www.rfc-editor.org/rfc/rfc6455\n\n* Other protocols should use implementation-defined prefixed names such as mycompany.com/my-custom-protocol.","type":"string"},"name":{"description":"The name of this port within the service. This must be a DNS_LABEL. All ports within a ServiceSpec must have unique names. When considering the endpoints for a Service, this must match the 'name' field in the EndpointPort. Optional if only one ServicePort is defined on this service.","type":"string"},"nodePort":{"description":"The port on each node on which this service is exposed when type is NodePort or LoadBalancer.  Usually assigned by the system. If a value is specified, in-range, and not in use it will be used, otherwise the operation will fail.  If not specified, a port will be allocated if this Service requires one.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type from NodePort to ClusterIP). More info: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport","type":"integer","format":"int32"},"port":{"description":"The port that will be exposed by this service.","type":"integer","format":"int32"},"protocol":{"description":"The IP protocol for this port. Supports \"TCP\", \"UDP\", and \"SCTP\". Default is TCP.\n\nPossible enum values:\n - `\"SCTP\"` is the SCTP protocol.\n - `\"TCP\"` is the TCP protocol.\n - `\"UDP\"` is the UDP protocol.","type":"string","enum":["SCTP","TCP","UDP"]},"targetPort":{"description":"Number or name of the port to access on the pods targeted by the service. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME. If this is a string, it will be looked up as a named port in the target Pod's container ports. If this is not specified, the value of the 'port' field is used (an identity map). This field is ignored for services with clusterIP=None, and should be omitted or set equal to the 'port' field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#defining-a-service","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"}}},"io.k8s.api.core.v1.ServiceSpec":{"description":"ServiceSpec describes the attributes that a user creates on a service.","type":"object","properties":{"allocateLoadBalancerNodePorts":{"description":"allocateLoadBalancerNodePorts defines if NodePorts will be automatically allocated for services with type LoadBalancer.  Default is \"true\". It may be set to \"false\" if the cluster load-balancer does not rely on NodePorts.  If the caller requests specific NodePorts (by specifying a value), those requests will be respected, regardless of this field. This field may only be set for services with type LoadBalancer and will be cleared if the type is changed to any other type.","type":"boolean"},"clusterIP":{"description":"clusterIP is the IP address of the service and is usually assigned randomly. If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be blank) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are \"None\", empty string (\"\"), or a valid IP address. Setting this to \"None\" makes a \"headless service\" (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies","type":"string"},"clusterIPs":{"description":"ClusterIPs is a list of IP addresses assigned to this service, and are usually assigned randomly.  If an address is specified manually, is in-range (as per system configuration), and is not in use, it will be allocated to the service; otherwise creation of the service will fail. This field may not be changed through updates unless the type field is also being changed to ExternalName (which requires this field to be empty) or the type field is being changed from ExternalName (in which case this field may optionally be specified, as describe above).  Valid values are \"None\", empty string (\"\"), or a valid IP address.  Setting this to \"None\" makes a \"headless service\" (no virtual IP), which is useful when direct endpoint connections are preferred and proxying is not required.  Only applies to types ClusterIP, NodePort, and LoadBalancer. If this field is specified when creating a Service of type ExternalName, creation will fail. This field will be wiped when updating a Service to type ExternalName.  If this field is not specified, it will be initialized from the clusterIP field.  If this field is specified, clients must ensure that clusterIPs[0] and clusterIP have the same value.\n\nThis field may hold a maximum of two entries (dual-stack IPs, in either order). These IPs must correspond to the values of the ipFamilies field. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"externalIPs":{"description":"externalIPs is a list of IP addresses for which nodes in the cluster will also accept traffic for this service.  These IPs are not managed by Kubernetes.  The user is responsible for ensuring that traffic arrives at a node with this IP.  A common example is external load-balancers that are not part of the Kubernetes system.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"externalName":{"description":"externalName is the external reference that discovery mechanisms will return as an alias for this service (e.g. a DNS CNAME record). No proxying will be involved.  Must be a lowercase RFC-1123 hostname (https://tools.ietf.org/html/rfc1123) and requires `type` to be \"ExternalName\".","type":"string"},"externalTrafficPolicy":{"description":"externalTrafficPolicy describes how nodes distribute service traffic they receive on one of the Service's \"externally-facing\" addresses (NodePorts, ExternalIPs, and LoadBalancer IPs). If set to \"Local\", the proxy will configure the service in a way that assumes that external load balancers will take care of balancing the service traffic between nodes, and so each node will deliver traffic only to the node-local endpoints of the service, without masquerading the client source IP. (Traffic mistakenly sent to a node with no endpoints will be dropped.) The default value, \"Cluster\", uses the standard behavior of routing to all endpoints evenly (possibly modified by topology and other features). Note that traffic sent to an External IP or LoadBalancer IP from within the cluster will always get \"Cluster\" semantics, but clients sending to a NodePort from within the cluster may need to take traffic policy into account when picking a node.\n\nPossible enum values:\n - `\"Cluster\"` routes traffic to all endpoints.\n - `\"Local\"` preserves the source IP of the traffic by routing only to endpoints on the same node as the traffic was received on (dropping the traffic if there are no local endpoints).","type":"string","enum":["Cluster","Local"]},"healthCheckNodePort":{"description":"healthCheckNodePort specifies the healthcheck nodePort for the service. This only applies when type is set to LoadBalancer and externalTrafficPolicy is set to Local. If a value is specified, is in-range, and is not in use, it will be used.  If not specified, a value will be automatically allocated.  External systems (e.g. load-balancers) can use this port to determine if a given node holds endpoints for this service or not.  If this field is specified when creating a Service which does not need it, creation will fail. This field will be wiped when updating a Service to no longer need it (e.g. changing type). This field cannot be updated once set.","type":"integer","format":"int32"},"internalTrafficPolicy":{"description":"InternalTrafficPolicy describes how nodes distribute service traffic they receive on the ClusterIP. If set to \"Local\", the proxy will assume that pods only want to talk to endpoints of the service on the same node as the pod, dropping the traffic if there are no local endpoints. The default value, \"Cluster\", uses the standard behavior of routing to all endpoints evenly (possibly modified by topology and other features).\n\nPossible enum values:\n - `\"Cluster\"` routes traffic to all endpoints.\n - `\"Local\"` routes traffic only to endpoints on the same node as the client pod (dropping the traffic if there are no local endpoints).","type":"string","enum":["Cluster","Local"]},"ipFamilies":{"description":"IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to this service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. If this field is specified manually, the requested family is available in the cluster, and ipFamilyPolicy allows it, it will be used; otherwise creation of the service will fail. This field is conditionally mutable: it allows for adding or removing a secondary IP family, but it does not allow changing the primary IP family of the Service. Valid values are \"IPv4\" and \"IPv6\".  This field only applies to Services of types ClusterIP, NodePort, and LoadBalancer, and does apply to \"headless\" services. This field will be wiped when updating a Service to type ExternalName.\n\nThis field may hold a maximum of two entries (dual-stack families, in either order).  These families must correspond to the values of the clusterIPs field, if specified. Both clusterIPs and ipFamilies are governed by the ipFamilyPolicy field.","type":"array","items":{"type":"string","enum":["","IPv4","IPv6"]},"x-kubernetes-list-type":"atomic"},"ipFamilyPolicy":{"description":"IPFamilyPolicy represents the dual-stack-ness requested or required by this Service. If there is no value provided, then this field will be set to SingleStack. Services can be \"SingleStack\" (a single IP family), \"PreferDualStack\" (two IP families on dual-stack configured clusters or a single IP family on single-stack clusters), or \"RequireDualStack\" (two IP families on dual-stack configured clusters, otherwise fail). The ipFamilies and clusterIPs fields depend on the value of this field. This field will be wiped when updating a service to type ExternalName.\n\nPossible enum values:\n - `\"PreferDualStack\"` indicates that this service prefers dual-stack when the cluster is configured for dual-stack. If the cluster is not configured for dual-stack the service will be assigned a single IPFamily. If the IPFamily is not set in service.spec.ipFamilies then the service will be assigned the default IPFamily configured on the cluster\n - `\"RequireDualStack\"` indicates that this service requires dual-stack. Using IPFamilyPolicyRequireDualStack on a single stack cluster will result in validation errors. The IPFamilies (and their order) assigned to this service is based on service.spec.ipFamilies. If service.spec.ipFamilies was not provided then it will be assigned according to how they are configured on the cluster. If service.spec.ipFamilies has only one entry then the alternative IPFamily will be added by apiserver\n - `\"SingleStack\"` indicates that this service is required to have a single IPFamily. The IPFamily assigned is based on the default IPFamily used by the cluster or as identified by service.spec.ipFamilies field","type":"string","enum":["PreferDualStack","RequireDualStack","SingleStack"]},"loadBalancerClass":{"description":"loadBalancerClass is the class of the load balancer implementation this Service belongs to. If specified, the value of this field must be a label-style identifier, with an optional prefix, e.g. \"internal-vip\" or \"example.com/internal-vip\". Unprefixed names are reserved for end-users. This field can only be set when the Service type is 'LoadBalancer'. If not set, the default load balancer implementation is used, today this is typically done through the cloud provider integration, but should apply for any default implementation. If set, it is assumed that a load balancer implementation is watching for Services with a matching class. Any default load balancer implementation (e.g. cloud providers) should ignore Services that set this field. This field can only be set when creating or updating a Service to type 'LoadBalancer'. Once set, it can not be changed. This field will be wiped when a service is updated to a non 'LoadBalancer' type.","type":"string"},"loadBalancerIP":{"description":"Only applies to Service Type: LoadBalancer. This feature depends on whether the underlying cloud-provider supports specifying the loadBalancerIP when a load balancer is created. This field will be ignored if the cloud-provider does not support the feature. Deprecated: This field was under-specified and its meaning varies across implementations. Using it is non-portable and it may not support dual-stack. Users are encouraged to use implementation-specific annotations when available.","type":"string"},"loadBalancerSourceRanges":{"description":"If specified and supported by the platform, this will restrict traffic through the cloud-provider load-balancer will be restricted to the specified client IPs. This field will be ignored if the cloud-provider does not support the feature.\" More info: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ports":{"description":"The list of ports that are exposed by this service. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.ServicePort"},"x-kubernetes-list-map-keys":["port","protocol"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"port","x-kubernetes-patch-strategy":"merge"},"publishNotReadyAddresses":{"description":"publishNotReadyAddresses indicates that any agent which deals with endpoints for this Service should disregard any indications of ready/not-ready. The primary use case for setting this field is for a StatefulSet's Headless Service to propagate SRV DNS records for its Pods for the purpose of peer discovery. The Kubernetes controllers that generate Endpoints and EndpointSlice resources for Services interpret this to mean that all endpoints are considered \"ready\" even if the Pods themselves are not. Agents which consume only Kubernetes generated endpoints through the Endpoints or EndpointSlice resources can safely assume this behavior.","type":"boolean"},"selector":{"description":"Route service traffic to pods with label keys and values matching this selector. If empty or not present, the service is assumed to have an external process managing its endpoints, which Kubernetes will not modify. Only applies to types ClusterIP, NodePort, and LoadBalancer. Ignored if type is ExternalName. More info: https://kubernetes.io/docs/concepts/services-networking/service/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"sessionAffinity":{"description":"Supports \"ClientIP\" and \"None\". Used to maintain session affinity. Enable client IP based session affinity. Must be ClientIP or None. Defaults to None. More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies\n\nPossible enum values:\n - `\"ClientIP\"` is the Client IP based.\n - `\"None\"` - no session affinity.","type":"string","enum":["ClientIP","None"]},"sessionAffinityConfig":{"description":"sessionAffinityConfig contains the configurations of session affinity.","$ref":"#/definitions/io.k8s.api.core.v1.SessionAffinityConfig"},"trafficDistribution":{"description":"TrafficDistribution offers a way to express preferences for how traffic is distributed to Service endpoints. Implementations can use this field as a hint, but are not required to guarantee strict adherence. If the field is not set, the implementation will apply its default routing strategy. If set to \"PreferClose\", implementations should prioritize endpoints that are topologically close (e.g., same zone). This is an alpha field and requires enabling ServiceTrafficDistribution feature.","type":"string"},"type":{"description":"type determines how the Service is exposed. Defaults to ClusterIP. Valid options are ExternalName, ClusterIP, NodePort, and LoadBalancer. \"ClusterIP\" allocates a cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, by manual construction of an Endpoints object or EndpointSlice objects. If clusterIP is \"None\", no virtual IP is allocated and the endpoints are published as a set of endpoints rather than a virtual IP. \"NodePort\" builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the clusterIP. \"LoadBalancer\" builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the clusterIP. \"ExternalName\" aliases this service to the specified externalName. Several other fields do not apply to ExternalName services. More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types\n\nPossible enum values:\n - `\"ClusterIP\"` means a service will only be accessible inside the cluster, via the cluster IP.\n - `\"ExternalName\"` means a service consists of only a reference to an external name that kubedns or equivalent will return as a CNAME record, with no exposing or proxying of any pods involved.\n - `\"LoadBalancer\"` means a service will be exposed via an external load balancer (if the cloud provider supports it), in addition to 'NodePort' type.\n - `\"NodePort\"` means a service will be exposed on one port of every node, in addition to 'ClusterIP' type.","type":"string","enum":["ClusterIP","ExternalName","LoadBalancer","NodePort"]}}},"io.k8s.api.core.v1.ServiceStatus":{"description":"ServiceStatus represents the current status of a service.","type":"object","properties":{"conditions":{"description":"Current service state","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Condition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"loadBalancer":{"description":"LoadBalancer contains the current status of the load-balancer, if one is present.","$ref":"#/definitions/io.k8s.api.core.v1.LoadBalancerStatus"}}},"io.k8s.api.core.v1.SessionAffinityConfig":{"description":"SessionAffinityConfig represents the configurations of session affinity.","type":"object","properties":{"clientIP":{"description":"clientIP contains the configurations of Client IP based session affinity.","$ref":"#/definitions/io.k8s.api.core.v1.ClientIPConfig"}}},"io.k8s.api.core.v1.SleepAction":{"description":"SleepAction describes a \"sleep\" action.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"io.k8s.api.core.v1.StorageOSPersistentVolumeSource":{"description":"Represents a StorageOS persistent volume resource.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to \"default\" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"io.k8s.api.core.v1.StorageOSVolumeSource":{"description":"Represents a StorageOS persistent volume resource.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API credentials.  If not specified, default values will be attempted.","$ref":"#/definitions/io.k8s.api.core.v1.LocalObjectReference"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume names are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no namespace is specified then the Pod's namespace will be used.  This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to \"default\" if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"io.k8s.api.core.v1.Sysctl":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"io.k8s.api.core.v1.TCPSocketAction":{"description":"TCPSocketAction describes an action based on opening a socket","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"}}},"io.k8s.api.core.v1.Taint":{"description":"The node this Taint is attached to has the \"effect\" on any pod that does not tolerate the Taint.","type":"object","required":["key","effect"],"properties":{"effect":{"description":"Required. The effect of the taint on pods that do not tolerate the taint. Valid effects are NoSchedule, PreferNoSchedule and NoExecute.\n\nPossible enum values:\n - `\"NoExecute\"` Evict any already-running pods that do not tolerate the taint. Currently enforced by NodeController.\n - `\"NoSchedule\"` Do not allow new pods to schedule onto the node unless they tolerate the taint, but allow all pods submitted to Kubelet without going through the scheduler to start, and allow all already-running pods to continue running. Enforced by the scheduler.\n - `\"PreferNoSchedule\"` Like TaintEffectNoSchedule, but the scheduler tries not to schedule new pods onto the node, rather than prohibiting new pods from scheduling onto the node entirely. Enforced by the scheduler.","type":"string","enum":["NoExecute","NoSchedule","PreferNoSchedule"]},"key":{"description":"Required. The taint key to be applied to a node.","type":"string"},"timeAdded":{"description":"TimeAdded represents the time at which the taint was added. It is only written for NoExecute taints.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"value":{"description":"The taint value corresponding to the taint key.","type":"string"}}},"io.k8s.api.core.v1.Toleration":{"description":"The pod this Toleration is attached to tolerates any taint that matches the triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.\n\nPossible enum values:\n - `\"NoExecute\"` Evict any already-running pods that do not tolerate the taint. Currently enforced by NodeController.\n - `\"NoSchedule\"` Do not allow new pods to schedule onto the node unless they tolerate the taint, but allow all pods submitted to Kubelet without going through the scheduler to start, and allow all already-running pods to continue running. Enforced by the scheduler.\n - `\"PreferNoSchedule\"` Like TaintEffectNoSchedule, but the scheduler tries not to schedule new pods onto the node, rather than prohibiting new pods from scheduling onto the node entirely. Enforced by the scheduler.","type":"string","enum":["NoExecute","NoSchedule","PreferNoSchedule"]},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.\n\nPossible enum values:\n - `\"Equal\"`\n - `\"Exists\"`","type":"string","enum":["Equal","Exists"]},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"io.k8s.api.core.v1.TopologySelectorLabelRequirement":{"description":"A topology selector requirement is a selector that matches given label. This is an alpha feature and may change in the future.","type":"object","required":["key","values"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"values":{"description":"An array of string values. One value must match the label to be selected. Each entry in Values is ORed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.core.v1.TopologySelectorTerm":{"description":"A topology selector term represents the result of label queries. A null or empty topology selector term matches no objects. The requirements of them are ANDed. It provides a subset of functionality as NodeSelectorTerm. This is an alpha feature and may change in the future.","type":"object","properties":{"matchLabelExpressions":{"description":"A list of topology selector requirements by labels.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.TopologySelectorLabelRequirement"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.TopologySpreadConstraint":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. MatchLabelKeys cannot be set when LabelSelector isn't set. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | |  P P  |  P P  |   P   | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | |  P P  |  P P  |  P P  | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.\n\nPossible enum values:\n - `\"Honor\"` means use this scheduling directive when calculating pod topology spread skew.\n - `\"Ignore\"` means ignore this scheduling directive when calculating pod topology spread skew.","type":"string","enum":["Honor","Ignore"]},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.\n\nPossible enum values:\n - `\"Honor\"` means use this scheduling directive when calculating pod topology spread skew.\n - `\"Ignore\"` means ignore this scheduling directive when calculating pod topology spread skew.","type":"string","enum":["Honor","Ignore"]},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each <key, value> as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.\n\nPossible enum values:\n - `\"DoNotSchedule\"` instructs the scheduler not to schedule the pod when constraints are not satisfied.\n - `\"ScheduleAnyway\"` instructs the scheduler to schedule the pod even if constraints are not satisfied.","type":"string","enum":["DoNotSchedule","ScheduleAnyway"]}}},"io.k8s.api.core.v1.TopologySpreadConstraint_v2":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v2"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. MatchLabelKeys cannot be set when LabelSelector isn't set. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | |  P P  |  P P  |   P   | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | |  P P  |  P P  |  P P  | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.\n\nThis is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.\n\nPossible enum values:\n - `\"Honor\"` means use this scheduling directive when calculating pod topology spread skew.\n - `\"Ignore\"` means ignore this scheduling directive when calculating pod topology spread skew.","type":"string","enum":["Honor","Ignore"]},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.\n\nPossible enum values:\n - `\"Honor\"` means use this scheduling directive when calculating pod topology spread skew.\n - `\"Ignore\"` means ignore this scheduling directive when calculating pod topology spread skew.","type":"string","enum":["Honor","Ignore"]},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each <key, value> as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.\n\nPossible enum values:\n - `\"DoNotSchedule\"` instructs the scheduler not to schedule the pod when constraints are not satisfied.\n - `\"ScheduleAnyway\"` instructs the scheduler to schedule the pod even if constraints are not satisfied.","type":"string","enum":["DoNotSchedule","ScheduleAnyway"]}}},"io.k8s.api.core.v1.TopologySpreadConstraint_v3":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v5"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. MatchLabelKeys cannot be set when LabelSelector isn't set. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed. When `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | |  P P  |  P P  |   P   | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | |  P P  |  P P  |  P P  | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.\n\nThis is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.\n\nPossible enum values:\n - `\"Honor\"` means use this scheduling directive when calculating pod topology spread skew.\n - `\"Ignore\"` means ignore this scheduling directive when calculating pod topology spread skew.","type":"string","enum":["Honor","Ignore"]},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.\n\nPossible enum values:\n - `\"Honor\"` means use this scheduling directive when calculating pod topology spread skew.\n - `\"Ignore\"` means ignore this scheduling directive when calculating pod topology spread skew.","type":"string","enum":["Honor","Ignore"]},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each <key, value> as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P |   P   |   P   | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.\n\nPossible enum values:\n - `\"DoNotSchedule\"` instructs the scheduler not to schedule the pod when constraints are not satisfied.\n - `\"ScheduleAnyway\"` instructs the scheduler to schedule the pod even if constraints are not satisfied.","type":"string","enum":["DoNotSchedule","ScheduleAnyway"]}}},"io.k8s.api.core.v1.TypedLocalObjectReference":{"description":"TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.core.v1.TypedObjectReference":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"io.k8s.api.core.v1.Volume":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","$ref":"#/definitions/io.k8s.api.core.v1.AWSElasticBlockStoreVolumeSource"},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureDiskVolumeSource"},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureFileVolumeSource"},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.CephFSVolumeSource"},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.CinderVolumeSource"},"configMap":{"description":"configMap represents a configMap that should populate this volume","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapVolumeSource"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","$ref":"#/definitions/io.k8s.api.core.v1.CSIVolumeSource"},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeSource"},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","$ref":"#/definitions/io.k8s.api.core.v1.EmptyDirVolumeSource"},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.\n\nUse this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.\n\nA pod can use both types of ephemeral volumes and persistent volumes at the same time.","$ref":"#/definitions/io.k8s.api.core.v1.EphemeralVolumeSource"},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.FCVolumeSource"},"flexVolume":{"description":"flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.","$ref":"#/definitions/io.k8s.api.core.v1.FlexVolumeSource"},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","$ref":"#/definitions/io.k8s.api.core.v1.FlockerVolumeSource"},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","$ref":"#/definitions/io.k8s.api.core.v1.GCEPersistentDiskVolumeSource"},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.","$ref":"#/definitions/io.k8s.api.core.v1.GitRepoVolumeSource"},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md","$ref":"#/definitions/io.k8s.api.core.v1.GlusterfsVolumeSource"},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","$ref":"#/definitions/io.k8s.api.core.v1.HostPathVolumeSource"},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine. The volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails. - Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present. - IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation. A failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message. The types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field. The OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images. The volume will be mounted read-only (ro) and non-executable files (noexec). Sub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath). The field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","$ref":"#/definitions/io.k8s.api.core.v1.ImageVolumeSource"},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md","$ref":"#/definitions/io.k8s.api.core.v1.ISCSIVolumeSource"},"name":{"description":"name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","$ref":"#/definitions/io.k8s.api.core.v1.NFSVolumeSource"},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimVolumeSource"},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PhotonPersistentDiskVolumeSource"},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PortworxVolumeSource"},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","$ref":"#/definitions/io.k8s.api.core.v1.ProjectedVolumeSource"},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.QuobyteVolumeSource"},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.RBDVolumeSource"},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","$ref":"#/definitions/io.k8s.api.core.v1.ScaleIOVolumeSource"},"secret":{"description":"secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret","$ref":"#/definitions/io.k8s.api.core.v1.SecretVolumeSource"},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","$ref":"#/definitions/io.k8s.api.core.v1.StorageOSVolumeSource"},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.VsphereVirtualDiskVolumeSource"}}},"io.k8s.api.core.v1.VolumeDevice":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["name","devicePath"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"io.k8s.api.core.v1.VolumeMount":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["name","mountPath"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must not contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10. When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified (which defaults to None).\n\nPossible enum values:\n - `\"Bidirectional\"` means that the volume in a container will receive new mounts from the host or other containers, and its own mounts will be propagated from the container to the host or other containers. Note that this mode is recursively applied to all mounts in the volume (\"rshared\" in Linux terminology).\n - `\"HostToContainer\"` means that the volume in a container will receive new mounts from the host or other containers, but filesystems mounted inside the container won't be propagated to the host or other containers. Note that this mode is recursively applied to all mounts in the volume (\"rslave\" in Linux terminology).\n - `\"None\"` means that the volume in a container will not receive new mounts from the host or other containers, and filesystems mounted inside the container won't be propagated to the host or other containers. Note that this mode corresponds to \"private\" in Linux terminology.","type":"string","enum":["Bidirectional","HostToContainer","None"]},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled recursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made recursively read-only.  If this field is set to IfPossible, the mount is made recursively read-only, if it is supported by the container runtime.  If this field is set to Enabled, the mount is made recursively read-only if it is supported by the container runtime, otherwise the pod will not be started and an error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to None (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted. Defaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment. Defaults to \"\" (volume's root). SubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"io.k8s.api.core.v1.VolumeMountStatus":{"description":"VolumeMountStatus shows status of volume mounts.","type":"object","required":["name","mountPath"],"properties":{"mountPath":{"description":"MountPath corresponds to the original VolumeMount.","type":"string"},"name":{"description":"Name corresponds to the name of the original VolumeMount.","type":"string"},"readOnly":{"description":"ReadOnly corresponds to the original VolumeMount.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly must be set to Disabled, Enabled, or unspecified (for non-readonly mounts). An IfPossible value in the original VolumeMount must be translated to Disabled or Enabled, depending on the mount result.","type":"string"}}},"io.k8s.api.core.v1.VolumeMount_v2":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["name","mountPath"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must not contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10.\n\nPossible enum values:\n - `\"Bidirectional\"` means that the volume in a container will receive new mounts from the host or other containers, and its own mounts will be propagated from the container to the host or other containers. Note that this mode is recursively applied to all mounts in the volume (\"rshared\" in Linux terminology).\n - `\"HostToContainer\"` means that the volume in a container will receive new mounts from the host or other containers, but filesystems mounted inside the container won't be propagated to the host or other containers. Note that this mode is recursively applied to all mounts in the volume (\"rslave\" in Linux terminology).\n - `\"None\"` means that the volume in a container will not receive new mounts from the host or other containers, and filesystems mounted inside the container won't be propagated to the host or other containers. Note that this mode corresponds to \"private\" in Linux terminology.","type":"string","enum":["Bidirectional","HostToContainer","None"]},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.","type":"boolean"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted. Defaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment. Defaults to \"\" (volume's root). SubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"io.k8s.api.core.v1.VolumeNodeAffinity":{"description":"VolumeNodeAffinity defines constraints that limit what nodes this volume can be accessed from.","type":"object","properties":{"required":{"description":"required specifies hard node constraints that must be met.","$ref":"#/definitions/io.k8s.api.core.v1.NodeSelector"}}},"io.k8s.api.core.v1.VolumeProjection":{"description":"Projection that may be projected along with other supported volume types. Exactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field of ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written into the pod filesystem.  Esoteric PEM features such as inter-block comments and block headers are stripped.  Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time.","$ref":"#/definitions/io.k8s.api.core.v1.ClusterTrustBundleProjection"},"configMap":{"description":"configMap information about the configMap data to project","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapProjection"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIProjection"},"secret":{"description":"secret information about the secret data to project","$ref":"#/definitions/io.k8s.api.core.v1.SecretProjection"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccountTokenProjection"}}},"io.k8s.api.core.v1.VolumeProjection_v2":{"description":"Projection that may be projected along with other supported volume types","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field of ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written into the pod filesystem.  Esoteric PEM features such as inter-block comments and block headers are stripped.  Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time.","$ref":"#/definitions/io.k8s.api.core.v1.ClusterTrustBundleProjection"},"configMap":{"description":"configMap information about the configMap data to project","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapProjection_v2"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIProjection_v2"},"secret":{"description":"secret information about the secret data to project","$ref":"#/definitions/io.k8s.api.core.v1.SecretProjection_v2"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccountTokenProjection"}}},"io.k8s.api.core.v1.VolumeProjection_v3":{"description":"Projection that may be projected along with other supported volume types","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field of ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written into the pod filesystem.  Esoteric PEM features such as inter-block comments and block headers are stripped.  Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time.","$ref":"#/definitions/io.k8s.api.core.v1.ClusterTrustBundleProjection"},"configMap":{"description":"configMap information about the configMap data to project","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapProjection_v2"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIProjection_v3"},"secret":{"description":"secret information about the secret data to project","$ref":"#/definitions/io.k8s.api.core.v1.SecretProjection_v2"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","$ref":"#/definitions/io.k8s.api.core.v1.ServiceAccountTokenProjection"}}},"io.k8s.api.core.v1.VolumeResourceRequirements":{"description":"VolumeResourceRequirements describes the storage resource requirements for a volume.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"requests":{"description":"Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}}},"io.k8s.api.core.v1.Volume_v2":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","$ref":"#/definitions/io.k8s.api.core.v1.AWSElasticBlockStoreVolumeSource"},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureDiskVolumeSource"},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureFileVolumeSource"},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.CephFSVolumeSource_v2"},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.CinderVolumeSource"},"configMap":{"description":"configMap represents a configMap that should populate this volume","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapVolumeSource_v2"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","$ref":"#/definitions/io.k8s.api.core.v1.CSIVolumeSource"},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeSource_v2"},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","$ref":"#/definitions/io.k8s.api.core.v1.EmptyDirVolumeSource"},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.\n\nUse this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.\n\nA pod can use both types of ephemeral volumes and persistent volumes at the same time.","$ref":"#/definitions/io.k8s.api.core.v1.EphemeralVolumeSource"},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.FCVolumeSource_v2"},"flexVolume":{"description":"flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.","$ref":"#/definitions/io.k8s.api.core.v1.FlexVolumeSource"},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","$ref":"#/definitions/io.k8s.api.core.v1.FlockerVolumeSource"},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","$ref":"#/definitions/io.k8s.api.core.v1.GCEPersistentDiskVolumeSource"},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.","$ref":"#/definitions/io.k8s.api.core.v1.GitRepoVolumeSource"},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md","$ref":"#/definitions/io.k8s.api.core.v1.GlusterfsVolumeSource"},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","$ref":"#/definitions/io.k8s.api.core.v1.HostPathVolumeSource"},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md","$ref":"#/definitions/io.k8s.api.core.v1.ISCSIVolumeSource_v2"},"name":{"description":"name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","$ref":"#/definitions/io.k8s.api.core.v1.NFSVolumeSource"},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimVolumeSource"},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PhotonPersistentDiskVolumeSource"},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PortworxVolumeSource"},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","$ref":"#/definitions/io.k8s.api.core.v1.ProjectedVolumeSource_v2"},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.QuobyteVolumeSource"},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.RBDVolumeSource_v2"},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","$ref":"#/definitions/io.k8s.api.core.v1.ScaleIOVolumeSource"},"secret":{"description":"secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret","$ref":"#/definitions/io.k8s.api.core.v1.SecretVolumeSource_v2"},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","$ref":"#/definitions/io.k8s.api.core.v1.StorageOSVolumeSource"},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.VsphereVirtualDiskVolumeSource"}}},"io.k8s.api.core.v1.Volume_v3":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","$ref":"#/definitions/io.k8s.api.core.v1.AWSElasticBlockStoreVolumeSource"},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureDiskVolumeSource"},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.AzureFileVolumeSource"},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.CephFSVolumeSource_v3"},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.CinderVolumeSource"},"configMap":{"description":"configMap represents a configMap that should populate this volume","$ref":"#/definitions/io.k8s.api.core.v1.ConfigMapVolumeSource_v2"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).","$ref":"#/definitions/io.k8s.api.core.v1.CSIVolumeSource"},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","$ref":"#/definitions/io.k8s.api.core.v1.DownwardAPIVolumeSource_v3"},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","$ref":"#/definitions/io.k8s.api.core.v1.EmptyDirVolumeSource"},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed.\n\nUse this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information.\n\nA pod can use both types of ephemeral volumes and persistent volumes at the same time.","$ref":"#/definitions/io.k8s.api.core.v1.EphemeralVolumeSource"},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","$ref":"#/definitions/io.k8s.api.core.v1.FCVolumeSource_v2"},"flexVolume":{"description":"flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin.","$ref":"#/definitions/io.k8s.api.core.v1.FlexVolumeSource"},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running","$ref":"#/definitions/io.k8s.api.core.v1.FlockerVolumeSource"},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","$ref":"#/definitions/io.k8s.api.core.v1.GCEPersistentDiskVolumeSource"},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container.","$ref":"#/definitions/io.k8s.api.core.v1.GitRepoVolumeSource"},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md","$ref":"#/definitions/io.k8s.api.core.v1.GlusterfsVolumeSource"},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","$ref":"#/definitions/io.k8s.api.core.v1.HostPathVolumeSource"},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md","$ref":"#/definitions/io.k8s.api.core.v1.ISCSIVolumeSource_v3"},"name":{"description":"name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","$ref":"#/definitions/io.k8s.api.core.v1.NFSVolumeSource"},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeClaimVolumeSource"},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PhotonPersistentDiskVolumeSource"},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.PortworxVolumeSource"},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","$ref":"#/definitions/io.k8s.api.core.v1.ProjectedVolumeSource_v3"},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime","$ref":"#/definitions/io.k8s.api.core.v1.QuobyteVolumeSource"},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md","$ref":"#/definitions/io.k8s.api.core.v1.RBDVolumeSource_v3"},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.","$ref":"#/definitions/io.k8s.api.core.v1.ScaleIOVolumeSource"},"secret":{"description":"secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret","$ref":"#/definitions/io.k8s.api.core.v1.SecretVolumeSource_v2"},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.","$ref":"#/definitions/io.k8s.api.core.v1.StorageOSVolumeSource"},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine","$ref":"#/definitions/io.k8s.api.core.v1.VsphereVirtualDiskVolumeSource"}}},"io.k8s.api.core.v1.VsphereVirtualDiskVolumeSource":{"description":"Represents a vSphere volume resource.","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}},"io.k8s.api.core.v1.WeightedPodAffinityTerm":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["weight","podAffinityTerm"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","$ref":"#/definitions/io.k8s.api.core.v1.PodAffinityTerm"},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm, in the range 1-100.","type":"integer","format":"int32"}}},"io.k8s.api.core.v1.WindowsSecurityContextOptions":{"description":"WindowsSecurityContextOptions contain Windows-specific options and credentials.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers). In addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}},"io.k8s.api.discovery.v1.Endpoint":{"description":"Endpoint represents a single logical \"backend\" implementing a service.","type":"object","required":["addresses"],"properties":{"addresses":{"description":"addresses of this endpoint. The contents of this field are interpreted according to the corresponding EndpointSlice addressType field. Consumers must handle different types of addresses in the context of their own capabilities. This must contain at least one address but no more than 100. These are all assumed to be fungible and clients may choose to only use the first element. Refer to: https://issue.k8s.io/106267","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"conditions":{"description":"conditions contains information about the current status of the endpoint.","$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointConditions"},"deprecatedTopology":{"description":"deprecatedTopology contains topology information part of the v1beta1 API. This field is deprecated, and will be removed when the v1beta1 API is removed (no sooner than kubernetes v1.24).  While this field can hold values, it is not writable through the v1 API, and any attempts to write to it will be silently ignored. Topology information can be found in the zone and nodeName fields instead.","type":"object","additionalProperties":{"type":"string"}},"hints":{"description":"hints contains information associated with how an endpoint should be consumed.","$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointHints"},"hostname":{"description":"hostname of this endpoint. This field may be used by consumers of endpoints to distinguish endpoints from each other (e.g. in DNS names). Multiple endpoints which use the same hostname should be considered fungible (e.g. multiple A values in DNS). Must be lowercase and pass DNS Label (RFC 1123) validation.","type":"string"},"nodeName":{"description":"nodeName represents the name of the Node hosting this endpoint. This can be used to determine endpoints local to a Node.","type":"string"},"targetRef":{"description":"targetRef is a reference to a Kubernetes object that represents this endpoint.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"zone":{"description":"zone is the name of the Zone this endpoint exists in.","type":"string"}}},"io.k8s.api.discovery.v1.EndpointConditions":{"description":"EndpointConditions represents the current condition of an endpoint.","type":"object","properties":{"ready":{"description":"ready indicates that this endpoint is prepared to receive traffic, according to whatever system is managing the endpoint. A nil value indicates an unknown state. In most cases consumers should interpret this unknown state as ready. For compatibility reasons, ready should never be \"true\" for terminating endpoints, except when the normal readiness behavior is being explicitly overridden, for example when the associated Service has set the publishNotReadyAddresses flag.","type":"boolean"},"serving":{"description":"serving is identical to ready except that it is set regardless of the terminating state of endpoints. This condition should be set to true for a ready endpoint that is terminating. If nil, consumers should defer to the ready condition.","type":"boolean"},"terminating":{"description":"terminating indicates that this endpoint is terminating. A nil value indicates an unknown state. Consumers should interpret this unknown state to mean that the endpoint is not terminating.","type":"boolean"}}},"io.k8s.api.discovery.v1.EndpointHints":{"description":"EndpointHints provides hints describing how an endpoint should be consumed.","type":"object","properties":{"forZones":{"description":"forZones indicates the zone(s) this endpoint should be consumed by to enable topology aware routing.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.discovery.v1.ForZone"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.discovery.v1.EndpointPort":{"description":"EndpointPort represents a Port used by an EndpointSlice","type":"object","properties":{"appProtocol":{"description":"The application protocol for this port. This is used as a hint for implementations to offer richer behavior for protocols that they understand. This field follows standard Kubernetes label syntax. Valid values are either:\n\n* Un-prefixed protocol names - reserved for IANA standard service names (as per RFC-6335 and https://www.iana.org/assignments/service-names).\n\n* Kubernetes-defined prefixed names:\n  * 'kubernetes.io/h2c' - HTTP/2 prior knowledge over cleartext as described in https://www.rfc-editor.org/rfc/rfc9113.html#name-starting-http-2-with-prior-\n  * 'kubernetes.io/ws'  - WebSocket over cleartext as described in https://www.rfc-editor.org/rfc/rfc6455\n  * 'kubernetes.io/wss' - WebSocket over TLS as described in https://www.rfc-editor.org/rfc/rfc6455\n\n* Other protocols should use implementation-defined prefixed names such as mycompany.com/my-custom-protocol.","type":"string"},"name":{"description":"name represents the name of this port. All ports in an EndpointSlice must have a unique name. If the EndpointSlice is derived from a Kubernetes service, this corresponds to the Service.ports[].name. Name must either be an empty string or pass DNS_LABEL validation: * must be no more than 63 characters long. * must consist of lower case alphanumeric characters or '-'. * must start and end with an alphanumeric character. Default is empty string.","type":"string"},"port":{"description":"port represents the port number of the endpoint. If this is not specified, ports are not restricted and must be interpreted in the context of the specific consumer.","type":"integer","format":"int32"},"protocol":{"description":"protocol represents the IP protocol for this port. Must be UDP, TCP, or SCTP. Default is TCP.\n\nPossible enum values:\n - `\"SCTP\"` is the SCTP protocol.\n - `\"TCP\"` is the TCP protocol.\n - `\"UDP\"` is the UDP protocol.","type":"string","enum":["SCTP","TCP","UDP"]}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.discovery.v1.EndpointSlice":{"description":"EndpointSlice represents a subset of the endpoints that implement a service. For a given service there may be multiple EndpointSlice objects, selected by labels, which must be joined to produce the full set of endpoints.","type":"object","required":["addressType","endpoints"],"properties":{"addressType":{"description":"addressType specifies the type of address carried by this EndpointSlice. All addresses in this slice must be the same type. This field is immutable after creation. The following address types are currently supported: * IPv4: Represents an IPv4 Address. * IPv6: Represents an IPv6 Address. * FQDN: Represents a Fully Qualified Domain Name.\n\nPossible enum values:\n - `\"FQDN\"` represents a FQDN.\n - `\"IPv4\"` represents an IPv4 Address.\n - `\"IPv6\"` represents an IPv6 Address.","type":"string","enum":["FQDN","IPv4","IPv6"]},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"endpoints":{"description":"endpoints is a list of unique endpoints in this slice. Each slice may include a maximum of 1000 endpoints.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.discovery.v1.Endpoint"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"ports":{"description":"ports specifies the list of network ports exposed by each endpoint in this slice. Each port must have a unique name. When ports is empty, it indicates that there are no defined ports. When a port is defined with a nil port value, it indicates \"all ports\". Each slice may include a maximum of 100 ports.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointPort"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"discovery.k8s.io","kind":"EndpointSlice","version":"v1"}]},"io.k8s.api.discovery.v1.EndpointSliceList":{"description":"EndpointSliceList represents a list of endpoint slices","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of endpoint slices","type":"array","items":{"$ref":"#/definitions/io.k8s.api.discovery.v1.EndpointSlice"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"discovery.k8s.io","kind":"EndpointSliceList","version":"v1"}]},"io.k8s.api.discovery.v1.ForZone":{"description":"ForZone provides information about which zones should consume this endpoint.","type":"object","required":["name"],"properties":{"name":{"description":"name represents the name of the zone.","type":"string"}}},"io.k8s.api.events.v1.Event":{"description":"Event is a report of an event somewhere in the cluster. It generally denotes some state change in the system. Events have a limited retention time and triggers and messages may evolve with time.  Event consumers should not rely on the timing of an event with a given Reason reflecting a consistent underlying trigger, or the continued existence of events with that Reason.  Events should be treated as informative, best-effort, supplemental data.","type":"object","required":["eventTime"],"properties":{"action":{"description":"action is what action was taken/failed regarding to the regarding object. It is machine-readable. This field cannot be empty for new Events and it can have at most 128 characters.","type":"string"},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"deprecatedCount":{"description":"deprecatedCount is the deprecated field assuring backward compatibility with core.v1 Event type.","type":"integer","format":"int32"},"deprecatedFirstTimestamp":{"description":"deprecatedFirstTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"deprecatedLastTimestamp":{"description":"deprecatedLastTimestamp is the deprecated field assuring backward compatibility with core.v1 Event type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"deprecatedSource":{"description":"deprecatedSource is the deprecated field assuring backward compatibility with core.v1 Event type.","$ref":"#/definitions/io.k8s.api.core.v1.EventSource"},"eventTime":{"description":"eventTime is the time when this Event was first observed. It is required.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.MicroTime"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"note":{"description":"note is a human-readable description of the status of this operation. Maximal length of the note is 1kB, but libraries should be prepared to handle values up to 64kB.","type":"string"},"reason":{"description":"reason is why the action was taken. It is human-readable. This field cannot be empty for new Events and it can have at most 128 characters.","type":"string"},"regarding":{"description":"regarding contains the object this Event is about. In most cases it's an Object reporting controller implements, e.g. ReplicaSetController implements ReplicaSets and this event is emitted because it acts on some changes in a ReplicaSet object.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"related":{"description":"related is the optional secondary object for more complex actions. E.g. when regarding object triggers a creation or deletion of related object.","$ref":"#/definitions/io.k8s.api.core.v1.ObjectReference"},"reportingController":{"description":"reportingController is the name of the controller that emitted this Event, e.g. `kubernetes.io/kubelet`. This field cannot be empty for new Events.","type":"string"},"reportingInstance":{"description":"reportingInstance is the ID of the controller instance, e.g. `kubelet-xyzf`. This field cannot be empty for new Events and it can have at most 128 characters.","type":"string"},"series":{"description":"series is data about the Event series this event represents or nil if it's a singleton Event.","$ref":"#/definitions/io.k8s.api.events.v1.EventSeries"},"type":{"description":"type is the type of this event (Normal, Warning), new types could be added in the future. It is machine-readable. This field cannot be empty for new Events.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"events.k8s.io","kind":"Event","version":"v1"}]},"io.k8s.api.events.v1.EventList":{"description":"EventList is a list of Event objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of schema objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.events.v1.Event"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"events.k8s.io","kind":"EventList","version":"v1"}]},"io.k8s.api.events.v1.EventSeries":{"description":"EventSeries contain information on series of events, i.e. thing that was/is happening continuously for some time. How often to update the EventSeries is up to the event reporters. The default event reporter in \"k8s.io/client-go/tools/events/event_broadcaster.go\" shows how this struct is updated on heartbeats and can guide customized reporter implementations.","type":"object","required":["count","lastObservedTime"],"properties":{"count":{"description":"count is the number of occurrences in this series up to the last heartbeat time.","type":"integer","format":"int32"},"lastObservedTime":{"description":"lastObservedTime is the time when last Event from the series was seen before last heartbeat.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.MicroTime"}}},"io.k8s.api.extensions.v1beta1.Scale":{"description":"represents a scaling request for a resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata; More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2"},"spec":{"description":"defines the behavior of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.","$ref":"#/definitions/io.k8s.api.extensions.v1beta1.ScaleSpec"},"status":{"description":"current status of the scale. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status. Read-only.","$ref":"#/definitions/io.k8s.api.extensions.v1beta1.ScaleStatus"}},"x-kubernetes-group-version-kind":[{"group":"apps.openshift.io","kind":"Scale","version":"v1"},{"group":"extensions","kind":"Scale","version":"v1beta1"}]},"io.k8s.api.extensions.v1beta1.ScaleSpec":{"description":"describes the attributes of a scale subresource","type":"object","properties":{"replicas":{"description":"desired number of instances for the scaled object.","type":"integer","format":"int32"}}},"io.k8s.api.extensions.v1beta1.ScaleStatus":{"description":"represents the current status of a scale subresource.","type":"object","required":["replicas"],"properties":{"replicas":{"description":"actual number of observed instances of the scaled object.","type":"integer","format":"int32"},"selector":{"description":"selector is a label query over pods that should match the replicas count. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"targetSelector":{"description":"label selector for pods that should match the replicas count. This is a serializated version of both map-based and more expressive set-based selectors. This is done to avoid introspection in the clients. The string will be in the same format as the query-param syntax. If the target type only supports map-based selectors, both this field and map-based selector field are populated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors","type":"string"}}},"io.k8s.api.flowcontrol.v1.ExemptPriorityLevelConfiguration":{"description":"ExemptPriorityLevelConfiguration describes the configurable aspects of the handling of exempt requests. In the mandatory exempt configuration object the values in the fields here can be modified by authorized users, unlike the rest of the `spec`.","type":"object","properties":{"lendablePercent":{"description":"`lendablePercent` prescribes the fraction of the level's NominalCL that can be borrowed by other priority levels.  This value of this field must be between 0 and 100, inclusive, and it defaults to 0. The number of seats that other levels can borrow from this level, known as this level's LendableConcurrencyLimit (LendableCL), is defined as follows.\n\nLendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 )","type":"integer","format":"int32"},"nominalConcurrencyShares":{"description":"`nominalConcurrencyShares` (NCS) contributes to the computation of the NominalConcurrencyLimit (NominalCL) of this level. This is the number of execution seats nominally reserved for this priority level. This DOES NOT limit the dispatching from this priority level but affects the other priority levels through the borrowing mechanism. The server's concurrency limit (ServerCL) is divided among all the priority levels in proportion to their NCS values:\n\nNominalCL(i)  = ceil( ServerCL * NCS(i) / sum_ncs ) sum_ncs = sum[priority level k] NCS(k)\n\nBigger numbers mean a larger nominal concurrency limit, at the expense of every other priority level. This field has a default value of zero.","type":"integer","format":"int32"}}},"io.k8s.api.flowcontrol.v1.FlowDistinguisherMethod":{"description":"FlowDistinguisherMethod specifies the method of a flow distinguisher.","type":"object","required":["type"],"properties":{"type":{"description":"`type` is the type of flow distinguisher method The supported types are \"ByUser\" and \"ByNamespace\". Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1.FlowSchema":{"description":"FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with similar attributes and is identified by a pair of strings: the name of the FlowSchema and a \"flow distinguisher\".","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchemaSpec"},"status":{"description":"`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchemaStatus"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1"}]},"io.k8s.api.flowcontrol.v1.FlowSchemaCondition":{"description":"FlowSchemaCondition describes conditions for a FlowSchema.","type":"object","properties":{"lastTransitionTime":{"description":"`lastTransitionTime` is the last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"`message` is a human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"`reason` is a unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"`status` is the status of the condition. Can be True, False, Unknown. Required.","type":"string"},"type":{"description":"`type` is the type of the condition. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1.FlowSchemaList":{"description":"FlowSchemaList is a list of FlowSchema objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"`items` is a list of FlowSchemas.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchema"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchemaList","version":"v1"}]},"io.k8s.api.flowcontrol.v1.FlowSchemaSpec":{"description":"FlowSchemaSpec describes how the FlowSchema's specification looks like.","type":"object","required":["priorityLevelConfiguration"],"properties":{"distinguisherMethod":{"description":"`distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowDistinguisherMethod"},"matchingPrecedence":{"description":"`matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.","type":"integer","format":"int32"},"priorityLevelConfiguration":{"description":"`priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationReference"},"rules":{"description":"`rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PolicyRulesWithSubjects"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.flowcontrol.v1.FlowSchemaStatus":{"description":"FlowSchemaStatus represents the current state of a FlowSchema.","type":"object","properties":{"conditions":{"description":"`conditions` is a list of the current states of FlowSchema.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.FlowSchemaCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.flowcontrol.v1.GroupSubject":{"description":"GroupSubject holds detailed information for group-kind subject.","type":"object","required":["name"],"properties":{"name":{"description":"name is the user group that matches, or \"*\" to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1.LimitResponse":{"description":"LimitResponse defines how to handle requests that can not be executed right now.","type":"object","required":["type"],"properties":{"queuing":{"description":"`queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `\"Queue\"`.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.QueuingConfiguration"},"type":{"description":"`type` is \"Queue\" or \"Reject\". \"Queue\" means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. \"Reject\" means that requests that can not be executed upon arrival are rejected. Required.","type":"string"}},"x-kubernetes-unions":[{"discriminator":"type","fields-to-discriminateBy":{"queuing":"Queuing"}}]},"io.k8s.api.flowcontrol.v1.LimitedPriorityLevelConfiguration":{"description":"LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. It addresses two issues:\n  - How are requests for this priority level limited?\n  - What should be done with requests that exceed the limit?","type":"object","properties":{"borrowingLimitPercent":{"description":"`borrowingLimitPercent`, if present, configures a limit on how many seats this priority level can borrow from other priority levels. The limit is known as this level's BorrowingConcurrencyLimit (BorrowingCL) and is a limit on the total number of seats that this level may borrow at any one time. This field holds the ratio of that limit to the level's nominal concurrency limit. When this field is non-nil, it must hold a non-negative integer and the limit is calculated as follows.\n\nBorrowingCL(i) = round( NominalCL(i) * borrowingLimitPercent(i)/100.0 )\n\nThe value of this field can be more than 100, implying that this priority level can borrow a number of seats that is greater than its own nominal concurrency limit (NominalCL). When this field is left `nil`, the limit is effectively infinite.","type":"integer","format":"int32"},"lendablePercent":{"description":"`lendablePercent` prescribes the fraction of the level's NominalCL that can be borrowed by other priority levels. The value of this field must be between 0 and 100, inclusive, and it defaults to 0. The number of seats that other levels can borrow from this level, known as this level's LendableConcurrencyLimit (LendableCL), is defined as follows.\n\nLendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 )","type":"integer","format":"int32"},"limitResponse":{"description":"`limitResponse` indicates what to do with requests that can not be executed right now","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.LimitResponse"},"nominalConcurrencyShares":{"description":"`nominalConcurrencyShares` (NCS) contributes to the computation of the NominalConcurrencyLimit (NominalCL) of this level. This is the number of execution seats available at this priority level. This is used both for requests dispatched from this priority level as well as requests dispatched from other priority levels borrowing seats from this level. The server's concurrency limit (ServerCL) is divided among the Limited priority levels in proportion to their NCS values:\n\nNominalCL(i)  = ceil( ServerCL * NCS(i) / sum_ncs ) sum_ncs = sum[priority level k] NCS(k)\n\nBigger numbers mean a larger nominal concurrency limit, at the expense of every other priority level.\n\nIf not specified, this field defaults to a value of 30.\n\nSetting this field to zero supports the construction of a \"jail\" for this priority level that is used to hold some request(s)","type":"integer","format":"int32"}}},"io.k8s.api.flowcontrol.v1.NonResourcePolicyRule":{"description":"NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member of verbs matches the request and (b) at least one member of nonResourceURLs matches the request.","type":"object","required":["verbs","nonResourceURLs"],"properties":{"nonResourceURLs":{"description":"`nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:\n  - \"/healthz\" is legal\n  - \"/hea*\" is illegal\n  - \"/hea\" is legal but matches nothing\n  - \"/hea/*\" also matches nothing\n  - \"/healthz/*\" matches all per-component health checks.\n\"*\" matches all non-resource urls. if it is present, it must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"verbs":{"description":"`verbs` is a list of matching verbs and may not be empty. \"*\" matches all verbs. If it is present, it must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"io.k8s.api.flowcontrol.v1.PolicyRulesWithSubjects":{"description":"PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member of resourceRules or nonResourceRules matches the request.","type":"object","required":["subjects"],"properties":{"nonResourceRules":{"description":"`nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.NonResourcePolicyRule"},"x-kubernetes-list-type":"atomic"},"resourceRules":{"description":"`resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.ResourcePolicyRule"},"x-kubernetes-list-type":"atomic"},"subjects":{"description":"subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.Subject"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration":{"description":"PriorityLevelConfiguration represents the configuration of a priority level.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"`spec` is the specification of the desired behavior of a \"request-priority\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationSpec"},"status":{"description":"`status` is the current status of a \"request-priority\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationStatus"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1"}]},"io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationCondition":{"description":"PriorityLevelConfigurationCondition defines the condition of priority level.","type":"object","properties":{"lastTransitionTime":{"description":"`lastTransitionTime` is the last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"`message` is a human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"`reason` is a unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"`status` is the status of the condition. Can be True, False, Unknown. Required.","type":"string"},"type":{"description":"`type` is the type of the condition. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationList":{"description":"PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"`items` is a list of request-priorities.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfiguration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfigurationList","version":"v1"}]},"io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationReference":{"description":"PriorityLevelConfigurationReference contains information that points to the \"request-priority\" being used.","type":"object","required":["name"],"properties":{"name":{"description":"`name` is the name of the priority level configuration being referenced Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationSpec":{"description":"PriorityLevelConfigurationSpec specifies the configuration of a priority level.","type":"object","required":["type"],"properties":{"exempt":{"description":"`exempt` specifies how requests are handled for an exempt priority level. This field MUST be empty if `type` is `\"Limited\"`. This field MAY be non-empty if `type` is `\"Exempt\"`. If empty and `type` is `\"Exempt\"` then the default values for `ExemptPriorityLevelConfiguration` apply.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.ExemptPriorityLevelConfiguration"},"limited":{"description":"`limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `\"Limited\"`.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.LimitedPriorityLevelConfiguration"},"type":{"description":"`type` indicates whether this priority level is subject to limitation on request execution.  A value of `\"Exempt\"` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `\"Limited\"` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server's limited capacity is made available exclusively to this priority level. Required.","type":"string"}},"x-kubernetes-unions":[{"discriminator":"type","fields-to-discriminateBy":{"exempt":"Exempt","limited":"Limited"}}]},"io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationStatus":{"description":"PriorityLevelConfigurationStatus represents the current state of a \"request-priority\".","type":"object","properties":{"conditions":{"description":"`conditions` is the current state of \"request-priority\".","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1.PriorityLevelConfigurationCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.flowcontrol.v1.QueuingConfiguration":{"description":"QueuingConfiguration holds the configuration parameters for queuing","type":"object","properties":{"handSize":{"description":"`handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request's flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.","type":"integer","format":"int32"},"queueLengthLimit":{"description":"`queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.","type":"integer","format":"int32"},"queues":{"description":"`queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.","type":"integer","format":"int32"}}},"io.k8s.api.flowcontrol.v1.ResourcePolicyRule":{"description":"ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==\"\"`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request's namespace.","type":"object","required":["verbs","apiGroups","resources"],"properties":{"apiGroups":{"description":"`apiGroups` is a list of matching API groups and may not be empty. \"*\" matches all API groups and, if present, must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"clusterScope":{"description":"`clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.","type":"boolean"},"namespaces":{"description":"`namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains \"*\".  Note that \"*\" matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"resources":{"description":"`resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ \"services\", \"nodes/status\" ].  This list may not be empty. \"*\" matches all resources and, if present, must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"verbs":{"description":"`verbs` is a list of matching verbs and may not be empty. \"*\" matches all verbs and, if present, must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"io.k8s.api.flowcontrol.v1.ServiceAccountSubject":{"description":"ServiceAccountSubject holds detailed information for service-account-kind subject.","type":"object","required":["namespace","name"],"properties":{"name":{"description":"`name` is the name of matching ServiceAccount objects, or \"*\" to match regardless of name. Required.","type":"string"},"namespace":{"description":"`namespace` is the namespace of matching ServiceAccount objects. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1.Subject":{"description":"Subject matches the originator of a request, as identified by the request authentication system. There are three ways of matching an originator; by user, group, or service account.","type":"object","required":["kind"],"properties":{"group":{"description":"`group` matches based on user group name.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.GroupSubject"},"kind":{"description":"`kind` indicates which one of the other fields is non-empty. Required","type":"string"},"serviceAccount":{"description":"`serviceAccount` matches ServiceAccounts.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.ServiceAccountSubject"},"user":{"description":"`user` matches based on username.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1.UserSubject"}},"x-kubernetes-unions":[{"discriminator":"kind","fields-to-discriminateBy":{"group":"Group","serviceAccount":"ServiceAccount","user":"User"}}]},"io.k8s.api.flowcontrol.v1.UserSubject":{"description":"UserSubject holds detailed information for user-kind subject.","type":"object","required":["name"],"properties":{"name":{"description":"`name` is the username that matches, or \"*\" to match all usernames. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1beta3.ExemptPriorityLevelConfiguration":{"description":"ExemptPriorityLevelConfiguration describes the configurable aspects of the handling of exempt requests. In the mandatory exempt configuration object the values in the fields here can be modified by authorized users, unlike the rest of the `spec`.","type":"object","properties":{"lendablePercent":{"description":"`lendablePercent` prescribes the fraction of the level's NominalCL that can be borrowed by other priority levels.  This value of this field must be between 0 and 100, inclusive, and it defaults to 0. The number of seats that other levels can borrow from this level, known as this level's LendableConcurrencyLimit (LendableCL), is defined as follows.\n\nLendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 )","type":"integer","format":"int32"},"nominalConcurrencyShares":{"description":"`nominalConcurrencyShares` (NCS) contributes to the computation of the NominalConcurrencyLimit (NominalCL) of this level. This is the number of execution seats nominally reserved for this priority level. This DOES NOT limit the dispatching from this priority level but affects the other priority levels through the borrowing mechanism. The server's concurrency limit (ServerCL) is divided among all the priority levels in proportion to their NCS values:\n\nNominalCL(i)  = ceil( ServerCL * NCS(i) / sum_ncs ) sum_ncs = sum[priority level k] NCS(k)\n\nBigger numbers mean a larger nominal concurrency limit, at the expense of every other priority level. This field has a default value of zero.","type":"integer","format":"int32"}}},"io.k8s.api.flowcontrol.v1beta3.FlowDistinguisherMethod":{"description":"FlowDistinguisherMethod specifies the method of a flow distinguisher.","type":"object","required":["type"],"properties":{"type":{"description":"`type` is the type of flow distinguisher method The supported types are \"ByUser\" and \"ByNamespace\". Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1beta3.FlowSchema":{"description":"FlowSchema defines the schema of a group of flows. Note that a flow is made up of a set of inbound API requests with similar attributes and is identified by a pair of strings: the name of the FlowSchema and a \"flow distinguisher\".","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"`spec` is the specification of the desired behavior of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchemaSpec"},"status":{"description":"`status` is the current status of a FlowSchema. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchemaStatus"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchema","version":"v1beta3"}]},"io.k8s.api.flowcontrol.v1beta3.FlowSchemaCondition":{"description":"FlowSchemaCondition describes conditions for a FlowSchema.","type":"object","properties":{"lastTransitionTime":{"description":"`lastTransitionTime` is the last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"`message` is a human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"`reason` is a unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"`status` is the status of the condition. Can be True, False, Unknown. Required.","type":"string"},"type":{"description":"`type` is the type of the condition. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1beta3.FlowSchemaList":{"description":"FlowSchemaList is a list of FlowSchema objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"`items` is a list of FlowSchemas.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchema"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"FlowSchemaList","version":"v1beta3"}]},"io.k8s.api.flowcontrol.v1beta3.FlowSchemaSpec":{"description":"FlowSchemaSpec describes how the FlowSchema's specification looks like.","type":"object","required":["priorityLevelConfiguration"],"properties":{"distinguisherMethod":{"description":"`distinguisherMethod` defines how to compute the flow distinguisher for requests that match this schema. `nil` specifies that the distinguisher is disabled and thus will always be the empty string.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowDistinguisherMethod"},"matchingPrecedence":{"description":"`matchingPrecedence` is used to choose among the FlowSchemas that match a given request. The chosen FlowSchema is among those with the numerically lowest (which we take to be logically highest) MatchingPrecedence.  Each MatchingPrecedence value must be ranged in [1,10000]. Note that if the precedence is not specified, it will be set to 1000 as default.","type":"integer","format":"int32"},"priorityLevelConfiguration":{"description":"`priorityLevelConfiguration` should reference a PriorityLevelConfiguration in the cluster. If the reference cannot be resolved, the FlowSchema will be ignored and marked as invalid in its status. Required.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationReference"},"rules":{"description":"`rules` describes which requests will match this flow schema. This FlowSchema matches a request if and only if at least one member of rules matches the request. if it is an empty slice, there will be no requests matching the FlowSchema.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PolicyRulesWithSubjects"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.flowcontrol.v1beta3.FlowSchemaStatus":{"description":"FlowSchemaStatus represents the current state of a FlowSchema.","type":"object","properties":{"conditions":{"description":"`conditions` is a list of the current states of FlowSchema.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.FlowSchemaCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.flowcontrol.v1beta3.GroupSubject":{"description":"GroupSubject holds detailed information for group-kind subject.","type":"object","required":["name"],"properties":{"name":{"description":"name is the user group that matches, or \"*\" to match all user groups. See https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go for some well-known group names. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1beta3.LimitResponse":{"description":"LimitResponse defines how to handle requests that can not be executed right now.","type":"object","required":["type"],"properties":{"queuing":{"description":"`queuing` holds the configuration parameters for queuing. This field may be non-empty only if `type` is `\"Queue\"`.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.QueuingConfiguration"},"type":{"description":"`type` is \"Queue\" or \"Reject\". \"Queue\" means that requests that can not be executed upon arrival are held in a queue until they can be executed or a queuing limit is reached. \"Reject\" means that requests that can not be executed upon arrival are rejected. Required.","type":"string"}},"x-kubernetes-unions":[{"discriminator":"type","fields-to-discriminateBy":{"queuing":"Queuing"}}]},"io.k8s.api.flowcontrol.v1beta3.LimitedPriorityLevelConfiguration":{"description":"LimitedPriorityLevelConfiguration specifies how to handle requests that are subject to limits. It addresses two issues:\n  - How are requests for this priority level limited?\n  - What should be done with requests that exceed the limit?","type":"object","properties":{"borrowingLimitPercent":{"description":"`borrowingLimitPercent`, if present, configures a limit on how many seats this priority level can borrow from other priority levels. The limit is known as this level's BorrowingConcurrencyLimit (BorrowingCL) and is a limit on the total number of seats that this level may borrow at any one time. This field holds the ratio of that limit to the level's nominal concurrency limit. When this field is non-nil, it must hold a non-negative integer and the limit is calculated as follows.\n\nBorrowingCL(i) = round( NominalCL(i) * borrowingLimitPercent(i)/100.0 )\n\nThe value of this field can be more than 100, implying that this priority level can borrow a number of seats that is greater than its own nominal concurrency limit (NominalCL). When this field is left `nil`, the limit is effectively infinite.","type":"integer","format":"int32"},"lendablePercent":{"description":"`lendablePercent` prescribes the fraction of the level's NominalCL that can be borrowed by other priority levels. The value of this field must be between 0 and 100, inclusive, and it defaults to 0. The number of seats that other levels can borrow from this level, known as this level's LendableConcurrencyLimit (LendableCL), is defined as follows.\n\nLendableCL(i) = round( NominalCL(i) * lendablePercent(i)/100.0 )","type":"integer","format":"int32"},"limitResponse":{"description":"`limitResponse` indicates what to do with requests that can not be executed right now","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.LimitResponse"},"nominalConcurrencyShares":{"description":"`nominalConcurrencyShares` (NCS) contributes to the computation of the NominalConcurrencyLimit (NominalCL) of this level. This is the number of execution seats available at this priority level. This is used both for requests dispatched from this priority level as well as requests dispatched from other priority levels borrowing seats from this level. The server's concurrency limit (ServerCL) is divided among the Limited priority levels in proportion to their NCS values:\n\nNominalCL(i)  = ceil( ServerCL * NCS(i) / sum_ncs ) sum_ncs = sum[priority level k] NCS(k)\n\nBigger numbers mean a larger nominal concurrency limit, at the expense of every other priority level. This field has a default value of 30.","type":"integer","format":"int32"}}},"io.k8s.api.flowcontrol.v1beta3.NonResourcePolicyRule":{"description":"NonResourcePolicyRule is a predicate that matches non-resource requests according to their verb and the target non-resource URL. A NonResourcePolicyRule matches a request if and only if both (a) at least one member of verbs matches the request and (b) at least one member of nonResourceURLs matches the request.","type":"object","required":["verbs","nonResourceURLs"],"properties":{"nonResourceURLs":{"description":"`nonResourceURLs` is a set of url prefixes that a user should have access to and may not be empty. For example:\n  - \"/healthz\" is legal\n  - \"/hea*\" is illegal\n  - \"/hea\" is legal but matches nothing\n  - \"/hea/*\" also matches nothing\n  - \"/healthz/*\" matches all per-component health checks.\n\"*\" matches all non-resource urls. if it is present, it must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"verbs":{"description":"`verbs` is a list of matching verbs and may not be empty. \"*\" matches all verbs. If it is present, it must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"io.k8s.api.flowcontrol.v1beta3.PolicyRulesWithSubjects":{"description":"PolicyRulesWithSubjects prescribes a test that applies to a request to an apiserver. The test considers the subject making the request, the verb being requested, and the resource to be acted upon. This PolicyRulesWithSubjects matches a request if and only if both (a) at least one member of subjects matches the request and (b) at least one member of resourceRules or nonResourceRules matches the request.","type":"object","required":["subjects"],"properties":{"nonResourceRules":{"description":"`nonResourceRules` is a list of NonResourcePolicyRules that identify matching requests according to their verb and the target non-resource URL.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.NonResourcePolicyRule"},"x-kubernetes-list-type":"atomic"},"resourceRules":{"description":"`resourceRules` is a slice of ResourcePolicyRules that identify matching requests according to their verb and the target resource. At least one of `resourceRules` and `nonResourceRules` has to be non-empty.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.ResourcePolicyRule"},"x-kubernetes-list-type":"atomic"},"subjects":{"description":"subjects is the list of normal user, serviceaccount, or group that this rule cares about. There must be at least one member in this slice. A slice that includes both the system:authenticated and system:unauthenticated user groups matches every request. Required.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.Subject"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration":{"description":"PriorityLevelConfiguration represents the configuration of a priority level.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"`spec` is the specification of the desired behavior of a \"request-priority\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationSpec"},"status":{"description":"`status` is the current status of a \"request-priority\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationStatus"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfiguration","version":"v1beta3"}]},"io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationCondition":{"description":"PriorityLevelConfigurationCondition defines the condition of priority level.","type":"object","properties":{"lastTransitionTime":{"description":"`lastTransitionTime` is the last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"`message` is a human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"`reason` is a unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"`status` is the status of the condition. Can be True, False, Unknown. Required.","type":"string"},"type":{"description":"`type` is the type of the condition. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationList":{"description":"PriorityLevelConfigurationList is a list of PriorityLevelConfiguration objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"`items` is a list of request-priorities.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfiguration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"`metadata` is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"flowcontrol.apiserver.k8s.io","kind":"PriorityLevelConfigurationList","version":"v1beta3"}]},"io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationReference":{"description":"PriorityLevelConfigurationReference contains information that points to the \"request-priority\" being used.","type":"object","required":["name"],"properties":{"name":{"description":"`name` is the name of the priority level configuration being referenced Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationSpec":{"description":"PriorityLevelConfigurationSpec specifies the configuration of a priority level.","type":"object","required":["type"],"properties":{"exempt":{"description":"`exempt` specifies how requests are handled for an exempt priority level. This field MUST be empty if `type` is `\"Limited\"`. This field MAY be non-empty if `type` is `\"Exempt\"`. If empty and `type` is `\"Exempt\"` then the default values for `ExemptPriorityLevelConfiguration` apply.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.ExemptPriorityLevelConfiguration"},"limited":{"description":"`limited` specifies how requests are handled for a Limited priority level. This field must be non-empty if and only if `type` is `\"Limited\"`.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.LimitedPriorityLevelConfiguration"},"type":{"description":"`type` indicates whether this priority level is subject to limitation on request execution.  A value of `\"Exempt\"` means that requests of this priority level are not subject to a limit (and thus are never queued) and do not detract from the capacity made available to other priority levels.  A value of `\"Limited\"` means that (a) requests of this priority level _are_ subject to limits and (b) some of the server's limited capacity is made available exclusively to this priority level. Required.","type":"string"}},"x-kubernetes-unions":[{"discriminator":"type","fields-to-discriminateBy":{"exempt":"Exempt","limited":"Limited"}}]},"io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationStatus":{"description":"PriorityLevelConfigurationStatus represents the current state of a \"request-priority\".","type":"object","properties":{"conditions":{"description":"`conditions` is the current state of \"request-priority\".","type":"array","items":{"$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.PriorityLevelConfigurationCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.flowcontrol.v1beta3.QueuingConfiguration":{"description":"QueuingConfiguration holds the configuration parameters for queuing","type":"object","properties":{"handSize":{"description":"`handSize` is a small positive number that configures the shuffle sharding of requests into queues.  When enqueuing a request at this priority level the request's flow identifier (a string pair) is hashed and the hash value is used to shuffle the list of queues and deal a hand of the size specified here.  The request is put into one of the shortest queues in that hand. `handSize` must be no larger than `queues`, and should be significantly smaller (so that a few heavy flows do not saturate most of the queues).  See the user-facing documentation for more extensive guidance on setting this field.  This field has a default value of 8.","type":"integer","format":"int32"},"queueLengthLimit":{"description":"`queueLengthLimit` is the maximum number of requests allowed to be waiting in a given queue of this priority level at a time; excess requests are rejected.  This value must be positive.  If not specified, it will be defaulted to 50.","type":"integer","format":"int32"},"queues":{"description":"`queues` is the number of queues for this priority level. The queues exist independently at each apiserver. The value must be positive.  Setting it to 1 effectively precludes shufflesharding and thus makes the distinguisher method of associated flow schemas irrelevant.  This field has a default value of 64.","type":"integer","format":"int32"}}},"io.k8s.api.flowcontrol.v1beta3.ResourcePolicyRule":{"description":"ResourcePolicyRule is a predicate that matches some resource requests, testing the request's verb and the target resource. A ResourcePolicyRule matches a resource request if and only if: (a) at least one member of verbs matches the request, (b) at least one member of apiGroups matches the request, (c) at least one member of resources matches the request, and (d) either (d1) the request does not specify a namespace (i.e., `Namespace==\"\"`) and clusterScope is true or (d2) the request specifies a namespace and least one member of namespaces matches the request's namespace.","type":"object","required":["verbs","apiGroups","resources"],"properties":{"apiGroups":{"description":"`apiGroups` is a list of matching API groups and may not be empty. \"*\" matches all API groups and, if present, must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"clusterScope":{"description":"`clusterScope` indicates whether to match requests that do not specify a namespace (which happens either because the resource is not namespaced or the request targets all namespaces). If this field is omitted or false then the `namespaces` field must contain a non-empty list.","type":"boolean"},"namespaces":{"description":"`namespaces` is a list of target namespaces that restricts matches.  A request that specifies a target namespace matches only if either (a) this list contains that target namespace or (b) this list contains \"*\".  Note that \"*\" matches any specified namespace but does not match a request that _does not specify_ a namespace (see the `clusterScope` field for that). This list may be empty, but only if `clusterScope` is true.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"resources":{"description":"`resources` is a list of matching resources (i.e., lowercase and plural) with, if desired, subresource.  For example, [ \"services\", \"nodes/status\" ].  This list may not be empty. \"*\" matches all resources and, if present, must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"verbs":{"description":"`verbs` is a list of matching verbs and may not be empty. \"*\" matches all verbs and, if present, must be the only entry. Required.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"io.k8s.api.flowcontrol.v1beta3.ServiceAccountSubject":{"description":"ServiceAccountSubject holds detailed information for service-account-kind subject.","type":"object","required":["namespace","name"],"properties":{"name":{"description":"`name` is the name of matching ServiceAccount objects, or \"*\" to match regardless of name. Required.","type":"string"},"namespace":{"description":"`namespace` is the namespace of matching ServiceAccount objects. Required.","type":"string"}}},"io.k8s.api.flowcontrol.v1beta3.Subject":{"description":"Subject matches the originator of a request, as identified by the request authentication system. There are three ways of matching an originator; by user, group, or service account.","type":"object","required":["kind"],"properties":{"group":{"description":"`group` matches based on user group name.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.GroupSubject"},"kind":{"description":"`kind` indicates which one of the other fields is non-empty. Required","type":"string"},"serviceAccount":{"description":"`serviceAccount` matches ServiceAccounts.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.ServiceAccountSubject"},"user":{"description":"`user` matches based on username.","$ref":"#/definitions/io.k8s.api.flowcontrol.v1beta3.UserSubject"}},"x-kubernetes-unions":[{"discriminator":"kind","fields-to-discriminateBy":{"group":"Group","serviceAccount":"ServiceAccount","user":"User"}}]},"io.k8s.api.flowcontrol.v1beta3.UserSubject":{"description":"UserSubject holds detailed information for user-kind subject.","type":"object","required":["name"],"properties":{"name":{"description":"`name` is the username that matches, or \"*\" to match all usernames. Required.","type":"string"}}},"io.k8s.api.networking.v1.HTTPIngressPath":{"description":"HTTPIngressPath associates a path with a backend. Incoming urls matching the path are forwarded to the backend.","type":"object","required":["pathType","backend"],"properties":{"backend":{"description":"backend defines the referenced service endpoint to which the traffic will be forwarded to.","$ref":"#/definitions/io.k8s.api.networking.v1.IngressBackend"},"path":{"description":"path is matched against the path of an incoming request. Currently it can contain characters disallowed from the conventional \"path\" part of a URL as defined by RFC 3986. Paths must begin with a '/' and must be present when using PathType with value \"Exact\" or \"Prefix\".","type":"string"},"pathType":{"description":"pathType determines the interpretation of the path matching. PathType can be one of the following values: * Exact: Matches the URL path exactly. * Prefix: Matches based on a URL path prefix split by '/'. Matching is\n  done on a path element by element basis. A path element refers is the\n  list of labels in the path split by the '/' separator. A request is a\n  match for path p if every p is an element-wise prefix of p of the\n  request path. Note that if the last element of the path is a substring\n  of the last element in request path, it is not a match (e.g. /foo/bar\n  matches /foo/bar/baz, but does not match /foo/barbaz).\n* ImplementationSpecific: Interpretation of the Path matching is up to\n  the IngressClass. Implementations can treat this as a separate PathType\n  or treat it identically to Prefix or Exact path types.\nImplementations are required to support all path types.\n\nPossible enum values:\n - `\"Exact\"` matches the URL path exactly and with case sensitivity.\n - `\"ImplementationSpecific\"` matching is up to the IngressClass. Implementations can treat this as a separate PathType or treat it identically to Prefix or Exact path types.\n - `\"Prefix\"` matches based on a URL path prefix split by '/'. Matching is case sensitive and done on a path element by element basis. A path element refers to the list of labels in the path split by the '/' separator. A request is a match for path p if every p is an element-wise prefix of p of the request path. Note that if the last element of the path is a substring of the last element in request path, it is not a match (e.g. /foo/bar matches /foo/bar/baz, but does not match /foo/barbaz). If multiple matching paths exist in an Ingress spec, the longest matching path is given priority. Examples: - /foo/bar does not match requests to /foo/barbaz - /foo/bar matches request to /foo/bar and /foo/bar/baz - /foo and /foo/ both match requests to /foo and /foo/. If both paths are present in an Ingress spec, the longest matching path (/foo/) is given priority.","type":"string","enum":["Exact","ImplementationSpecific","Prefix"]}}},"io.k8s.api.networking.v1.HTTPIngressRuleValue":{"description":"HTTPIngressRuleValue is a list of http selectors pointing to backends. In the example: http://<host>/<path>?<searchpart> -> backend where where parts of the url correspond to RFC 3986, this resource will be used to match against everything after the last '/' and before the first '?' or '#'.","type":"object","required":["paths"],"properties":{"paths":{"description":"paths is a collection of paths that map requests to backends.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.HTTPIngressPath"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.IPBlock":{"description":"IPBlock describes a particular CIDR (Ex. \"192.168.1.0/24\",\"2001:db8::/64\") that is allowed to the pods matched by a NetworkPolicySpec's podSelector. The except entry describes CIDRs that should not be included within this rule.","type":"object","required":["cidr"],"properties":{"cidr":{"description":"cidr is a string representing the IPBlock Valid examples are \"192.168.1.0/24\" or \"2001:db8::/64\"","type":"string"},"except":{"description":"except is a slice of CIDRs that should not be included within an IPBlock Valid examples are \"192.168.1.0/24\" or \"2001:db8::/64\" Except values will be rejected if they are outside the cidr range","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.Ingress":{"description":"Ingress is a collection of rules that allow inbound connections to reach the endpoints defined by a backend. An Ingress can be configured to give services externally-reachable urls, load balance traffic, terminate SSL, offer name based virtual hosting etc.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the desired state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.networking.v1.IngressSpec"},"status":{"description":"status is the current state of the Ingress. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.networking.v1.IngressStatus"}},"x-kubernetes-group-version-kind":[{"group":"networking.k8s.io","kind":"Ingress","version":"v1"}]},"io.k8s.api.networking.v1.IngressBackend":{"description":"IngressBackend describes all endpoints for a given service and port.","type":"object","properties":{"resource":{"description":"resource is an ObjectRef to another Kubernetes resource in the namespace of the Ingress object. If resource is specified, a service.Name and service.Port must not be specified. This is a mutually exclusive setting with \"Service\".","$ref":"#/definitions/io.k8s.api.core.v1.TypedLocalObjectReference"},"service":{"description":"service references a service as a backend. This is a mutually exclusive setting with \"Resource\".","$ref":"#/definitions/io.k8s.api.networking.v1.IngressServiceBackend"}}},"io.k8s.api.networking.v1.IngressClass":{"description":"IngressClass represents the class of the Ingress, referenced by the Ingress Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be used to indicate that an IngressClass should be considered default. When a single IngressClass resource has this annotation set to true, new Ingress resources without a class specified will be assigned this default class.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the desired state of the IngressClass. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","$ref":"#/definitions/io.k8s.api.networking.v1.IngressClassSpec"}},"x-kubernetes-group-version-kind":[{"group":"networking.k8s.io","kind":"IngressClass","version":"v1"}]},"io.k8s.api.networking.v1.IngressClassList":{"description":"IngressClassList is a collection of IngressClasses.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of IngressClasses.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"networking.k8s.io","kind":"IngressClassList","version":"v1"}]},"io.k8s.api.networking.v1.IngressClassParametersReference":{"description":"IngressClassParametersReference identifies an API object. This can be used to specify a cluster or namespace-scoped resource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"apiGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"kind is the type of resource being referenced.","type":"string"},"name":{"description":"name is the name of resource being referenced.","type":"string"},"namespace":{"description":"namespace is the namespace of the resource being referenced. This field is required when scope is set to \"Namespace\" and must be unset when scope is set to \"Cluster\".","type":"string"},"scope":{"description":"scope represents if this refers to a cluster or namespace scoped resource. This may be set to \"Cluster\" (default) or \"Namespace\".","type":"string"}}},"io.k8s.api.networking.v1.IngressClassSpec":{"description":"IngressClassSpec provides information about the class of an Ingress.","type":"object","properties":{"controller":{"description":"controller refers to the name of the controller that should handle this class. This allows for different \"flavors\" that are controlled by the same controller. For example, you may have different parameters for the same implementing controller. This should be specified as a domain-prefixed path no more than 250 characters in length, e.g. \"acme.io/ingress-controller\". This field is immutable.","type":"string"},"parameters":{"description":"parameters is a link to a custom resource containing additional configuration for the controller. This is optional if the controller does not require extra parameters.","$ref":"#/definitions/io.k8s.api.networking.v1.IngressClassParametersReference"}}},"io.k8s.api.networking.v1.IngressList":{"description":"IngressList is a collection of Ingress.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of Ingress.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.Ingress"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"networking.k8s.io","kind":"IngressList","version":"v1"}]},"io.k8s.api.networking.v1.IngressLoadBalancerIngress":{"description":"IngressLoadBalancerIngress represents the status of a load-balancer ingress point.","type":"object","properties":{"hostname":{"description":"hostname is set for load-balancer ingress points that are DNS based.","type":"string"},"ip":{"description":"ip is set for load-balancer ingress points that are IP based.","type":"string"},"ports":{"description":"ports provides information about the ports exposed by this LoadBalancer.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressPortStatus"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.IngressLoadBalancerStatus":{"description":"IngressLoadBalancerStatus represents the status of a load-balancer.","type":"object","properties":{"ingress":{"description":"ingress is a list containing ingress points for the load-balancer.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressLoadBalancerIngress"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.IngressPortStatus":{"description":"IngressPortStatus represents the error condition of a service port","type":"object","required":["port","protocol"],"properties":{"error":{"description":"error is to record the problem with the service port The format of the error shall comply with the following rules: - built-in error values shall be specified in this file and those shall use\n  CamelCase names\n- cloud provider specific error values must have names that comply with the\n  format foo.example.com/CamelCase.","type":"string"},"port":{"description":"port is the port number of the ingress port.","type":"integer","format":"int32"},"protocol":{"description":"protocol is the protocol of the ingress port. The supported values are: \"TCP\", \"UDP\", \"SCTP\"\n\nPossible enum values:\n - `\"SCTP\"` is the SCTP protocol.\n - `\"TCP\"` is the TCP protocol.\n - `\"UDP\"` is the UDP protocol.","type":"string","enum":["SCTP","TCP","UDP"]}}},"io.k8s.api.networking.v1.IngressRule":{"description":"IngressRule represents the rules mapping the paths under a specified host to the related backend services. Incoming requests are first evaluated for a host match, then routed to the backend associated with the matching IngressRuleValue.","type":"object","properties":{"host":{"description":"host is the fully qualified domain name of a network host, as defined by RFC 3986. Note the following deviations from the \"host\" part of the URI as defined in RFC 3986: 1. IPs are not allowed. Currently an IngressRuleValue can only apply to\n   the IP in the Spec of the parent Ingress.\n2. The `:` delimiter is not respected because ports are not allowed.\n\t  Currently the port of an Ingress is implicitly :80 for http and\n\t  :443 for https.\nBoth these may change in the future. Incoming requests are matched against the host before the IngressRuleValue. If the host is unspecified, the Ingress routes all traffic based on the specified IngressRuleValue.\n\nhost can be \"precise\" which is a domain name without the terminating dot of a network host (e.g. \"foo.bar.com\") or \"wildcard\", which is a domain name prefixed with a single wildcard label (e.g. \"*.foo.com\"). The wildcard character '*' must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host == \"*\"). Requests will be matched against the Host field in the following way: 1. If host is precise, the request matches this rule if the http host header is equal to Host. 2. If host is a wildcard, then the request matches this rule if the http host header is to equal to the suffix (removing the first label) of the wildcard rule.","type":"string"},"http":{"$ref":"#/definitions/io.k8s.api.networking.v1.HTTPIngressRuleValue"}}},"io.k8s.api.networking.v1.IngressServiceBackend":{"description":"IngressServiceBackend references a Kubernetes Service as a Backend.","type":"object","required":["name"],"properties":{"name":{"description":"name is the referenced service. The service must exist in the same namespace as the Ingress object.","type":"string"},"port":{"description":"port of the referenced service. A port name or port number is required for a IngressServiceBackend.","$ref":"#/definitions/io.k8s.api.networking.v1.ServiceBackendPort"}}},"io.k8s.api.networking.v1.IngressSpec":{"description":"IngressSpec describes the Ingress the user wishes to exist.","type":"object","properties":{"defaultBackend":{"description":"defaultBackend is the backend that should handle requests that don't match any rule. If Rules are not specified, DefaultBackend must be specified. If DefaultBackend is not set, the handling of requests that do not match any of the rules will be up to the Ingress controller.","$ref":"#/definitions/io.k8s.api.networking.v1.IngressBackend"},"ingressClassName":{"description":"ingressClassName is the name of an IngressClass cluster resource. Ingress controller implementations use this field to know whether they should be serving this Ingress resource, by a transitive connection (controller -> IngressClass -> Ingress resource). Although the `kubernetes.io/ingress.class` annotation (simple constant name) was never formally defined, it was widely supported by Ingress controllers to create a direct binding between Ingress controller and Ingress resources. Newly created Ingress resources should prefer using the field. However, even though the annotation is officially deprecated, for backwards compatibility reasons, ingress controllers should still honor that annotation if present.","type":"string"},"rules":{"description":"rules is a list of host rules used to configure the Ingress. If unspecified, or no rule matches, all traffic is sent to the default backend.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressRule"},"x-kubernetes-list-type":"atomic"},"tls":{"description":"tls represents the TLS configuration. Currently the Ingress only supports a single TLS port, 443. If multiple members of this list specify different hosts, they will be multiplexed on the same port according to the hostname specified through the SNI TLS extension, if the ingress controller fulfilling the ingress supports SNI.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.IngressTLS"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.IngressStatus":{"description":"IngressStatus describe the current state of the Ingress.","type":"object","properties":{"loadBalancer":{"description":"loadBalancer contains the current status of the load-balancer.","$ref":"#/definitions/io.k8s.api.networking.v1.IngressLoadBalancerStatus"}}},"io.k8s.api.networking.v1.IngressTLS":{"description":"IngressTLS describes the transport layer security associated with an ingress.","type":"object","properties":{"hosts":{"description":"hosts is a list of hosts included in the TLS certificate. The values in this list must match the name/s used in the tlsSecret. Defaults to the wildcard host setting for the loadbalancer controller fulfilling this Ingress, if left unspecified.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"secretName":{"description":"secretName is the name of the secret used to terminate TLS traffic on port 443. Field is left optional to allow TLS routing based on SNI hostname alone. If the SNI host in a listener conflicts with the \"Host\" header field used by an IngressRule, the SNI host is used for termination and value of the \"Host\" header is used for routing.","type":"string"}}},"io.k8s.api.networking.v1.NetworkPolicy":{"description":"NetworkPolicy describes what network traffic is allowed for a set of Pods","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec represents the specification of the desired behavior for this NetworkPolicy.","$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicySpec"}},"x-kubernetes-group-version-kind":[{"group":"networking.k8s.io","kind":"NetworkPolicy","version":"v1"}]},"io.k8s.api.networking.v1.NetworkPolicyEgressRule":{"description":"NetworkPolicyEgressRule describes a particular set of traffic that is allowed out of pods matched by a NetworkPolicySpec's podSelector. The traffic must match both ports and to. This type is beta-level in 1.8","type":"object","properties":{"ports":{"description":"ports is a list of destination ports for outgoing traffic. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyPort"},"x-kubernetes-list-type":"atomic"},"to":{"description":"to is a list of destinations for outgoing traffic of pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all destinations (traffic not restricted by destination). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the to list.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyPeer"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.NetworkPolicyIngressRule":{"description":"NetworkPolicyIngressRule describes a particular set of traffic that is allowed to the pods matched by a NetworkPolicySpec's podSelector. The traffic must match both ports and from.","type":"object","properties":{"from":{"description":"from is a list of sources which should be able to access the pods selected for this rule. Items in this list are combined using a logical OR operation. If this field is empty or missing, this rule matches all sources (traffic not restricted by source). If this field is present and contains at least one item, this rule allows traffic only if the traffic matches at least one item in the from list.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyPeer"},"x-kubernetes-list-type":"atomic"},"ports":{"description":"ports is a list of ports which should be made accessible on the pods selected for this rule. Each item in this list is combined using a logical OR. If this field is empty or missing, this rule matches all ports (traffic not restricted by port). If this field is present and contains at least one item, then this rule allows traffic only if the traffic matches at least one port in the list.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyPort"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.NetworkPolicyList":{"description":"NetworkPolicyList is a list of NetworkPolicy objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of schema objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"networking.k8s.io","kind":"NetworkPolicyList","version":"v1"}]},"io.k8s.api.networking.v1.NetworkPolicyPeer":{"description":"NetworkPolicyPeer describes a peer to allow traffic to/from. Only certain combinations of fields are allowed","type":"object","properties":{"ipBlock":{"description":"ipBlock defines policy on a particular IPBlock. If this field is set then neither of the other fields can be.","$ref":"#/definitions/io.k8s.api.networking.v1.IPBlock"},"namespaceSelector":{"description":"namespaceSelector selects namespaces using cluster-scoped labels. This field follows standard label selector semantics; if present but empty, it selects all namespaces.\n\nIf podSelector is also set, then the NetworkPolicyPeer as a whole selects the pods matching podSelector in the namespaces selected by namespaceSelector. Otherwise it selects all pods in the namespaces selected by namespaceSelector.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"podSelector":{"description":"podSelector is a label selector which selects pods. This field follows standard label selector semantics; if present but empty, it selects all pods.\n\nIf namespaceSelector is also set, then the NetworkPolicyPeer as a whole selects the pods matching podSelector in the Namespaces selected by NamespaceSelector. Otherwise it selects the pods matching podSelector in the policy's own namespace.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"}}},"io.k8s.api.networking.v1.NetworkPolicyPort":{"description":"NetworkPolicyPort describes a port to allow traffic on","type":"object","properties":{"endPort":{"description":"endPort indicates that the range of ports from port to endPort if set, inclusive, should be allowed by the policy. This field cannot be defined if the port field is not defined or if the port field is defined as a named (string) port. The endPort must be equal or greater than port.","type":"integer","format":"int32"},"port":{"description":"port represents the port on the given protocol. This can either be a numerical or named port on a pod. If this field is not provided, this matches all port names and numbers. If present, only traffic on the specified protocol AND port will be matched.","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"protocol":{"description":"protocol represents the protocol (TCP, UDP, or SCTP) which traffic must match. If not specified, this field defaults to TCP.\n\nPossible enum values:\n - `\"SCTP\"` is the SCTP protocol.\n - `\"TCP\"` is the TCP protocol.\n - `\"UDP\"` is the UDP protocol.","type":"string","enum":["SCTP","TCP","UDP"]}}},"io.k8s.api.networking.v1.NetworkPolicySpec":{"description":"NetworkPolicySpec provides the specification of a NetworkPolicy","type":"object","required":["podSelector"],"properties":{"egress":{"description":"egress is a list of egress rules to be applied to the selected pods. Outgoing traffic is allowed if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic matches at least one egress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy limits all outgoing traffic (and serves solely to ensure that the pods it selects are isolated by default). This field is beta-level in 1.8","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyEgressRule"},"x-kubernetes-list-type":"atomic"},"ingress":{"description":"ingress is a list of ingress rules to be applied to the selected pods. Traffic is allowed to a pod if there are no NetworkPolicies selecting the pod (and cluster policy otherwise allows the traffic), OR if the traffic source is the pod's local node, OR if the traffic matches at least one ingress rule across all of the NetworkPolicy objects whose podSelector matches the pod. If this field is empty then this NetworkPolicy does not allow any traffic (and serves solely to ensure that the pods it selects are isolated by default)","type":"array","items":{"$ref":"#/definitions/io.k8s.api.networking.v1.NetworkPolicyIngressRule"},"x-kubernetes-list-type":"atomic"},"podSelector":{"description":"podSelector selects the pods to which this NetworkPolicy object applies. The array of ingress rules is applied to any pods selected by this field. Multiple network policies can select the same set of pods. In this case, the ingress rules for each are combined additively. This field is NOT optional and follows standard label selector semantics. An empty podSelector matches all pods in this namespace.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"policyTypes":{"description":"policyTypes is a list of rule types that the NetworkPolicy relates to. Valid options are [\"Ingress\"], [\"Egress\"], or [\"Ingress\", \"Egress\"]. If this field is not specified, it will default based on the existence of ingress or egress rules; policies that contain an egress section are assumed to affect egress, and all policies (whether or not they contain an ingress section) are assumed to affect ingress. If you want to write an egress-only policy, you must explicitly specify policyTypes [ \"Egress\" ]. Likewise, if you want to write a policy that specifies that no egress is allowed, you must specify a policyTypes value that include \"Egress\" (since such a policy would not include an egress section and would otherwise default to just [ \"Ingress\" ]). This field is beta-level in 1.8","type":"array","items":{"type":"string","enum":["Egress","Ingress"]},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.networking.v1.ServiceBackendPort":{"description":"ServiceBackendPort is the service port being referenced.","type":"object","properties":{"name":{"description":"name is the name of the port on the Service. This is a mutually exclusive setting with \"Number\".","type":"string"},"number":{"description":"number is the numerical port number (e.g. 80) on the Service. This is a mutually exclusive setting with \"Name\".","type":"integer","format":"int32"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.node.v1.Overhead":{"description":"Overhead structure represents the resource overhead associated with running a pod.","type":"object","properties":{"podFixed":{"description":"podFixed represents the fixed resource overhead associated with running a pod.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}}},"io.k8s.api.node.v1.RuntimeClass":{"description":"RuntimeClass defines a class of container runtime supported in the cluster. The RuntimeClass is used to determine which container runtime is used to run all containers in a pod. RuntimeClasses are manually defined by a user or cluster provisioner, and referenced in the PodSpec. The Kubelet is responsible for resolving the RuntimeClassName reference before running the pod.  For more details, see https://kubernetes.io/docs/concepts/containers/runtime-class/","type":"object","required":["handler"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"handler":{"description":"handler specifies the underlying runtime and configuration that the CRI implementation will use to handle pods of this class. The possible values are specific to the node & CRI configuration.  It is assumed that all handlers are available on every node, and handlers of the same name are equivalent on every node. For example, a handler called \"runc\" might specify that the runc OCI runtime (using native Linux containers) will be used to run the containers in a pod. The Handler must be lowercase, conform to the DNS Label (RFC 1123) requirements, and is immutable.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"overhead":{"description":"overhead represents the resource overhead associated with running a pod for a given RuntimeClass. For more details, see\n https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/","$ref":"#/definitions/io.k8s.api.node.v1.Overhead"},"scheduling":{"description":"scheduling holds the scheduling constraints to ensure that pods running with this RuntimeClass are scheduled to nodes that support it. If scheduling is nil, this RuntimeClass is assumed to be supported by all nodes.","$ref":"#/definitions/io.k8s.api.node.v1.Scheduling"}},"x-kubernetes-group-version-kind":[{"group":"node.k8s.io","kind":"RuntimeClass","version":"v1"}]},"io.k8s.api.node.v1.RuntimeClassList":{"description":"RuntimeClassList is a list of RuntimeClass objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is a list of schema objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.node.v1.RuntimeClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"node.k8s.io","kind":"RuntimeClassList","version":"v1"}]},"io.k8s.api.node.v1.Scheduling":{"description":"Scheduling specifies the scheduling constraints for nodes supporting a RuntimeClass.","type":"object","properties":{"nodeSelector":{"description":"nodeSelector lists labels that must be present on nodes that support this RuntimeClass. Pods using this RuntimeClass can only be scheduled to a node matched by this selector. The RuntimeClass nodeSelector is merged with a pod's existing nodeSelector. Any conflicts will cause the pod to be rejected in admission.","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"tolerations":{"description":"tolerations are appended (excluding duplicates) to pods running with this RuntimeClass during admission, effectively unioning the set of nodes tolerated by the pod and the RuntimeClass.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.Toleration"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.policy.v1.Eviction":{"description":"Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod.  A request to cause such an eviction is created by POSTing to .../pods/<pod name>/evictions.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"deleteOptions":{"description":"DeleteOptions may be provided","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"ObjectMeta describes the pod that is being evicted.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-group-version-kind":[{"group":"policy","kind":"Eviction","version":"v1"}]},"io.k8s.api.policy.v1.PodDisruptionBudget":{"description":"PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of the PodDisruptionBudget.","$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudgetSpec"},"status":{"description":"Most recently observed status of the PodDisruptionBudget.","$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudgetStatus"}},"x-kubernetes-group-version-kind":[{"group":"policy","kind":"PodDisruptionBudget","version":"v1"}]},"io.k8s.api.policy.v1.PodDisruptionBudgetList":{"description":"PodDisruptionBudgetList is a collection of PodDisruptionBudgets.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of PodDisruptionBudgets","type":"array","items":{"$ref":"#/definitions/io.k8s.api.policy.v1.PodDisruptionBudget"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policy","kind":"PodDisruptionBudgetList","version":"v1"}]},"io.k8s.api.policy.v1.PodDisruptionBudgetSpec":{"description":"PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.","type":"object","properties":{"maxUnavailable":{"description":"An eviction is allowed if at most \"maxUnavailable\" pods selected by \"selector\" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with \"minAvailable\".","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"minAvailable":{"description":"An eviction is allowed if at least \"minAvailable\" pods selected by \"selector\" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying \"100%\".","$ref":"#/definitions/io.k8s.apimachinery.pkg.util.intstr.IntOrString"},"selector":{"description":"Label query over pods whose evictions are managed by the disruption budget. A null selector will match no pods, while an empty ({}) selector will select all pods within the namespace.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector","x-kubernetes-patch-strategy":"replace"},"unhealthyPodEvictionPolicy":{"description":"UnhealthyPodEvictionPolicy defines the criteria for when unhealthy pods should be considered for eviction. Current implementation considers healthy pods, as pods that have status.conditions item with type=\"Ready\",status=\"True\".\n\nValid policies are IfHealthyBudget and AlwaysAllow. If no policy is specified, the default behavior will be used, which corresponds to the IfHealthyBudget policy.\n\nIfHealthyBudget policy means that running pods (status.phase=\"Running\"), but not yet healthy can be evicted only if the guarded application is not disrupted (status.currentHealthy is at least equal to status.desiredHealthy). Healthy pods will be subject to the PDB for eviction.\n\nAlwaysAllow policy means that all running pods (status.phase=\"Running\"), but not yet healthy are considered disrupted and can be evicted regardless of whether the criteria in a PDB is met. This means perspective running pods of a disrupted application might not get a chance to become healthy. Healthy pods will be subject to the PDB for eviction.\n\nAdditional policies may be added in the future. Clients making eviction decisions should disallow eviction of unhealthy pods if they encounter an unrecognized policy in this field.\n\nThis field is beta-level. The eviction API uses this field when the feature gate PDBUnhealthyPodEvictionPolicy is enabled (enabled by default).\n\nPossible enum values:\n - `\"AlwaysAllow\"` policy means that all running pods (status.phase=\"Running\"), but not yet healthy are considered disrupted and can be evicted regardless of whether the criteria in a PDB is met. This means perspective running pods of a disrupted application might not get a chance to become healthy. Healthy pods will be subject to the PDB for eviction.\n - `\"IfHealthyBudget\"` policy means that running pods (status.phase=\"Running\"), but not yet healthy can be evicted only if the guarded application is not disrupted (status.currentHealthy is at least equal to status.desiredHealthy). Healthy pods will be subject to the PDB for eviction.","type":"string","enum":["AlwaysAllow","IfHealthyBudget"]}}},"io.k8s.api.policy.v1.PodDisruptionBudgetStatus":{"description":"PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.","type":"object","required":["disruptionsAllowed","currentHealthy","desiredHealthy","expectedPods"],"properties":{"conditions":{"description":"Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute\n              the number of allowed disruptions. Therefore no disruptions are\n              allowed and the status of the condition will be False.\n- InsufficientPods: The number of pods are either at or below the number\n                    required by the PodDisruptionBudget. No disruptions are\n                    allowed and the status of the condition will be False.\n- SufficientPods: There are more pods than required by the PodDisruptionBudget.\n                  The condition will be True, and the number of allowed\n                  disruptions are provided by the disruptionsAllowed property.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Condition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"},"currentHealthy":{"description":"current number of healthy pods","type":"integer","format":"int32"},"desiredHealthy":{"description":"minimum desired number of healthy pods","type":"integer","format":"int32"},"disruptedPods":{"description":"DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}},"disruptionsAllowed":{"description":"Number of pod disruptions that are currently allowed.","type":"integer","format":"int32"},"expectedPods":{"description":"total number of pods counted by this disruption budget","type":"integer","format":"int32"},"observedGeneration":{"description":"Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.","type":"integer","format":"int64"}}},"io.k8s.api.rbac.v1.AggregationRule":{"description":"AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole","type":"object","properties":{"clusterRoleSelectors":{"description":"ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. If any of the selectors match, then the ClusterRole's permissions will be added","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.rbac.v1.AggregationRule_v2":{"description":"AggregationRule describes how to locate ClusterRoles to aggregate into the ClusterRole","type":"object","properties":{"clusterRoleSelectors":{"description":"ClusterRoleSelectors holds a list of selectors which will be used to find ClusterRoles and create the rules. If any of the selectors match, then the ClusterRole's permissions will be added","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v3"}}}},"io.k8s.api.rbac.v1.ClusterRole":{"description":"ClusterRole is a cluster level, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding or ClusterRoleBinding.","type":"object","properties":{"aggregationRule":{"description":"AggregationRule is an optional field that describes how to build the Rules for this ClusterRole. If AggregationRule is set, then the Rules are controller managed and direct changes to Rules will be stomped by the controller.","$ref":"#/definitions/io.k8s.api.rbac.v1.AggregationRule"},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"rules":{"description":"Rules holds all the PolicyRules for this ClusterRole","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.PolicyRule"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"ClusterRole","version":"v1"}]},"io.k8s.api.rbac.v1.ClusterRoleBinding":{"description":"ClusterRoleBinding references a ClusterRole, but not contain it.  It can reference a ClusterRole in the global namespace, and adds who information via Subject.","type":"object","required":["roleRef"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"roleRef":{"description":"RoleRef can only reference a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error. This field is immutable.","$ref":"#/definitions/io.k8s.api.rbac.v1.RoleRef"},"subjects":{"description":"Subjects holds references to the objects the role applies to.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Subject"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBinding","version":"v1"}]},"io.k8s.api.rbac.v1.ClusterRoleBindingList":{"description":"ClusterRoleBindingList is a collection of ClusterRoleBindings","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of ClusterRoleBindings","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRoleBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleBindingList","version":"v1"}]},"io.k8s.api.rbac.v1.ClusterRoleList":{"description":"ClusterRoleList is a collection of ClusterRoles","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of ClusterRoles","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.ClusterRole"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"ClusterRoleList","version":"v1"}]},"io.k8s.api.rbac.v1.PolicyRule":{"description":"PolicyRule holds information that describes a policy rule, but does not contain information about who the rule applies to or which namespace the rule applies to.","type":"object","required":["verbs"],"properties":{"apiGroups":{"description":"APIGroups is the name of the APIGroup that contains the resources.  If multiple API groups are specified, any action requested against one of the enumerated resources in any API group will be allowed. \"\" represents the core API group and \"*\" represents all API groups.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"nonResourceURLs":{"description":"NonResourceURLs is a set of partial urls that a user should have access to.  *s are allowed, but only as the full, final step in the path Since non-resource URLs are not namespaced, this field is only applicable for ClusterRoles referenced from a ClusterRoleBinding. Rules can either apply to API resources (such as \"pods\" or \"secrets\") or non-resource URL paths (such as \"/api\"),  but not both.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to. '*' represents all resources.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"verbs":{"description":"Verbs is a list of Verbs that apply to ALL the ResourceKinds contained in this rule. '*' represents all verbs.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.rbac.v1.Role":{"description":"Role is a namespaced, logical grouping of PolicyRules that can be referenced as a unit by a RoleBinding.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"rules":{"description":"Rules holds all the PolicyRules for this Role","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.PolicyRule"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"Role","version":"v1"}]},"io.k8s.api.rbac.v1.RoleBinding":{"description":"RoleBinding references a role, but does not contain it.  It can reference a Role in the same namespace or a ClusterRole in the global namespace. It adds who information via Subjects and namespace information by which namespace it exists in.  RoleBindings in a given namespace only have effect in that namespace.","type":"object","required":["roleRef"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"roleRef":{"description":"RoleRef can reference a Role in the current namespace or a ClusterRole in the global namespace. If the RoleRef cannot be resolved, the Authorizer must return an error. This field is immutable.","$ref":"#/definitions/io.k8s.api.rbac.v1.RoleRef"},"subjects":{"description":"Subjects holds references to the objects the role applies to.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Subject"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"RoleBinding","version":"v1"}]},"io.k8s.api.rbac.v1.RoleBindingList":{"description":"RoleBindingList is a collection of RoleBindings","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of RoleBindings","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.RoleBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"RoleBindingList","version":"v1"}]},"io.k8s.api.rbac.v1.RoleList":{"description":"RoleList is a collection of Roles","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is a list of Roles","type":"array","items":{"$ref":"#/definitions/io.k8s.api.rbac.v1.Role"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"rbac.authorization.k8s.io","kind":"RoleList","version":"v1"}]},"io.k8s.api.rbac.v1.RoleRef":{"description":"RoleRef contains information that points to the role being used","type":"object","required":["apiGroup","kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.rbac.v1.Subject":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference, or a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject. Defaults to \"\" for ServiceAccount subjects. Defaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\". If the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty the Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.api.scheduling.v1.PriorityClass":{"description":"PriorityClass defines mapping from a priority class name to the priority integer value. The value can be any valid integer.","type":"object","required":["value"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"description":{"description":"description is an arbitrary string that usually provides guidelines on when this priority class should be used.","type":"string"},"globalDefault":{"description":"globalDefault specifies whether this PriorityClass should be considered as the default priority for pods that do not have any priority class. Only one PriorityClass can be marked as `globalDefault`. However, if more than one PriorityClasses exists with their `globalDefault` field set to true, the smallest value of such global default PriorityClasses will be used as the default priority.","type":"boolean"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"preemptionPolicy":{"description":"preemptionPolicy is the Policy for preempting pods with lower priority. One of Never, PreemptLowerPriority. Defaults to PreemptLowerPriority if unset.\n\nPossible enum values:\n - `\"Never\"` means that pod never preempts other pods with lower priority.\n - `\"PreemptLowerPriority\"` means that pod can preempt other pods with lower priority.","type":"string","enum":["Never","PreemptLowerPriority"]},"value":{"description":"value represents the integer value of this priority class. This is the actual priority that pods receive when they have the name of this class in their pod spec.","type":"integer","format":"int32"}},"x-kubernetes-group-version-kind":[{"group":"scheduling.k8s.io","kind":"PriorityClass","version":"v1"}]},"io.k8s.api.scheduling.v1.PriorityClassList":{"description":"PriorityClassList is a collection of priority classes.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of PriorityClasses","type":"array","items":{"$ref":"#/definitions/io.k8s.api.scheduling.v1.PriorityClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"scheduling.k8s.io","kind":"PriorityClassList","version":"v1"}]},"io.k8s.api.storage.v1.CSIDriver":{"description":"CSIDriver captures information about a Container Storage Interface (CSI) volume driver deployed on the cluster. Kubernetes attach detach controller uses this object to determine whether attach is required. Kubelet uses this object to determine whether pod information needs to be passed on mount. CSIDriver objects are non-namespaced.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata. metadata.Name indicates the name of the CSI driver that this object refers to; it MUST be the same name returned by the CSI GetPluginName() call for that driver. The driver name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), dots (.), and alphanumerics between. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec represents the specification of the CSI Driver.","$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriverSpec"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"CSIDriver","version":"v1"}]},"io.k8s.api.storage.v1.CSIDriverList":{"description":"CSIDriverList is a collection of CSIDriver objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of CSIDriver","type":"array","items":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIDriver"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"CSIDriverList","version":"v1"}]},"io.k8s.api.storage.v1.CSIDriverSpec":{"description":"CSIDriverSpec is the specification of a CSIDriver.","type":"object","properties":{"attachRequired":{"description":"attachRequired indicates this CSI volume driver requires an attach operation (because it implements the CSI ControllerPublishVolume() method), and that the Kubernetes attach detach controller should call the attach volume interface which checks the volumeattachment status and waits until the volume is attached before proceeding to mounting. The CSI external-attacher coordinates with CSI volume driver and updates the volumeattachment status when the attach operation is complete. If the CSIDriverRegistry feature gate is enabled and the value is specified to false, the attach operation will be skipped. Otherwise the attach operation will be called.\n\nThis field is immutable.","type":"boolean"},"fsGroupPolicy":{"description":"fsGroupPolicy defines if the underlying volume supports changing ownership and permission of the volume before being mounted. Refer to the specific FSGroupPolicy values for additional details.\n\nThis field was immutable in Kubernetes < 1.29 and now is mutable.\n\nDefaults to ReadWriteOnceWithFSType, which will examine each volume to determine if Kubernetes should modify ownership and permissions of the volume. With the default policy the defined fsGroup will only be applied if a fstype is defined and the volume's access mode contains ReadWriteOnce.","type":"string"},"podInfoOnMount":{"description":"podInfoOnMount indicates this CSI volume driver requires additional pod information (like podName, podUID, etc.) during mount operations, if set to true. If set to false, pod information will not be passed on mount. Default is false.\n\nThe CSI driver specifies podInfoOnMount as part of driver deployment. If true, Kubelet will pass pod information as VolumeContext in the CSI NodePublishVolume() calls. The CSI driver is responsible for parsing and validating the information passed in as VolumeContext.\n\nThe following VolumeContext will be passed if podInfoOnMount is set to true. This list might grow, but the prefix will be used. \"csi.storage.k8s.io/pod.name\": pod.Name \"csi.storage.k8s.io/pod.namespace\": pod.Namespace \"csi.storage.k8s.io/pod.uid\": string(pod.UID) \"csi.storage.k8s.io/ephemeral\": \"true\" if the volume is an ephemeral inline volume\n                                defined by a CSIVolumeSource, otherwise \"false\"\n\n\"csi.storage.k8s.io/ephemeral\" is a new feature in Kubernetes 1.16. It is only required for drivers which support both the \"Persistent\" and \"Ephemeral\" VolumeLifecycleMode. Other drivers can leave pod info disabled and/or ignore this field. As Kubernetes 1.15 doesn't support this field, drivers can only support one mode when deployed on such a cluster and the deployment determines which mode that is, for example via a command line parameter of the driver.\n\nThis field was immutable in Kubernetes < 1.29 and now is mutable.","type":"boolean"},"requiresRepublish":{"description":"requiresRepublish indicates the CSI driver wants `NodePublishVolume` being periodically called to reflect any possible change in the mounted volume. This field defaults to false.\n\nNote: After a successful initial NodePublishVolume call, subsequent calls to NodePublishVolume should only update the contents of the volume. New mount points will not be seen by a running container.","type":"boolean"},"seLinuxMount":{"description":"seLinuxMount specifies if the CSI driver supports \"-o context\" mount option.\n\nWhen \"true\", the CSI driver must ensure that all volumes provided by this CSI driver can be mounted separately with different `-o context` options. This is typical for storage backends that provide volumes as filesystems on block devices or as independent shared volumes. Kubernetes will call NodeStage / NodePublish with \"-o context=xyz\" mount option when mounting a ReadWriteOncePod volume used in Pod that has explicitly set SELinux context. In the future, it may be expanded to other volume AccessModes. In any case, Kubernetes will ensure that the volume is mounted only with a single SELinux context.\n\nWhen \"false\", Kubernetes won't pass any special SELinux mount options to the driver. This is typical for volumes that represent subdirectories of a bigger shared filesystem.\n\nDefault is \"false\".","type":"boolean"},"storageCapacity":{"description":"storageCapacity indicates that the CSI volume driver wants pod scheduling to consider the storage capacity that the driver deployment will report by creating CSIStorageCapacity objects with capacity information, if set to true.\n\nThe check can be enabled immediately when deploying a driver. In that case, provisioning new volumes with late binding will pause until the driver deployment has published some suitable CSIStorageCapacity object.\n\nAlternatively, the driver can be deployed with the field unset or false and it can be flipped later when storage capacity information has been published.\n\nThis field was immutable in Kubernetes <= 1.22 and now is mutable.","type":"boolean"},"tokenRequests":{"description":"tokenRequests indicates the CSI driver needs pods' service account tokens it is mounting volume for to do necessary authentication. Kubelet will pass the tokens in VolumeContext in the CSI NodePublishVolume calls. The CSI driver should parse and validate the following VolumeContext: \"csi.storage.k8s.io/serviceAccount.tokens\": {\n  \"<audience>\": {\n    \"token\": <token>,\n    \"expirationTimestamp\": <expiration timestamp in RFC3339>,\n  },\n  ...\n}\n\nNote: Audience in each TokenRequest should be different and at most one token is empty string. To receive a new token after expiry, RequiresRepublish can be used to trigger NodePublishVolume periodically.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.storage.v1.TokenRequest"},"x-kubernetes-list-type":"atomic"},"volumeLifecycleModes":{"description":"volumeLifecycleModes defines what kind of volumes this CSI volume driver supports. The default if the list is empty is \"Persistent\", which is the usage defined by the CSI specification and implemented in Kubernetes via the usual PV/PVC mechanism.\n\nThe other mode is \"Ephemeral\". In this mode, volumes are defined inline inside the pod spec with CSIVolumeSource and their lifecycle is tied to the lifecycle of that pod. A driver has to be aware of this because it is only going to get a NodePublishVolume call for such a volume.\n\nFor more information about implementing this mode, see https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html A driver can support one or more of these modes and more modes may be added in the future.\n\nThis field is beta. This field is immutable.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"io.k8s.api.storage.v1.CSINode":{"description":"CSINode holds information about all CSI drivers installed on a node. CSI drivers do not need to create the CSINode object directly. As long as they use the node-driver-registrar sidecar container, the kubelet will automatically populate the CSINode object for the CSI driver as part of kubelet plugin registration. CSINode has the same name as a node. If the object is missing, it means either there are no CSI Drivers available on the node, or the Kubelet version is low enough that it doesn't create this object. CSINode has an OwnerReference that points to the corresponding node object.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. metadata.name must be the Kubernetes node name.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of CSINode","$ref":"#/definitions/io.k8s.api.storage.v1.CSINodeSpec"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"CSINode","version":"v1"}]},"io.k8s.api.storage.v1.CSINodeDriver":{"description":"CSINodeDriver holds information about the specification of one CSI driver installed on a node","type":"object","required":["name","nodeID"],"properties":{"allocatable":{"description":"allocatable represents the volume resources of a node that are available for scheduling. This field is beta.","$ref":"#/definitions/io.k8s.api.storage.v1.VolumeNodeResources"},"name":{"description":"name represents the name of the CSI driver that this object refers to. This MUST be the same name returned by the CSI GetPluginName() call for that driver.","type":"string"},"nodeID":{"description":"nodeID of the node from the driver point of view. This field enables Kubernetes to communicate with storage systems that do not share the same nomenclature for nodes. For example, Kubernetes may refer to a given node as \"node1\", but the storage system may refer to the same node as \"nodeA\". When Kubernetes issues a command to the storage system to attach a volume to a specific node, it can use this field to refer to the node name using the ID that the storage system will understand, e.g. \"nodeA\" instead of \"node1\". This field is required.","type":"string"},"topologyKeys":{"description":"topologyKeys is the list of keys supported by the driver. When a driver is initialized on a cluster, it provides a set of topology keys that it understands (e.g. \"company.com/zone\", \"company.com/region\"). When a driver is initialized on a node, it provides the same topology keys along with values. Kubelet will expose these topology keys as labels on its own node object. When Kubernetes does topology aware provisioning, it can use this list to determine which labels it should retrieve from the node object and pass back to the driver. It is possible for different nodes to use different topology keys. This can be empty if driver does not support topology.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.api.storage.v1.CSINodeList":{"description":"CSINodeList is a collection of CSINode objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of CSINode","type":"array","items":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINode"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"CSINodeList","version":"v1"}]},"io.k8s.api.storage.v1.CSINodeSpec":{"description":"CSINodeSpec holds information about the specification of all CSI drivers installed on a node","type":"object","required":["drivers"],"properties":{"drivers":{"description":"drivers is a list of information of all CSI Drivers existing on a node. If all drivers in the list are uninstalled, this can become empty.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSINodeDriver"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"name","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.api.storage.v1.CSIStorageCapacity":{"description":"CSIStorageCapacity stores the result of one CSI GetCapacity call. For a given StorageClass, this describes the available capacity in a particular topology segment.  This can be used when considering where to instantiate new PersistentVolumes.\n\nFor example this can express things like: - StorageClass \"standard\" has \"1234 GiB\" available in \"topology.kubernetes.io/zone=us-east1\" - StorageClass \"localssd\" has \"10 GiB\" available in \"kubernetes.io/hostname=knode-abc123\"\n\nThe following three cases all imply that no capacity is available for a certain combination: - no object exists with suitable topology and storage class name - such an object exists, but the capacity is unset - such an object exists, but the capacity is zero\n\nThe producer of these objects can decide which approach is more suitable.\n\nThey are consumed by the kube-scheduler when a CSI driver opts into capacity-aware scheduling with CSIDriverSpec.StorageCapacity. The scheduler compares the MaximumVolumeSize against the requested size of pending volumes to filter out unsuitable nodes. If MaximumVolumeSize is unset, it falls back to a comparison against the less precise Capacity. If that is also unset, the scheduler assumes that capacity is insufficient and tries some other node.","type":"object","required":["storageClassName"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"capacity":{"description":"capacity is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThe semantic is currently (CSI spec 1.2) defined as: The available capacity, in bytes, of the storage that can be used to provision volumes. If not set, that information is currently unavailable.","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"maximumVolumeSize":{"description":"maximumVolumeSize is the value reported by the CSI driver in its GetCapacityResponse for a GetCapacityRequest with topology and parameters that match the previous fields.\n\nThis is defined since CSI spec 1.4.0 as the largest size that may be used in a CreateVolumeRequest.capacity_range.required_bytes field to create a volume with the same parameters as those in GetCapacityRequest. The corresponding value in the Kubernetes API is ResourceRequirements.Requests in a volume claim.","$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"},"metadata":{"description":"Standard object's metadata. The name has no particular meaning. It must be a DNS subdomain (dots allowed, 253 characters). To ensure that there are no conflicts with other CSI drivers on the cluster, the recommendation is to use csisc-<uuid>, a generated name, or a reverse-domain name which ends with the unique CSI driver name.\n\nObjects are namespaced.\n\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"nodeTopology":{"description":"nodeTopology defines which nodes have access to the storage for which capacity was reported. If not set, the storage is not accessible from any node in the cluster. If empty, the storage is accessible from all nodes. This field is immutable.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector"},"storageClassName":{"description":"storageClassName represents the name of the StorageClass that the reported capacity applies to. It must meet the same requirements as the name of a StorageClass object (non-empty, DNS subdomain). If that object no longer exists, the CSIStorageCapacity object is obsolete and should be removed by its creator. This field is immutable.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"CSIStorageCapacity","version":"v1"}]},"io.k8s.api.storage.v1.CSIStorageCapacityList":{"description":"CSIStorageCapacityList is a collection of CSIStorageCapacity objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of CSIStorageCapacity objects.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.storage.v1.CSIStorageCapacity"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"CSIStorageCapacityList","version":"v1"}]},"io.k8s.api.storage.v1.StorageClass":{"description":"StorageClass describes the parameters for a class of storage for which PersistentVolumes can be dynamically provisioned.\n\nStorageClasses are non-namespaced; the name of the storage class according to etcd is in ObjectMeta.Name.","type":"object","required":["provisioner"],"properties":{"allowVolumeExpansion":{"description":"allowVolumeExpansion shows whether the storage class allow volume expand.","type":"boolean"},"allowedTopologies":{"description":"allowedTopologies restrict the node topologies where volumes can be dynamically provisioned. Each volume plugin defines its own supported topology specifications. An empty TopologySelectorTerm list means there is no topology restriction. This field is only honored by servers that enable the VolumeScheduling feature.","type":"array","items":{"$ref":"#/definitions/io.k8s.api.core.v1.TopologySelectorTerm"},"x-kubernetes-list-type":"atomic"},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"mountOptions":{"description":"mountOptions controls the mountOptions for dynamically provisioned PersistentVolumes of this storage class. e.g. [\"ro\", \"soft\"]. Not validated - mount of the PVs will simply fail if one is invalid.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"parameters":{"description":"parameters holds the parameters for the provisioner that should create volumes of this storage class.","type":"object","additionalProperties":{"type":"string"}},"provisioner":{"description":"provisioner indicates the type of the provisioner.","type":"string"},"reclaimPolicy":{"description":"reclaimPolicy controls the reclaimPolicy for dynamically provisioned PersistentVolumes of this storage class. Defaults to Delete.\n\nPossible enum values:\n - `\"Delete\"` means the volume will be deleted from Kubernetes on release from its claim. The volume plugin must support Deletion.\n - `\"Recycle\"` means the volume will be recycled back into the pool of unbound persistent volumes on release from its claim. The volume plugin must support Recycling.\n - `\"Retain\"` means the volume will be left in its current phase (Released) for manual reclamation by the administrator. The default policy is Retain.","type":"string","enum":["Delete","Recycle","Retain"]},"volumeBindingMode":{"description":"volumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound.  When unset, VolumeBindingImmediate is used. This field is only honored by servers that enable the VolumeScheduling feature.\n\nPossible enum values:\n - `\"Immediate\"` indicates that PersistentVolumeClaims should be immediately provisioned and bound. This is the default mode.\n - `\"WaitForFirstConsumer\"` indicates that PersistentVolumeClaims should not be provisioned and bound until the first Pod is created that references the PeristentVolumeClaim. The volume provisioning and binding will occur during Pod scheduing.","type":"string","enum":["Immediate","WaitForFirstConsumer"]}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"StorageClass","version":"v1"}]},"io.k8s.api.storage.v1.StorageClassList":{"description":"StorageClassList is a collection of storage classes.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of StorageClasses","type":"array","items":{"$ref":"#/definitions/io.k8s.api.storage.v1.StorageClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"StorageClassList","version":"v1"}]},"io.k8s.api.storage.v1.TokenRequest":{"description":"TokenRequest contains parameters of a service account token.","type":"object","required":["audience"],"properties":{"audience":{"description":"audience is the intended audience of the token in \"TokenRequestSpec\". It will default to the audiences of kube apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the duration of validity of the token in \"TokenRequestSpec\". It has the same default value of \"ExpirationSeconds\" in \"TokenRequestSpec\".","type":"integer","format":"int64"}}},"io.k8s.api.storage.v1.VolumeAttachment":{"description":"VolumeAttachment captures the intent to attach or detach the specified volume to/from the specified node.\n\nVolumeAttachment objects are non-namespaced.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec represents specification of the desired attach/detach volume behavior. Populated by the Kubernetes system.","$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachmentSpec"},"status":{"description":"status represents status of the VolumeAttachment request. Populated by the entity completing the attach or detach operation, i.e. the external-attacher.","$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachmentStatus"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"VolumeAttachment","version":"v1"}]},"io.k8s.api.storage.v1.VolumeAttachmentList":{"description":"VolumeAttachmentList is a collection of VolumeAttachment objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items is the list of VolumeAttachments","type":"array","items":{"$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachment"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"storage.k8s.io","kind":"VolumeAttachmentList","version":"v1"}]},"io.k8s.api.storage.v1.VolumeAttachmentSource":{"description":"VolumeAttachmentSource represents a volume that should be attached. Right now only PersistenVolumes can be attached via external attacher, in future we may allow also inline volumes in pods. Exactly one member can be set.","type":"object","properties":{"inlineVolumeSpec":{"description":"inlineVolumeSpec contains all the information necessary to attach a persistent volume defined by a pod's inline VolumeSource. This field is populated only for the CSIMigration feature. It contains translated fields from a pod's inline VolumeSource to a PersistentVolumeSpec. This field is beta-level and is only honored by servers that enabled the CSIMigration feature.","$ref":"#/definitions/io.k8s.api.core.v1.PersistentVolumeSpec"},"persistentVolumeName":{"description":"persistentVolumeName represents the name of the persistent volume to attach.","type":"string"}}},"io.k8s.api.storage.v1.VolumeAttachmentSpec":{"description":"VolumeAttachmentSpec is the specification of a VolumeAttachment request.","type":"object","required":["attacher","source","nodeName"],"properties":{"attacher":{"description":"attacher indicates the name of the volume driver that MUST handle this request. This is the name returned by GetPluginName().","type":"string"},"nodeName":{"description":"nodeName represents the node that the volume should be attached to.","type":"string"},"source":{"description":"source represents the volume that should be attached.","$ref":"#/definitions/io.k8s.api.storage.v1.VolumeAttachmentSource"}}},"io.k8s.api.storage.v1.VolumeAttachmentStatus":{"description":"VolumeAttachmentStatus is the status of a VolumeAttachment request.","type":"object","required":["attached"],"properties":{"attachError":{"description":"attachError represents the last error encountered during attach operation, if any. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.","$ref":"#/definitions/io.k8s.api.storage.v1.VolumeError"},"attached":{"description":"attached indicates the volume is successfully attached. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.","type":"boolean"},"attachmentMetadata":{"description":"attachmentMetadata is populated with any information returned by the attach operation, upon successful attach, that must be passed into subsequent WaitForAttach or Mount calls. This field must only be set by the entity completing the attach operation, i.e. the external-attacher.","type":"object","additionalProperties":{"type":"string"}},"detachError":{"description":"detachError represents the last error encountered during detach operation, if any. This field must only be set by the entity completing the detach operation, i.e. the external-attacher.","$ref":"#/definitions/io.k8s.api.storage.v1.VolumeError"}}},"io.k8s.api.storage.v1.VolumeError":{"description":"VolumeError captures an error encountered during a volume operation.","type":"object","properties":{"message":{"description":"message represents the error encountered during Attach or Detach operation. This string may be logged, so it should not contain sensitive information.","type":"string"},"time":{"description":"time represents the time the error was encountered.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"io.k8s.api.storage.v1.VolumeNodeResources":{"description":"VolumeNodeResources is a set of resource limits for scheduling of volumes.","type":"object","properties":{"count":{"description":"count indicates the maximum number of unique volumes managed by the CSI driver that can be used on a node. A volume that is both attached and mounted on a node is considered to be used once, not twice. The same rule applies for a unique volume that is shared among multiple pods on the same node. If this field is not specified, then the supported number of volumes on this node is unbounded.","type":"integer","format":"int32"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceColumnDefinition":{"description":"CustomResourceColumnDefinition specifies a column for server side printing.","type":"object","required":["name","type","jsonPath"],"properties":{"description":{"description":"description is a human readable description of this column.","type":"string"},"format":{"description":"format is an optional OpenAPI type definition for this column. The 'name' format is applied to the primary identifier column to assist in clients identifying column is the resource name. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"},"jsonPath":{"description":"jsonPath is a simple JSON path (i.e. with array notation) which is evaluated against each custom resource to produce the value for this column.","type":"string"},"name":{"description":"name is a human readable name for the column.","type":"string"},"priority":{"description":"priority is an integer defining the relative importance of this column compared to others. Lower numbers are considered higher priority. Columns that may be omitted in limited space scenarios should be given a priority greater than 0.","type":"integer","format":"int32"},"type":{"description":"type is an OpenAPI type definition for this column. See https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types for details.","type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceConversion":{"description":"CustomResourceConversion describes how to convert different versions of a CR.","type":"object","required":["strategy"],"properties":{"strategy":{"description":"strategy specifies how custom resources are converted between versions. Allowed values are: - `\"None\"`: The converter only change the apiVersion and would not touch any other field in the custom resource. - `\"Webhook\"`: API Server will call to an external webhook to do the conversion. Additional information\n  is needed for this option. This requires spec.preserveUnknownFields to be false, and spec.conversion.webhook to be set.","type":"string"},"webhook":{"description":"webhook describes how to call the conversion webhook. Required when `strategy` is set to `\"Webhook\"`.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.WebhookConversion"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition":{"description":"CustomResourceDefinition represents a resource that should be exposed on the API server.  Its name MUST be in the format <.spec.name>.<.spec.group>.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec describes how the user wants the resources to appear","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionSpec"},"status":{"description":"status indicates the actual state of the CustomResourceDefinition","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionStatus"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinition","version":"v1"}]},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionCondition":{"description":"CustomResourceDefinitionCondition contains details for the current condition of this pod.","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"message is a human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"reason is a unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"status is the status of the condition. Can be True, False, Unknown.","type":"string"},"type":{"description":"type is the type of the condition. Types include Established, NamesAccepted and Terminating.","type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionList":{"description":"CustomResourceDefinitionList is a list of CustomResourceDefinition objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"items list individual CustomResourceDefinition objects","type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinition"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiextensions.k8s.io","kind":"CustomResourceDefinitionList","version":"v1"}]},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionNames":{"description":"CustomResourceDefinitionNames indicates the names to serve this CustomResourceDefinition","type":"object","required":["plural","kind"],"properties":{"categories":{"description":"categories is a list of grouped resources this custom resource belongs to (e.g. 'all'). This is published in API discovery documents, and used by clients to support invocations like `kubectl get all`.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"kind is the serialized kind of the resource. It is normally CamelCase and singular. Custom resource instances will use this value as the `kind` attribute in API calls.","type":"string"},"listKind":{"description":"listKind is the serialized kind of the list for this resource. Defaults to \"`kind`List\".","type":"string"},"plural":{"description":"plural is the plural name of the resource to serve. The custom resources are served under `/apis/<group>/<version>/.../<plural>`. Must match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`). Must be all lowercase.","type":"string"},"shortNames":{"description":"shortNames are short names for the resource, exposed in API discovery documents, and used by clients to support invocations like `kubectl get <shortname>`. It must be all lowercase.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"singular":{"description":"singular is the singular name of the resource. It must be all lowercase. Defaults to lowercased `kind`.","type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionSpec":{"description":"CustomResourceDefinitionSpec describes how a user wants their resource to appear","type":"object","required":["group","names","scope","versions"],"properties":{"conversion":{"description":"conversion defines conversion settings for the CRD.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceConversion"},"group":{"description":"group is the API group of the defined custom resource. The custom resources are served under `/apis/<group>/...`. Must match the name of the CustomResourceDefinition (in the form `<names.plural>.<group>`).","type":"string"},"names":{"description":"names specify the resource and kind names for the custom resource.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionNames"},"preserveUnknownFields":{"description":"preserveUnknownFields indicates that object fields which are not specified in the OpenAPI schema should be preserved when persisting to storage. apiVersion, kind, metadata and known fields inside metadata are always preserved. This field is deprecated in favor of setting `x-preserve-unknown-fields` to true in `spec.versions[*].schema.openAPIV3Schema`. See https://kubernetes.io/docs/tasks/extend-kubernetes/custom-resources/custom-resource-definitions/#field-pruning for details.","type":"boolean"},"scope":{"description":"scope indicates whether the defined custom resource is cluster- or namespace-scoped. Allowed values are `Cluster` and `Namespaced`.","type":"string"},"versions":{"description":"versions is the list of all API versions of the defined custom resource. Version names are used to compute the order in which served versions are listed in API discovery. If the version string is \"kube-like\", it will sort above non \"kube-like\" version strings, which are ordered lexicographically. \"Kube-like\" versions start with a \"v\", then are followed by a number (the major version), then optionally the string \"alpha\" or \"beta\" and another number (the minor version). These are sorted first by GA > beta > alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.","type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionVersion"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionStatus":{"description":"CustomResourceDefinitionStatus indicates the state of the CustomResourceDefinition","type":"object","properties":{"acceptedNames":{"description":"acceptedNames are the names that are actually being used to serve discovery. They may be different than the names in spec.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionNames"},"conditions":{"description":"conditions indicate state for particular aspects of a CustomResourceDefinition","type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"storedVersions":{"description":"storedVersions lists all versions of CustomResources that were ever persisted. Tracking these versions allows a migration path for stored versions in etcd. The field is mutable so a migration controller can finish a migration to another version (ensuring no old objects are left in storage), and then remove the rest of the versions from this list. Versions may not be removed from `spec.versions` while they exist in this list.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceDefinitionVersion":{"description":"CustomResourceDefinitionVersion describes a version for CRD.","type":"object","required":["name","served","storage"],"properties":{"additionalPrinterColumns":{"description":"additionalPrinterColumns specifies additional columns returned in Table output. See https://kubernetes.io/docs/reference/using-api/api-concepts/#receiving-resources-as-tables for details. If no columns are specified, a single column displaying the age of the custom resource is used.","type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceColumnDefinition"},"x-kubernetes-list-type":"atomic"},"deprecated":{"description":"deprecated indicates this version of the custom resource API is deprecated. When set to true, API requests to this version receive a warning header in the server response. Defaults to false.","type":"boolean"},"deprecationWarning":{"description":"deprecationWarning overrides the default warning returned to API clients. May only be set when `deprecated` is true. The default warning indicates this version is deprecated and recommends use of the newest served version of equal or greater stability, if one exists.","type":"string"},"name":{"description":"name is the version name, e.g. “v1”, “v2beta1”, etc. The custom resources are served under this version at `/apis/<group>/<version>/...` if `served` is true.","type":"string"},"schema":{"description":"schema describes the schema used for validation, pruning, and defaulting of this version of the custom resource.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceValidation"},"selectableFields":{"description":"selectableFields specifies paths to fields that may be used as field selectors. A maximum of 8 selectable fields are allowed. See https://kubernetes.io/docs/concepts/overview/working-with-objects/field-selectors","type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.SelectableField"},"x-kubernetes-list-type":"atomic"},"served":{"description":"served is a flag enabling/disabling this version from being served via REST APIs","type":"boolean"},"storage":{"description":"storage indicates this version should be used when persisting custom resources to storage. There must be exactly one version with storage=true.","type":"boolean"},"subresources":{"description":"subresources specify what subresources this version of the defined custom resource have.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceSubresources"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceSubresourceScale":{"description":"CustomResourceSubresourceScale defines how to serve the scale subresource for CustomResources.","type":"object","required":["specReplicasPath","statusReplicasPath"],"properties":{"labelSelectorPath":{"description":"labelSelectorPath defines the JSON path inside of a custom resource that corresponds to Scale `status.selector`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status` or `.spec`. Must be set to work with HorizontalPodAutoscaler. The field pointed by this JSON path must be a string field (not a complex selector struct) which contains a serialized label selector in string form. More info: https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions#scale-subresource If there is no value under the given path in the custom resource, the `status.selector` value in the `/scale` subresource will default to the empty string.","type":"string"},"specReplicasPath":{"description":"specReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `spec.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.spec`. If there is no value under the given path in the custom resource, the `/scale` subresource will return an error on GET.","type":"string"},"statusReplicasPath":{"description":"statusReplicasPath defines the JSON path inside of a custom resource that corresponds to Scale `status.replicas`. Only JSON paths without the array notation are allowed. Must be a JSON Path under `.status`. If there is no value under the given path in the custom resource, the `status.replicas` value in the `/scale` subresource will default to 0.","type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceSubresourceStatus":{"description":"CustomResourceSubresourceStatus defines how to serve the status subresource for CustomResources. Status is represented by the `.status` JSON path inside of a CustomResource. When set, * exposes a /status subresource for the custom resource * PUT requests to the /status subresource take a custom resource object, and ignore changes to anything except the status stanza * PUT/POST/PATCH requests to the custom resource ignore changes to the status stanza","type":"object"},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceSubresources":{"description":"CustomResourceSubresources defines the status and scale subresources for CustomResources.","type":"object","properties":{"scale":{"description":"scale indicates the custom resource should serve a `/scale` subresource that returns an `autoscaling/v1` Scale object.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceSubresourceScale"},"status":{"description":"status indicates the custom resource should serve a `/status` subresource. When enabled: 1. requests to the custom resource primary endpoint ignore changes to the `status` stanza of the object. 2. requests to the custom resource `/status` subresource ignore changes to anything other than the `status` stanza of the object.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceSubresourceStatus"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.CustomResourceValidation":{"description":"CustomResourceValidation is a list of validation methods for CustomResources.","type":"object","properties":{"openAPIV3Schema":{"description":"openAPIV3Schema is the OpenAPI v3 schema to use for validation and pruning.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ExternalDocumentation":{"description":"ExternalDocumentation allows referencing an external resource for extended documentation.","type":"object","properties":{"description":{"type":"string"},"url":{"type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSON":{"description":"JSON represents any valid JSON value. These types are supported: bool, int64, float64, string, []interface{}, map[string]interface{} and nil."},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps":{"description":"JSONSchemaProps is a JSON-Schema following Specification Draft 4 (http://json-schema.org/).","type":"object","properties":{"$ref":{"type":"string"},"$schema":{"type":"string"},"additionalItems":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaPropsOrBool"},"additionalProperties":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaPropsOrBool"},"allOf":{"type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"},"x-kubernetes-list-type":"atomic"},"anyOf":{"type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"},"x-kubernetes-list-type":"atomic"},"default":{"description":"default is a default value for undefined object fields. Defaulting is a beta feature under the CustomResourceDefaulting feature gate. Defaulting requires spec.preserveUnknownFields to be false.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSON"},"definitions":{"type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"}},"dependencies":{"type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaPropsOrStringArray"}},"description":{"type":"string"},"enum":{"type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSON"},"x-kubernetes-list-type":"atomic"},"example":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSON"},"exclusiveMaximum":{"type":"boolean"},"exclusiveMinimum":{"type":"boolean"},"externalDocs":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ExternalDocumentation"},"format":{"description":"format is an OpenAPI v3 format string. Unknown formats are ignored. The following formats are validated:\n\n- bsonobjectid: a bson object ID, i.e. a 24 characters hex string - uri: an URI as parsed by Golang net/url.ParseRequestURI - email: an email address as parsed by Golang net/mail.ParseAddress - hostname: a valid representation for an Internet host name, as defined by RFC 1034, section 3.1 [RFC1034]. - ipv4: an IPv4 IP as parsed by Golang net.ParseIP - ipv6: an IPv6 IP as parsed by Golang net.ParseIP - cidr: a CIDR as parsed by Golang net.ParseCIDR - mac: a MAC address as parsed by Golang net.ParseMAC - uuid: an UUID that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid3: an UUID3 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?3[0-9a-f]{3}-?[0-9a-f]{4}-?[0-9a-f]{12}$ - uuid4: an UUID4 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?4[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - uuid5: an UUID5 that allows uppercase defined by the regex (?i)^[0-9a-f]{8}-?[0-9a-f]{4}-?5[0-9a-f]{3}-?[89ab][0-9a-f]{3}-?[0-9a-f]{12}$ - isbn: an ISBN10 or ISBN13 number string like \"0321751043\" or \"978-0321751041\" - isbn10: an ISBN10 number string like \"0321751043\" - isbn13: an ISBN13 number string like \"978-0321751041\" - creditcard: a credit card number defined by the regex ^(?:4[0-9]{12}(?:[0-9]{3})?|5[1-5][0-9]{14}|6(?:011|5[0-9][0-9])[0-9]{12}|3[47][0-9]{13}|3(?:0[0-5]|[68][0-9])[0-9]{11}|(?:2131|1800|35\\d{3})\\d{11})$ with any non digit characters mixed in - ssn: a U.S. social security number following the regex ^\\d{3}[- ]?\\d{2}[- ]?\\d{4}$ - hexcolor: an hexadecimal color code like \"#FFFFFF: following the regex ^#?([0-9a-fA-F]{3}|[0-9a-fA-F]{6})$ - rgbcolor: an RGB color code like rgb like \"rgb(255,255,2559\" - byte: base64 encoded binary data - password: any kind of string - date: a date string like \"2006-01-02\" as defined by full-date in RFC3339 - duration: a duration string like \"22 ns\" as parsed by Golang time.ParseDuration or compatible with Scala duration format - datetime: a date time string like \"2014-12-15T19:30:20.000Z\" as defined by date-time in RFC3339.","type":"string"},"id":{"type":"string"},"items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaPropsOrArray"},"maxItems":{"type":"integer","format":"int64"},"maxLength":{"type":"integer","format":"int64"},"maxProperties":{"type":"integer","format":"int64"},"maximum":{"type":"number","format":"double"},"minItems":{"type":"integer","format":"int64"},"minLength":{"type":"integer","format":"int64"},"minProperties":{"type":"integer","format":"int64"},"minimum":{"type":"number","format":"double"},"multipleOf":{"type":"number","format":"double"},"not":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"},"nullable":{"type":"boolean"},"oneOf":{"type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"},"x-kubernetes-list-type":"atomic"},"pattern":{"type":"string"},"patternProperties":{"type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"}},"properties":{"type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaProps"}},"required":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"title":{"type":"string"},"type":{"type":"string"},"uniqueItems":{"type":"boolean"},"x-kubernetes-embedded-resource":{"description":"x-kubernetes-embedded-resource defines that the value is an embedded Kubernetes runtime.Object, with TypeMeta and ObjectMeta. The type must be object. It is allowed to further restrict the embedded object. kind, apiVersion and metadata are validated automatically. x-kubernetes-preserve-unknown-fields is allowed to be true, but does not have to be if the object is fully specified (up to kind, apiVersion, metadata).","type":"boolean"},"x-kubernetes-int-or-string":{"description":"x-kubernetes-int-or-string specifies that this value is either an integer or a string. If this is true, an empty type is allowed and type as child of anyOf is permitted if following one of the following patterns:\n\n1) anyOf:\n   - type: integer\n   - type: string\n2) allOf:\n   - anyOf:\n     - type: integer\n     - type: string\n   - ... zero or more","type":"boolean"},"x-kubernetes-list-map-keys":{"description":"x-kubernetes-list-map-keys annotates an array with the x-kubernetes-list-type `map` by specifying the keys used as the index of the map.\n\nThis tag MUST only be used on lists that have the \"x-kubernetes-list-type\" extension set to \"map\". Also, the values specified for this attribute must be a scalar typed field of the child structure (no nesting is supported).\n\nThe properties specified must either be required or have a default value, to ensure those properties are present for all list items.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"x-kubernetes-list-type":{"description":"x-kubernetes-list-type annotates an array to further describe its topology. This extension must only be used on lists and may have 3 possible values:\n\n1) `atomic`: the list is treated as a single entity, like a scalar.\n     Atomic lists will be entirely replaced when updated. This extension\n     may be used on any type of list (struct, scalar, ...).\n2) `set`:\n     Sets are lists that must not have multiple items with the same value. Each\n     value must be a scalar, an object with x-kubernetes-map-type `atomic` or an\n     array with x-kubernetes-list-type `atomic`.\n3) `map`:\n     These lists are like maps in that their elements have a non-index key\n     used to identify them. Order is preserved upon merge. The map tag\n     must only be used on a list with elements of type object.\nDefaults to atomic for arrays.","type":"string"},"x-kubernetes-map-type":{"description":"x-kubernetes-map-type annotates an object to further describe its topology. This extension must only be used when type is object and may have 2 possible values:\n\n1) `granular`:\n     These maps are actual maps (key-value pairs) and each fields are independent\n     from each other (they can each be manipulated by separate actors). This is\n     the default behaviour for all maps.\n2) `atomic`: the list is treated as a single entity, like a scalar.\n     Atomic maps will be entirely replaced when updated.","type":"string"},"x-kubernetes-preserve-unknown-fields":{"description":"x-kubernetes-preserve-unknown-fields stops the API server decoding step from pruning fields which are not specified in the validation schema. This affects fields recursively, but switches back to normal pruning behaviour if nested properties or additionalProperties are specified in the schema. This can either be true or undefined. False is forbidden.","type":"boolean"},"x-kubernetes-validations":{"description":"x-kubernetes-validations describes a list of validation rules written in the CEL expression language.","type":"array","items":{"$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ValidationRule"},"x-kubernetes-list-map-keys":["rule"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"rule","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaPropsOrArray":{"description":"JSONSchemaPropsOrArray represents a value that can either be a JSONSchemaProps or an array of JSONSchemaProps. Mainly here for serialization purposes."},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaPropsOrBool":{"description":"JSONSchemaPropsOrBool represents JSONSchemaProps or a boolean value. Defaults to true for the boolean property."},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.JSONSchemaPropsOrStringArray":{"description":"JSONSchemaPropsOrStringArray represents a JSONSchemaProps or a string array."},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.SelectableField":{"description":"SelectableField specifies the JSON path of a field that may be used with field selectors.","type":"object","required":["jsonPath"],"properties":{"jsonPath":{"description":"jsonPath is a simple JSON path which is evaluated against each custom resource to produce a field selector value. Only JSON paths without the array notation are allowed. Must point to a field of type string, boolean or integer. Types with enum values and strings with formats are allowed. If jsonPath refers to absent field in a resource, the jsonPath evaluates to an empty string. Must not point to metdata fields. Required.","type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ServiceReference":{"description":"ServiceReference holds a reference to Service.legacy.k8s.io","type":"object","required":["namespace","name"],"properties":{"name":{"description":"name is the name of the service. Required","type":"string"},"namespace":{"description":"namespace is the namespace of the service. Required","type":"string"},"path":{"description":"path is an optional URL path at which the webhook will be contacted.","type":"string"},"port":{"description":"port is an optional service port at which the webhook will be contacted. `port` should be a valid port number (1-65535, inclusive). Defaults to 443 for backward compatibility.","type":"integer","format":"int32"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ValidationRule":{"description":"ValidationRule describes a validation rule written in the CEL expression language.","type":"object","required":["rule"],"properties":{"fieldPath":{"description":"fieldPath represents the field path returned when the validation fails. It must be a relative JSON path (i.e. with array notation) scoped to the location of this x-kubernetes-validations extension in the schema and refer to an existing field. e.g. when validation checks if a specific attribute `foo` under a map `testMap`, the fieldPath could be set to `.testMap.foo` If the validation checks two lists must have unique attributes, the fieldPath could be set to either of the list: e.g. `.testList` It does not support list numeric index. It supports child operation to refer to an existing field currently. Refer to [JSONPath support in Kubernetes](https://kubernetes.io/docs/reference/kubectl/jsonpath/) for more info. Numeric index of array is not supported. For field name which contains special characters, use `['specialName']` to refer the field name. e.g. for attribute `foo.34$` appears in a list `testList`, the fieldPath could be set to `.testList['foo.34$']`","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Rule contains line breaks. The message must not contain line breaks. If unset, the message is \"failed rule: {Rule}\". e.g. \"must be a URL with the host matching spec.host\"","type":"string"},"messageExpression":{"description":"MessageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails. Since messageExpression is used as a failure message, it must evaluate to a string. If both message and messageExpression are present on a rule, then messageExpression will be used if validation fails. If messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced as if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string that contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and the fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged. messageExpression has access to all the same variables as the rule; the only difference is the return type. Example: \"x must be less than max (\"+string(self.max)+\")\"","type":"string"},"optionalOldSelf":{"description":"optionalOldSelf is used to opt a transition rule into evaluation even when the object is first created, or if the old object is missing the value.\n\nWhen enabled `oldSelf` will be a CEL optional whose value will be `None` if there is no old value, or when the object is initially created.\n\nYou may check for presence of oldSelf using `oldSelf.hasValue()` and unwrap it after checking using `oldSelf.value()`. Check the CEL documentation for Optional types for more information: https://pkg.go.dev/github.com/google/cel-go/cel#OptionalTypes\n\nMay not be set unless `oldSelf` is used in `rule`.","type":"boolean"},"reason":{"description":"reason provides a machine-readable validation failure reason that is returned to the caller when a request fails this validation rule. The HTTP status code returned to the caller will match the reason of the reason of the first failed validation rule. The currently supported reasons are: \"FieldValueInvalid\", \"FieldValueForbidden\", \"FieldValueRequired\", \"FieldValueDuplicate\". If not set, default to use \"FieldValueInvalid\". All future added reasons must be accepted by clients when reading this value and unknown reasons should be treated as FieldValueInvalid.\n\nPossible enum values:\n - `\"FieldValueDuplicate\"` is used to report collisions of values that must be unique (e.g. unique IDs).\n - `\"FieldValueForbidden\"` is used to report valid (as per formatting rules) values which would be accepted under some conditions, but which are not permitted by the current conditions (such as security policy).\n - `\"FieldValueInvalid\"` is used to report malformed values (e.g. failed regex match, too long, out of bounds).\n - `\"FieldValueRequired\"` is used to report required values that are not provided (e.g. empty strings, null values, or empty arrays).","type":"string","enum":["FieldValueDuplicate","FieldValueForbidden","FieldValueInvalid","FieldValueRequired"]},"rule":{"description":"Rule represents the expression which will be evaluated by CEL. ref: https://github.com/google/cel-spec The Rule is scoped to the location of the x-kubernetes-validations extension in the schema. The `self` variable in the CEL expression is bound to the scoped value. Example: - Rule scoped to the root of a resource with a status subresource: {\"rule\": \"self.status.actual <= self.spec.maxDesired\"}\n\nIf the Rule is scoped to an object with properties, the accessible properties of the object are field selectable via `self.field` and field presence can be checked via `has(self.field)`. Null valued fields are treated as absent fields in CEL expressions. If the Rule is scoped to an object with additionalProperties (i.e. a map) the value of the map are accessible via `self[mapKey]`, map containment can be checked via `mapKey in self` and all entries of the map are accessible via CEL macros and functions such as `self.all(...)`. If the Rule is scoped to an array, the elements of the array are accessible via `self[i]` and also by macros and functions. If the Rule is scoped to a scalar, `self` is bound to the scalar value. Examples: - Rule scoped to a map of objects: {\"rule\": \"self.components['Widget'].priority < 10\"} - Rule scoped to a list of integers: {\"rule\": \"self.values.all(value, value >= 0 && value < 100)\"} - Rule scoped to a string value: {\"rule\": \"self.startsWith('kube')\"}\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the object and from any x-kubernetes-embedded-resource annotated objects. No other metadata properties are accessible.\n\nUnknown data preserved in custom resources via x-kubernetes-preserve-unknown-fields is not accessible in CEL expressions. This includes: - Unknown field values that are preserved by object schemas with x-kubernetes-preserve-unknown-fields. - Object properties where the property schema is of an \"unknown type\". An \"unknown type\" is recursively defined as:\n  - A schema with no type and x-kubernetes-preserve-unknown-fields set to true\n  - An array where the items schema is of an \"unknown type\"\n  - An object where the additionalProperties schema is of an \"unknown type\"\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible. Accessible property names are escaped according to the following rules when accessed in the expression: - '__' escapes to '__underscores__' - '.' escapes to '__dot__' - '-' escapes to '__dash__' - '/' escapes to '__slash__' - Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Rule accessing a property named \"namespace\": {\"rule\": \"self.__namespace__ > 0\"}\n  - Rule accessing a property named \"x-prop\": {\"rule\": \"self.x__dash__prop > 0\"}\n  - Rule accessing a property named \"redact__d\": {\"rule\": \"self.redact__underscores__d > 0\"}\n\nEquality on arrays with x-kubernetes-list-type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1]. Concatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\n\nIf `rule` makes use of the `oldSelf` variable it is implicitly a `transition rule`.\n\nBy default, the `oldSelf` variable is the same type as `self`. When `optionalOldSelf` is true, the `oldSelf` variable is a CEL optional\n variable whose value() is the same type as `self`.\nSee the documentation for the `optionalOldSelf` field for details.\n\nTransition rules by default are applied only on UPDATE requests and are skipped if an old value could not be found. You can opt a transition rule into unconditional evaluation by setting `optionalOldSelf` to true.","type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.WebhookClientConfig":{"description":"WebhookClientConfig contains the information to make a TLS connection with the webhook.","type":"object","properties":{"caBundle":{"description":"caBundle is a PEM encoded CA bundle which will be used to validate the webhook's server certificate. If unspecified, system trust roots on the apiserver are used.","type":"string","format":"byte"},"service":{"description":"service is a reference to the service for this webhook. Either service or url must be specified.\n\nIf the webhook is running within the cluster, then you should use `service`.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.ServiceReference"},"url":{"description":"url gives the location of the webhook, in standard URL form (`scheme://host:port/path`). Exactly one of `url` or `service` must be specified.\n\nThe `host` should not refer to a service running in the cluster; use the `service` field instead. The host might be resolved via external DNS in some apiservers (e.g., `kube-apiserver` cannot resolve in-cluster DNS as that would be a layering violation). `host` may also be an IP address.\n\nPlease note that using `localhost` or `127.0.0.1` as a `host` is risky unless you take great care to run this webhook on all hosts which run an apiserver which might need to make calls to this webhook. Such installs are likely to be non-portable, i.e., not easy to turn up in a new cluster.\n\nThe scheme must be \"https\"; the URL must begin with \"https://\".\n\nA path is optional, and if present may be any string permissible in a URL. You may use the path to pass an arbitrary string to the webhook, for example, a cluster identifier.\n\nAttempting to use a user or basic auth e.g. \"user:password@\" is not allowed. Fragments (\"#...\") and query parameters (\"?...\") are not allowed, either.","type":"string"}}},"io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.WebhookConversion":{"description":"WebhookConversion describes how to call a conversion webhook","type":"object","required":["conversionReviewVersions"],"properties":{"clientConfig":{"description":"clientConfig is the instructions for how to call the webhook if strategy is `Webhook`.","$ref":"#/definitions/io.k8s.apiextensions-apiserver.pkg.apis.apiextensions.v1.WebhookClientConfig"},"conversionReviewVersions":{"description":"conversionReviewVersions is an ordered list of preferred `ConversionReview` versions the Webhook expects. The API server will use the first version in the list which it supports. If none of the versions specified in this list are supported by API server, conversion will fail for the custom resource. If a persisted Webhook configuration specifies allowed versions and does not include any versions known to the API Server, calls to the webhook will fail.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.apimachinery.pkg.api.resource.Quantity":{"description":"Quantity is a fixed-point representation of a number. It provides convenient marshaling/unmarshaling in JSON and YAML, in addition to String() and AsInt64() accessors.\n\nThe serialization format is:\n\n``` <quantity>        ::= <signedNumber><suffix>\n\n\t(Note that <suffix> may be empty, from the \"\" case in <decimalSI>.)\n\n<digit>           ::= 0 | 1 | ... | 9 <digits>          ::= <digit> | <digit><digits> <number>          ::= <digits> | <digits>.<digits> | <digits>. | .<digits> <sign>            ::= \"+\" | \"-\" <signedNumber>    ::= <number> | <sign><number> <suffix>          ::= <binarySI> | <decimalExponent> | <decimalSI> <binarySI>        ::= Ki | Mi | Gi | Ti | Pi | Ei\n\n\t(International System of units; See: http://physics.nist.gov/cuu/Units/binary.html)\n\n<decimalSI>       ::= m | \"\" | k | M | G | T | P | E\n\n\t(Note that 1024 = 1Ki but 1000 = 1k; I didn't choose the capitalization.)\n\n<decimalExponent> ::= \"e\" <signedNumber> | \"E\" <signedNumber> ```\n\nNo matter which of the three exponent forms is used, no quantity may represent a number greater than 2^63-1 in magnitude, nor may it have more than 3 decimal places. Numbers larger or more precise will be capped or rounded up. (E.g.: 0.1m will rounded up to 1m.) This may be extended in the future if we require larger or smaller quantities.\n\nWhen a Quantity is parsed from a string, it will remember the type of suffix it had, and will use the same type again when it is serialized.\n\nBefore serializing, Quantity will be put in \"canonical form\". This means that Exponent/suffix will be adjusted up or down (with a corresponding increase or decrease in Mantissa) such that:\n\n- No precision is lost - No fractional digits will be emitted - The exponent (or suffix) is as large as possible.\n\nThe sign will be omitted unless the number is negative.\n\nExamples:\n\n- 1.5 will be serialized as \"1500m\" - 1.5Gi will be serialized as \"1536Mi\"\n\nNote that the quantity will NEVER be internally represented by a floating point number. That is the whole point of this exercise.\n\nNon-canonical values will still parse as long as they are well formed, but will be re-emitted in their canonical form. (So always use canonical form, or don't diff.)\n\nThis format is intended to make it difficult to use these numbers without writing some sort of special handling code in the hopes that that will cause implementors to also use a fixed point implementation.","type":"string"},"io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup":{"description":"APIGroup contains the name, the supported versions, and the preferred version of a group.","type":"object","required":["name","versions"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"name is the name of the group.","type":"string"},"preferredVersion":{"description":"preferredVersion is the version preferred by the API server, which probably is the storage version.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.GroupVersionForDiscovery"},"serverAddressByClientCIDRs":{"description":"a map of client CIDR to server address that is serving this group. This is to help clients reach servers in the most network-efficient way possible. Clients can use the appropriate server address as per the CIDR that they match. In case of multiple matches, clients should use the longest matching CIDR. The server returns only those CIDRs that it thinks that the client can match. For example: the master will return an internal IP CIDR only, if the client reaches the server using an internal IP. Server looks at X-Forwarded-For header or X-Real-Ip header or request.RemoteAddr (in that order) to get the client IP.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ServerAddressByClientCIDR"},"x-kubernetes-list-type":"atomic"},"versions":{"description":"versions are the versions supported in this group.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.GroupVersionForDiscovery"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIGroup","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIGroupList":{"description":"APIGroupList is a list of APIGroup, to allow clients to discover the API at /apis.","type":"object","required":["groups"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groups":{"description":"groups is a list of APIGroup.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIGroup"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIGroupList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResource":{"description":"APIResource specifies the name of a resource and whether it is namespaced.","type":"object","required":["name","singularName","namespaced","kind","verbs"],"properties":{"categories":{"description":"categories is a list of the grouped resources this resource belongs to (e.g. 'all')","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"group":{"description":"group is the preferred group of the resource.  Empty implies the group of the containing resource list. For subresources, this may have a different value, for example: Scale\".","type":"string"},"kind":{"description":"kind is the kind for the resource (e.g. 'Foo' is the kind for a resource 'foo')","type":"string"},"name":{"description":"name is the plural name of the resource.","type":"string"},"namespaced":{"description":"namespaced indicates if a resource is namespaced or not.","type":"boolean"},"shortNames":{"description":"shortNames is a list of suggested short names of the resource.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"singularName":{"description":"singularName is the singular name of the resource.  This allows clients to handle plural and singular opaquely. The singularName is more correct for reporting status on a single item and both singular and plural are allowed from the kubectl CLI interface.","type":"string"},"storageVersionHash":{"description":"The hash value of the storage version, the version this resource is converted to when written to the data store. Value must be treated as opaque by clients. Only equality comparison on the value is valid. This is an alpha feature and may change or be removed in the future. The field is populated by the apiserver only if the StorageVersionHash feature gate is enabled. This field will remain optional even if it graduates.","type":"string"},"verbs":{"description":"verbs is a list of supported kube verbs (this includes get, list, watch, create, update, patch, delete, deletecollection, and proxy)","type":"array","items":{"type":"string"}},"version":{"description":"version is the preferred version of the resource.  Empty implies the version of the containing resource list For subresources, this may have a different value, for example: v1 (while inside a v1beta1 version of the core resource's group)\".","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v10":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v2":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v3":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v4":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v5":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v6":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v7":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v8":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResourceList_v9":{"description":"APIResourceList is a list of APIResource, it is used to expose the name of the resources supported in a specific group and version, and if the resource is namespaced.","type":"object","required":["groupVersion","resources"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"groupVersion":{"description":"groupVersion is the group and version this APIResourceList is for.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"resources":{"description":"resources contains the name of the resources and if they are namespaced.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2"}}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIResourceList","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.APIResource_v2":{"description":"APIResource specifies the name of a resource and whether it is namespaced.","type":"object","required":["name","singularName","namespaced","kind","verbs"],"properties":{"categories":{"description":"categories is a list of the grouped resources this resource belongs to (e.g. 'all')","type":"array","items":{"type":"string"}},"group":{"description":"group is the preferred group of the resource.  Empty implies the group of the containing resource list. For subresources, this may have a different value, for example: Scale\".","type":"string"},"kind":{"description":"kind is the kind for the resource (e.g. 'Foo' is the kind for a resource 'foo')","type":"string"},"name":{"description":"name is the plural name of the resource.","type":"string"},"namespaced":{"description":"namespaced indicates if a resource is namespaced or not.","type":"boolean"},"shortNames":{"description":"shortNames is a list of suggested short names of the resource.","type":"array","items":{"type":"string"}},"singularName":{"description":"singularName is the singular name of the resource.  This allows clients to handle plural and singular opaquely. The singularName is more correct for reporting status on a single item and both singular and plural are allowed from the kubectl CLI interface.","type":"string"},"storageVersionHash":{"description":"The hash value of the storage version, the version this resource is converted to when written to the data store. Value must be treated as opaque by clients. Only equality comparison on the value is valid. This is an alpha feature and may change or be removed in the future. The field is populated by the apiserver only if the StorageVersionHash feature gate is enabled. This field will remain optional even if it graduates.","type":"string"},"verbs":{"description":"verbs is a list of supported kube verbs (this includes get, list, watch, create, update, patch, delete, deletecollection, and proxy)","type":"array","items":{"type":"string"}},"version":{"description":"version is the preferred version of the resource.  Empty implies the version of the containing resource list For subresources, this may have a different value, for example: v1 (while inside a v1beta1 version of the core resource's group)\".","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.APIVersions":{"description":"APIVersions lists the versions that are available, to allow clients to discover the API at /api, which is the root path of the legacy v1 API.","type":"object","required":["versions","serverAddressByClientCIDRs"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"serverAddressByClientCIDRs":{"description":"a map of client CIDR to server address that is serving this group. This is to help clients reach servers in the most network-efficient way possible. Clients can use the appropriate server address as per the CIDR that they match. In case of multiple matches, clients should use the longest matching CIDR. The server returns only those CIDRs that it thinks that the client can match. For example: the master will return an internal IP CIDR only, if the client reaches the server using an internal IP. Server looks at X-Forwarded-For header or X-Real-Ip header or request.RemoteAddr (in that order) to get the client IP.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ServerAddressByClientCIDR"},"x-kubernetes-list-type":"atomic"},"versions":{"description":"versions are the api versions that are available.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"APIVersions","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Condition":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["type","status","lastTransitionTime","reason","message"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string"},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64"},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions":{"description":"DeleteOptions may be provided when deleting an API object.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"dryRun":{"description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"gracePeriodSeconds":{"description":"The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.","type":"integer","format":"int64"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"orphanDependents":{"description":"Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.","type":"boolean"},"preconditions":{"description":"Must be fulfilled before a deletion is carried out. If not possible, a 409 Conflict status will be returned.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Preconditions"},"propagationPolicy":{"description":"Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"DeleteOptions","version":"v1"},{"group":"admission.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"admission.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"admissionregistration.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"admissionregistration.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"admissionregistration.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"apiextensions.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"apiextensions.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"apiregistration.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"apiregistration.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"apps","kind":"DeleteOptions","version":"v1"},{"group":"apps","kind":"DeleteOptions","version":"v1beta1"},{"group":"apps","kind":"DeleteOptions","version":"v1beta2"},{"group":"authentication.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"authentication.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"authentication.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"authorization.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"authorization.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"autoscaling","kind":"DeleteOptions","version":"v1"},{"group":"autoscaling","kind":"DeleteOptions","version":"v2"},{"group":"autoscaling","kind":"DeleteOptions","version":"v2beta1"},{"group":"autoscaling","kind":"DeleteOptions","version":"v2beta2"},{"group":"batch","kind":"DeleteOptions","version":"v1"},{"group":"batch","kind":"DeleteOptions","version":"v1beta1"},{"group":"certificates.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"certificates.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"certificates.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"coordination.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"coordination.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"coordination.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"discovery.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"discovery.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"events.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"events.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"extensions","kind":"DeleteOptions","version":"v1beta1"},{"group":"flowcontrol.apiserver.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"flowcontrol.apiserver.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"flowcontrol.apiserver.k8s.io","kind":"DeleteOptions","version":"v1beta2"},{"group":"flowcontrol.apiserver.k8s.io","kind":"DeleteOptions","version":"v1beta3"},{"group":"imagepolicy.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"internal.apiserver.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"networking.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"networking.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"networking.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"node.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"node.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"node.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"oauth.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"policy","kind":"DeleteOptions","version":"v1"},{"group":"policy","kind":"DeleteOptions","version":"v1beta1"},{"group":"rbac.authorization.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"rbac.authorization.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"rbac.authorization.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"resource.k8s.io","kind":"DeleteOptions","version":"v1alpha3"},{"group":"scheduling.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"scheduling.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"scheduling.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"storage.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"storage.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"storage.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"storagemigration.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"user.openshift.io","kind":"DeleteOptions","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions_v2":{"description":"DeleteOptions may be provided when deleting an API object.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"dryRun":{"description":"When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed","type":"array","items":{"type":"string"}},"gracePeriodSeconds":{"description":"The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.","type":"integer","format":"int64"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"orphanDependents":{"description":"Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.","type":"boolean"},"preconditions":{"description":"Must be fulfilled before a deletion is carried out. If not possible, a 409 Conflict status will be returned.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Preconditions"},"propagationPolicy":{"description":"Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"DeleteOptions","version":"v1"},{"group":"admission.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"admission.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"admissionregistration.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"admissionregistration.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"admissionregistration.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"apiextensions.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"apiextensions.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"apiregistration.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"apiregistration.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"apps","kind":"DeleteOptions","version":"v1"},{"group":"apps","kind":"DeleteOptions","version":"v1beta1"},{"group":"apps","kind":"DeleteOptions","version":"v1beta2"},{"group":"apps.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"authentication.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"authentication.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"authentication.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"authorization.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"authorization.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"authorization.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"autoscaling","kind":"DeleteOptions","version":"v1"},{"group":"autoscaling","kind":"DeleteOptions","version":"v2"},{"group":"autoscaling","kind":"DeleteOptions","version":"v2beta1"},{"group":"autoscaling","kind":"DeleteOptions","version":"v2beta2"},{"group":"batch","kind":"DeleteOptions","version":"v1"},{"group":"batch","kind":"DeleteOptions","version":"v1beta1"},{"group":"build.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"certificates.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"certificates.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"certificates.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"coordination.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"coordination.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"coordination.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"discovery.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"discovery.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"events.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"events.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"extensions","kind":"DeleteOptions","version":"v1beta1"},{"group":"image.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"imagepolicy.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"networking.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"networking.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"networking.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"policy","kind":"DeleteOptions","version":"v1"},{"group":"policy","kind":"DeleteOptions","version":"v1beta1"},{"group":"project.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"quota.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"rbac.authorization.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"rbac.authorization.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"rbac.authorization.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"resource.k8s.io","kind":"DeleteOptions","version":"v1alpha3"},{"group":"route.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"scheduling.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"scheduling.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"scheduling.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"security.openshift.io","kind":"DeleteOptions","version":"v1"},{"group":"storage.k8s.io","kind":"DeleteOptions","version":"v1"},{"group":"storage.k8s.io","kind":"DeleteOptions","version":"v1alpha1"},{"group":"storage.k8s.io","kind":"DeleteOptions","version":"v1beta1"},{"group":"template.openshift.io","kind":"DeleteOptions","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Duration":{"description":"Duration is a wrapper around time.Duration which supports correct marshaling to YAML and JSON. In particular, it marshals into strings, which can be used as map keys in json.","type":"string"},"io.k8s.apimachinery.pkg.apis.meta.v1.FieldSelectorRequirement":{"description":"FieldSelectorRequirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the field selector key that the requirement applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. The list of operators may grow in the future.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.FieldsV1":{"description":"FieldsV1 stores a set of fields in a data structure like a Trie, in JSON format.\n\nEach key is either a '.' representing the field itself, and will always map to an empty set, or a string representing a sub-field or item. The string will follow one of these four formats: 'f:<name>', where <name> is the name of a field in a struct, or key in a map 'v:<value>', where <value> is the exact json formatted value of a list item 'i:<index>', where <index> is position of a item in a list 'k:<keys>', where <keys> is a map of  a list item's key fields to their unique values If a key maps to an empty Fields value, the field that key represents is part of the set.\n\nThe exact format is defined in sigs.k8s.io/structured-merge-diff","type":"object"},"io.k8s.apimachinery.pkg.apis.meta.v1.GroupVersionForDiscovery":{"description":"GroupVersion contains the \"group/version\" and \"version\" string of a version. It is made a struct to keep extensibility.","type":"object","required":["groupVersion","version"],"properties":{"groupVersion":{"description":"groupVersion specifies the API group and version in the form \"group/version\"","type":"string"},"version":{"description":"version specifies the version in the form of \"version\". This is to save the clients the trouble of splitting the GroupVersion.","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.GroupVersionKind":{"description":"GroupVersionKind unambiguously identifies a kind.  It doesn't anonymously include GroupVersion to avoid automatic coercion.  It doesn't use a GroupVersion to avoid custom marshalling","type":"object","required":["group","version","kind"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"version":{"type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement"},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement_v2":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}},"io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v2":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement_v2"}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v3":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement_v2"}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v4":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement_v2"}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelector_v5":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.LabelSelectorRequirement_v2"}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta":{"description":"ListMeta describes metadata that synthetic resources must have, including lists and various status objects. A resource may have only one of {ObjectMeta, ListMeta}.","type":"object","properties":{"continue":{"description":"continue may be set if the user set a limit on the number of items returned, and indicates that the server has more data available. The value is opaque and may be used to issue another request to the endpoint that served this list to retrieve the next set of available objects. Continuing a consistent list may not be possible if the server configuration has changed or more than a few minutes have passed. The resourceVersion field returned when using this continue value will be identical to the value in the first response, unless you have received this token from an error message.","type":"string"},"remainingItemCount":{"description":"remainingItemCount is the number of subsequent items in the list which are not included in this list response. If the list request contained label or field selectors, then the number of remaining items is unknown and the field will be left unset and omitted during serialization. If the list is complete (either because it is not chunking or because this is the last chunk), then there are no more remaining items and this field will be left unset and omitted during serialization. Servers older than v1.15 do not set this field. The intended use of the remainingItemCount is *estimating* the size of a collection. Clients should not rely on the remainingItemCount to be set or to be exact.","type":"integer","format":"int64"},"resourceVersion":{"description":"String that identifies the server's internal version of this object that can be used by clients to determine when objects have changed. Value must be treated as opaque by clients and passed unmodified back to the server. Populated by the system. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"selfLink":{"description":"Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.ManagedFieldsEntry":{"description":"ManagedFieldsEntry is a workflow-id, a FieldSet and the group version of the resource that the fieldset applies to.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the version of this resource that this field set applies to. The format is \"group/version\" just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.","type":"string"},"fieldsType":{"description":"FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: \"FieldsV1\"","type":"string"},"fieldsV1":{"description":"FieldsV1 holds the first JSON version format as described in the \"FieldsV1\" type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.FieldsV1"},"manager":{"description":"Manager is an identifier of the workflow managing these fields.","type":"string"},"operation":{"description":"Operation is the type of operation which lead to this ManagedFieldsEntry being created. The only valid values for this field are 'Apply' and 'Update'.","type":"string"},"subresource":{"description":"Subresource is the name of the subresource used to update that object, or empty string if the object was updated through the main resource. The value of this field is used to distinguish between managers, even if they share the same name. For example, a status update will be distinct from a regular update using the same manager name. Note that the APIVersion field is not related to the Subresource field and it always corresponds to the version of the main resource.","type":"string"},"time":{"description":"Time is the timestamp of when the ManagedFields entry was added. The timestamp will also be updated if a field is added, the manager changes any of the owned fields value or removes a field. The timestamp does not update when a field is removed from the entry because another manager took it over.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.MicroTime":{"description":"MicroTime is version of Time with microsecond level precision.","type":"string","format":"date-time"},"io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta":{"description":"ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations","type":"object","additionalProperties":{"type":"string"}},"creationTimestamp":{"description":"CreationTimestamp is a timestamp representing the server time when this object was created. It is not guaranteed to be set in happens-before order across separate operations. Clients may not set this value. It is represented in RFC3339 form and is in UTC.\n\nPopulated by the system. Read-only. Null for lists. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"deletionGracePeriodSeconds":{"description":"Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.","type":"integer","format":"int64"},"deletionTimestamp":{"description":"DeletionTimestamp is RFC 3339 date and time at which this resource will be deleted. This field is set by the server when a graceful deletion is requested by the user, and is not directly settable by a client. The resource is expected to be deleted (no longer visible from resource lists, and not reachable by name) after the time in this field, once the finalizers list is empty. As long as the finalizers list contains items, deletion is blocked. Once the deletionTimestamp is set, this value may not be unset or be set further into the future, although it may be shortened or the resource may be deleted prior to this time. For example, a user may request that a pod is deleted in 30 seconds. The Kubelet will react by sending a graceful termination signal to the containers in the pod. After that 30 seconds, the Kubelet will send a hard termination signal (SIGKILL) to the container and after cleanup, remove the pod from the API. In the presence of network partitions, this object may still exist after this timestamp, until an administrator or automated process can determine the resource is fully terminated. If not set, graceful deletion of the object has not been requested.\n\nPopulated by the system when a graceful deletion is requested. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"finalizers":{"description":"Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order.  Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set","x-kubernetes-patch-strategy":"merge"},"generateName":{"description":"GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.\n\nIf this field is specified and the generated name exists, the server will return a 409.\n\nApplied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency","type":"string"},"generation":{"description":"A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.","type":"integer","format":"int64"},"labels":{"description":"Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels","type":"object","additionalProperties":{"type":"string"}},"managedFields":{"description":"ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn't need to set or understand this field. A workflow can be the user's name, a controller's name, or the name of a specific apply path like \"ci-cd\". The set of fields is always in the version that the workflow used when modifying the object.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ManagedFieldsEntry"},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names","type":"string"},"namespace":{"description":"Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the \"default\" namespace, but \"default\" is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.\n\nMust be a DNS_LABEL. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces","type":"string"},"ownerReferences":{"description":"List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.OwnerReference"},"x-kubernetes-list-map-keys":["uid"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"uid","x-kubernetes-patch-strategy":"merge"},"resourceVersion":{"description":"An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.\n\nPopulated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"selfLink":{"description":"Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.","type":"string"},"uid":{"description":"UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.\n\nPopulated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta_v2":{"description":"ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create.","type":"object","properties":{"annotations":{"description":"Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations","type":"object","additionalProperties":{"type":"string"}},"creationTimestamp":{"description":"CreationTimestamp is a timestamp representing the server time when this object was created. It is not guaranteed to be set in happens-before order across separate operations. Clients may not set this value. It is represented in RFC3339 form and is in UTC.\n\nPopulated by the system. Read-only. Null for lists. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"deletionGracePeriodSeconds":{"description":"Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.","type":"integer","format":"int64"},"deletionTimestamp":{"description":"DeletionTimestamp is RFC 3339 date and time at which this resource will be deleted. This field is set by the server when a graceful deletion is requested by the user, and is not directly settable by a client. The resource is expected to be deleted (no longer visible from resource lists, and not reachable by name) after the time in this field, once the finalizers list is empty. As long as the finalizers list contains items, deletion is blocked. Once the deletionTimestamp is set, this value may not be unset or be set further into the future, although it may be shortened or the resource may be deleted prior to this time. For example, a user may request that a pod is deleted in 30 seconds. The Kubelet will react by sending a graceful termination signal to the containers in the pod. After that 30 seconds, the Kubelet will send a hard termination signal (SIGKILL) to the container and after cleanup, remove the pod from the API. In the presence of network partitions, this object may still exist after this timestamp, until an administrator or automated process can determine the resource is fully terminated. If not set, graceful deletion of the object has not been requested.\n\nPopulated by the system when a graceful deletion is requested. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"finalizers":{"description":"Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order.  Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.","type":"array","items":{"type":"string"},"x-kubernetes-patch-strategy":"merge"},"generateName":{"description":"GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.\n\nIf this field is specified and the generated name exists, the server will return a 409.\n\nApplied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency","type":"string"},"generation":{"description":"A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.","type":"integer","format":"int64"},"labels":{"description":"Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels","type":"object","additionalProperties":{"type":"string"}},"managedFields":{"description":"ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn't need to set or understand this field. A workflow can be the user's name, a controller's name, or the name of a specific apply path like \"ci-cd\". The set of fields is always in the version that the workflow used when modifying the object.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ManagedFieldsEntry"}},"name":{"description":"Name must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names","type":"string"},"namespace":{"description":"Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the \"default\" namespace, but \"default\" is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.\n\nMust be a DNS_LABEL. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces","type":"string"},"ownerReferences":{"description":"List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.OwnerReference"},"x-kubernetes-patch-merge-key":"uid","x-kubernetes-patch-strategy":"merge"},"resourceVersion":{"description":"An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.\n\nPopulated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"selfLink":{"description":"Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.","type":"string"},"uid":{"description":"UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.\n\nPopulated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.OwnerReference":{"description":"OwnerReference contains enough information to let you identify an owning object. An owning object must be in the same namespace as the dependent, or be cluster-scoped, so there is no namespace field.","type":"object","required":["apiVersion","kind","name","uid"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"blockOwnerDeletion":{"description":"If true, AND if the owner has the \"foregroundDeletion\" finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. See https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion for how the garbage collector interacts with this field and enforces the foreground deletion. Defaults to false. To set this field, a user needs \"delete\" permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.","type":"boolean"},"controller":{"description":"If true, this reference points to the managing controller.","type":"boolean"},"kind":{"description":"Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names","type":"string"},"uid":{"description":"UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"io.k8s.apimachinery.pkg.apis.meta.v1.Patch":{"description":"Patch is provided to give a concrete name and type to the Kubernetes PATCH request body.","type":"object"},"io.k8s.apimachinery.pkg.apis.meta.v1.Preconditions":{"description":"Preconditions must be fulfilled before an operation (update, delete, etc.) is carried out.","type":"object","properties":{"resourceVersion":{"description":"Specifies the target ResourceVersion","type":"string"},"uid":{"description":"Specifies the target UID.","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.ServerAddressByClientCIDR":{"description":"ServerAddressByClientCIDR helps the client to determine the server address that they should use, depending on the clientCIDR that they match.","type":"object","required":["clientCIDR","serverAddress"],"properties":{"clientCIDR":{"description":"The CIDR with which clients can match their IP to figure out the server address that they should use.","type":"string"},"serverAddress":{"description":"Address of this server, suitable for a client that matches the above CIDR. This can be a hostname, hostname:port, IP or IP:port.","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.Status":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails","x-kubernetes-list-type":"atomic"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.StatusCause":{"description":"StatusCause provides more information about an api.Status failure, including cases when multiple errors are encountered.","type":"object","properties":{"field":{"description":"The field of the resource that has caused this error, as named by its JSON serialization. May include dot and postfix notation for nested attributes. Arrays are zero-indexed.  Fields may appear more than once in an array of causes due to fields having multiple errors. Optional.\n\nExamples:\n  \"name\" - the field \"name\" on the current resource\n  \"items[0].name\" - the field \"name\" on the first array entry in \"items\"","type":"string"},"message":{"description":"A human-readable description of the cause of the error.  This field may be presented as-is to a reader.","type":"string"},"reason":{"description":"A machine-readable description of the cause of the error. If this value is empty there is no information available.","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails":{"description":"StatusDetails is a set of additional properties that MAY be set by the server to provide additional information about a response. The Reason field of a Status object defines what attributes will be set. Clients must ignore fields that do not match the defined type of each attribute, and should assume that any attribute may be empty, invalid, or under defined.","type":"object","properties":{"causes":{"description":"The Causes array includes more details associated with the StatusReason failure. Not all StatusReasons may provide detailed causes.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusCause"},"x-kubernetes-list-type":"atomic"},"group":{"description":"The group attribute of the resource associated with the status StatusReason.","type":"string"},"kind":{"description":"The kind attribute of the resource associated with the status StatusReason. On some operations may differ from the requested resource Kind. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"The name attribute of the resource associated with the status StatusReason (when there is a single name which can be described).","type":"string"},"retryAfterSeconds":{"description":"If specified, the time in seconds before the operation should be retried. Some errors may indicate the client must take an alternate action - for those errors this field may indicate how long to wait before taking the alternate action.","type":"integer","format":"int32"},"uid":{"description":"UID of the resource. (when there is a single resource which can be described). More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2":{"description":"StatusDetails is a set of additional properties that MAY be set by the server to provide additional information about a response. The Reason field of a Status object defines what attributes will be set. Clients must ignore fields that do not match the defined type of each attribute, and should assume that any attribute may be empty, invalid, or under defined.","type":"object","properties":{"causes":{"description":"The Causes array includes more details associated with the StatusReason failure. Not all StatusReasons may provide detailed causes.","type":"array","items":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusCause"}},"group":{"description":"The group attribute of the resource associated with the status StatusReason.","type":"string"},"kind":{"description":"The kind attribute of the resource associated with the status StatusReason. On some operations may differ from the requested resource Kind. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"The name attribute of the resource associated with the status StatusReason (when there is a single name which can be described).","type":"string"},"retryAfterSeconds":{"description":"If specified, the time in seconds before the operation should be retried. Some errors may indicate the client must take an alternate action - for those errors this field may indicate how long to wait before taking the alternate action.","type":"integer","format":"int32"},"uid":{"description":"UID of the resource. (when there is a single resource which can be described). More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids","type":"string"}}},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v2":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v3":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v4":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v5":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v6":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v7":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v8":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Status_v9":{"description":"Status is a return value for calls that don't return other objects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"code":{"description":"Suggested HTTP return code for this status, 0 if not set.","type":"integer","format":"int32"},"details":{"description":"Extended data associated with the reason.  Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.StatusDetails_v2"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"message":{"description":"A human-readable description of the status of this operation.","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"},"reason":{"description":"A machine-readable description of why this operation is in the \"Failure\" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.","type":"string"},"status":{"description":"Status of the operation. One of: \"Success\" or \"Failure\". More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"Status","version":"v1"}]},"io.k8s.apimachinery.pkg.apis.meta.v1.Time":{"description":"Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON.  Wrappers are provided for many of the factory methods that the time package offers.","type":"string","format":"date-time"},"io.k8s.apimachinery.pkg.apis.meta.v1.WatchEvent":{"description":"Event represents a single event to a watched resource.","type":"object","required":["type","object"],"properties":{"object":{"description":"Object is:\n * If Type is Added or Modified: the new state of the object.\n * If Type is Deleted: the state of the object immediately before deletion.\n * If Type is Error: *Status is recommended; other types may make sense\n   depending on context.","$ref":"#/definitions/io.k8s.apimachinery.pkg.runtime.RawExtension"},"type":{"type":"string"}},"x-kubernetes-group-version-kind":[{"group":"","kind":"WatchEvent","version":"v1"},{"group":"admission.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"admission.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"admissionregistration.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"admissionregistration.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"admissionregistration.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"apiextensions.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"apiextensions.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"apiregistration.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"apiregistration.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"apps.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"apps","kind":"WatchEvent","version":"v1"},{"group":"apps","kind":"WatchEvent","version":"v1beta1"},{"group":"apps","kind":"WatchEvent","version":"v1beta2"},{"group":"authentication.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"authentication.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"authentication.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"authorization.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"authorization.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"authorization.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"autoscaling","kind":"WatchEvent","version":"v1"},{"group":"autoscaling","kind":"WatchEvent","version":"v2"},{"group":"autoscaling","kind":"WatchEvent","version":"v2beta1"},{"group":"autoscaling","kind":"WatchEvent","version":"v2beta2"},{"group":"batch","kind":"WatchEvent","version":"v1"},{"group":"batch","kind":"WatchEvent","version":"v1beta1"},{"group":"build.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"certificates.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"certificates.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"certificates.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"coordination.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"coordination.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"coordination.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"discovery.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"discovery.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"events.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"events.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"extensions","kind":"WatchEvent","version":"v1beta1"},{"group":"flowcontrol.apiserver.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"flowcontrol.apiserver.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"flowcontrol.apiserver.k8s.io","kind":"WatchEvent","version":"v1beta2"},{"group":"flowcontrol.apiserver.k8s.io","kind":"WatchEvent","version":"v1beta3"},{"group":"image.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"imagepolicy.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"internal.apiserver.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"networking.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"networking.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"networking.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"node.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"node.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"node.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"oauth.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"policy","kind":"WatchEvent","version":"v1"},{"group":"policy","kind":"WatchEvent","version":"v1beta1"},{"group":"project.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"quota.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"rbac.authorization.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"rbac.authorization.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"rbac.authorization.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"resource.k8s.io","kind":"WatchEvent","version":"v1alpha3"},{"group":"route.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"scheduling.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"scheduling.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"scheduling.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"security.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"storage.k8s.io","kind":"WatchEvent","version":"v1"},{"group":"storage.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"storage.k8s.io","kind":"WatchEvent","version":"v1beta1"},{"group":"storagemigration.k8s.io","kind":"WatchEvent","version":"v1alpha1"},{"group":"template.openshift.io","kind":"WatchEvent","version":"v1"},{"group":"user.openshift.io","kind":"WatchEvent","version":"v1"}]},"io.k8s.apimachinery.pkg.runtime.RawExtension":{"description":"RawExtension is used to hold extensions in external versions.\n\nTo use this, make a field which has RawExtension as its type in your external, versioned struct, and Object in your internal struct. You also need to register your various plugin types.\n\n// Internal package:\n\n\ttype MyAPIObject struct {\n\t\truntime.TypeMeta `json:\",inline\"`\n\t\tMyPlugin runtime.Object `json:\"myPlugin\"`\n\t}\n\n\ttype PluginA struct {\n\t\tAOption string `json:\"aOption\"`\n\t}\n\n// External package:\n\n\ttype MyAPIObject struct {\n\t\truntime.TypeMeta `json:\",inline\"`\n\t\tMyPlugin runtime.RawExtension `json:\"myPlugin\"`\n\t}\n\n\ttype PluginA struct {\n\t\tAOption string `json:\"aOption\"`\n\t}\n\n// On the wire, the JSON will look something like this:\n\n\t{\n\t\t\"kind\":\"MyAPIObject\",\n\t\t\"apiVersion\":\"v1\",\n\t\t\"myPlugin\": {\n\t\t\t\"kind\":\"PluginA\",\n\t\t\t\"aOption\":\"foo\",\n\t\t},\n\t}\n\nSo what happens? Decode first uses json or yaml to unmarshal the serialized data into your external MyAPIObject. That causes the raw JSON to be stored, but not unpacked. The next step is to copy (using pkg/conversion) into the internal struct. The runtime package's DefaultScheme has conversion functions installed which will unpack the JSON stored in RawExtension, turning it into the correct object type, and storing it in the Object. (TODO: In the case where the object is of an unknown type, a runtime.Unknown object will be created and stored.)","type":"object"},"io.k8s.apimachinery.pkg.util.intstr.IntOrString":{"description":"IntOrString is a type that can hold an int32 or a string.  When used in JSON or YAML marshalling and unmarshalling, it produces or consumes the inner type.  This allows you to have, for example, a JSON field that can accept a name or number.","type":"string","format":"int-or-string"},"io.k8s.apimachinery.pkg.version.Info":{"description":"Info contains versioning information. how we'll want to distribute that information.","type":"object","required":["major","minor","gitVersion","gitCommit","gitTreeState","buildDate","goVersion","compiler","platform"],"properties":{"buildDate":{"type":"string"},"compiler":{"type":"string"},"gitCommit":{"type":"string"},"gitTreeState":{"type":"string"},"gitVersion":{"type":"string"},"goVersion":{"type":"string"},"major":{"type":"string"},"minor":{"type":"string"},"platform":{"type":"string"}}},"io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService":{"description":"APIService represents a server for a particular GroupVersion. Name must be \"version.group\".","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec contains information for locating and communicating with a server","$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceSpec"},"status":{"description":"Status contains derived information about an API server","$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceStatus"}},"x-kubernetes-group-version-kind":[{"group":"apiregistration.k8s.io","kind":"APIService","version":"v1"}]},"io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceCondition":{"description":"APIServiceCondition describes the state of an APIService at a particular point","type":"object","required":["type","status"],"properties":{"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"message":{"description":"Human-readable message indicating details about last transition.","type":"string"},"reason":{"description":"Unique, one-word, CamelCase reason for the condition's last transition.","type":"string"},"status":{"description":"Status is the status of the condition. Can be True, False, Unknown.","type":"string"},"type":{"description":"Type is the type of the condition.","type":"string"}}},"io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceList":{"description":"APIServiceList is a list of APIService objects.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"Items is the list of APIService","type":"array","items":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIService"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiregistration.k8s.io","kind":"APIServiceList","version":"v1"}]},"io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceSpec":{"description":"APIServiceSpec contains information for locating and communicating with a server. Only https is supported, though you are able to disable certificate verification.","type":"object","required":["groupPriorityMinimum","versionPriority"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate an API server's serving certificate. If unspecified, system trust roots on the apiserver are used.","type":"string","format":"byte","x-kubernetes-list-type":"atomic"},"group":{"description":"Group is the API group name this server hosts","type":"string"},"groupPriorityMinimum":{"description":"GroupPriorityMinimum is the priority this group should have at least. Higher priority means that the group is preferred by clients over lower priority ones. Note that other versions of this group might specify even higher GroupPriorityMinimum values such that the whole group gets a higher priority. The primary sort is based on GroupPriorityMinimum, ordered highest number to lowest (20 before 10). The secondary sort is based on the alphabetical comparison of the name of the object.  (v1.bar before v1.foo) We'd recommend something like: *.k8s.io (except extensions) at 18000 and PaaSes (OpenShift, Deis) are recommended to be in the 2000s","type":"integer","format":"int32"},"insecureSkipTLSVerify":{"description":"InsecureSkipTLSVerify disables TLS certificate verification when communicating with this server. This is strongly discouraged.  You should use the CABundle instead.","type":"boolean"},"service":{"description":"Service is a reference to the service for this API server.  It must communicate on port 443. If the Service is nil, that means the handling for the API groupversion is handled locally on this server. The call will simply delegate to the normal handler chain to be fulfilled.","$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.ServiceReference"},"version":{"description":"Version is the API version this server hosts.  For example, \"v1\"","type":"string"},"versionPriority":{"description":"VersionPriority controls the ordering of this API version inside of its group.  Must be greater than zero. The primary sort is based on VersionPriority, ordered highest to lowest (20 before 10). Since it's inside of a group, the number can be small, probably in the 10s. In case of equal version priorities, the version string will be used to compute the order inside a group. If the version string is \"kube-like\", it will sort above non \"kube-like\" version strings, which are ordered lexicographically. \"Kube-like\" versions start with a \"v\", then are followed by a number (the major version), then optionally the string \"alpha\" or \"beta\" and another number (the minor version). These are sorted first by GA > beta > alpha (where GA is a version with no suffix such as beta or alpha), and then by comparing major version, then minor version. An example sorted list of versions: v10, v2, v1, v11beta2, v10beta3, v3beta1, v12alpha1, v11alpha2, foo1, foo10.","type":"integer","format":"int32"}}},"io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceStatus":{"description":"APIServiceStatus contains derived information about an API server","type":"object","properties":{"conditions":{"description":"Current service state of apiService.","type":"array","items":{"$ref":"#/definitions/io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.APIServiceCondition"},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map","x-kubernetes-patch-merge-key":"type","x-kubernetes-patch-strategy":"merge"}}},"io.k8s.kube-aggregator.pkg.apis.apiregistration.v1.ServiceReference":{"description":"ServiceReference holds a reference to Service.legacy.k8s.io","type":"object","properties":{"name":{"description":"Name is the name of the service","type":"string"},"namespace":{"description":"Namespace is the namespace of the service","type":"string"},"port":{"description":"If specified, the port on the service that hosting webhook. Default to 443 for backward compatibility. `port` should be a valid port number (1-65535, inclusive).","type":"integer","format":"int32"}}},"io.k8s.kueue.visibility.v1beta1.PendingWorkload":{"description":"PendingWorkload is a user-facing representation of a pending workload that summarizes the relevant information for position in the cluster queue.","type":"object","required":["priority","localQueueName","positionInClusterQueue","positionInLocalQueue"],"properties":{"localQueueName":{"description":"LocalQueueName indicates the name of the LocalQueue the workload is submitted to","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"positionInClusterQueue":{"description":"PositionInClusterQueue indicates the workload's position in the ClusterQueue, starting from 0","type":"integer","format":"int32"},"positionInLocalQueue":{"description":"PositionInLocalQueue indicates the workload's position in the LocalQueue, starting from 0","type":"integer","format":"int32"},"priority":{"description":"Priority indicates the workload's priority","type":"integer","format":"int32"}}},"io.k8s.kueue.visibility.v1beta1.PendingWorkloadsSummary":{"description":"PendingWorkloadsSummary contains a list of pending workloads in the context of the query (within LocalQueue or ClusterQueue).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"type":"array","items":{"$ref":"#/definitions/io.k8s.kueue.visibility.v1beta1.PendingWorkload"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-group-version-kind":[{"group":"visibility.kueue.x-k8s.io","kind":"PendingWorkloadsSummary","version":"v1beta1"}]},"io.k8s.kueue.visibility.v1beta2.PendingWorkload":{"description":"PendingWorkload is a user-facing representation of a pending workload that summarizes the relevant information for position in the cluster queue.","type":"object","required":["priority","localQueueName","positionInClusterQueue","positionInLocalQueue"],"properties":{"localQueueName":{"description":"LocalQueueName indicates the name of the LocalQueue the workload is submitted to","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"positionInClusterQueue":{"description":"PositionInClusterQueue indicates the workload's position in the ClusterQueue, starting from 0","type":"integer","format":"int32"},"positionInLocalQueue":{"description":"PositionInLocalQueue indicates the workload's position in the LocalQueue, starting from 0","type":"integer","format":"int32"},"priority":{"description":"Priority indicates the workload's priority","type":"integer","format":"int32"}}},"io.k8s.kueue.visibility.v1beta2.PendingWorkloadsSummary":{"description":"PendingWorkloadsSummary contains a list of pending workloads in the context of the query (within LocalQueue or ClusterQueue).","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"type":"array","items":{"$ref":"#/definitions/io.k8s.kueue.visibility.v1beta2.PendingWorkload"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-group-version-kind":[{"group":"visibility.kueue.x-k8s.io","kind":"PendingWorkloadsSummary","version":"v1beta2"}]},"io.k8s.metrics.pkg.apis.metrics.v1beta1.ContainerMetrics":{"description":"ContainerMetrics sets resource usage metrics of a container.","type":"object","required":["name","usage"],"properties":{"name":{"description":"Container name corresponding to the one from pod.spec.containers.","type":"string"},"usage":{"description":"The memory usage is the memory working set.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}}}},"io.k8s.metrics.pkg.apis.metrics.v1beta1.NodeMetrics":{"description":"NodeMetrics sets resource usage metrics of a node.","type":"object","required":["timestamp","window","usage"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"timestamp":{"description":"The following fields define time interval from which metrics were collected from the interval [Timestamp-Window, Timestamp].","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"usage":{"description":"The memory usage is the memory working set.","type":"object","additionalProperties":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.api.resource.Quantity"}},"window":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Duration"}},"x-kubernetes-group-version-kind":[{"group":"metrics.k8s.io","kind":"NodeMetrics","version":"v1beta1"}]},"io.k8s.metrics.pkg.apis.metrics.v1beta1.NodeMetricsList":{"description":"NodeMetricsList is a list of NodeMetrics.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of node metrics.","type":"array","items":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.NodeMetrics"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"metrics.k8s.io","kind":"NodeMetricsList","version":"v1beta1"}]},"io.k8s.metrics.pkg.apis.metrics.v1beta1.PodMetrics":{"description":"PodMetrics sets resource usage metrics of a pod.","type":"object","required":["timestamp","window","containers"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"containers":{"description":"Metrics for all containers are collected within the same time window.","type":"array","items":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.ContainerMetrics"},"x-kubernetes-list-type":"atomic"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"timestamp":{"description":"The following fields define time interval from which metrics were collected from the interval [Timestamp-Window, Timestamp].","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Time"},"window":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Duration"}},"x-kubernetes-group-version-kind":[{"group":"metrics.k8s.io","kind":"PodMetrics","version":"v1beta1"}]},"io.k8s.metrics.pkg.apis.metrics.v1beta1.PodMetricsList":{"description":"PodMetricsList is a list of PodMetrics.","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of pod metrics.","type":"array","items":{"$ref":"#/definitions/io.k8s.metrics.pkg.apis.metrics.v1beta1.PodMetrics"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"metrics.k8s.io","kind":"PodMetricsList","version":"v1beta1"}]},"io.k8s.migration.v1alpha1.StorageState":{"description":"The state of the storage of a specific resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the storage state.","type":"object","properties":{"resource":{"description":"The resource this storageState is about.","type":"object","properties":{"group":{"description":"The name of the group.","type":"string"},"resource":{"description":"The name of the resource.","type":"string"}}}}},"status":{"description":"Status of the storage state.","type":"object","properties":{"currentStorageVersionHash":{"description":"The hash value of the current storage version, as shown in the discovery document served by the API server. Storage Version is the version to which objects are converted to before persisted.","type":"string"},"lastHeartbeatTime":{"description":"LastHeartbeatTime is the last time the storage migration triggering controller checks the storage version hash of this resource in the discovery document and updates this field.","type":"string","format":"date-time"},"persistedStorageVersionHashes":{"description":"The hash values of storage versions that persisted instances of spec.resource might still be encoded in. \"Unknown\" is a valid value in the list, and is the default value. It is not safe to upgrade or downgrade to an apiserver binary that does not support all versions listed in this field, or if \"Unknown\" is listed. Once the storage version migration for this resource has completed, the value of this field is refined to only contain the currentStorageVersionHash. Once the apiserver has changed the storage version, the new storage version is appended to the list.","type":"array","items":{"type":"string"}}}}},"x-kubernetes-group-version-kind":[{"group":"migration.k8s.io","kind":"StorageState","version":"v1alpha1"}]},"io.k8s.migration.v1alpha1.StorageStateList":{"description":"StorageStateList is a list of StorageState","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of storagestates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageState"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"migration.k8s.io","kind":"StorageStateList","version":"v1alpha1"}]},"io.k8s.migration.v1alpha1.StorageVersionMigration":{"description":"StorageVersionMigration represents a migration of stored data to the latest storage version.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the migration.","type":"object","required":["resource"],"properties":{"continueToken":{"description":"The token used in the list options to get the next chunk of objects to migrate. When the .status.conditions indicates the migration is \"Running\", users can use this token to check the progress of the migration.","type":"string"},"resource":{"description":"The resource that is being migrated. The migrator sends requests to the endpoint serving the resource. Immutable.","type":"object","properties":{"group":{"description":"The name of the group.","type":"string"},"resource":{"description":"The name of the resource.","type":"string"},"version":{"description":"The name of the version.","type":"string"}}}}},"status":{"description":"Status of the migration.","type":"object","properties":{"conditions":{"description":"The latest available observations of the migration's current state.","type":"array","items":{"description":"Describes the state of a migration at a certain point.","type":"object","required":["status","type"],"properties":{"lastUpdateTime":{"description":"The last time this condition was updated.","type":"string","format":"date-time"},"message":{"description":"A human readable message indicating details about the transition.","type":"string"},"reason":{"description":"The reason for the condition's last transition.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"Type of the condition.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"migration.k8s.io","kind":"StorageVersionMigration","version":"v1alpha1"}]},"io.k8s.migration.v1alpha1.StorageVersionMigrationList":{"description":"StorageVersionMigrationList is a list of StorageVersionMigration","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of storageversionmigrations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.migration.v1alpha1.StorageVersionMigration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"migration.k8s.io","kind":"StorageVersionMigrationList","version":"v1alpha1"}]},"io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy":{"description":"AdminNetworkPolicy is  a cluster level resource that is part of the\nAdminNetworkPolicy API.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of AdminNetworkPolicy.","type":"object","required":["priority","subject"],"properties":{"egress":{"description":"Egress is the list of Egress rules to be applied to the selected pods.\nA total of 100 rules will be allowed in each ANP instance.\nThe relative precedence of egress rules within a single ANP object (all of\nwhich share the priority) will be determined by the order in which the rule\nis written. Thus, a rule that appears at the top of the egress rules\nwould take the highest precedence.\nANPs with no egress rules do not affect egress traffic.\n\n\nSupport: Core","type":"array","maxItems":100,"items":{"description":"AdminNetworkPolicyEgressRule describes an action to take on a particular\nset of traffic originating from pods selected by a AdminNetworkPolicy's\nSubject field.\n<network-policy-api:experimental:validation>","type":"object","required":["action","to"],"properties":{"action":{"description":"Action specifies the effect this rule will have on matching traffic.\nCurrently the following actions are supported:\nAllow: allows the selected traffic (even if it would otherwise have been denied by NetworkPolicy)\nDeny: denies the selected traffic\nPass: instructs the selected traffic to skip any remaining ANP rules, and\nthen pass execution to any NetworkPolicies that select the pod.\nIf the pod is not selected by any NetworkPolicies then execution\nis passed to any BaselineAdminNetworkPolicies that select the pod.\n\n\nSupport: Core","type":"string","enum":["Allow","Deny","Pass"]},"name":{"description":"Name is an identifier for this rule, that may be no more than 100 characters\nin length. This field should be used by the implementation to help\nimprove observability, readability and error-reporting for any applied\nAdminNetworkPolicies.\n\n\nSupport: Core","type":"string","maxLength":100},"ports":{"description":"Ports allows for matching traffic based on port and protocols.\nThis field is a list of destination ports for the outgoing egress traffic.\nIf Ports is not set then the rule does not filter traffic via port.\n\n\nSupport: Core","type":"array","maxItems":100,"items":{"description":"AdminNetworkPolicyPort describes how to select network ports on pod(s).\nExactly one field must be set.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namedPort":{"description":"NamedPort selects a port on a pod(s) based on name.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"string"},"portNumber":{"description":"Port selects a port on a pod(s) based on number.\n\n\nSupport: Core","type":"object","required":["port","protocol"],"properties":{"port":{"description":"Number defines a network port value.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"}}},"portRange":{"description":"PortRange selects a port range on a pod(s) based on provided start and end\nvalues.\n\n\nSupport: Core","type":"object","required":["end","start"],"properties":{"end":{"description":"End defines a network port that is the end of a port range, the End value\nmust be greater than Start.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"},"start":{"description":"Start defines a network port that is the start of a port range, the Start\nvalue must be less than End.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}}},"to":{"description":"To is the List of destinations whose traffic this rule applies to.\nIf any AdminNetworkPolicyEgressPeer matches the destination of outgoing\ntraffic then the specified action is applied.\nThis field must be defined and contain at least one item.\n\n\nSupport: Core","type":"array","maxItems":100,"minItems":1,"items":{"description":"AdminNetworkPolicyEgressPeer defines a peer to allow traffic to.\nExactly one of the selector pointers must be set for a given peer. If a\nconsumer observes none of its fields are set, they must assume an unknown\noption has been specified and fail closed.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namespaces":{"description":"Namespaces defines a way to select all pods within a set of Namespaces.\nNote that host-networked pods are not included in this type of peer.\n\n\nSupport: Core","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"networks":{"description":"Networks defines a way to select peers via CIDR blocks.\nThis is intended for representing entities that live outside the cluster,\nwhich can't be selected by pods, namespaces and nodes peers, but note\nthat cluster-internal traffic will be checked against the rule as\nwell. So if you Allow or Deny traffic to `\"0.0.0.0/0\"`, that will allow\nor deny all IPv4 pod-to-pod traffic as well. If you don't want that,\nadd a rule that Passes all pod traffic before the Networks rule.\n\n\nEach item in Networks should be provided in the CIDR format and should be\nIPv4 or IPv6, for example \"10.0.0.0/8\" or \"fd00::/8\".\n\n\nNetworks can have upto 25 CIDRs specified.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"array","maxItems":25,"minItems":1,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"Invalid CIDR format provided","rule":"isCIDR(self)"},{"message":"CIDR must be either an IPv4 or IPv6 address. IPv4 address embedded in IPv6 addresses are not supported","rule":"self.contains(':') != self.contains('.')"}]},"x-kubernetes-list-type":"set"},"nodes":{"description":"Nodes defines a way to select a set of nodes in\nthe cluster. This field follows standard label selector\nsemantics; if present but empty, it selects all Nodes.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"pods":{"description":"Pods defines a way to select a set of pods in\na set of namespaces. Note that host-networked pods\nare not included in this type of peer.\n\n\nSupport: Core","type":"object","required":["namespaceSelector","podSelector"],"properties":{"namespaceSelector":{"description":"NamespaceSelector follows standard label selector semantics; if empty,\nit selects all Namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podSelector":{"description":"PodSelector is used to explicitly select pods within a namespace; if empty,\nit selects all Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}}},"x-kubernetes-validations":[{"message":"networks/nodes peer cannot be set with namedPorts since there are no namedPorts for networks/nodes","rule":"!(self.to.exists(peer, has(peer.networks) || has(peer.nodes)) && has(self.ports) && self.ports.exists(port, has(port.namedPort)))"}]}},"ingress":{"description":"Ingress is the list of Ingress rules to be applied to the selected pods.\nA total of 100 rules will be allowed in each ANP instance.\nThe relative precedence of ingress rules within a single ANP object (all of\nwhich share the priority) will be determined by the order in which the rule\nis written. Thus, a rule that appears at the top of the ingress rules\nwould take the highest precedence.\nANPs with no ingress rules do not affect ingress traffic.\n\n\nSupport: Core","type":"array","maxItems":100,"items":{"description":"AdminNetworkPolicyIngressRule describes an action to take on a particular\nset of traffic destined for pods selected by an AdminNetworkPolicy's\nSubject field.","type":"object","required":["action","from"],"properties":{"action":{"description":"Action specifies the effect this rule will have on matching traffic.\nCurrently the following actions are supported:\nAllow: allows the selected traffic (even if it would otherwise have been denied by NetworkPolicy)\nDeny: denies the selected traffic\nPass: instructs the selected traffic to skip any remaining ANP rules, and\nthen pass execution to any NetworkPolicies that select the pod.\nIf the pod is not selected by any NetworkPolicies then execution\nis passed to any BaselineAdminNetworkPolicies that select the pod.\n\n\nSupport: Core","type":"string","enum":["Allow","Deny","Pass"]},"from":{"description":"From is the list of sources whose traffic this rule applies to.\nIf any AdminNetworkPolicyIngressPeer matches the source of incoming\ntraffic then the specified action is applied.\nThis field must be defined and contain at least one item.\n\n\nSupport: Core","type":"array","maxItems":100,"minItems":1,"items":{"description":"AdminNetworkPolicyIngressPeer defines an in-cluster peer to allow traffic from.\nExactly one of the selector pointers must be set for a given peer. If a\nconsumer observes none of its fields are set, they must assume an unknown\noption has been specified and fail closed.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namespaces":{"description":"Namespaces defines a way to select all pods within a set of Namespaces.\nNote that host-networked pods are not included in this type of peer.\n\n\nSupport: Core","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"pods":{"description":"Pods defines a way to select a set of pods in\na set of namespaces. Note that host-networked pods\nare not included in this type of peer.\n\n\nSupport: Core","type":"object","required":["namespaceSelector","podSelector"],"properties":{"namespaceSelector":{"description":"NamespaceSelector follows standard label selector semantics; if empty,\nit selects all Namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podSelector":{"description":"PodSelector is used to explicitly select pods within a namespace; if empty,\nit selects all Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}},"name":{"description":"Name is an identifier for this rule, that may be no more than 100 characters\nin length. This field should be used by the implementation to help\nimprove observability, readability and error-reporting for any applied\nAdminNetworkPolicies.\n\n\nSupport: Core","type":"string","maxLength":100},"ports":{"description":"Ports allows for matching traffic based on port and protocols.\nThis field is a list of ports which should be matched on\nthe pods selected for this policy i.e the subject of the policy.\nSo it matches on the destination port for the ingress traffic.\nIf Ports is not set then the rule does not filter traffic via port.\n\n\nSupport: Core","type":"array","maxItems":100,"items":{"description":"AdminNetworkPolicyPort describes how to select network ports on pod(s).\nExactly one field must be set.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namedPort":{"description":"NamedPort selects a port on a pod(s) based on name.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"string"},"portNumber":{"description":"Port selects a port on a pod(s) based on number.\n\n\nSupport: Core","type":"object","required":["port","protocol"],"properties":{"port":{"description":"Number defines a network port value.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"}}},"portRange":{"description":"PortRange selects a port range on a pod(s) based on provided start and end\nvalues.\n\n\nSupport: Core","type":"object","required":["end","start"],"properties":{"end":{"description":"End defines a network port that is the end of a port range, the End value\nmust be greater than Start.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"},"start":{"description":"Start defines a network port that is the start of a port range, the Start\nvalue must be less than End.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}}}}}},"priority":{"description":"Priority is a value from 0 to 1000. Rules with lower priority values have\nhigher precedence, and are checked before rules with higher priority values.\nAll AdminNetworkPolicy rules have higher precedence than NetworkPolicy or\nBaselineAdminNetworkPolicy rules\nThe behavior is undefined if two ANP objects have same priority.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":1000,"minimum":0},"subject":{"description":"Subject defines the pods to which this AdminNetworkPolicy applies.\nNote that host-networked pods are not included in subject selection.\n\n\nSupport: Core","type":"object","maxProperties":1,"minProperties":1,"properties":{"namespaces":{"description":"Namespaces is used to select pods via namespace selectors.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"pods":{"description":"Pods is used to select pods via namespace AND pod selectors.","type":"object","required":["namespaceSelector","podSelector"],"properties":{"namespaceSelector":{"description":"NamespaceSelector follows standard label selector semantics; if empty,\nit selects all Namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podSelector":{"description":"PodSelector is used to explicitly select pods within a namespace; if empty,\nit selects all Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}}},"status":{"description":"Status is the status to be reported by the implementation.","type":"object","required":["conditions"],"properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.\n---\nThis struct is intended for direct use as an array at the field path .status.conditions.  For example,\n\n\n\ttype FooStatus struct{\n\t    // Represents the observations of a foo's current state.\n\t    // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\"\n\t    // +patchMergeKey=type\n\t    // +patchStrategy=merge\n\t    // +listType=map\n\t    // +listMapKey=type\n\t    Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t    // other fields\n\t}","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.\n---\nMany .condition.type values are consistent across resources like Available, but because arbitrary conditions can be\nuseful (see .node.status.conditions), the ability to deconflict is important.\nThe regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicy","version":"v1alpha1"}]},"io.k8s.networking.policy.v1alpha1.AdminNetworkPolicyList":{"description":"AdminNetworkPolicyList is a list of AdminNetworkPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of adminnetworkpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.AdminNetworkPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policy.networking.k8s.io","kind":"AdminNetworkPolicyList","version":"v1alpha1"}]},"io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy":{"description":"BaselineAdminNetworkPolicy is a cluster level resource that is part of the\nAdminNetworkPolicy API.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of BaselineAdminNetworkPolicy.","type":"object","required":["subject"],"properties":{"egress":{"description":"Egress is the list of Egress rules to be applied to the selected pods if\nthey are not matched by any AdminNetworkPolicy or NetworkPolicy rules.\nA total of 100 Egress rules will be allowed in each BANP instance.\nThe relative precedence of egress rules within a single BANP object\nwill be determined by the order in which the rule is written.\nThus, a rule that appears at the top of the egress rules\nwould take the highest precedence.\nBANPs with no egress rules do not affect egress traffic.\n\n\nSupport: Core","type":"array","maxItems":100,"items":{"description":"BaselineAdminNetworkPolicyEgressRule describes an action to take on a particular\nset of traffic originating from pods selected by a BaselineAdminNetworkPolicy's\nSubject field.\n<network-policy-api:experimental:validation>","type":"object","required":["action","to"],"properties":{"action":{"description":"Action specifies the effect this rule will have on matching traffic.\nCurrently the following actions are supported:\nAllow: allows the selected traffic\nDeny: denies the selected traffic\n\n\nSupport: Core","type":"string","enum":["Allow","Deny"]},"name":{"description":"Name is an identifier for this rule, that may be no more than 100 characters\nin length. This field should be used by the implementation to help\nimprove observability, readability and error-reporting for any applied\nBaselineAdminNetworkPolicies.\n\n\nSupport: Core","type":"string","maxLength":100},"ports":{"description":"Ports allows for matching traffic based on port and protocols.\nThis field is a list of destination ports for the outgoing egress traffic.\nIf Ports is not set then the rule does not filter traffic via port.","type":"array","maxItems":100,"items":{"description":"AdminNetworkPolicyPort describes how to select network ports on pod(s).\nExactly one field must be set.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namedPort":{"description":"NamedPort selects a port on a pod(s) based on name.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"string"},"portNumber":{"description":"Port selects a port on a pod(s) based on number.\n\n\nSupport: Core","type":"object","required":["port","protocol"],"properties":{"port":{"description":"Number defines a network port value.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"}}},"portRange":{"description":"PortRange selects a port range on a pod(s) based on provided start and end\nvalues.\n\n\nSupport: Core","type":"object","required":["end","start"],"properties":{"end":{"description":"End defines a network port that is the end of a port range, the End value\nmust be greater than Start.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"},"start":{"description":"Start defines a network port that is the start of a port range, the Start\nvalue must be less than End.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}}},"to":{"description":"To is the list of destinations whose traffic this rule applies to.\nIf any AdminNetworkPolicyEgressPeer matches the destination of outgoing\ntraffic then the specified action is applied.\nThis field must be defined and contain at least one item.\n\n\nSupport: Core","type":"array","maxItems":100,"minItems":1,"items":{"description":"AdminNetworkPolicyEgressPeer defines a peer to allow traffic to.\nExactly one of the selector pointers must be set for a given peer. If a\nconsumer observes none of its fields are set, they must assume an unknown\noption has been specified and fail closed.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namespaces":{"description":"Namespaces defines a way to select all pods within a set of Namespaces.\nNote that host-networked pods are not included in this type of peer.\n\n\nSupport: Core","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"networks":{"description":"Networks defines a way to select peers via CIDR blocks.\nThis is intended for representing entities that live outside the cluster,\nwhich can't be selected by pods, namespaces and nodes peers, but note\nthat cluster-internal traffic will be checked against the rule as\nwell. So if you Allow or Deny traffic to `\"0.0.0.0/0\"`, that will allow\nor deny all IPv4 pod-to-pod traffic as well. If you don't want that,\nadd a rule that Passes all pod traffic before the Networks rule.\n\n\nEach item in Networks should be provided in the CIDR format and should be\nIPv4 or IPv6, for example \"10.0.0.0/8\" or \"fd00::/8\".\n\n\nNetworks can have upto 25 CIDRs specified.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"array","maxItems":25,"minItems":1,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"Invalid CIDR format provided","rule":"isCIDR(self)"},{"message":"CIDR must be either an IPv4 or IPv6 address. IPv4 address embedded in IPv6 addresses are not supported","rule":"self.contains(':') != self.contains('.')"}]},"x-kubernetes-list-type":"set"},"nodes":{"description":"Nodes defines a way to select a set of nodes in\nthe cluster. This field follows standard label selector\nsemantics; if present but empty, it selects all Nodes.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"pods":{"description":"Pods defines a way to select a set of pods in\na set of namespaces. Note that host-networked pods\nare not included in this type of peer.\n\n\nSupport: Core","type":"object","required":["namespaceSelector","podSelector"],"properties":{"namespaceSelector":{"description":"NamespaceSelector follows standard label selector semantics; if empty,\nit selects all Namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podSelector":{"description":"PodSelector is used to explicitly select pods within a namespace; if empty,\nit selects all Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}}},"x-kubernetes-validations":[{"message":"networks/nodes peer cannot be set with namedPorts since there are no namedPorts for networks/nodes","rule":"!(self.to.exists(peer, has(peer.networks) || has(peer.nodes)) && has(self.ports) && self.ports.exists(port, has(port.namedPort)))"}]}},"ingress":{"description":"Ingress is the list of Ingress rules to be applied to the selected pods\nif they are not matched by any AdminNetworkPolicy or NetworkPolicy rules.\nA total of 100 Ingress rules will be allowed in each BANP instance.\nThe relative precedence of ingress rules within a single BANP object\nwill be determined by the order in which the rule is written.\nThus, a rule that appears at the top of the ingress rules\nwould take the highest precedence.\nBANPs with no ingress rules do not affect ingress traffic.\n\n\nSupport: Core","type":"array","maxItems":100,"items":{"description":"BaselineAdminNetworkPolicyIngressRule describes an action to take on a particular\nset of traffic destined for pods selected by a BaselineAdminNetworkPolicy's\nSubject field.","type":"object","required":["action","from"],"properties":{"action":{"description":"Action specifies the effect this rule will have on matching traffic.\nCurrently the following actions are supported:\nAllow: allows the selected traffic\nDeny: denies the selected traffic\n\n\nSupport: Core","type":"string","enum":["Allow","Deny"]},"from":{"description":"From is the list of sources whose traffic this rule applies to.\nIf any AdminNetworkPolicyIngressPeer matches the source of incoming\ntraffic then the specified action is applied.\nThis field must be defined and contain at least one item.\n\n\nSupport: Core","type":"array","maxItems":100,"minItems":1,"items":{"description":"AdminNetworkPolicyIngressPeer defines an in-cluster peer to allow traffic from.\nExactly one of the selector pointers must be set for a given peer. If a\nconsumer observes none of its fields are set, they must assume an unknown\noption has been specified and fail closed.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namespaces":{"description":"Namespaces defines a way to select all pods within a set of Namespaces.\nNote that host-networked pods are not included in this type of peer.\n\n\nSupport: Core","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"pods":{"description":"Pods defines a way to select a set of pods in\na set of namespaces. Note that host-networked pods\nare not included in this type of peer.\n\n\nSupport: Core","type":"object","required":["namespaceSelector","podSelector"],"properties":{"namespaceSelector":{"description":"NamespaceSelector follows standard label selector semantics; if empty,\nit selects all Namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podSelector":{"description":"PodSelector is used to explicitly select pods within a namespace; if empty,\nit selects all Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}},"name":{"description":"Name is an identifier for this rule, that may be no more than 100 characters\nin length. This field should be used by the implementation to help\nimprove observability, readability and error-reporting for any applied\nBaselineAdminNetworkPolicies.\n\n\nSupport: Core","type":"string","maxLength":100},"ports":{"description":"Ports allows for matching traffic based on port and protocols.\nThis field is a list of ports which should be matched on\nthe pods selected for this policy i.e the subject of the policy.\nSo it matches on the destination port for the ingress traffic.\nIf Ports is not set then the rule does not filter traffic via port.\n\n\nSupport: Core","type":"array","maxItems":100,"items":{"description":"AdminNetworkPolicyPort describes how to select network ports on pod(s).\nExactly one field must be set.","type":"object","maxProperties":1,"minProperties":1,"properties":{"namedPort":{"description":"NamedPort selects a port on a pod(s) based on name.\n\n\nSupport: Extended\n\n\n<network-policy-api:experimental>","type":"string"},"portNumber":{"description":"Port selects a port on a pod(s) based on number.\n\n\nSupport: Core","type":"object","required":["port","protocol"],"properties":{"port":{"description":"Number defines a network port value.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"}}},"portRange":{"description":"PortRange selects a port range on a pod(s) based on provided start and end\nvalues.\n\n\nSupport: Core","type":"object","required":["end","start"],"properties":{"end":{"description":"End defines a network port that is the end of a port range, the End value\nmust be greater than Start.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol is the network protocol (TCP, UDP, or SCTP) which traffic must\nmatch. If not specified, this field defaults to TCP.\n\n\nSupport: Core","type":"string"},"start":{"description":"Start defines a network port that is the start of a port range, the Start\nvalue must be less than End.\n\n\nSupport: Core","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}}}}}},"subject":{"description":"Subject defines the pods to which this BaselineAdminNetworkPolicy applies.\nNote that host-networked pods are not included in subject selection.\n\n\nSupport: Core","type":"object","maxProperties":1,"minProperties":1,"properties":{"namespaces":{"description":"Namespaces is used to select pods via namespace selectors.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"pods":{"description":"Pods is used to select pods via namespace AND pod selectors.","type":"object","required":["namespaceSelector","podSelector"],"properties":{"namespaceSelector":{"description":"NamespaceSelector follows standard label selector semantics; if empty,\nit selects all Namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podSelector":{"description":"PodSelector is used to explicitly select pods within a namespace; if empty,\nit selects all Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}}},"status":{"description":"Status is the status to be reported by the implementation.","type":"object","required":["conditions"],"properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.\n---\nThis struct is intended for direct use as an array at the field path .status.conditions.  For example,\n\n\n\ttype FooStatus struct{\n\t    // Represents the observations of a foo's current state.\n\t    // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\"\n\t    // +patchMergeKey=type\n\t    // +patchStrategy=merge\n\t    // +listType=map\n\t    // +listMapKey=type\n\t    Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t    // other fields\n\t}","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.\n---\nMany .condition.type values are consistent across resources like Available, but because arbitrary conditions can be\nuseful (see .node.status.conditions), the ability to deconflict is important.\nThe regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicy","version":"v1alpha1"}],"x-kubernetes-validations":[{"message":"Only one baseline admin network policy with metadata.name=\"default\" can be created in the cluster","rule":"self.metadata.name == 'default'"}]},"io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicyList":{"description":"BaselineAdminNetworkPolicyList is a list of BaselineAdminNetworkPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of baselineadminnetworkpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.networking.policy.v1alpha1.BaselineAdminNetworkPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policy.networking.k8s.io","kind":"BaselineAdminNetworkPolicyList","version":"v1alpha1"}]},"io.k8s.storage.snapshot.v1.VolumeSnapshot":{"description":"VolumeSnapshot is a user's request for either creating a point-in-time\nsnapshot of a persistent volume, or binding to a pre-existing snapshot.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec defines the desired characteristics of a snapshot requested by a user.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-snapshots#volumesnapshots\nRequired.","type":"object","required":["source"],"properties":{"source":{"description":"source specifies where a snapshot will be created from.\nThis field is immutable after creation.\nRequired.","type":"object","properties":{"persistentVolumeClaimName":{"description":"persistentVolumeClaimName specifies the name of the PersistentVolumeClaim\nobject representing the volume from which a snapshot should be created.\nThis PVC is assumed to be in the same namespace as the VolumeSnapshot\nobject.\nThis field should be set if the snapshot does not exists, and needs to be\ncreated.\nThis field is immutable.","type":"string","x-kubernetes-validations":[{"message":"persistentVolumeClaimName is immutable","rule":"self == oldSelf"}]},"volumeSnapshotContentName":{"description":"volumeSnapshotContentName specifies the name of a pre-existing VolumeSnapshotContent\nobject representing an existing volume snapshot.\nThis field should be set if the snapshot already exists and only needs a representation in Kubernetes.\nThis field is immutable.","type":"string","x-kubernetes-validations":[{"message":"volumeSnapshotContentName is immutable","rule":"self == oldSelf"}]}},"x-kubernetes-validations":[{"message":"persistentVolumeClaimName is required once set","rule":"!has(oldSelf.persistentVolumeClaimName) || has(self.persistentVolumeClaimName)"},{"message":"volumeSnapshotContentName is required once set","rule":"!has(oldSelf.volumeSnapshotContentName) || has(self.volumeSnapshotContentName)"},{"message":"exactly one of volumeSnapshotContentName and persistentVolumeClaimName must be set","rule":"(has(self.volumeSnapshotContentName) && !has(self.persistentVolumeClaimName)) || (!has(self.volumeSnapshotContentName) && has(self.persistentVolumeClaimName))"}]},"volumeSnapshotClassName":{"description":"VolumeSnapshotClassName is the name of the VolumeSnapshotClass\nrequested by the VolumeSnapshot.\nVolumeSnapshotClassName may be left nil to indicate that the default\nSnapshotClass should be used.\nA given cluster may have multiple default Volume SnapshotClasses: one\ndefault per CSI Driver. If a VolumeSnapshot does not specify a SnapshotClass,\nVolumeSnapshotSource will be checked to figure out what the associated\nCSI Driver is, and the default VolumeSnapshotClass associated with that\nCSI Driver will be used. If more than one VolumeSnapshotClass exist for\na given CSI Driver and more than one have been marked as default,\nCreateSnapshot will fail and generate an event.\nEmpty string is not allowed for this field.","type":"string","x-kubernetes-validations":[{"message":"volumeSnapshotClassName must not be the empty string when set","rule":"size(self) > 0"}]}}},"status":{"description":"status represents the current information of a snapshot.\nConsumers must verify binding between VolumeSnapshot and\nVolumeSnapshotContent objects is successful (by validating that both\nVolumeSnapshot and VolumeSnapshotContent point at each other) before\nusing this object.","type":"object","properties":{"boundVolumeSnapshotContentName":{"description":"boundVolumeSnapshotContentName is the name of the VolumeSnapshotContent\nobject to which this VolumeSnapshot object intends to bind to.\nIf not specified, it indicates that the VolumeSnapshot object has not been\nsuccessfully bound to a VolumeSnapshotContent object yet.\nNOTE: To avoid possible security issues, consumers must verify binding between\nVolumeSnapshot and VolumeSnapshotContent objects is successful (by validating that\nboth VolumeSnapshot and VolumeSnapshotContent point at each other) before using\nthis object.","type":"string"},"creationTime":{"description":"creationTime is the timestamp when the point-in-time snapshot is taken\nby the underlying storage system.\nIn dynamic snapshot creation case, this field will be filled in by the\nsnapshot controller with the \"creation_time\" value returned from CSI\n\"CreateSnapshot\" gRPC call.\nFor a pre-existing snapshot, this field will be filled with the \"creation_time\"\nvalue returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it.\nIf not specified, it may indicate that the creation time of the snapshot is unknown.","type":"string","format":"date-time"},"error":{"description":"error is the last observed error during snapshot creation, if any.\nThis field could be helpful to upper level controllers(i.e., application controller)\nto decide whether they should continue on waiting for the snapshot to be created\nbased on the type of error reported.\nThe snapshot controller will keep retrying when an error occurs during the\nsnapshot creation. Upon success, this error field will be cleared.","type":"object","properties":{"message":{"description":"message is a string detailing the encountered error during snapshot\ncreation if specified.\nNOTE: message may be logged, and it should not contain sensitive\ninformation.","type":"string"},"time":{"description":"time is the timestamp when the error was encountered.","type":"string","format":"date-time"}}},"readyToUse":{"description":"readyToUse indicates if the snapshot is ready to be used to restore a volume.\nIn dynamic snapshot creation case, this field will be filled in by the\nsnapshot controller with the \"ready_to_use\" value returned from CSI\n\"CreateSnapshot\" gRPC call.\nFor a pre-existing snapshot, this field will be filled with the \"ready_to_use\"\nvalue returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it,\notherwise, this field will be set to \"True\".\nIf not specified, it means the readiness of a snapshot is unknown.","type":"boolean"},"restoreSize":{"description":"restoreSize represents the minimum size of volume required to create a volume\nfrom this snapshot.\nIn dynamic snapshot creation case, this field will be filled in by the\nsnapshot controller with the \"size_bytes\" value returned from CSI\n\"CreateSnapshot\" gRPC call.\nFor a pre-existing snapshot, this field will be filled with the \"size_bytes\"\nvalue returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it.\nWhen restoring a volume from this snapshot, the size of the volume MUST NOT\nbe smaller than the restoreSize if it is specified, otherwise the restoration will fail.\nIf not specified, it indicates that the size is unknown.","type":"string","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"volumeGroupSnapshotName":{"description":"VolumeGroupSnapshotName is the name of the VolumeGroupSnapshot of which this\nVolumeSnapshot is a part of.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshot","version":"v1"}]},"io.k8s.storage.snapshot.v1.VolumeSnapshotClass":{"description":"VolumeSnapshotClass specifies parameters that a underlying storage system uses when\ncreating a volume snapshot. A specific VolumeSnapshotClass is used by specifying its\nname in a VolumeSnapshot object.\nVolumeSnapshotClasses are non-namespaced","type":"object","required":["deletionPolicy","driver"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"deletionPolicy":{"description":"deletionPolicy determines whether a VolumeSnapshotContent created through\nthe VolumeSnapshotClass should be deleted when its bound VolumeSnapshot is deleted.\nSupported values are \"Retain\" and \"Delete\".\n\"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept.\n\"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted.\nRequired.","type":"string","enum":["Delete","Retain"]},"driver":{"description":"driver is the name of the storage driver that handles this VolumeSnapshotClass.\nRequired.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"parameters":{"description":"parameters is a key-value map with storage driver specific parameters for creating snapshots.\nThese values are opaque to Kubernetes.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-group-version-kind":[{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClass","version":"v1"}]},"io.k8s.storage.snapshot.v1.VolumeSnapshotClassList":{"description":"VolumeSnapshotClassList is a list of VolumeSnapshotClass","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of volumesnapshotclasses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotClassList","version":"v1"}]},"io.k8s.storage.snapshot.v1.VolumeSnapshotContent":{"description":"VolumeSnapshotContent represents the actual \"on-disk\" snapshot object in the\nunderlying storage system","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec defines properties of a VolumeSnapshotContent created by the underlying storage system.\nRequired.","type":"object","required":["deletionPolicy","driver","source","volumeSnapshotRef"],"properties":{"deletionPolicy":{"description":"deletionPolicy determines whether this VolumeSnapshotContent and its physical snapshot on\nthe underlying storage system should be deleted when its bound VolumeSnapshot is deleted.\nSupported values are \"Retain\" and \"Delete\".\n\"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept.\n\"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted.\nFor dynamically provisioned snapshots, this field will automatically be filled in by the\nCSI snapshotter sidecar with the \"DeletionPolicy\" field defined in the corresponding\nVolumeSnapshotClass.\nFor pre-existing snapshots, users MUST specify this field when creating the\n VolumeSnapshotContent object.\nRequired.","type":"string","enum":["Delete","Retain"]},"driver":{"description":"driver is the name of the CSI driver used to create the physical snapshot on\nthe underlying storage system.\nThis MUST be the same as the name returned by the CSI GetPluginName() call for\nthat driver.\nRequired.","type":"string"},"source":{"description":"source specifies whether the snapshot is (or should be) dynamically provisioned\nor already exists, and just requires a Kubernetes object representation.\nThis field is immutable after creation.\nRequired.","type":"object","properties":{"snapshotHandle":{"description":"snapshotHandle specifies the CSI \"snapshot_id\" of a pre-existing snapshot on\nthe underlying storage system for which a Kubernetes object representation\nwas (or should be) created.\nThis field is immutable.","type":"string","x-kubernetes-validations":[{"message":"snapshotHandle is immutable","rule":"self == oldSelf"}]},"volumeHandle":{"description":"volumeHandle specifies the CSI \"volume_id\" of the volume from which a snapshot\nshould be dynamically taken from.\nThis field is immutable.","type":"string","x-kubernetes-validations":[{"message":"volumeHandle is immutable","rule":"self == oldSelf"}]}},"x-kubernetes-validations":[{"message":"volumeHandle is required once set","rule":"!has(oldSelf.volumeHandle) || has(self.volumeHandle)"},{"message":"snapshotHandle is required once set","rule":"!has(oldSelf.snapshotHandle) || has(self.snapshotHandle)"},{"message":"exactly one of volumeHandle and snapshotHandle must be set","rule":"(has(self.volumeHandle) && !has(self.snapshotHandle)) || (!has(self.volumeHandle) && has(self.snapshotHandle))"}]},"sourceVolumeMode":{"description":"SourceVolumeMode is the mode of the volume whose snapshot is taken.\nCan be either “Filesystem” or “Block”.\nIf not specified, it indicates the source volume's mode is unknown.\nThis field is immutable.\nThis field is an alpha field.","type":"string","x-kubernetes-validations":[{"message":"sourceVolumeMode is immutable","rule":"self == oldSelf"}]},"volumeSnapshotClassName":{"description":"name of the VolumeSnapshotClass from which this snapshot was (or will be)\ncreated.\nNote that after provisioning, the VolumeSnapshotClass may be deleted or\nrecreated with different set of values, and as such, should not be referenced\npost-snapshot creation.","type":"string"},"volumeSnapshotRef":{"description":"volumeSnapshotRef specifies the VolumeSnapshot object to which this\nVolumeSnapshotContent object is bound.\nVolumeSnapshot.Spec.VolumeSnapshotContentName field must reference to\nthis VolumeSnapshotContent's name for the bidirectional binding to be valid.\nFor a pre-existing VolumeSnapshotContent object, name and namespace of the\nVolumeSnapshot object MUST be provided for binding to happen.\nThis field is immutable after creation.\nRequired.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.\nTODO: this design is not final and this field is subject to change in the future.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic","x-kubernetes-validations":[{"message":"both spec.volumeSnapshotRef.name and spec.volumeSnapshotRef.namespace must be set","rule":"has(self.name) && has(self.__namespace__)"}]}},"x-kubernetes-validations":[{"message":"sourceVolumeMode is required once set","rule":"!has(oldSelf.sourceVolumeMode) || has(self.sourceVolumeMode)"}]},"status":{"description":"status represents the current information of a snapshot.","type":"object","properties":{"creationTime":{"description":"creationTime is the timestamp when the point-in-time snapshot is taken\nby the underlying storage system.\nIn dynamic snapshot creation case, this field will be filled in by the\nCSI snapshotter sidecar with the \"creation_time\" value returned from CSI\n\"CreateSnapshot\" gRPC call.\nFor a pre-existing snapshot, this field will be filled with the \"creation_time\"\nvalue returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it.\nIf not specified, it indicates the creation time is unknown.\nThe format of this field is a Unix nanoseconds time encoded as an int64.\nOn Unix, the command `date +%s%N` returns the current time in nanoseconds\nsince 1970-01-01 00:00:00 UTC.","type":"integer","format":"int64"},"error":{"description":"error is the last observed error during snapshot creation, if any.\nUpon success after retry, this error field will be cleared.","type":"object","properties":{"message":{"description":"message is a string detailing the encountered error during snapshot\ncreation if specified.\nNOTE: message may be logged, and it should not contain sensitive\ninformation.","type":"string"},"time":{"description":"time is the timestamp when the error was encountered.","type":"string","format":"date-time"}}},"readyToUse":{"description":"readyToUse indicates if a snapshot is ready to be used to restore a volume.\nIn dynamic snapshot creation case, this field will be filled in by the\nCSI snapshotter sidecar with the \"ready_to_use\" value returned from CSI\n\"CreateSnapshot\" gRPC call.\nFor a pre-existing snapshot, this field will be filled with the \"ready_to_use\"\nvalue returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it,\notherwise, this field will be set to \"True\".\nIf not specified, it means the readiness of a snapshot is unknown.","type":"boolean"},"restoreSize":{"description":"restoreSize represents the complete size of the snapshot in bytes.\nIn dynamic snapshot creation case, this field will be filled in by the\nCSI snapshotter sidecar with the \"size_bytes\" value returned from CSI\n\"CreateSnapshot\" gRPC call.\nFor a pre-existing snapshot, this field will be filled with the \"size_bytes\"\nvalue returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it.\nWhen restoring a volume from this snapshot, the size of the volume MUST NOT\nbe smaller than the restoreSize if it is specified, otherwise the restoration will fail.\nIf not specified, it indicates that the size is unknown.","type":"integer","format":"int64","minimum":0},"snapshotHandle":{"description":"snapshotHandle is the CSI \"snapshot_id\" of a snapshot on the underlying storage system.\nIf not specified, it indicates that dynamic snapshot creation has either failed\nor it is still in progress.","type":"string"},"volumeGroupSnapshotHandle":{"description":"VolumeGroupSnapshotHandle is the CSI \"group_snapshot_id\" of a group snapshot\non the underlying storage system.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContent","version":"v1"}]},"io.k8s.storage.snapshot.v1.VolumeSnapshotContentList":{"description":"VolumeSnapshotContentList is a list of VolumeSnapshotContent","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of volumesnapshotcontents. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshotContent"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotContentList","version":"v1"}]},"io.k8s.storage.snapshot.v1.VolumeSnapshotList":{"description":"VolumeSnapshotList is a list of VolumeSnapshot","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of volumesnapshots. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.k8s.storage.snapshot.v1.VolumeSnapshot"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"snapshot.storage.k8s.io","kind":"VolumeSnapshotList","version":"v1"}]},"io.kyverno.policies.v1alpha1.DeletingPolicy":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DeletingPolicySpec is the specification of the desired behavior of the DeletingPolicy.","type":"object","required":["schedule"],"properties":{"conditions":{"description":"Conditions is a list of conditions that must be met for a resource to be deleted.\nConditions filter resources that have already been matched by the match constraints,\nnamespaceSelector, and objectSelector. An empty list of conditions matches all resources.\nThere are a maximum of 64 conditions allowed.\n\nThe exact matching logic is (in order):\n  1. If ANY condition evaluates to FALSE, the policy is skipped.\n  2. If ALL conditions evaluate to TRUE, the policy is executed.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"deletionPropagationPolicy":{"description":"DeletionPropagationPolicy defines how resources will be deleted (Foreground, Background, Orphan).","type":"string","enum":["Foreground","Background","Orphan"]},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to validate.\nThe AdmissionPolicy cares about a request if it matches _all_ Constraints.\nRequired.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the cel validation, and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"schedule":{"description":"The schedule in Cron format\nRequired.","type":"string"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy\nexcept MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after.\nThus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"conditionStatus":{"description":"ConditionStatus is the shared status across all policy types","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"message":{"description":"Message is a human readable message indicating details about the generation of ValidatingAdmissionPolicy/MutatingAdmissionPolicy\nIt is an empty string when ValidatingAdmissionPolicy/MutatingAdmissionPolicy is successfully generated.","type":"string"},"ready":{"description":"The ready of a policy is a high-level summary of where the policy is in its lifecycle.\nThe conditions array, the reason and message fields contain more detail about the policy's status.","type":"boolean"}}},"lastExecutionTime":{"type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"DeletingPolicy","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.DeletingPolicyList":{"description":"DeletingPolicyList is a list of DeletingPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of deletingpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.DeletingPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"DeletingPolicyList","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.GeneratingPolicy":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"GeneratingPolicySpec is the specification of the desired behavior of the GeneratingPolicy.","type":"object","required":["generate"],"properties":{"evaluation":{"description":"EvaluationConfiguration defines the configuration for the policy evaluation.","type":"object","properties":{"admission":{"description":"Admission controls policy evaluation during admission.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"}}},"generateExisting":{"description":"GenerateExisting defines the configuration for generating resources for existing triggeres.","type":"object","properties":{"enabled":{"description":"Enabled controls whether to trigger the policy for existing resources\nIf is set to \"true\" the policy will be triggered and applied to existing matched resources.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete defines the configuration for orphaning downstream resources on policy delete.","type":"object","properties":{"enabled":{"description":"Enabled controls whether generated resources should be deleted when the policy that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}},"synchronize":{"description":"Synchronization defines the configuration for the synchronization of generated resources.","type":"object","properties":{"enabled":{"description":"Enabled controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}}}},"generate":{"description":"Generation defines a set of CEL expressions that will be evaluated to generate resources.\nRequired.","type":"array","minItems":1,"items":{"description":"Generation defines the configuration for the generation of resources.","type":"object","properties":{"expression":{"description":"Expression is a CEL expression that takes a list of resources to be generated.","type":"string"}}}},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated.\nMatch conditions filter requests that have already been matched by the rules,\nnamespaceSelector, and objectSelector. An empty list of matchConditions matches all requests.\nThere are a maximum of 64 match conditions allowed.\n\nIf a parameter object is provided, it can be accessed via the `params` handle in the same\nmanner as validation expressions.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the policy is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the policy is evaluated.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the policy is skipped","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"matchConstraints":{"description":"MatchConstraints specifies what resources will trigger this policy.\nThe AdmissionPolicy cares about a request if it matches _all_ Constraints.\nRequired.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the cel validation, and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy\nexcept MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after.\nThus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"webhookConfiguration":{"description":"WebhookConfiguration defines the configuration for the webhook.","type":"object","properties":{"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"conditionStatus":{"description":"ConditionStatus is the shared status across all policy types","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"message":{"description":"Message is a human readable message indicating details about the generation of ValidatingAdmissionPolicy/MutatingAdmissionPolicy\nIt is an empty string when ValidatingAdmissionPolicy/MutatingAdmissionPolicy is successfully generated.","type":"string"},"ready":{"description":"The ready of a policy is a high-level summary of where the policy is in its lifecycle.\nThe conditions array, the reason and message fields contain more detail about the policy's status.","type":"boolean"}}}}}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"GeneratingPolicy","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.GeneratingPolicyList":{"description":"GeneratingPolicyList is a list of GeneratingPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of generatingpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.GeneratingPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"GeneratingPolicyList","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.ImageValidatingPolicy":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ImageValidatingPolicySpec is the specification of the desired behavior of the ImageValidatingPolicy.","type":"object","required":["attestors","validations"],"properties":{"attestations":{"description":"Attestations provides a list of image metadata to verify","type":"array","items":{"description":"Attestation defines the identification details of the  metadata that has to be verified","type":"object","required":["name"],"properties":{"intoto":{"description":"InToto defines the details of attestation attached using intoto format","type":"object","required":["type"],"properties":{"type":{"description":"Type defines the type of attestation contained within the statement.","type":"string"}}},"name":{"description":"Name is the name for this attestation. It is used to refer to the attestation in verification","type":"string"},"referrer":{"description":"Referrer defines the details of attestation attached using OCI 1.1 format","type":"object","required":["type"],"properties":{"type":{"description":"Type defines the type of attestation attached to the image.","type":"string"}}}}}},"attestors":{"description":"Attestors provides a list of trusted authorities.","type":"array","items":{"description":"Attestor is an identity that confirms or verifies the authenticity of an image or an attestation","type":"object","required":["name"],"properties":{"cosign":{"description":"Cosign defines attestor configuration for Cosign based signatures","type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"certificate":{"description":"Certificate defines the configuration for local signature verification","type":"object","properties":{"cert":{"description":"Certificate is the to the public certificate for local signature verification.","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}},"certChain":{"description":"CertificateChain is the list of CA certificates in PEM format which will be needed\nwhen building the certificate chain for the signing certificate. Must start with the\nparent intermediate CA certificate of the signing certificate and end with the root certificate","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}}}},"ctlog":{"description":"CTLog sets the configuration to verify the authority against a Rekor instance.","type":"object","properties":{"ctLogPubKey":{"description":"CTLogPubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"insecureIgnoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"insecureIgnoreTlog":{"description":"InsecureIgnoreTlog skips transparency log verification.","type":"boolean"},"rekorPubKey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"},"url":{"description":"URL sets the url to the rekor instance (by default the public rekor.sigstore.dev)","type":"string"}}},"key":{"description":"Key defines the type of key to validate the image.","type":"object","properties":{"data":{"description":"Data contains the inline public key","type":"string"},"expression":{"description":"Expression is a Expression expression that returns the public key.","type":"string"},"hashAlgorithm":{"description":"HashAlgorithm specifues signature algorithm for public keys. Supported values are\nsha224, sha256, sha384 and sha512. Defaults to sha256.","type":"string"},"kms":{"description":"KMS contains the KMS url of the public key\nSupported formats differ based on the KMS system used.","type":"string"}}},"keyless":{"description":"Keyless sets the configuration to verify the authority against a Fulcio instance.","type":"object","required":["identities"],"properties":{"identities":{"description":"Identities sets a list of identities.","type":"array","items":{"description":"Identity may contain the issuer and/or the subject found in the transparency\nlog.\nIssuer/Subject uses a strict match, while IssuerRegExp and SubjectRegExp\napply a regexp for matching.","type":"object","properties":{"issuer":{"description":"Issuer defines the issuer for this identity.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp specifies a regular expression to match the issuer for this identity.","type":"string"},"subject":{"description":"Subject defines the subject for this identity.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp specifies a regular expression to match the subject for this identity.","type":"string"}}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"}}},"source":{"description":"Sources sets the configuration to specify the sources from where to consume the signature and attestations.","type":"object","properties":{"PullSecrets":{"description":"SignaturePullSecrets is an optional list of references to secrets in the\nsame namespace as the deploying resource for pulling any of the signatures\nused by this Source.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"repository":{"description":"Repository defines the location from where to pull the signature / attestations.","type":"string"},"tagPrefix":{"description":"TagPrefix is an optional prefix that signature and attestations have.\nThis is the 'tag based discovery' and in the future once references are\nfully supported that should likely be the preferred way to handle these.","type":"string"}}},"tuf":{"description":"TUF defines the configuration to fetch sigstore root","type":"object","properties":{"mirror":{"description":"Mirror is the base URL of Sigstore TUF repository","type":"string"},"root":{"description":"Root defines the path or data of the trusted root","type":"object","properties":{"data":{"description":"Data is the base64 encoded TUF root","type":"string"},"path":{"description":"Path is the URL or File location of the TUF root","type":"string"}}}}}}},"name":{"description":"Name is the name for this attestor. It is used to refer to the attestor in verification","type":"string"},"notary":{"description":"Notary defines attestor configuration for Notary based signatures","type":"object","properties":{"certs":{"description":"Certs define the cert chain for Notary signature verification","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}},"tsaCerts":{"description":"TSACerts define the cert chain for verifying timestamps of notary signature","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}}}}}}},"auditAnnotations":{"description":"auditAnnotations contains CEL expressions which are used to produce audit\nannotations for the audit event of the API request.\nvalidations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is\nrequired.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"autogen":{"description":"AutogenConfiguration defines the configuration for the generation controller.","type":"object","properties":{"podControllers":{"description":"PodControllers specifies whether to generate a pod controllers rules.","type":"object","properties":{"controllers":{"type":"array","items":{"type":"string"}}}}}},"credentials":{"description":"Credentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"CredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"evaluation":{"description":"EvaluationConfiguration defines the configuration for the policy evaluation.","type":"object","properties":{"admission":{"description":"Admission controls policy evaluation during admission.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"}}},"background":{"description":"Background  controls policy evaluation during background scan.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"}}},"mode":{"description":"Mode is the mode of policy evaluation.\nAllowed values are \"Kubernetes\" or \"JSON\".\nOptional. Default value is \"Kubernetes\".","type":"string"}}},"failurePolicy":{"description":"FailurePolicy defines how to handle failures for the admission policy. Failures can\noccur from CEL expression parse errors, type check errors, runtime errors and invalid\nor mis-configured policy definitions or bindings.","type":"string","enum":["Ignore","Fail"]},"images":{"description":"ImageExtractors is a list of CEL expression to extract images from the resource","type":"array","items":{"type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression defines CEL expression to extract images from the resource.","type":"string"},"name":{"description":"Name is the name for this imageList. It is used to refer to the images in verification block as images.<name>","type":"string"}}}},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated.\nMatch conditions filter requests that have already been matched by the rules,\nnamespaceSelector, and objectSelector. An empty list of matchConditions matches all requests.\nThere are a maximum of 64 match conditions allowed.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to validate.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the cel validation, and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"matchImageReferences":{"description":"MatchImageReferences is a list of Glob and CELExpressions to match images.\nAny image that matches one of the rules is considered for validation\nAny image that does not match a rule is skipped, even when they are passed as arguments to\nimage verification functions","type":"array","items":{"description":"MatchImageReference defines a Glob or a CEL expression for matching images","type":"object","properties":{"expression":{"description":"Expression defines CEL Expressions for matching images","type":"string"},"glob":{"description":"Glob defines a globbing pattern for matching images","type":"string"}}}},"validationActions":{"description":"ValidationAction specifies the action to be taken when the matched resource violates the policy.\nRequired.","type":"array","items":{"description":"ValidationAction specifies a policy enforcement action.","type":"string","enum":["Deny","Audit","Warn"]},"x-kubernetes-list-type":"set"},"validationConfigurations":{"description":"ValidationConfigurations defines settings for mutating and verifying image digests, and enforcing image verification through signatures.","type":"object","properties":{"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"required":{"description":"Required validates that images are verified, i.e., have passed a signature or attestation check.","type":"boolean"},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}},"validations":{"description":"Validations contain CEL expressions which is used to apply the image validation checks.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}},"webhookConfiguration":{"description":"WebhookConfiguration defines the configuration for the webhook.","type":"object","properties":{"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"autogen":{"type":"object","properties":{"configs":{"type":"object","additionalProperties":{"type":"object","required":["spec","targets"],"properties":{"spec":{"description":"ImageValidatingPolicySpec is the specification of the desired behavior of the ImageValidatingPolicy.","type":"object","required":["attestors","validations"],"properties":{"attestations":{"description":"Attestations provides a list of image metadata to verify","type":"array","items":{"description":"Attestation defines the identification details of the  metadata that has to be verified","type":"object","required":["name"],"properties":{"intoto":{"description":"InToto defines the details of attestation attached using intoto format","type":"object","required":["type"],"properties":{"type":{"description":"Type defines the type of attestation contained within the statement.","type":"string"}}},"name":{"description":"Name is the name for this attestation. It is used to refer to the attestation in verification","type":"string"},"referrer":{"description":"Referrer defines the details of attestation attached using OCI 1.1 format","type":"object","required":["type"],"properties":{"type":{"description":"Type defines the type of attestation attached to the image.","type":"string"}}}}}},"attestors":{"description":"Attestors provides a list of trusted authorities.","type":"array","items":{"description":"Attestor is an identity that confirms or verifies the authenticity of an image or an attestation","type":"object","required":["name"],"properties":{"cosign":{"description":"Cosign defines attestor configuration for Cosign based signatures","type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"certificate":{"description":"Certificate defines the configuration for local signature verification","type":"object","properties":{"cert":{"description":"Certificate is the to the public certificate for local signature verification.","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}},"certChain":{"description":"CertificateChain is the list of CA certificates in PEM format which will be needed\nwhen building the certificate chain for the signing certificate. Must start with the\nparent intermediate CA certificate of the signing certificate and end with the root certificate","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}}}},"ctlog":{"description":"CTLog sets the configuration to verify the authority against a Rekor instance.","type":"object","properties":{"ctLogPubKey":{"description":"CTLogPubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"insecureIgnoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"insecureIgnoreTlog":{"description":"InsecureIgnoreTlog skips transparency log verification.","type":"boolean"},"rekorPubKey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"},"url":{"description":"URL sets the url to the rekor instance (by default the public rekor.sigstore.dev)","type":"string"}}},"key":{"description":"Key defines the type of key to validate the image.","type":"object","properties":{"data":{"description":"Data contains the inline public key","type":"string"},"expression":{"description":"Expression is a Expression expression that returns the public key.","type":"string"},"hashAlgorithm":{"description":"HashAlgorithm specifues signature algorithm for public keys. Supported values are\nsha224, sha256, sha384 and sha512. Defaults to sha256.","type":"string"},"kms":{"description":"KMS contains the KMS url of the public key\nSupported formats differ based on the KMS system used.","type":"string"}}},"keyless":{"description":"Keyless sets the configuration to verify the authority against a Fulcio instance.","type":"object","required":["identities"],"properties":{"identities":{"description":"Identities sets a list of identities.","type":"array","items":{"description":"Identity may contain the issuer and/or the subject found in the transparency\nlog.\nIssuer/Subject uses a strict match, while IssuerRegExp and SubjectRegExp\napply a regexp for matching.","type":"object","properties":{"issuer":{"description":"Issuer defines the issuer for this identity.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp specifies a regular expression to match the issuer for this identity.","type":"string"},"subject":{"description":"Subject defines the subject for this identity.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp specifies a regular expression to match the subject for this identity.","type":"string"}}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"}}},"source":{"description":"Sources sets the configuration to specify the sources from where to consume the signature and attestations.","type":"object","properties":{"PullSecrets":{"description":"SignaturePullSecrets is an optional list of references to secrets in the\nsame namespace as the deploying resource for pulling any of the signatures\nused by this Source.","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}},"repository":{"description":"Repository defines the location from where to pull the signature / attestations.","type":"string"},"tagPrefix":{"description":"TagPrefix is an optional prefix that signature and attestations have.\nThis is the 'tag based discovery' and in the future once references are\nfully supported that should likely be the preferred way to handle these.","type":"string"}}},"tuf":{"description":"TUF defines the configuration to fetch sigstore root","type":"object","properties":{"mirror":{"description":"Mirror is the base URL of Sigstore TUF repository","type":"string"},"root":{"description":"Root defines the path or data of the trusted root","type":"object","properties":{"data":{"description":"Data is the base64 encoded TUF root","type":"string"},"path":{"description":"Path is the URL or File location of the TUF root","type":"string"}}}}}}},"name":{"description":"Name is the name for this attestor. It is used to refer to the attestor in verification","type":"string"},"notary":{"description":"Notary defines attestor configuration for Notary based signatures","type":"object","properties":{"certs":{"description":"Certs define the cert chain for Notary signature verification","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}},"tsaCerts":{"description":"TSACerts define the cert chain for verifying timestamps of notary signature","type":"object","properties":{"expression":{"description":"Expression defines the a CEL expression input.","type":"string"},"value":{"description":"Value defines the raw string input.","type":"string"}}}}}}}},"auditAnnotations":{"description":"auditAnnotations contains CEL expressions which are used to produce audit\nannotations for the audit event of the API request.\nvalidations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is\nrequired.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"autogen":{"description":"AutogenConfiguration defines the configuration for the generation controller.","type":"object","properties":{"podControllers":{"description":"PodControllers specifies whether to generate a pod controllers rules.","type":"object","properties":{"controllers":{"type":"array","items":{"type":"string"}}}}}},"credentials":{"description":"Credentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"CredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"evaluation":{"description":"EvaluationConfiguration defines the configuration for the policy evaluation.","type":"object","properties":{"admission":{"description":"Admission controls policy evaluation during admission.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"}}},"background":{"description":"Background  controls policy evaluation during background scan.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"}}},"mode":{"description":"Mode is the mode of policy evaluation.\nAllowed values are \"Kubernetes\" or \"JSON\".\nOptional. Default value is \"Kubernetes\".","type":"string"}}},"failurePolicy":{"description":"FailurePolicy defines how to handle failures for the admission policy. Failures can\noccur from CEL expression parse errors, type check errors, runtime errors and invalid\nor mis-configured policy definitions or bindings.","type":"string","enum":["Ignore","Fail"]},"images":{"description":"ImageExtractors is a list of CEL expression to extract images from the resource","type":"array","items":{"type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression defines CEL expression to extract images from the resource.","type":"string"},"name":{"description":"Name is the name for this imageList. It is used to refer to the images in verification block as images.<name>","type":"string"}}}},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated.\nMatch conditions filter requests that have already been matched by the rules,\nnamespaceSelector, and objectSelector. An empty list of matchConditions matches all requests.\nThere are a maximum of 64 match conditions allowed.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to validate.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the cel validation, and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"matchImageReferences":{"description":"MatchImageReferences is a list of Glob and CELExpressions to match images.\nAny image that matches one of the rules is considered for validation\nAny image that does not match a rule is skipped, even when they are passed as arguments to\nimage verification functions","type":"array","items":{"description":"MatchImageReference defines a Glob or a CEL expression for matching images","type":"object","properties":{"expression":{"description":"Expression defines CEL Expressions for matching images","type":"string"},"glob":{"description":"Glob defines a globbing pattern for matching images","type":"string"}}}},"validationActions":{"description":"ValidationAction specifies the action to be taken when the matched resource violates the policy.\nRequired.","type":"array","items":{"description":"ValidationAction specifies a policy enforcement action.","type":"string","enum":["Deny","Audit","Warn"]},"x-kubernetes-list-type":"set"},"validationConfigurations":{"description":"ValidationConfigurations defines settings for mutating and verifying image digests, and enforcing image verification through signatures.","type":"object","properties":{"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"required":{"description":"Required validates that images are verified, i.e., have passed a signature or attestation check.","type":"boolean"},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}},"validations":{"description":"Validations contain CEL expressions which is used to apply the image validation checks.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}},"webhookConfiguration":{"description":"WebhookConfiguration defines the configuration for the webhook.","type":"object","properties":{"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}}}},"targets":{"type":"array","items":{"type":"object","required":["kind","resource","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"resource":{"type":"string"},"version":{"type":"string"}}}}}}}}},"conditionStatus":{"description":"ConditionStatus is the shared status across all policy types","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"message":{"description":"Message is a human readable message indicating details about the generation of ValidatingAdmissionPolicy/MutatingAdmissionPolicy\nIt is an empty string when ValidatingAdmissionPolicy/MutatingAdmissionPolicy is successfully generated.","type":"string"},"ready":{"description":"The ready of a policy is a high-level summary of where the policy is in its lifecycle.\nThe conditions array, the reason and message fields contain more detail about the policy's status.","type":"boolean"}}}}}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"ImageValidatingPolicy","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.ImageValidatingPolicyList":{"description":"ImageValidatingPolicyList is a list of ImageValidatingPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imagevalidatingpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ImageValidatingPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"ImageValidatingPolicyList","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.MutatingPolicy":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"MutatingPolicySpec is the specification of the desired behavior of the MutatingPolicy.","type":"object","properties":{"autogen":{"description":"AutogenConfiguration defines the configuration for the generation controller.","type":"object","properties":{"mutatingAdmissionPolicy":{"description":"MutatingAdmissionPolicy specifies whether to generate a Kubernetes MutatingAdmissionPolicy.","type":"object","properties":{"enabled":{"description":"Enabled specifies whether to generate a Kubernetes MutatingAdmissionPolicy.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}},"podControllers":{"description":"PodControllers specifies whether to generate a pod controllers rules.","type":"object","properties":{"controllers":{"type":"array","items":{"type":"string"}}}}}},"evaluation":{"description":"EvaluationConfiguration defines the configuration for mutating policy evaluation.","type":"object","properties":{"admission":{"description":"Admission controls policy evaluation during admission.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"}}},"mutateExisting":{"description":"MutateExisting controls whether existing resources are mutated.","type":"object","properties":{"enabled":{"description":"Enabled enables mutation of existing resources. Default is false.\nWhen spec.targetMatchConstraints is not defined, Kyverno mutates existing resources matched in spec.matchConstraints.","type":"boolean"}}}}},"failurePolicy":{"description":"failurePolicy defines how to handle failures for the admission policy. Failures can\noccur from CEL expression parse errors, type check errors, runtime errors and invalid\nor mis-configured policy definitions or bindings.\n\nfailurePolicy does not define how validations that evaluate to false are handled.\n\nWhen failurePolicy is set to Fail, the validationActions field define how failures are enforced.\n\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated.\nMatch conditions filter requests that have already been matched by the rules,\nnamespaceSelector, and objectSelector. An empty list of matchConditions matches all requests.\nThere are a maximum of 64 match conditions allowed.\n\nIf a parameter object is provided, it can be accessed via the `params` handle in the same\nmanner as validation expressions.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the policy is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the policy is evaluated.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the policy is skipped","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to evaluate.\nThe AdmissionPolicy cares about a request if it matches _all_ Constraints.\nRequired.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the policy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy does not consider requests to apps/v1beta1 or extensions/v1beta1 API groups.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy **does** consider requests made to apps/v1beta1 or extensions/v1beta1\nAPI groups. The API server translates the request to a matched resource API if necessary.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the policy based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the policy's expression (CEL), and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the admission policy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"mutations":{"description":"mutations contain operations to perform on matching objects.\nmutations may not be empty; a minimum of one mutation is required.\nmutations are evaluated in order, and are reinvoked according to\nthe reinvocationPolicy.\nThe mutations of a policy are invoked for each binding of this policy\nand reinvocation of mutations occurs on a per binding basis.","type":"array","items":{"description":"Mutation specifies the CEL expression which is used to apply the Mutation.","type":"object","required":["patchType"],"properties":{"applyConfiguration":{"description":"applyConfiguration defines the desired configuration values of an object.\nThe configuration is applied to the admission object using\n[structured merge diff](https://github.com/kubernetes-sigs/structured-merge-diff).\nA CEL expression is used to create apply configuration.","type":"object","properties":{"expression":{"description":"expression will be evaluated by CEL to create an apply configuration.\nref: https://github.com/google/cel-spec\n\nApply configurations are declared in CEL using object initialization. For example, this CEL expression\nreturns an apply configuration to set a single field:\n\n\tObject{\n\t  spec: Object.spec{\n\t    serviceAccountName: \"example\"\n\t  }\n\t}\n\nApply configurations may not modify atomic structs, maps or arrays due to the risk of accidental deletion of\nvalues not included in the apply configuration.\n\nCEL expressions have access to the object types needed to create apply configurations:\n\n- 'Object' - CEL type of the resource object.\n- 'Object.<fieldName>' - CEL type of object field (such as 'Object.spec')\n- 'Object.<fieldName1>.<fieldName2>...<fieldNameN>` - CEL type of nested field (such as 'Object.spec.containers')\n\nCEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nRequired.","type":"string"}}},"jsonPatch":{"description":"jsonPatch defines a [JSON patch](https://jsonpatch.com/) operation to perform a mutation to the object.\nA CEL expression is used to create the JSON patch.","type":"object","properties":{"expression":{"description":"expression will be evaluated by CEL to create a [JSON patch](https://jsonpatch.com/).\nref: https://github.com/google/cel-spec\n\nexpression must return an array of JSONPatch values.\n\nFor example, this CEL expression returns a JSON patch to conditionally modify a value:\n\n\t  [\n\t    JSONPatch{op: \"test\", path: \"/spec/example\", value: \"Red\"},\n\t    JSONPatch{op: \"replace\", path: \"/spec/example\", value: \"Green\"}\n\t  ]\n\nTo define an object for the patch value, use Object types. For example:\n\n\t  [\n\t    JSONPatch{\n\t      op: \"add\",\n\t      path: \"/spec/selector\",\n\t      value: Object.spec.selector{matchLabels: {\"environment\": \"test\"}}\n\t    }\n\t  ]\n\nTo use strings containing '/' and '~' as JSONPatch path keys, use \"jsonpatch.escapeKey\". For example:\n\n\t  [\n\t    JSONPatch{\n\t      op: \"add\",\n\t      path: \"/metadata/labels/\" + jsonpatch.escapeKey(\"example.com/environment\"),\n\t      value: \"test\"\n\t    },\n\t  ]\n\nCEL expressions have access to the types needed to create JSON patches and objects:\n\n- 'JSONPatch' - CEL type of JSON Patch operations. JSONPatch has the fields 'op', 'from', 'path' and 'value'.\n  See [JSON patch](https://jsonpatch.com/) for more details. The 'value' field may be set to any of: string,\n  integer, array, map or object.  If set, the 'path' and 'from' fields must be set to a\n  [JSON pointer](https://datatracker.ietf.org/doc/html/rfc6901/) string, where the 'jsonpatch.escapeKey()' CEL\n  function may be used to escape path keys containing '/' and '~'.\n- 'Object' - CEL type of the resource object.\n- 'Object.<fieldName>' - CEL type of object field (such as 'Object.spec')\n- 'Object.<fieldName1>.<fieldName2>...<fieldNameN>` - CEL type of nested field (such as 'Object.spec.containers')\n\nCEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nCEL expressions have access to [Kubernetes CEL function libraries](https://kubernetes.io/docs/reference/using-api/cel/#cel-options-language-features-and-libraries)\nas well as:\n\n- 'jsonpatch.escapeKey' - Performs JSONPatch key escaping. '~' and  '/' are escaped as '~0' and `~1' respectively).\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nRequired.","type":"string"}}},"patchType":{"description":"patchType indicates the patch strategy used.\nAllowed values are \"ApplyConfiguration\" and \"JSONPatch\".\nRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"reinvocationPolicy":{"description":"reinvocationPolicy indicates whether mutations may be called multiple times per MutatingAdmissionPolicyBinding\nas part of a single admission evaluation.\nAllowed values are \"Never\" and \"IfNeeded\".\n\nNever: These mutations will not be called more than once per binding in a single admission evaluation.\n\nIfNeeded: These mutations may be invoked more than once per binding for a single admission request and there is no guarantee of\norder with respect to other admission plugins, admission webhooks, bindings of this policy and admission policies.  Mutations are only\nreinvoked when mutations change the object after this mutation is invoked.\nRequired.","type":"string"},"targetMatchConstraints":{"description":"TargetMatchConstraints specifies what target mutation resources this policy is designed to evaluate.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the policy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy does not consider requests to apps/v1beta1 or extensions/v1beta1 API groups.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy **does** consider requests made to apps/v1beta1 or extensions/v1beta1\nAPI groups. The API server translates the request to a matched resource API if necessary.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the policy based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the policy's expression (CEL), and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the admission policy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy\nexcept MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after.\nThus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"webhookConfiguration":{"description":"WebhookConfiguration defines the configuration for the webhook.","type":"object","properties":{"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"autogen":{"type":"object","properties":{"configs":{"type":"object","additionalProperties":{"type":"object","required":["spec","targets"],"properties":{"spec":{"description":"MutatingPolicySpec is the specification of the desired behavior of the MutatingPolicy.","type":"object","properties":{"autogen":{"description":"AutogenConfiguration defines the configuration for the generation controller.","type":"object","properties":{"mutatingAdmissionPolicy":{"description":"MutatingAdmissionPolicy specifies whether to generate a Kubernetes MutatingAdmissionPolicy.","type":"object","properties":{"enabled":{"description":"Enabled specifies whether to generate a Kubernetes MutatingAdmissionPolicy.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}},"podControllers":{"description":"PodControllers specifies whether to generate a pod controllers rules.","type":"object","properties":{"controllers":{"type":"array","items":{"type":"string"}}}}}},"evaluation":{"description":"EvaluationConfiguration defines the configuration for mutating policy evaluation.","type":"object","properties":{"admission":{"description":"Admission controls policy evaluation during admission.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"}}},"mutateExisting":{"description":"MutateExisting controls whether existing resources are mutated.","type":"object","properties":{"enabled":{"description":"Enabled enables mutation of existing resources. Default is false.\nWhen spec.targetMatchConstraints is not defined, Kyverno mutates existing resources matched in spec.matchConstraints.","type":"boolean"}}}}},"failurePolicy":{"description":"failurePolicy defines how to handle failures for the admission policy. Failures can\noccur from CEL expression parse errors, type check errors, runtime errors and invalid\nor mis-configured policy definitions or bindings.\n\nfailurePolicy does not define how validations that evaluate to false are handled.\n\nWhen failurePolicy is set to Fail, the validationActions field define how failures are enforced.\n\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated.\nMatch conditions filter requests that have already been matched by the rules,\nnamespaceSelector, and objectSelector. An empty list of matchConditions matches all requests.\nThere are a maximum of 64 match conditions allowed.\n\nIf a parameter object is provided, it can be accessed via the `params` handle in the same\nmanner as validation expressions.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the policy is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the policy is evaluated.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the policy is skipped","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to evaluate.\nThe AdmissionPolicy cares about a request if it matches _all_ Constraints.\nRequired.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the policy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy does not consider requests to apps/v1beta1 or extensions/v1beta1 API groups.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy **does** consider requests made to apps/v1beta1 or extensions/v1beta1\nAPI groups. The API server translates the request to a matched resource API if necessary.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the policy based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the policy's expression (CEL), and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the admission policy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"mutations":{"description":"mutations contain operations to perform on matching objects.\nmutations may not be empty; a minimum of one mutation is required.\nmutations are evaluated in order, and are reinvoked according to\nthe reinvocationPolicy.\nThe mutations of a policy are invoked for each binding of this policy\nand reinvocation of mutations occurs on a per binding basis.","type":"array","items":{"description":"Mutation specifies the CEL expression which is used to apply the Mutation.","type":"object","required":["patchType"],"properties":{"applyConfiguration":{"description":"applyConfiguration defines the desired configuration values of an object.\nThe configuration is applied to the admission object using\n[structured merge diff](https://github.com/kubernetes-sigs/structured-merge-diff).\nA CEL expression is used to create apply configuration.","type":"object","properties":{"expression":{"description":"expression will be evaluated by CEL to create an apply configuration.\nref: https://github.com/google/cel-spec\n\nApply configurations are declared in CEL using object initialization. For example, this CEL expression\nreturns an apply configuration to set a single field:\n\n\tObject{\n\t  spec: Object.spec{\n\t    serviceAccountName: \"example\"\n\t  }\n\t}\n\nApply configurations may not modify atomic structs, maps or arrays due to the risk of accidental deletion of\nvalues not included in the apply configuration.\n\nCEL expressions have access to the object types needed to create apply configurations:\n\n- 'Object' - CEL type of the resource object.\n- 'Object.<fieldName>' - CEL type of object field (such as 'Object.spec')\n- 'Object.<fieldName1>.<fieldName2>...<fieldNameN>` - CEL type of nested field (such as 'Object.spec.containers')\n\nCEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nRequired.","type":"string"}}},"jsonPatch":{"description":"jsonPatch defines a [JSON patch](https://jsonpatch.com/) operation to perform a mutation to the object.\nA CEL expression is used to create the JSON patch.","type":"object","properties":{"expression":{"description":"expression will be evaluated by CEL to create a [JSON patch](https://jsonpatch.com/).\nref: https://github.com/google/cel-spec\n\nexpression must return an array of JSONPatch values.\n\nFor example, this CEL expression returns a JSON patch to conditionally modify a value:\n\n\t  [\n\t    JSONPatch{op: \"test\", path: \"/spec/example\", value: \"Red\"},\n\t    JSONPatch{op: \"replace\", path: \"/spec/example\", value: \"Green\"}\n\t  ]\n\nTo define an object for the patch value, use Object types. For example:\n\n\t  [\n\t    JSONPatch{\n\t      op: \"add\",\n\t      path: \"/spec/selector\",\n\t      value: Object.spec.selector{matchLabels: {\"environment\": \"test\"}}\n\t    }\n\t  ]\n\nTo use strings containing '/' and '~' as JSONPatch path keys, use \"jsonpatch.escapeKey\". For example:\n\n\t  [\n\t    JSONPatch{\n\t      op: \"add\",\n\t      path: \"/metadata/labels/\" + jsonpatch.escapeKey(\"example.com/environment\"),\n\t      value: \"test\"\n\t    },\n\t  ]\n\nCEL expressions have access to the types needed to create JSON patches and objects:\n\n- 'JSONPatch' - CEL type of JSON Patch operations. JSONPatch has the fields 'op', 'from', 'path' and 'value'.\n  See [JSON patch](https://jsonpatch.com/) for more details. The 'value' field may be set to any of: string,\n  integer, array, map or object.  If set, the 'path' and 'from' fields must be set to a\n  [JSON pointer](https://datatracker.ietf.org/doc/html/rfc6901/) string, where the 'jsonpatch.escapeKey()' CEL\n  function may be used to escape path keys containing '/' and '~'.\n- 'Object' - CEL type of the resource object.\n- 'Object.<fieldName>' - CEL type of object field (such as 'Object.spec')\n- 'Object.<fieldName1>.<fieldName2>...<fieldNameN>` - CEL type of nested field (such as 'Object.spec.containers')\n\nCEL expressions have access to the contents of the API request, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nCEL expressions have access to [Kubernetes CEL function libraries](https://kubernetes.io/docs/reference/using-api/cel/#cel-options-language-features-and-libraries)\nas well as:\n\n- 'jsonpatch.escapeKey' - Performs JSONPatch key escaping. '~' and  '/' are escaped as '~0' and `~1' respectively).\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nRequired.","type":"string"}}},"patchType":{"description":"patchType indicates the patch strategy used.\nAllowed values are \"ApplyConfiguration\" and \"JSONPatch\".\nRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"reinvocationPolicy":{"description":"reinvocationPolicy indicates whether mutations may be called multiple times per MutatingAdmissionPolicyBinding\nas part of a single admission evaluation.\nAllowed values are \"Never\" and \"IfNeeded\".\n\nNever: These mutations will not be called more than once per binding in a single admission evaluation.\n\nIfNeeded: These mutations may be invoked more than once per binding for a single admission request and there is no guarantee of\norder with respect to other admission plugins, admission webhooks, bindings of this policy and admission policies.  Mutations are only\nreinvoked when mutations change the object after this mutation is invoked.\nRequired.","type":"string"},"targetMatchConstraints":{"description":"TargetMatchConstraints specifies what target mutation resources this policy is designed to evaluate.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the policy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy does not consider requests to apps/v1beta1 or extensions/v1beta1 API groups.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\nthe admission policy **does** consider requests made to apps/v1beta1 or extensions/v1beta1\nAPI groups. The API server translates the request to a matched resource API if necessary.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the policy based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the policy's expression (CEL), and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the admission policy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy\nexcept MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after.\nThus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"webhookConfiguration":{"description":"WebhookConfiguration defines the configuration for the webhook.","type":"object","properties":{"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}}}},"targets":{"type":"array","items":{"type":"object","required":["kind","resource","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"resource":{"type":"string"},"version":{"type":"string"}}}}}}}}},"conditionStatus":{"description":"ConditionStatus is the shared status across all policy types","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"message":{"description":"Message is a human readable message indicating details about the generation of ValidatingAdmissionPolicy/MutatingAdmissionPolicy\nIt is an empty string when ValidatingAdmissionPolicy/MutatingAdmissionPolicy is successfully generated.","type":"string"},"ready":{"description":"The ready of a policy is a high-level summary of where the policy is in its lifecycle.\nThe conditions array, the reason and message fields contain more detail about the policy's status.","type":"boolean"}}},"generated":{"description":"Generated indicates whether a MutatingAdmissionPolicy is generated from the policy or not","type":"boolean"}}}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"MutatingPolicy","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.MutatingPolicyList":{"description":"MutatingPolicyList is a list of MutatingPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of mutatingpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.MutatingPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"MutatingPolicyList","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.PolicyException":{"description":"PolicyException declares resources to be excluded from specified policies.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy exception behaviors.","type":"object","required":["policyRefs"],"properties":{"matchConditions":{"description":"MatchConditions is a list of CEL expressions that must be met for a resource to be excluded.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"policyRefs":{"description":"PolicyRefs identifies the policies to which the exception is applied.","type":"array","items":{"type":"object","required":["kind","name"],"properties":{"kind":{"description":"Kind is the kind of the policy","type":"string"},"name":{"description":"Name is the name of the policy","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"PolicyException","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.PolicyExceptionList":{"description":"PolicyExceptionList is a list of PolicyException","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of policyexceptions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.PolicyException"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"PolicyExceptionList","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.ValidatingPolicy":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ValidatingPolicySpec is the specification of the desired behavior of the ValidatingPolicy.","type":"object","properties":{"auditAnnotations":{"description":"auditAnnotations contains CEL expressions which are used to produce audit\nannotations for the audit event of the API request.\nvalidations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is\nrequired.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"autogen":{"description":"AutogenConfiguration defines the configuration for the generation controller.","type":"object","properties":{"podControllers":{"description":"PodControllers specifies whether to generate a pod controllers rules.","type":"object","properties":{"controllers":{"type":"array","items":{"type":"string"}}}},"validatingAdmissionPolicy":{"description":"ValidatingAdmissionPolicy specifies whether to generate a Kubernetes ValidatingAdmissionPolicy.","type":"object","properties":{"enabled":{"description":"Enabled specifies whether to generate a Kubernetes ValidatingAdmissionPolicy.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}}}},"evaluation":{"description":"EvaluationConfiguration defines the configuration for the policy evaluation.","type":"object","properties":{"admission":{"description":"Admission controls policy evaluation during admission.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"}}},"background":{"description":"Background  controls policy evaluation during background scan.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"}}},"mode":{"description":"Mode is the mode of policy evaluation.\nAllowed values are \"Kubernetes\" or \"JSON\".\nOptional. Default value is \"Kubernetes\".","type":"string"}}},"failurePolicy":{"description":"failurePolicy defines how to handle failures for the admission policy. Failures can\noccur from CEL expression parse errors, type check errors, runtime errors and invalid\nor mis-configured policy definitions or bindings.\n\nfailurePolicy does not define how validations that evaluate to false are handled.\n\nWhen failurePolicy is set to Fail, the validationActions field define how failures are enforced.\n\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated.\nMatch conditions filter requests that have already been matched by the rules,\nnamespaceSelector, and objectSelector. An empty list of matchConditions matches all requests.\nThere are a maximum of 64 match conditions allowed.\n\nIf a parameter object is provided, it can be accessed via the `params` handle in the same\nmanner as validation expressions.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the policy is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the policy is evaluated.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the policy is skipped","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to validate.\nThe AdmissionPolicy cares about a request if it matches _all_ Constraints.\nRequired.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the cel validation, and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"validationActions":{"description":"ValidationAction specifies the action to be taken when the matched resource violates the policy.\nRequired.","type":"array","items":{"description":"ValidationAction specifies a policy enforcement action.","type":"string","enum":["Deny","Audit","Warn"]},"x-kubernetes-list-type":"set"},"validations":{"description":"Validations contain CEL expressions which is used to apply the validation.\nValidations and AuditAnnotations may not both be empty; a minimum of one Validations or AuditAnnotations is\nrequired.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy\nexcept MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after.\nThus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"webhookConfiguration":{"description":"WebhookConfiguration defines the configuration for the webhook.","type":"object","properties":{"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"autogen":{"type":"object","properties":{"configs":{"type":"object","additionalProperties":{"type":"object","required":["spec","targets"],"properties":{"spec":{"description":"ValidatingPolicySpec is the specification of the desired behavior of the ValidatingPolicy.","type":"object","properties":{"auditAnnotations":{"description":"auditAnnotations contains CEL expressions which are used to produce audit\nannotations for the audit event of the API request.\nvalidations and auditAnnotations may not both be empty; a least one of validations or auditAnnotations is\nrequired.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"autogen":{"description":"AutogenConfiguration defines the configuration for the generation controller.","type":"object","properties":{"podControllers":{"description":"PodControllers specifies whether to generate a pod controllers rules.","type":"object","properties":{"controllers":{"type":"array","items":{"type":"string"}}}},"validatingAdmissionPolicy":{"description":"ValidatingAdmissionPolicy specifies whether to generate a Kubernetes ValidatingAdmissionPolicy.","type":"object","properties":{"enabled":{"description":"Enabled specifies whether to generate a Kubernetes ValidatingAdmissionPolicy.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}}}},"evaluation":{"description":"EvaluationConfiguration defines the configuration for the policy evaluation.","type":"object","properties":{"admission":{"description":"Admission controls policy evaluation during admission.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"}}},"background":{"description":"Background  controls policy evaluation during background scan.","type":"object","properties":{"enabled":{"description":"Enabled controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"}}},"mode":{"description":"Mode is the mode of policy evaluation.\nAllowed values are \"Kubernetes\" or \"JSON\".\nOptional. Default value is \"Kubernetes\".","type":"string"}}},"failurePolicy":{"description":"failurePolicy defines how to handle failures for the admission policy. Failures can\noccur from CEL expression parse errors, type check errors, runtime errors and invalid\nor mis-configured policy definitions or bindings.\n\nfailurePolicy does not define how validations that evaluate to false are handled.\n\nWhen failurePolicy is set to Fail, the validationActions field define how failures are enforced.\n\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchConditions is a list of conditions that must be met for a request to be validated.\nMatch conditions filter requests that have already been matched by the rules,\nnamespaceSelector, and objectSelector. An empty list of matchConditions matches all requests.\nThere are a maximum of 64 match conditions allowed.\n\nIf a parameter object is provided, it can be accessed via the `params` handle in the same\nmanner as validation expressions.\n\nThe exact matching logic is (in order):\n  1. If ANY matchCondition evaluates to FALSE, the policy is skipped.\n  2. If ALL matchConditions evaluate to TRUE, the policy is evaluated.\n  3. If any matchCondition evaluates to an error (but none are FALSE):\n     - If failurePolicy=Fail, reject the request\n     - If failurePolicy=Ignore, the policy is skipped","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"matchConstraints":{"description":"MatchConstraints specifies what resources this policy is designed to validate.\nThe AdmissionPolicy cares about a request if it matches _all_ Constraints.\nRequired.","type":"object","properties":{"excludeResourceRules":{"description":"ExcludeResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy should not care about.\nThe exclude rules take precedence over include rules (if a resource matches both, it is excluded)","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"},"matchPolicy":{"description":"matchPolicy defines how the \"MatchResources\" list is used to match incoming requests.\nAllowed values are \"Exact\" or \"Equivalent\".\n\n- Exact: match a request only if it exactly matches a specified rule.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nbut \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would not be sent to the ValidatingAdmissionPolicy.\n\n- Equivalent: match a request if modifies a resource listed in rules, even via another API group or version.\nFor example, if deployments can be modified via apps/v1, apps/v1beta1, and extensions/v1beta1,\nand \"rules\" only included `apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]`,\na request to apps/v1beta1 or extensions/v1beta1 would be converted to apps/v1 and sent to the ValidatingAdmissionPolicy.\n\nDefaults to \"Equivalent\"","type":"string"},"namespaceSelector":{"description":"NamespaceSelector decides whether to run the admission control policy on an object based\non whether the namespace for that object matches the selector. If the\nobject itself is a namespace, the matching is performed on\nobject.metadata.labels. If the object is another cluster scoped resource,\nit never skips the policy.\n\nFor example, to run the webhook on any objects whose namespace is not\nassociated with \"runlevel\" of \"0\" or \"1\";  you will set the selector as\nfollows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"runlevel\",\n      \"operator\": \"NotIn\",\n      \"values\": [\n        \"0\",\n        \"1\"\n      ]\n    }\n  ]\n}\n\nIf instead you want to only run the policy on any objects whose\nnamespace is associated with the \"environment\" of \"prod\" or \"staging\";\nyou will set the selector as follows:\n\"namespaceSelector\": {\n  \"matchExpressions\": [\n    {\n      \"key\": \"environment\",\n      \"operator\": \"In\",\n      \"values\": [\n        \"prod\",\n        \"staging\"\n      ]\n    }\n  ]\n}\n\nSee\nhttps://kubernetes.io/docs/concepts/overview/working-with-objects/labels/\nfor more examples of label selectors.\n\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"objectSelector":{"description":"ObjectSelector decides whether to run the validation based on if the\nobject has matching labels. objectSelector is evaluated against both\nthe oldObject and newObject that would be sent to the cel validation, and\nis considered to match if either object matches the selector. A null\nobject (oldObject in the case of create, or newObject in the case of\ndelete) or an object that cannot have labels (like a\nDeploymentRollback or a PodProxyOptions object) is not considered to\nmatch.\nUse the object selector only if the webhook is opt-in, because end\nusers may skip the admission webhook by setting the labels.\nDefault to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resourceRules":{"description":"ResourceRules describes what operations on what resources/subresources the ValidatingAdmissionPolicy matches.\nThe policy cares about an operation if it matches _any_ Rule.","type":"array","items":{"description":"NamedRuleWithOperations is a tuple of Operations and Resources with ResourceNames.","type":"object","properties":{"apiGroups":{"description":"APIGroups is the API groups the resources belong to. '*' is all groups.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"apiVersions":{"description":"APIVersions is the API versions the resources belong to. '*' is all versions.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"operations":{"description":"Operations is the operations the admission hook cares about - CREATE, UPDATE, DELETE, CONNECT or *\nfor all of those operations and any future admission operations that are added.\nIf '*' is present, the length of the slice must be one.\nRequired.","type":"array","items":{"description":"OperationType specifies an operation for a request.","type":"string"},"x-kubernetes-list-type":"atomic"},"resourceNames":{"description":"ResourceNames is an optional white list of names that the rule applies to.  An empty set means that everything is allowed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources is a list of resources this rule applies to.\n\nFor example:\n'pods' means pods.\n'pods/log' means the log subresource of pods.\n'*' means all resources, but not subresources.\n'pods/*' means all subresources of pods.\n'*/scale' means all scale subresources.\n'*/*' means all resources and their subresources.\n\nIf wildcard is present, the validation rule will ensure resources do not\noverlap with each other.\n\nDepending on the enclosing object, subresources might not be allowed.\nRequired.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"scope":{"description":"scope specifies the scope of this rule.\nValid values are \"Cluster\", \"Namespaced\", and \"*\"\n\"Cluster\" means that only cluster-scoped resources will match this rule.\nNamespace API objects are cluster-scoped.\n\"Namespaced\" means that only namespaced resources will match this rule.\n\"*\" means that there are no scope restrictions.\nSubresources match the scope of their parent resource.\nDefault is \"*\".","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"validationActions":{"description":"ValidationAction specifies the action to be taken when the matched resource violates the policy.\nRequired.","type":"array","items":{"description":"ValidationAction specifies a policy enforcement action.","type":"string","enum":["Deny","Audit","Warn"]},"x-kubernetes-list-type":"set"},"validations":{"description":"Validations contain CEL expressions which is used to apply the validation.\nValidations and AuditAnnotations may not both be empty; a minimum of one Validations or AuditAnnotations is\nrequired.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy\nexcept MatchConditions because MatchConditions are evaluated before the rest of the policy.\n\nThe expression of a variable can refer to other variables defined earlier in the list but not those after.\nThus, Variables must be sorted by the order of first appearance and acyclic.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"webhookConfiguration":{"description":"WebhookConfiguration defines the configuration for the webhook.","type":"object","properties":{"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}}}},"targets":{"type":"array","items":{"type":"object","required":["kind","resource","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"resource":{"type":"string"},"version":{"type":"string"}}}}}}}}},"conditionStatus":{"description":"ConditionStatus is the shared status across all policy types","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"message":{"description":"Message is a human readable message indicating details about the generation of ValidatingAdmissionPolicy/MutatingAdmissionPolicy\nIt is an empty string when ValidatingAdmissionPolicy/MutatingAdmissionPolicy is successfully generated.","type":"string"},"ready":{"description":"The ready of a policy is a high-level summary of where the policy is in its lifecycle.\nThe conditions array, the reason and message fields contain more detail about the policy's status.","type":"boolean"}}},"generated":{"description":"Generated indicates whether a ValidatingAdmissionPolicy/MutatingAdmissionPolicy is generated from the policy or not","type":"boolean"}}}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"ValidatingPolicy","version":"v1alpha1"}]},"io.kyverno.policies.v1alpha1.ValidatingPolicyList":{"description":"ValidatingPolicyList is a list of ValidatingPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of validatingpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.policies.v1alpha1.ValidatingPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"policies.kyverno.io","kind":"ValidatingPolicyList","version":"v1alpha1"}]},"io.kyverno.reports.v1.ClusterEphemeralReport":{"description":"ClusterEphemeralReport is the Schema for the ClusterEphemeralReports API","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["owner"],"properties":{"owner":{"description":"Owner is a reference to the report owner (e.g. a Deployment, Namespace, or Node)","type":"object","required":["apiVersion","kind","name","uid"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"blockOwnerDeletion":{"description":"If true, AND if the owner has the \"foregroundDeletion\" finalizer, then\nthe owner cannot be deleted from the key-value store until this\nreference is removed.\nSee https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion\nfor how the garbage collector interacts with this field and enforces the foreground deletion.\nDefaults to false.\nTo set this field, a user needs \"delete\" permission of the owner,\notherwise 422 (Unprocessable Entity) will be returned.","type":"boolean"},"controller":{"description":"If true, this reference points to the managing controller.","type":"boolean"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"results":{"description":"PolicyReportResult provides result details","type":"array","items":{"description":"ReportResult provides the result for an individual policy","type":"object","required":["policy"],"properties":{"category":{"description":"Category indicates policy category","type":"string"},"message":{"description":"Description is a short user friendly message for the policy rule","type":"string"},"policy":{"description":"Policy is the name or identifier of the policy","type":"string"},"properties":{"description":"Properties provides additional information for the policy rule","type":"object","additionalProperties":{"type":"string"}},"resourceSelector":{"description":"ResourceSelector is an optional label selector for checked Kubernetes resources.\nFor example, a policy result may apply to all pods that match a label.\nEither a Subject or a ResourceSelector can be specified. If neither are provided, the\nresult is assumed to be for the policy report scope.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resources":{"description":"Subjects is an optional reference to the checked Kubernetes resources","type":"array","items":{"description":"ObjectReference contains enough information to let you inspect or modify the referred object.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}},"result":{"description":"Result indicates the outcome of the policy rule execution","type":"string","enum":["pass","fail","warn","error","skip"]},"rule":{"description":"Rule is the name or identifier of the rule within the policy","type":"string"},"scored":{"description":"Scored indicates if this result is scored","type":"boolean"},"severity":{"description":"Severity indicates policy check result criticality","type":"string","enum":["critical","high","low","medium","info"]},"source":{"description":"Source is an identifier for the policy engine that manages this report\nIf the Source is specified at this level, it will override the Source\nfield set at the Report level","type":"string"},"timestamp":{"description":"Timestamp indicates the time the result was found","type":"object","required":["nanos","seconds"],"properties":{"nanos":{"description":"Non-negative fractions of a second at nanosecond resolution. Negative\nsecond values with fractions must still have non-negative nanos values\nthat count forward in time. Must be from 0 to 999,999,999\ninclusive. This field may be limited in precision depending on context.","type":"integer","format":"int32"},"seconds":{"description":"Represents seconds of UTC time since Unix epoch\n1970-01-01T00:00:00Z. Must be from 0001-01-01T00:00:00Z to\n9999-12-31T23:59:59Z inclusive.","type":"integer","format":"int64"}}}}}},"summary":{"description":"PolicyReportSummary provides a summary of results","type":"object","properties":{"error":{"description":"Error provides the count of policies that could not be evaluated","type":"integer"},"fail":{"description":"Fail provides the count of policies whose requirements were not met","type":"integer"},"pass":{"description":"Pass provides the count of policies whose requirements were met","type":"integer"},"skip":{"description":"Skip indicates the count of policies that were not selected for evaluation","type":"integer"},"warn":{"description":"Warn provides the count of non-scored policies whose requirements were not met","type":"integer"}}}}}},"x-kubernetes-group-version-kind":[{"group":"reports.kyverno.io","kind":"ClusterEphemeralReport","version":"v1"}]},"io.kyverno.reports.v1.ClusterEphemeralReportList":{"description":"ClusterEphemeralReportList is a list of ClusterEphemeralReport","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterephemeralreports. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.reports.v1.ClusterEphemeralReport"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"reports.kyverno.io","kind":"ClusterEphemeralReportList","version":"v1"}]},"io.kyverno.reports.v1.EphemeralReport":{"description":"EphemeralReport is the Schema for the EphemeralReports API","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["owner"],"properties":{"owner":{"description":"Owner is a reference to the report owner (e.g. a Deployment, Namespace, or Node)","type":"object","required":["apiVersion","kind","name","uid"],"properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"blockOwnerDeletion":{"description":"If true, AND if the owner has the \"foregroundDeletion\" finalizer, then\nthe owner cannot be deleted from the key-value store until this\nreference is removed.\nSee https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion\nfor how the garbage collector interacts with this field and enforces the foreground deletion.\nDefaults to false.\nTo set this field, a user needs \"delete\" permission of the owner,\notherwise 422 (Unprocessable Entity) will be returned.","type":"boolean"},"controller":{"description":"If true, this reference points to the managing controller.","type":"boolean"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"results":{"description":"PolicyReportResult provides result details","type":"array","items":{"description":"ReportResult provides the result for an individual policy","type":"object","required":["policy"],"properties":{"category":{"description":"Category indicates policy category","type":"string"},"message":{"description":"Description is a short user friendly message for the policy rule","type":"string"},"policy":{"description":"Policy is the name or identifier of the policy","type":"string"},"properties":{"description":"Properties provides additional information for the policy rule","type":"object","additionalProperties":{"type":"string"}},"resourceSelector":{"description":"ResourceSelector is an optional label selector for checked Kubernetes resources.\nFor example, a policy result may apply to all pods that match a label.\nEither a Subject or a ResourceSelector can be specified. If neither are provided, the\nresult is assumed to be for the policy report scope.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resources":{"description":"Subjects is an optional reference to the checked Kubernetes resources","type":"array","items":{"description":"ObjectReference contains enough information to let you inspect or modify the referred object.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}},"result":{"description":"Result indicates the outcome of the policy rule execution","type":"string","enum":["pass","fail","warn","error","skip"]},"rule":{"description":"Rule is the name or identifier of the rule within the policy","type":"string"},"scored":{"description":"Scored indicates if this result is scored","type":"boolean"},"severity":{"description":"Severity indicates policy check result criticality","type":"string","enum":["critical","high","low","medium","info"]},"source":{"description":"Source is an identifier for the policy engine that manages this report\nIf the Source is specified at this level, it will override the Source\nfield set at the Report level","type":"string"},"timestamp":{"description":"Timestamp indicates the time the result was found","type":"object","required":["nanos","seconds"],"properties":{"nanos":{"description":"Non-negative fractions of a second at nanosecond resolution. Negative\nsecond values with fractions must still have non-negative nanos values\nthat count forward in time. Must be from 0 to 999,999,999\ninclusive. This field may be limited in precision depending on context.","type":"integer","format":"int32"},"seconds":{"description":"Represents seconds of UTC time since Unix epoch\n1970-01-01T00:00:00Z. Must be from 0001-01-01T00:00:00Z to\n9999-12-31T23:59:59Z inclusive.","type":"integer","format":"int64"}}}}}},"summary":{"description":"PolicyReportSummary provides a summary of results","type":"object","properties":{"error":{"description":"Error provides the count of policies that could not be evaluated","type":"integer"},"fail":{"description":"Fail provides the count of policies whose requirements were not met","type":"integer"},"pass":{"description":"Pass provides the count of policies whose requirements were met","type":"integer"},"skip":{"description":"Skip indicates the count of policies that were not selected for evaluation","type":"integer"},"warn":{"description":"Warn provides the count of non-scored policies whose requirements were not met","type":"integer"}}}}}},"x-kubernetes-group-version-kind":[{"group":"reports.kyverno.io","kind":"EphemeralReport","version":"v1"}]},"io.kyverno.reports.v1.EphemeralReportList":{"description":"EphemeralReportList is a list of EphemeralReport","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ephemeralreports. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.reports.v1.EphemeralReport"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"reports.kyverno.io","kind":"EphemeralReportList","version":"v1"}]},"io.kyverno.v1.ClusterPolicy":{"description":"ClusterPolicy declares validation, mutation, and generation behaviors for matching resources.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy behaviors.","type":"object","properties":{"admission":{"description":"Admission controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"},"applyRules":{"description":"ApplyRules controls how rules in a policy are applied. Rule are processed in\nthe order of declaration. When set to `One` processing stops after a rule has\nbeen applied i.e. the rule matches and results in a pass, fail, or error. When\nset to `All` all rules in the policy are processed. The default is `All`.","type":"string","enum":["All","One"]},"background":{"description":"Background controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"},"emitWarning":{"description":"EmitWarning enables API response warnings for mutate policy rules or validate policy rules with validationFailureAction set to Audit.\nEnabling this option will extend admission request processing times. The default value is \"false\".","type":"boolean"},"failurePolicy":{"description":"Deprecated, use failurePolicy under the webhookConfiguration instead.","type":"string","enum":["Ignore","Fail"]},"generateExisting":{"description":"Deprecated, use generateExisting under the generate rule instead","type":"boolean"},"generateExistingOnPolicyUpdate":{"description":"Deprecated, use generateExisting instead","type":"boolean"},"mutateExistingOnPolicyUpdate":{"description":"Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead","type":"boolean"},"rules":{"description":"Rules is a list of Rule instances. A Policy contains multiple rules and\neach rule can validate, mutate, or generate resources.","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"reportProperties":{"description":"ReportProperties are the additional properties from the rule that will be added to the policy report result","type":"object","additionalProperties":{"type":"string"}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"allowExistingViolations":{"description":"AllowExistingViolations allows prexisting violating resources to continue violating a policy.","type":"boolean"},"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"additionalExtensions":{"description":"Deprecated.","type":"object","additionalProperties":{"type":"string"}},"annotations":{"description":"Deprecated. Use annotations per Attestor instead.","type":"object","additionalProperties":{"type":"string"}},"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"cosignOCI11":{"description":"CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.\nDefaults to false.","type":"boolean"},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"image":{"description":"Deprecated. Use ImageReferences instead.","type":"string"},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"issuer":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"key":{"description":"Deprecated. Use StaticKeyAttestor instead.","type":"string"},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"roots":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"subject":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign, Sigstore Bundle and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule.","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}},"schemaValidation":{"description":"Deprecated.","type":"boolean"},"useServerSideApply":{"description":"UseServerSideApply controls whether to use server-side apply for generate rules\nIf is set to \"true\" create & update for generate rules will use apply instead of create/update.\nDefaults to \"false\" if not specified.","type":"boolean"},"validationFailureAction":{"description":"Deprecated, use validationFailureAction under the validate rule instead.","type":"string","enum":["audit","enforce","Audit","Enforce"]},"validationFailureActionOverrides":{"description":"Deprecated, use validationFailureActionOverrides under the validate rule instead.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"webhookConfiguration":{"description":"WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.","type":"object","properties":{"failurePolicy":{"description":"FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.\nRules within the same policy share the same failure behavior.\nThis field should not be accessed directly, instead `GetFailurePolicy()` should be used.\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchCondition configures admission webhook matchConditions.\nRequires Kubernetes 1.27 or later.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}},"webhookTimeoutSeconds":{"description":"Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.","type":"integer","format":"int32"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"autogen":{"description":"AutogenStatus contains autogen status information.","type":"object","properties":{"rules":{"description":"Rules is a list of Rule instances. It contains auto generated rules added for pod controllers","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"reportProperties":{"description":"ReportProperties are the additional properties from the rule that will be added to the policy report result","type":"object","additionalProperties":{"type":"string"}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"allowExistingViolations":{"description":"AllowExistingViolations allows prexisting violating resources to continue violating a policy.","type":"boolean"},"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"additionalExtensions":{"description":"Deprecated.","type":"object","additionalProperties":{"type":"string"}},"annotations":{"description":"Deprecated. Use annotations per Attestor instead.","type":"object","additionalProperties":{"type":"string"}},"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"cosignOCI11":{"description":"CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.\nDefaults to false.","type":"boolean"},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"image":{"description":"Deprecated. Use ImageReferences instead.","type":"string"},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"issuer":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"key":{"description":"Deprecated. Use StaticKeyAttestor instead.","type":"string"},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"roots":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"subject":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign, Sigstore Bundle and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule.","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}}}},"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"ready":{"description":"Deprecated in favor of Conditions","type":"boolean"},"rulecount":{"description":"RuleCountStatus contains four variables which describes counts for\nvalidate, generate, mutate and verify images rules","type":"object","required":["generate","mutate","validate","verifyimages"],"properties":{"generate":{"description":"Count for generate rules in policy","type":"integer"},"mutate":{"description":"Count for mutate rules in policy","type":"integer"},"validate":{"description":"Count for validate rules in policy","type":"integer"},"verifyimages":{"description":"Count for verify image rules in policy","type":"integer"}}},"validatingadmissionpolicy":{"description":"ValidatingAdmissionPolicy contains status information","type":"object","required":["generated","message"],"properties":{"generated":{"description":"Generated indicates whether a validating admission policy is generated from the policy or not","type":"boolean"},"message":{"description":"Message is a human readable message indicating details about the generation of validating admission policy\nIt is an empty string when validating admission policy is successfully generated.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterPolicy","version":"v1"}]},"io.kyverno.v1.ClusterPolicyList":{"description":"ClusterPolicyList is a list of ClusterPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v1.ClusterPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterPolicyList","version":"v1"}]},"io.kyverno.v1.Policy":{"description":"Policy declares validation, mutation, and generation behaviors for matching resources.\nSee: https://kyverno.io/docs/writing-policies/ for more information.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines policy behaviors and contains one or more rules.","type":"object","properties":{"admission":{"description":"Admission controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"},"applyRules":{"description":"ApplyRules controls how rules in a policy are applied. Rule are processed in\nthe order of declaration. When set to `One` processing stops after a rule has\nbeen applied i.e. the rule matches and results in a pass, fail, or error. When\nset to `All` all rules in the policy are processed. The default is `All`.","type":"string","enum":["All","One"]},"background":{"description":"Background controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"},"emitWarning":{"description":"EmitWarning enables API response warnings for mutate policy rules or validate policy rules with validationFailureAction set to Audit.\nEnabling this option will extend admission request processing times. The default value is \"false\".","type":"boolean"},"failurePolicy":{"description":"Deprecated, use failurePolicy under the webhookConfiguration instead.","type":"string","enum":["Ignore","Fail"]},"generateExisting":{"description":"Deprecated, use generateExisting under the generate rule instead","type":"boolean"},"generateExistingOnPolicyUpdate":{"description":"Deprecated, use generateExisting instead","type":"boolean"},"mutateExistingOnPolicyUpdate":{"description":"Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead","type":"boolean"},"rules":{"description":"Rules is a list of Rule instances. A Policy contains multiple rules and\neach rule can validate, mutate, or generate resources.","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"reportProperties":{"description":"ReportProperties are the additional properties from the rule that will be added to the policy report result","type":"object","additionalProperties":{"type":"string"}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"allowExistingViolations":{"description":"AllowExistingViolations allows prexisting violating resources to continue violating a policy.","type":"boolean"},"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"additionalExtensions":{"description":"Deprecated.","type":"object","additionalProperties":{"type":"string"}},"annotations":{"description":"Deprecated. Use annotations per Attestor instead.","type":"object","additionalProperties":{"type":"string"}},"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"cosignOCI11":{"description":"CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.\nDefaults to false.","type":"boolean"},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"image":{"description":"Deprecated. Use ImageReferences instead.","type":"string"},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"issuer":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"key":{"description":"Deprecated. Use StaticKeyAttestor instead.","type":"string"},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"roots":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"subject":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign, Sigstore Bundle and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule.","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}},"schemaValidation":{"description":"Deprecated.","type":"boolean"},"useServerSideApply":{"description":"UseServerSideApply controls whether to use server-side apply for generate rules\nIf is set to \"true\" create & update for generate rules will use apply instead of create/update.\nDefaults to \"false\" if not specified.","type":"boolean"},"validationFailureAction":{"description":"Deprecated, use validationFailureAction under the validate rule instead.","type":"string","enum":["audit","enforce","Audit","Enforce"]},"validationFailureActionOverrides":{"description":"Deprecated, use validationFailureActionOverrides under the validate rule instead.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"webhookConfiguration":{"description":"WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.","type":"object","properties":{"failurePolicy":{"description":"FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.\nRules within the same policy share the same failure behavior.\nThis field should not be accessed directly, instead `GetFailurePolicy()` should be used.\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchCondition configures admission webhook matchConditions.\nRequires Kubernetes 1.27 or later.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}},"webhookTimeoutSeconds":{"description":"Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.","type":"integer","format":"int32"}}},"status":{"description":"Deprecated. Policy metrics are available via the metrics endpoint","type":"object","properties":{"autogen":{"description":"AutogenStatus contains autogen status information.","type":"object","properties":{"rules":{"description":"Rules is a list of Rule instances. It contains auto generated rules added for pod controllers","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"reportProperties":{"description":"ReportProperties are the additional properties from the rule that will be added to the policy report result","type":"object","additionalProperties":{"type":"string"}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"allowExistingViolations":{"description":"AllowExistingViolations allows prexisting violating resources to continue violating a policy.","type":"boolean"},"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"additionalExtensions":{"description":"Deprecated.","type":"object","additionalProperties":{"type":"string"}},"annotations":{"description":"Deprecated. Use annotations per Attestor instead.","type":"object","additionalProperties":{"type":"string"}},"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"cosignOCI11":{"description":"CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.\nDefaults to false.","type":"boolean"},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"image":{"description":"Deprecated. Use ImageReferences instead.","type":"string"},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"issuer":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"key":{"description":"Deprecated. Use StaticKeyAttestor instead.","type":"string"},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"roots":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"subject":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign, Sigstore Bundle and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule.","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}}}},"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"ready":{"description":"Deprecated in favor of Conditions","type":"boolean"},"rulecount":{"description":"RuleCountStatus contains four variables which describes counts for\nvalidate, generate, mutate and verify images rules","type":"object","required":["generate","mutate","validate","verifyimages"],"properties":{"generate":{"description":"Count for generate rules in policy","type":"integer"},"mutate":{"description":"Count for mutate rules in policy","type":"integer"},"validate":{"description":"Count for validate rules in policy","type":"integer"},"verifyimages":{"description":"Count for verify image rules in policy","type":"integer"}}},"validatingadmissionpolicy":{"description":"ValidatingAdmissionPolicy contains status information","type":"object","required":["generated","message"],"properties":{"generated":{"description":"Generated indicates whether a validating admission policy is generated from the policy or not","type":"boolean"},"message":{"description":"Message is a human readable message indicating details about the generation of validating admission policy\nIt is an empty string when validating admission policy is successfully generated.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"Policy","version":"v1"}]},"io.kyverno.v1.PolicyList":{"description":"PolicyList is a list of Policy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of policies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v1.Policy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"PolicyList","version":"v1"}]},"io.kyverno.v1beta1.UpdateRequest":{"description":"UpdateRequest is a request to process mutate and generate rules in background.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ResourceSpec is the information to identify the trigger resource.","type":"object","required":["context","deleteDownstream","policy","resource","rule"],"properties":{"context":{"description":"Context ...","type":"object","properties":{"admissionRequestInfo":{"description":"AdmissionRequestInfoObject stores the admission request and operation details","type":"object","properties":{"admissionRequest":{"description":"AdmissionRequest describes the admission.Attributes for the admission request.","type":"object","required":["kind","operation","resource","uid","userInfo"],"properties":{"dryRun":{"description":"DryRun indicates that modifications will definitely not be persisted for this request.\nDefaults to false.","type":"boolean"},"kind":{"description":"Kind is the fully-qualified type of object being submitted (for example, v1.Pod or autoscaling.v1.Scale)","type":"object","required":["group","kind","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"version":{"type":"string"}}},"name":{"description":"Name is the name of the object as presented in the request.  On a CREATE operation, the client may omit name and\nrely on the server to generate the name.  If that is the case, this field will contain an empty string.","type":"string"},"namespace":{"description":"Namespace is the namespace associated with the request (if any).","type":"string"},"object":{"description":"Object is the object from the incoming request.","x-kubernetes-preserve-unknown-fields":true},"oldObject":{"description":"OldObject is the existing object. Only populated for DELETE and UPDATE requests.","x-kubernetes-preserve-unknown-fields":true},"operation":{"description":"Operation is the operation being performed. This may be different than the operation\nrequested. e.g. a patch can result in either a CREATE or UPDATE Operation.","type":"string"},"options":{"description":"Options is the operation option structure of the operation being performed.\ne.g. `meta.k8s.io/v1.DeleteOptions` or `meta.k8s.io/v1.CreateOptions`. This may be\ndifferent than the options the caller provided. e.g. for a patch request the performed\nOperation might be a CREATE, in which case the Options will a\n`meta.k8s.io/v1.CreateOptions` even though the caller provided `meta.k8s.io/v1.PatchOptions`.","x-kubernetes-preserve-unknown-fields":true},"requestKind":{"description":"RequestKind is the fully-qualified type of the original API request (for example, v1.Pod or autoscaling.v1.Scale).\nIf this is specified and differs from the value in \"kind\", an equivalent match and conversion was performed.\n\nFor example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of\n`apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]` and `matchPolicy: Equivalent`,\nan API request to apps/v1beta1 deployments would be converted and sent to the webhook\nwith `kind: {group:\"apps\", version:\"v1\", kind:\"Deployment\"}` (matching the rule the webhook registered for),\nand `requestKind: {group:\"apps\", version:\"v1beta1\", kind:\"Deployment\"}` (indicating the kind of the original API request).\n\nSee documentation for the \"matchPolicy\" field in the webhook configuration type for more details.","type":"object","required":["group","kind","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"version":{"type":"string"}}},"requestResource":{"description":"RequestResource is the fully-qualified resource of the original API request (for example, v1.pods).\nIf this is specified and differs from the value in \"resource\", an equivalent match and conversion was performed.\n\nFor example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of\n`apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]` and `matchPolicy: Equivalent`,\nan API request to apps/v1beta1 deployments would be converted and sent to the webhook\nwith `resource: {group:\"apps\", version:\"v1\", resource:\"deployments\"}` (matching the resource the webhook registered for),\nand `requestResource: {group:\"apps\", version:\"v1beta1\", resource:\"deployments\"}` (indicating the resource of the original API request).\n\nSee documentation for the \"matchPolicy\" field in the webhook configuration type.","type":"object","required":["group","resource","version"],"properties":{"group":{"type":"string"},"resource":{"type":"string"},"version":{"type":"string"}}},"requestSubResource":{"description":"RequestSubResource is the name of the subresource of the original API request, if any (for example, \"status\" or \"scale\")\nIf this is specified and differs from the value in \"subResource\", an equivalent match and conversion was performed.\nSee documentation for the \"matchPolicy\" field in the webhook configuration type.","type":"string"},"resource":{"description":"Resource is the fully-qualified resource being requested (for example, v1.pods)","type":"object","required":["group","resource","version"],"properties":{"group":{"type":"string"},"resource":{"type":"string"},"version":{"type":"string"}}},"subResource":{"description":"SubResource is the subresource being requested, if any (for example, \"status\" or \"scale\")","type":"string"},"uid":{"description":"UID is an identifier for the individual request/response. It allows us to distinguish instances of requests which are\notherwise identical (parallel requests, requests when earlier requests did not modify etc)\nThe UID is meant to track the round trip (request/response) between the KAS and the WebHook, not the user request.\nIt is suitable for correlating log entries between the webhook and apiserver, for either auditing or debugging.","type":"string"},"userInfo":{"description":"UserInfo is information about the requesting user","type":"object","properties":{"extra":{"description":"Any additional information provided by the authenticator.","type":"object","additionalProperties":{"description":"ExtraValue masks the value so protobuf can generate","type":"array","items":{"type":"string"}}},"groups":{"description":"The names of groups this user is a part of.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"uid":{"description":"A unique value that identifies this user across time. If this user is\ndeleted and another user by the same name is added, they will have\ndifferent UIDs.","type":"string"},"username":{"description":"The name that uniquely identifies this user among all active users.","type":"string"}}}}},"operation":{"description":"Operation is the type of resource operation being checked for admission control","type":"string"}}},"userInfo":{"description":"RequestInfo contains permission info carried in an admission request.","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is a list of possible clusterRoles send the request."},"roles":{"description":"Roles is a list of possible role send the request."},"userInfo":{"description":"UserInfo is the userInfo carried in the admission request.","type":"object","properties":{"extra":{"description":"Any additional information provided by the authenticator.","type":"object","additionalProperties":{"description":"ExtraValue masks the value so protobuf can generate","type":"array","items":{"type":"string"}}},"groups":{"description":"The names of groups this user is a part of.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"uid":{"description":"A unique value that identifies this user across time. If this user is\ndeleted and another user by the same name is added, they will have\ndifferent UIDs.","type":"string"},"username":{"description":"The name that uniquely identifies this user among all active users.","type":"string"}}}}}}},"deleteDownstream":{"description":"DeleteDownstream represents whether the downstream needs to be deleted.","type":"boolean"},"policy":{"description":"Specifies the name of the policy.","type":"string"},"requestType":{"description":"Type represents request type for background processing","type":"string","enum":["mutate","generate"]},"resource":{"description":"ResourceSpec is the information to identify the trigger resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"rule":{"description":"Rule is the associate rule name of the current UR.","type":"string"},"synchronize":{"description":"Synchronize represents the sync behavior of the corresponding rule\nOptional. Defaults to \"false\" if not specified.","type":"boolean"}}},"status":{"description":"Status contains statistics related to update request.","type":"object","required":["state"],"properties":{"generatedResources":{"description":"This will track the resources that are updated by the generate Policy.\nWill be used during clean up resources.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"handler":{"description":"Deprecated","type":"string"},"message":{"description":"Specifies request status message.","type":"string"},"retryCount":{"type":"integer"},"state":{"description":"State represents state of the update request.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"UpdateRequest","version":"v1beta1"}]},"io.kyverno.v1beta1.UpdateRequestList":{"description":"UpdateRequestList is a list of UpdateRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of updaterequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v1beta1.UpdateRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"UpdateRequestList","version":"v1beta1"}]},"io.kyverno.v2.CleanupPolicy":{"description":"CleanupPolicy defines a rule for resource cleanup.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy behaviors.","type":"object","required":["match","schedule"],"properties":{"conditions":{"description":"Conditions defines the conditions used to select the resources which will be cleaned up.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deletionPropagationPolicy":{"description":"DeletionPropagationPolicy defines how resources will be deleted (Foreground, Background, Orphan).","type":"string","enum":["Foreground","Background","Orphan"]},"exclude":{"description":"ExcludeResources defines when cleanuppolicy should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"match":{"description":"MatchResources defines when cleanuppolicy should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"schedule":{"description":"The schedule in Cron format","type":"string"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"lastExecutionTime":{"type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2"}]},"io.kyverno.v2.CleanupPolicyList":{"description":"CleanupPolicyList is a list of CleanupPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cleanuppolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2.CleanupPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"CleanupPolicyList","version":"v2"}]},"io.kyverno.v2.ClusterCleanupPolicy":{"description":"ClusterCleanupPolicy defines rule for resource cleanup.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy behaviors.","type":"object","required":["match","schedule"],"properties":{"conditions":{"description":"Conditions defines the conditions used to select the resources which will be cleaned up.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deletionPropagationPolicy":{"description":"DeletionPropagationPolicy defines how resources will be deleted (Foreground, Background, Orphan).","type":"string","enum":["Foreground","Background","Orphan"]},"exclude":{"description":"ExcludeResources defines when cleanuppolicy should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"match":{"description":"MatchResources defines when cleanuppolicy should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"schedule":{"description":"The schedule in Cron format","type":"string"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"lastExecutionTime":{"type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2"}]},"io.kyverno.v2.ClusterCleanupPolicyList":{"description":"ClusterCleanupPolicyList is a list of ClusterCleanupPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clustercleanuppolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2.ClusterCleanupPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterCleanupPolicyList","version":"v2"}]},"io.kyverno.v2.PolicyException":{"description":"PolicyException declares resources to be excluded from specified policies.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy exception behaviors.","type":"object","required":["exceptions","match"],"properties":{"background":{"description":"Background controls if exceptions are applied to existing policies during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"},"conditions":{"description":"Conditions are used to determine if a resource applies to the exception by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exceptions":{"description":"Exceptions is a list policy/rules to be excluded","type":"array","items":{"description":"Exception stores infos about a policy and rules","type":"object","required":["policyName","ruleNames"],"properties":{"policyName":{"description":"PolicyName identifies the policy to which the exception is applied.\nThe policy name uses the format <namespace>/<name> unless it\nreferences a ClusterPolicy.","type":"string"},"ruleNames":{"description":"RuleNames identifies the rules to which the exception is applied.","type":"array","items":{"type":"string"}}}}},"match":{"description":"Match defines match clause used to check if a resource applies to the exception","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"podSecurity":{"description":"PodSecurity specifies the Pod Security Standard controls to be excluded.\nApplicable only to policies that have validate.podSecurity subrule.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"PolicyException","version":"v2"}]},"io.kyverno.v2.PolicyExceptionList":{"description":"PolicyExceptionList is a list of PolicyException","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of policyexceptions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2.PolicyException"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"PolicyExceptionList","version":"v2"}]},"io.kyverno.v2.UpdateRequest":{"description":"UpdateRequest is a request to process mutate and generate rules in background.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ResourceSpec is the information to identify the trigger resource.","type":"object","required":["context","deleteDownstream","policy","resource","rule"],"properties":{"context":{"description":"Context represents admission request context.\nIt is used upon admission review only and is shared across rules within the same UR.","type":"object","properties":{"admissionRequestInfo":{"description":"AdmissionRequestInfoObject stores the admission request and operation details","type":"object","properties":{"admissionRequest":{"description":"AdmissionRequest describes the admission.Attributes for the admission request.","type":"object","required":["kind","operation","resource","uid","userInfo"],"properties":{"dryRun":{"description":"DryRun indicates that modifications will definitely not be persisted for this request.\nDefaults to false.","type":"boolean"},"kind":{"description":"Kind is the fully-qualified type of object being submitted (for example, v1.Pod or autoscaling.v1.Scale)","type":"object","required":["group","kind","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"version":{"type":"string"}}},"name":{"description":"Name is the name of the object as presented in the request.  On a CREATE operation, the client may omit name and\nrely on the server to generate the name.  If that is the case, this field will contain an empty string.","type":"string"},"namespace":{"description":"Namespace is the namespace associated with the request (if any).","type":"string"},"object":{"description":"Object is the object from the incoming request.","x-kubernetes-preserve-unknown-fields":true},"oldObject":{"description":"OldObject is the existing object. Only populated for DELETE and UPDATE requests.","x-kubernetes-preserve-unknown-fields":true},"operation":{"description":"Operation is the operation being performed. This may be different than the operation\nrequested. e.g. a patch can result in either a CREATE or UPDATE Operation.","type":"string"},"options":{"description":"Options is the operation option structure of the operation being performed.\ne.g. `meta.k8s.io/v1.DeleteOptions` or `meta.k8s.io/v1.CreateOptions`. This may be\ndifferent than the options the caller provided. e.g. for a patch request the performed\nOperation might be a CREATE, in which case the Options will a\n`meta.k8s.io/v1.CreateOptions` even though the caller provided `meta.k8s.io/v1.PatchOptions`.","x-kubernetes-preserve-unknown-fields":true},"requestKind":{"description":"RequestKind is the fully-qualified type of the original API request (for example, v1.Pod or autoscaling.v1.Scale).\nIf this is specified and differs from the value in \"kind\", an equivalent match and conversion was performed.\n\nFor example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of\n`apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]` and `matchPolicy: Equivalent`,\nan API request to apps/v1beta1 deployments would be converted and sent to the webhook\nwith `kind: {group:\"apps\", version:\"v1\", kind:\"Deployment\"}` (matching the rule the webhook registered for),\nand `requestKind: {group:\"apps\", version:\"v1beta1\", kind:\"Deployment\"}` (indicating the kind of the original API request).\n\nSee documentation for the \"matchPolicy\" field in the webhook configuration type for more details.","type":"object","required":["group","kind","version"],"properties":{"group":{"type":"string"},"kind":{"type":"string"},"version":{"type":"string"}}},"requestResource":{"description":"RequestResource is the fully-qualified resource of the original API request (for example, v1.pods).\nIf this is specified and differs from the value in \"resource\", an equivalent match and conversion was performed.\n\nFor example, if deployments can be modified via apps/v1 and apps/v1beta1, and a webhook registered a rule of\n`apiGroups:[\"apps\"], apiVersions:[\"v1\"], resources: [\"deployments\"]` and `matchPolicy: Equivalent`,\nan API request to apps/v1beta1 deployments would be converted and sent to the webhook\nwith `resource: {group:\"apps\", version:\"v1\", resource:\"deployments\"}` (matching the resource the webhook registered for),\nand `requestResource: {group:\"apps\", version:\"v1beta1\", resource:\"deployments\"}` (indicating the resource of the original API request).\n\nSee documentation for the \"matchPolicy\" field in the webhook configuration type.","type":"object","required":["group","resource","version"],"properties":{"group":{"type":"string"},"resource":{"type":"string"},"version":{"type":"string"}}},"requestSubResource":{"description":"RequestSubResource is the name of the subresource of the original API request, if any (for example, \"status\" or \"scale\")\nIf this is specified and differs from the value in \"subResource\", an equivalent match and conversion was performed.\nSee documentation for the \"matchPolicy\" field in the webhook configuration type.","type":"string"},"resource":{"description":"Resource is the fully-qualified resource being requested (for example, v1.pods)","type":"object","required":["group","resource","version"],"properties":{"group":{"type":"string"},"resource":{"type":"string"},"version":{"type":"string"}}},"subResource":{"description":"SubResource is the subresource being requested, if any (for example, \"status\" or \"scale\")","type":"string"},"uid":{"description":"UID is an identifier for the individual request/response. It allows us to distinguish instances of requests which are\notherwise identical (parallel requests, requests when earlier requests did not modify etc)\nThe UID is meant to track the round trip (request/response) between the KAS and the WebHook, not the user request.\nIt is suitable for correlating log entries between the webhook and apiserver, for either auditing or debugging.","type":"string"},"userInfo":{"description":"UserInfo is information about the requesting user","type":"object","properties":{"extra":{"description":"Any additional information provided by the authenticator.","type":"object","additionalProperties":{"description":"ExtraValue masks the value so protobuf can generate","type":"array","items":{"type":"string"}}},"groups":{"description":"The names of groups this user is a part of.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"uid":{"description":"A unique value that identifies this user across time. If this user is\ndeleted and another user by the same name is added, they will have\ndifferent UIDs.","type":"string"},"username":{"description":"The name that uniquely identifies this user among all active users.","type":"string"}}}}},"operation":{"description":"Operation is the type of resource operation being checked for admission control","type":"string"}}},"userInfo":{"description":"RequestInfo contains permission info carried in an admission request.","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is a list of possible clusterRoles send the request."},"roles":{"description":"Roles is a list of possible role send the request."},"synchronize":{"description":"DryRun indicates that modifications will definitely not be persisted for this request.\nDefaults to false.","type":"boolean"},"userInfo":{"description":"UserInfo is the userInfo carried in the admission request.","type":"object","properties":{"extra":{"description":"Any additional information provided by the authenticator.","type":"object","additionalProperties":{"description":"ExtraValue masks the value so protobuf can generate","type":"array","items":{"type":"string"}}},"groups":{"description":"The names of groups this user is a part of.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"uid":{"description":"A unique value that identifies this user across time. If this user is\ndeleted and another user by the same name is added, they will have\ndifferent UIDs.","type":"string"},"username":{"description":"The name that uniquely identifies this user among all active users.","type":"string"}}}}}}},"deleteDownstream":{"description":"DeleteDownstream represents whether the downstream needs to be deleted.\nDeprecated","type":"boolean"},"policy":{"description":"Specifies the name of the policy.","type":"string"},"requestType":{"description":"Type represents request type for background processing","type":"string","enum":["mutate","generate","cel-generate","cel-mutate"]},"resource":{"description":"ResourceSpec is the information to identify the trigger resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"rule":{"description":"Rule is the associate rule name of the current UR.","type":"string"},"ruleContext":{"description":"RuleContext is the associate context to apply rules.\noptional","type":"array","items":{"type":"object","required":["deleteDownstream","rule","trigger"],"properties":{"cacheRestore":{"description":"CacheRestore indicates whether the cache should be restored.","type":"boolean"},"deleteDownstream":{"description":"DeleteDownstream represents whether the downstream needs to be deleted.","type":"boolean"},"rule":{"description":"Rule is the associate rule name of the current UR.","type":"string"},"synchronize":{"description":"Synchronize represents the sync behavior of the corresponding rule\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"trigger":{"description":"ResourceSpec is the information to identify the trigger resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"synchronize":{"description":"Synchronize represents the sync behavior of the corresponding rule\nOptional. Defaults to \"false\" if not specified.\nDeprecated, will be removed in 1.14.","type":"boolean"}}},"status":{"description":"Status contains statistics related to update request.","type":"object","required":["state"],"properties":{"generatedResources":{"description":"This will track the resources that are updated by the generate Policy.\nWill be used during clean up resources.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"message":{"description":"Specifies request status message.","type":"string"},"retryCount":{"type":"integer"},"state":{"description":"State represents state of the update request.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"UpdateRequest","version":"v2"}]},"io.kyverno.v2.UpdateRequestList":{"description":"UpdateRequestList is a list of UpdateRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of updaterequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2.UpdateRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"UpdateRequestList","version":"v2"}]},"io.kyverno.v2alpha1.GlobalContextEntry":{"description":"GlobalContextEntry declares resources to be cached.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy exception behaviors.","type":"object","properties":{"apiCall":{"description":"Stores results from an API call which will be cached.\nMutually exclusive with KubernetesResource.\nThis can be used to make calls to external (non-Kubernetes API server) services.\nIt can also be used to make calls to the Kubernetes API server in such cases:\n1. A POST is needed to create a resource.\n2. Finer-grained control is needed. Example: To restrict the number of resources cached.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"refreshInterval":{"description":"RefreshInterval defines the interval in duration at which to poll the APICall.\nThe duration is a sequence of decimal numbers, each with optional fraction and a unit suffix,\nsuch as \"300ms\", \"1.5h\" or \"2h45m\". Valid time units are \"ns\", \"us\" (or \"µs\"), \"ms\", \"s\", \"m\", \"h\".","type":"string","format":"duration"},"retryLimit":{"description":"RetryLimit defines the number of times the APICall should be retried in case of failure.","type":"integer","minimum":1},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"kubernetesResource":{"description":"Stores a list of Kubernetes resources which will be cached.\nMutually exclusive with APICall.","type":"object","required":["resource","version"],"properties":{"group":{"description":"Group defines the group of the resource.","type":"string"},"namespace":{"description":"Namespace defines the namespace of the resource. Leave empty for cluster scoped resources.\nIf left empty for namespaced resources, all resources from all namespaces will be cached.","type":"string"},"resource":{"description":"Resource defines the type of the resource.\nRequires the pluralized form of the resource kind in lowercase. (Ex., \"deployments\")","type":"string"},"version":{"description":"Version defines the version of the resource.","type":"string"}}},"projections":{"description":"Projections defines the list of JMESPath expressions to extract values from the cached resource.","type":"array","items":{"type":"object","required":["jmesPath","name"],"properties":{"jmesPath":{"description":"JMESPath is the JMESPath expression to extract the value from the cached resource.","type":"string"},"name":{"description":"Name is the name to use for the extracted value in the context.","type":"string"}}}}}},"status":{"description":"Status contains globalcontextentry runtime data.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"lastRefreshTime":{"description":"Indicates the time when the globalcontextentry was last refreshed successfully for the API Call","type":"string","format":"date-time"},"ready":{"description":"Deprecated in favor of Conditions","type":"boolean"}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"GlobalContextEntry","version":"v2alpha1"}]},"io.kyverno.v2alpha1.GlobalContextEntryList":{"description":"GlobalContextEntryList is a list of GlobalContextEntry","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of globalcontextentries. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2alpha1.GlobalContextEntry"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"GlobalContextEntryList","version":"v2alpha1"}]},"io.kyverno.v2beta1.CleanupPolicy":{"description":"CleanupPolicy defines a rule for resource cleanup.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy behaviors.","type":"object","required":["match","schedule"],"properties":{"conditions":{"description":"Conditions defines the conditions used to select the resources which will be cleaned up.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deletionPropagationPolicy":{"description":"DeletionPropagationPolicy defines how resources will be deleted (Foreground, Background, Orphan).","type":"string","enum":["Foreground","Background","Orphan"]},"exclude":{"description":"ExcludeResources defines when cleanuppolicy should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"match":{"description":"MatchResources defines when cleanuppolicy should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"schedule":{"description":"The schedule in Cron format","type":"string"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"lastExecutionTime":{"type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"CleanupPolicy","version":"v2beta1"}]},"io.kyverno.v2beta1.CleanupPolicyList":{"description":"CleanupPolicyList is a list of CleanupPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cleanuppolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2beta1.CleanupPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"CleanupPolicyList","version":"v2beta1"}]},"io.kyverno.v2beta1.ClusterCleanupPolicy":{"description":"ClusterCleanupPolicy defines rule for resource cleanup.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy behaviors.","type":"object","required":["match","schedule"],"properties":{"conditions":{"description":"Conditions defines the conditions used to select the resources which will be cleaned up.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deletionPropagationPolicy":{"description":"DeletionPropagationPolicy defines how resources will be deleted (Foreground, Background, Orphan).","type":"string","enum":["Foreground","Background","Orphan"]},"exclude":{"description":"ExcludeResources defines when cleanuppolicy should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"match":{"description":"MatchResources defines when cleanuppolicy should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"schedule":{"description":"The schedule in Cron format","type":"string"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"lastExecutionTime":{"type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterCleanupPolicy","version":"v2beta1"}]},"io.kyverno.v2beta1.ClusterCleanupPolicyList":{"description":"ClusterCleanupPolicyList is a list of ClusterCleanupPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clustercleanuppolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterCleanupPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterCleanupPolicyList","version":"v2beta1"}]},"io.kyverno.v2beta1.ClusterPolicy":{"description":"ClusterPolicy declares validation, mutation, and generation behaviors for matching resources.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy behaviors.","type":"object","properties":{"admission":{"description":"Admission controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"},"applyRules":{"description":"ApplyRules controls how rules in a policy are applied. Rule are processed in\nthe order of declaration. When set to `One` processing stops after a rule has\nbeen applied i.e. the rule matches and results in a pass, fail, or error. When\nset to `All` all rules in the policy are processed. The default is `All`.","type":"string","enum":["All","One"]},"background":{"description":"Background controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"},"emitWarning":{"description":"EmitWarning enables API response warnings for mutate policy rules or validate policy rules with validationFailureAction set to Audit.\nEnabling this option will extend admission request processing times. The default value is \"false\".","type":"boolean"},"failurePolicy":{"description":"Deprecated, use failurePolicy under the webhookConfiguration instead.","type":"string","enum":["Ignore","Fail"]},"generateExisting":{"description":"Deprecated, use generateExisting under the generate rule instead","type":"boolean"},"generateExistingOnPolicyUpdate":{"description":"Deprecated, use generateExisting instead","type":"boolean"},"mutateExistingOnPolicyUpdate":{"description":"Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead","type":"boolean"},"rules":{"description":"Rules is a list of Rule instances. A Policy contains multiple rules and\neach rule can validate, mutate, or generate resources.","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}},"schemaValidation":{"description":"Deprecated.","type":"boolean"},"useServerSideApply":{"description":"UseServerSideApply controls whether to use server-side apply for generate rules\nIf is set to \"true\" create & update for generate rules will use apply instead of create/update.\nDefaults to \"false\" if not specified.","type":"boolean"},"validationFailureAction":{"description":"Deprecated, use validationFailureAction under the validate rule instead.","type":"string","enum":["audit","enforce","Audit","Enforce"]},"validationFailureActionOverrides":{"description":"Deprecated, use validationFailureActionOverrides under the validate rule instead.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"webhookConfiguration":{"description":"WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.","type":"object","properties":{"failurePolicy":{"description":"FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.\nRules within the same policy share the same failure behavior.\nThis field should not be accessed directly, instead `GetFailurePolicy()` should be used.\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchCondition configures admission webhook matchConditions.\nRequires Kubernetes 1.27 or later.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}},"webhookTimeoutSeconds":{"description":"Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.","type":"integer","format":"int32"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"autogen":{"description":"AutogenStatus contains autogen status information.","type":"object","properties":{"rules":{"description":"Rules is a list of Rule instances. It contains auto generated rules added for pod controllers","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"reportProperties":{"description":"ReportProperties are the additional properties from the rule that will be added to the policy report result","type":"object","additionalProperties":{"type":"string"}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"allowExistingViolations":{"description":"AllowExistingViolations allows prexisting violating resources to continue violating a policy.","type":"boolean"},"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"additionalExtensions":{"description":"Deprecated.","type":"object","additionalProperties":{"type":"string"}},"annotations":{"description":"Deprecated. Use annotations per Attestor instead.","type":"object","additionalProperties":{"type":"string"}},"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"cosignOCI11":{"description":"CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.\nDefaults to false.","type":"boolean"},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"image":{"description":"Deprecated. Use ImageReferences instead.","type":"string"},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"issuer":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"key":{"description":"Deprecated. Use StaticKeyAttestor instead.","type":"string"},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"roots":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"subject":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign, Sigstore Bundle and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule.","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}}}},"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"ready":{"description":"Deprecated in favor of Conditions","type":"boolean"},"rulecount":{"description":"RuleCountStatus contains four variables which describes counts for\nvalidate, generate, mutate and verify images rules","type":"object","required":["generate","mutate","validate","verifyimages"],"properties":{"generate":{"description":"Count for generate rules in policy","type":"integer"},"mutate":{"description":"Count for mutate rules in policy","type":"integer"},"validate":{"description":"Count for validate rules in policy","type":"integer"},"verifyimages":{"description":"Count for verify image rules in policy","type":"integer"}}},"validatingadmissionpolicy":{"description":"ValidatingAdmissionPolicy contains status information","type":"object","required":["generated","message"],"properties":{"generated":{"description":"Generated indicates whether a validating admission policy is generated from the policy or not","type":"boolean"},"message":{"description":"Message is a human readable message indicating details about the generation of validating admission policy\nIt is an empty string when validating admission policy is successfully generated.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterPolicy","version":"v2beta1"}]},"io.kyverno.v2beta1.ClusterPolicyList":{"description":"ClusterPolicyList is a list of ClusterPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2beta1.ClusterPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"ClusterPolicyList","version":"v2beta1"}]},"io.kyverno.v2beta1.Policy":{"description":"Policy declares validation, mutation, and generation behaviors for matching resources.\nSee: https://kyverno.io/docs/writing-policies/ for more information.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines policy behaviors and contains one or more rules.","type":"object","properties":{"admission":{"description":"Admission controls if rules are applied during admission.\nOptional. Default value is \"true\".","type":"boolean"},"applyRules":{"description":"ApplyRules controls how rules in a policy are applied. Rule are processed in\nthe order of declaration. When set to `One` processing stops after a rule has\nbeen applied i.e. the rule matches and results in a pass, fail, or error. When\nset to `All` all rules in the policy are processed. The default is `All`.","type":"string","enum":["All","One"]},"background":{"description":"Background controls if rules are applied to existing resources during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"},"emitWarning":{"description":"EmitWarning enables API response warnings for mutate policy rules or validate policy rules with validationFailureAction set to Audit.\nEnabling this option will extend admission request processing times. The default value is \"false\".","type":"boolean"},"failurePolicy":{"description":"Deprecated, use failurePolicy under the webhookConfiguration instead.","type":"string","enum":["Ignore","Fail"]},"generateExisting":{"description":"Deprecated, use generateExisting under the generate rule instead","type":"boolean"},"generateExistingOnPolicyUpdate":{"description":"Deprecated, use generateExisting instead","type":"boolean"},"mutateExistingOnPolicyUpdate":{"description":"Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead","type":"boolean"},"rules":{"description":"Rules is a list of Rule instances. A Policy contains multiple rules and\neach rule can validate, mutate, or generate resources.","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}},"schemaValidation":{"description":"Deprecated.","type":"boolean"},"useServerSideApply":{"description":"UseServerSideApply controls whether to use server-side apply for generate rules\nIf is set to \"true\" create & update for generate rules will use apply instead of create/update.\nDefaults to \"false\" if not specified.","type":"boolean"},"validationFailureAction":{"description":"Deprecated, use validationFailureAction under the validate rule instead.","type":"string","enum":["audit","enforce","Audit","Enforce"]},"validationFailureActionOverrides":{"description":"Deprecated, use validationFailureActionOverrides under the validate rule instead.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"webhookConfiguration":{"description":"WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.","type":"object","properties":{"failurePolicy":{"description":"FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.\nRules within the same policy share the same failure behavior.\nThis field should not be accessed directly, instead `GetFailurePolicy()` should be used.\nAllowed values are Ignore or Fail. Defaults to Fail.","type":"string","enum":["Ignore","Fail"]},"matchConditions":{"description":"MatchCondition configures admission webhook matchConditions.\nRequires Kubernetes 1.27 or later.","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"timeoutSeconds":{"description":"TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.\nAfter the configured time expires, the admission request may fail, or may simply ignore the policy results,\nbased on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.","type":"integer","format":"int32"}}},"webhookTimeoutSeconds":{"description":"Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.","type":"integer","format":"int32"}}},"status":{"description":"Status contains policy runtime data.","type":"object","properties":{"autogen":{"description":"AutogenStatus contains autogen status information.","type":"object","properties":{"rules":{"description":"Rules is a list of Rule instances. It contains auto generated rules added for pod controllers","type":"array","items":{"description":"Rule defines a validation, mutation, or generation control for matching resources.\nEach rules contains a match declaration to select resources, and an optional exclude\ndeclaration to specify which resources to exclude.","type":"object","required":["match","name"],"properties":{"celPreconditions":{"description":"CELPreconditions are used to determine if a policy rule should be applied by evaluating a\nset of CEL conditions. It can only be used with the validate.cel subrule","type":"array","items":{"description":"MatchCondition represents a condition which must by fulfilled for a request to be sent to a webhook.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL. Must evaluate to bool.\nCEL expressions have access to the contents of the AdmissionRequest and Authorizer, organized into CEL variables:\n\n'object' - The object from the incoming request. The value is null for DELETE requests.\n'oldObject' - The existing object. The value is null for CREATE requests.\n'request' - Attributes of the admission request(/pkg/apis/admission/types.go#AdmissionRequest).\n'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\nDocumentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/\n\nRequired.","type":"string"},"name":{"description":"Name is an identifier for this match condition, used for strategic merging of MatchConditions,\nas well as providing an identifier for logging purposes. A good name should be descriptive of\nthe associated expression.\nName must be a qualified name consisting of alphanumeric characters, '-', '_' or '.', and\nmust start and end with an alphanumeric character (e.g. 'MyName',  or 'my.name',  or\n'123-abc', regex used for validation is '([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]') with an\noptional DNS subdomain prefix and '/' (e.g. 'example.com/MyName')\n\nRequired.","type":"string"}}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exclude":{"description":"ExcludeResources defines when this policy rule should not be applied. The exclude\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the name or role.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"generate":{"description":"Generation is used to create new resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"foreach":{"description":"ForEach applies generate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"clone":{"description":"Clone specifies the source resource used to populate each generated resource.\nAt most one of Data or Clone can be specified. If neither are provided, the generated\nresource will be created with default data only.","type":"object","properties":{"name":{"description":"Name specifies name of the resource.","type":"string"},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"}}},"cloneList":{"description":"CloneList specifies the list of source resource used to populate each generated resource.","type":"object","properties":{"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"namespace":{"description":"Namespace specifies source resource namespace.","type":"string"},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels`.\nwildcard characters are not supported.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"data":{"description":"Data provides the resource declaration used to populate each generated resource.\nAt most one of Data or Clone must be specified. If neither are provided, the generated\nresource will be created with default data only.","x-kubernetes-preserve-unknown-fields":true},"kind":{"description":"Kind specifies resource kind.","type":"string"},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}},"generateExisting":{"description":"GenerateExisting controls whether to trigger the rule in existing resources\nIf is set to \"true\" the rule will be triggered and applied to existing matched resources.","type":"boolean"},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"orphanDownstreamOnPolicyDelete":{"description":"OrphanDownstreamOnPolicyDelete controls whether generated resources should be deleted when the rule that generated\nthem is deleted with synchronization enabled. This option is only applicable to generate rules of the data type.\nSee https://kyverno.io/docs/writing-policies/generate/#data-examples.\nDefaults to \"false\" if not specified.","type":"boolean"},"synchronize":{"description":"Synchronize controls if generated resources should be kept in-sync with their source resource.\nIf Synchronize is set to \"true\" changes to generated resources will be overwritten with resource\ndata from Data or the resource specified in the Clone declaration.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}},"imageExtractors":{"description":"ImageExtractors defines a mapping from kinds to ImageExtractorConfigs.\nThis config is only valid for verifyImages rules.","type":"object","additionalProperties":{"type":"array","items":{"type":"object","required":["path"],"properties":{"jmesPath":{"description":"JMESPath is an optional JMESPath expression to apply to the image value.\nThis is useful when the extracted image begins with a prefix like 'docker://'.\nThe 'trim_prefix' function may be used to trim the prefix: trim_prefix(@, 'docker://').\nNote - Image digest mutation may not be used when applying a JMESPAth to an image.","type":"string"},"key":{"description":"Key is an optional name of the field within 'path' that will be used to uniquely identify an image.\nNote - this field MUST be unique.","type":"string"},"name":{"description":"Name is the entry the image will be available under 'images.<name>' in the context.\nIf this field is not defined, image entries will appear under 'images.custom'.","type":"string"},"path":{"description":"Path is the path to the object containing the image field in a custom resource.\nIt should be slash-separated. Each slash-separated key must be a valid YAML key or a wildcard '*'.\nWildcard keys are expanded in case of arrays or objects.","type":"string"},"value":{"description":"Value is an optional name of the field within 'path' that points to the image URI.\nThis is useful when a custom 'key' is also defined.","type":"string"}}}}},"match":{"description":"MatchResources defines when this policy rule should be applied. The match\ncriteria can include resource information (e.g. kind, name, namespace, labels)\nand admission review request information like the user name or role.\nAt least one kind is required.","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.\nRequires at least one tag to be specified when under MatchResources.\nSpecifying ResourceDescription directly under match is being deprecated.\nPlease specify under \"any\" or \"all\" instead.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"mutate":{"description":"Mutation is used to modify matching resources.","type":"object","properties":{"foreach":{"description":"ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachMutation applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"order":{"description":"Order defines the iteration order on the list.\nCan be Ascending to iterate from first to last element or Descending to iterate in from last to first element.","type":"string","enum":["Ascending","Descending"]},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"mutateExistingOnPolicyUpdate":{"description":"MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.","type":"boolean"},"patchStrategicMerge":{"description":"PatchStrategicMerge is a strategic merge patch used to modify resources.\nSee https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/\nand https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesstrategicmerge/.","x-kubernetes-preserve-unknown-fields":true},"patchesJson6902":{"description":"PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.\nSee https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/kustomization/patchesjson6902/.","type":"string"},"targets":{"description":"Targets defines the target resources to be mutated.","type":"array","items":{"description":"TargetResourceSpec defines targets for mutating existing resources.","type":"object","properties":{"apiVersion":{"description":"APIVersion specifies resource apiVersion.","type":"string"},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"kind":{"description":"Kind specifies resource kind.","type":"string"},"name":{"description":"Name specifies the resource name.","type":"string"},"namespace":{"description":"Namespace specifies resource namespace.","type":"string"},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"selector":{"description":"Selector allows you to select target resources with their labels.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"uid":{"description":"UID specifies the resource uid.","type":"string"}}}}}},"name":{"description":"Name is a label to identify the rule, It must be unique within the policy.","type":"string","maxLength":63},"preconditions":{"description":"Preconditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements. A direct list\nof conditions (without `any` or `all` statements is supported for backwards compatibility but\nwill be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true},"reportProperties":{"description":"ReportProperties are the additional properties from the rule that will be added to the policy report result","type":"object","additionalProperties":{"type":"string"}},"skipBackgroundRequests":{"description":"SkipBackgroundRequests bypasses admission requests that are sent by the background controller.\nThe default value is set to \"true\", it must be set to \"false\" to apply\ngenerate and mutateExisting rules to those requests.","type":"boolean"},"validate":{"description":"Validation is used to validate matching resources.","type":"object","properties":{"allowExistingViolations":{"description":"AllowExistingViolations allows prexisting violating resources to continue violating a policy.","type":"boolean"},"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"assert":{"description":"Assert defines a kyverno-json assertion tree.","x-kubernetes-preserve-unknown-fields":true},"cel":{"description":"CEL allows validation checks using the Common Expression Language (https://kubernetes.io/docs/reference/using-api/cel/).","type":"object","properties":{"auditAnnotations":{"description":"AuditAnnotations contains CEL expressions which are used to produce audit annotations for the audit event of the API request.","type":"array","items":{"description":"AuditAnnotation describes how to produce an audit annotation for an API request.","type":"object","required":["key","valueExpression"],"properties":{"key":{"description":"key specifies the audit annotation key. The audit annotation keys of\na ValidatingAdmissionPolicy must be unique. The key must be a qualified\nname ([A-Za-z0-9][-A-Za-z0-9_.]*) no more than 63 bytes in length.\n\nThe key is combined with the resource name of the\nValidatingAdmissionPolicy to construct an audit annotation key:\n\"{ValidatingAdmissionPolicy name}/{key}\".\n\nIf an admission webhook uses the same resource name as this ValidatingAdmissionPolicy\nand the same audit annotation key, the annotation key will be identical.\nIn this case, the first annotation written with the key will be included\nin the audit event and all subsequent annotations with the same key\nwill be discarded.\n\nRequired.","type":"string"},"valueExpression":{"description":"valueExpression represents the expression which is evaluated by CEL to\nproduce an audit annotation value. The expression must evaluate to either\na string or null value. If the expression evaluates to a string, the\naudit annotation is included with the string value. If the expression\nevaluates to null or empty string the audit annotation will be omitted.\nThe valueExpression may be no longer than 5kb in length.\nIf the result of the valueExpression is more than 10kb in length, it\nwill be truncated to 10kb.\n\nIf multiple ValidatingAdmissionPolicyBinding resources match an\nAPI request, then the valueExpression will be evaluated for\neach binding. All unique values produced by the valueExpressions\nwill be joined together in a comma-separated list.\n\nRequired.","type":"string"}}}},"expressions":{"description":"Expressions is a list of CELExpression types.","type":"array","items":{"description":"Validation specifies the CEL expression which is used to apply the validation.","type":"object","required":["expression"],"properties":{"expression":{"description":"Expression represents the expression which will be evaluated by CEL.\nref: https://github.com/google/cel-spec\nCEL expressions have access to the contents of the API request/response, organized into CEL variables as well as some other useful variables:\n\n- 'object' - The object from the incoming request. The value is null for DELETE requests.\n- 'oldObject' - The existing object. The value is null for CREATE requests.\n- 'request' - Attributes of the API request([ref](/pkg/apis/admission/types.go#AdmissionRequest)).\n- 'params' - Parameter resource referred to by the policy binding being evaluated. Only populated if the policy has a ParamKind.\n- 'namespaceObject' - The namespace object that the incoming object belongs to. The value is null for cluster-scoped resources.\n- 'variables' - Map of composited variables, from its name to its lazily evaluated value.\n  For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n  See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n  request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName` are always accessible from the root of the\nobject. No other metadata properties are accessible.\n\nOnly property names of the form `[a-zA-Z_.-/][a-zA-Z0-9_.-/]*` are accessible.\nAccessible property names are escaped according to the following rules when accessed in the expression:\n- '__' escapes to '__underscores__'\n- '.' escapes to '__dot__'\n- '-' escapes to '__dash__'\n- '/' escapes to '__slash__'\n- Property names that exactly match a CEL RESERVED keyword escape to '__{keyword}__'. The keywords are:\n\t  \"true\", \"false\", \"null\", \"in\", \"as\", \"break\", \"const\", \"continue\", \"else\", \"for\", \"function\", \"if\",\n\t  \"import\", \"let\", \"loop\", \"package\", \"namespace\", \"return\".\nExamples:\n  - Expression accessing a property named \"namespace\": {\"Expression\": \"object.__namespace__ > 0\"}\n  - Expression accessing a property named \"x-prop\": {\"Expression\": \"object.x__dash__prop > 0\"}\n  - Expression accessing a property named \"redact__d\": {\"Expression\": \"object.redact__underscores__d > 0\"}\n\nEquality on arrays with list type of 'set' or 'map' ignores element order, i.e. [1, 2] == [2, 1].\nConcatenation on arrays with x-kubernetes-list-type use the semantics of the list type:\n  - 'set': `X + Y` performs a union where the array positions of all elements in `X` are preserved and\n    non-intersecting elements in `Y` are appended, retaining their partial order.\n  - 'map': `X + Y` performs a merge where the array positions of all keys in `X` are preserved but the values\n    are overwritten by values in `Y` when the key sets of `X` and `Y` intersect. Elements in `Y` with\n    non-intersecting keys are appended, retaining their partial order.\nRequired.","type":"string"},"message":{"description":"Message represents the message displayed when validation fails. The message is required if the Expression contains\nline breaks. The message must not contain line breaks.\nIf unset, the message is \"failed rule: {Rule}\".\ne.g. \"must be a URL with the host matching spec.host\"\nIf the Expression contains line breaks. Message is required.\nThe message must not contain line breaks.\nIf unset, the message is \"failed Expression: {Expression}\".","type":"string"},"messageExpression":{"description":"messageExpression declares a CEL expression that evaluates to the validation failure message that is returned when this rule fails.\nSince messageExpression is used as a failure message, it must evaluate to a string.\nIf both message and messageExpression are present on a validation, then messageExpression will be used if validation fails.\nIf messageExpression results in a runtime error, the runtime error is logged, and the validation failure message is produced\nas if the messageExpression field were unset. If messageExpression evaluates to an empty string, a string with only spaces, or a string\nthat contains line breaks, then the validation failure message will also be produced as if the messageExpression field were unset, and\nthe fact that messageExpression produced an empty string/string with only spaces/string with line breaks will be logged.\nmessageExpression has access to all the same variables as the `expression` except for 'authorizer' and 'authorizer.requestResource'.\nExample:\n\"object.x must be less than max (\"+string(params.max)+\")\"","type":"string"},"reason":{"description":"Reason represents a machine-readable description of why this validation failed.\nIf this is the first validation in the list to fail, this reason, as well as the\ncorresponding HTTP response code, are used in the\nHTTP response to the client.\nThe currently supported reasons are: \"Unauthorized\", \"Forbidden\", \"Invalid\", \"RequestEntityTooLarge\".\nIf not set, StatusReasonInvalid is used in the response to the client.","type":"string"}}}},"generate":{"description":"Generate specifies whether to generate a Kubernetes ValidatingAdmissionPolicy from the rule.\nOptional. Defaults to \"false\" if not specified.","type":"boolean"},"paramKind":{"description":"ParamKind is a tuple of Group Kind and Version.","type":"object","properties":{"apiVersion":{"description":"APIVersion is the API group version the resources belong to.\nIn format of \"group/version\".\nRequired.","type":"string"},"kind":{"description":"Kind is the API kind the resources belong to.\nRequired.","type":"string"}},"x-kubernetes-map-type":"atomic"},"paramRef":{"description":"ParamRef references a parameter resource.","type":"object","properties":{"name":{"description":"name is the name of the resource being referenced.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.\n\nA single parameter used for all admission requests can be configured\nby setting the `name` field, leaving `selector` blank, and setting namespace\nif `paramKind` is namespace-scoped.","type":"string"},"namespace":{"description":"namespace is the namespace of the referenced resource. Allows limiting\nthe search for params to a specific namespace. Applies to both `name` and\n`selector` fields.\n\nA per-namespace parameter may be used by specifying a namespace-scoped\n`paramKind` in the policy and leaving this field empty.\n\n- If `paramKind` is cluster-scoped, this field MUST be unset. Setting this\nfield results in a configuration error.\n\n- If `paramKind` is namespace-scoped, the namespace of the object being\nevaluated for admission will be used when this field is left unset. Take\ncare that if this is left empty the binding must not match any cluster-scoped\nresources, which will result in an error.","type":"string"},"parameterNotFoundAction":{"description":"`parameterNotFoundAction` controls the behavior of the binding when the resource\nexists, and name or selector is valid, but there are no parameters\nmatched by the binding. If the value is set to `Allow`, then no\nmatched parameters will be treated as successful validation by the binding.\nIf set to `Deny`, then no matched parameters will be subject to the\n`failurePolicy` of the policy.\n\nAllowed values are `Allow` or `Deny`\n\nRequired","type":"string"},"selector":{"description":"selector can be used to match multiple param objects based on their labels.\nSupply selector: {} to match all resources of the ParamKind.\n\nIf multiple params are found, they are all evaluated with the policy expressions\nand the results are ANDed together.\n\nOne of `name` or `selector` must be set, but `name` and `selector` are\nmutually exclusive properties. If one is set, the other must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"variables":{"description":"Variables contain definitions of variables that can be used in composition of other expressions.\nEach variable is defined as a named CEL expression.\nThe variables defined here will be available under `variables` in other expressions of the policy.","type":"array","items":{"description":"Variable is the definition of a variable that is used for composition. A variable is defined as a named expression.","type":"object","required":["expression","name"],"properties":{"expression":{"description":"Expression is the expression that will be evaluated as the value of the variable.\nThe CEL expression has access to the same identifiers as the CEL expressions in Validation.","type":"string"},"name":{"description":"Name is the name of the variable. The name must be a valid CEL identifier and unique among all variables.\nThe variable can be accessed in other expressions through `variables`\nFor example, if name is \"foo\", the variable will be available as `variables.foo`","type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"failureAction":{"description":"FailureAction defines if a validation policy rule violation should block\nthe admission review request (Enforce), or allow (Audit) the admission review request\nand report an error in a policy report. Optional.\nAllowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"failureActionOverrides":{"description":"FailureActionOverrides is a Cluster Policy attribute that specifies FailureAction\nnamespace-wise. It overrides FailureAction for the specified namespaces.","type":"array","items":{"type":"object","properties":{"action":{"description":"ValidationFailureAction defines the policy validation failure action","type":"string","enum":["audit","enforce","Audit","Enforce"]},"namespaceSelector":{"description":"A label selector is a label query over a set of resources. The result of matchLabels and\nmatchExpressions are ANDed. An empty label selector matches all objects. A null\nlabel selector matches no objects.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}}}}},"foreach":{"description":"ForEach applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"array","items":{"description":"ForEachValidation applies validate rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic.","type":"object","properties":{"anyPattern":{"description":"AnyPattern specifies list of validation patterns. At least one of the patterns\nmust be satisfied for the validation rule to succeed.","x-kubernetes-preserve-unknown-fields":true},"context":{"description":"Context defines variables and data sources that can be used during rule execution.","type":"array","items":{"description":"ContextEntry adds variables and data sources to a rule Context. Either a\nConfigMap reference or a APILookup must be provided.","type":"object","required":["name"],"properties":{"apiCall":{"description":"APICall is an HTTP request to the Kubernetes API server, or other JSON web service.\nThe data returned is stored in the context with the name for the context entry.","type":"object","properties":{"data":{"description":"The data object specifies the POST data sent to the server.\nOnly applicable when the method field is set to POST.","type":"array","items":{"description":"RequestData contains the HTTP POST data","type":"object","required":["key","value"],"properties":{"key":{"description":"Key is a unique identifier for the data value","type":"string"},"value":{"description":"Value is the data value","x-kubernetes-preserve-unknown-fields":true}}}},"default":{"description":"Default is an optional arbitrary JSON object that the context\nvalue is set to, if the apiCall returns error.","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"method":{"description":"Method is the HTTP request type (GET or POST). Defaults to GET.","type":"string","enum":["GET","POST"]},"service":{"description":"Service is an API call to a JSON web service.\nThis is used for non-Kubernetes API server calls.\nIt's mutually exclusive with the URLPath field.","type":"object","required":["url"],"properties":{"caBundle":{"description":"CABundle is a PEM encoded CA bundle which will be used to validate\nthe server certificate.","type":"string"},"headers":{"description":"Headers is a list of optional HTTP headers to be included in the request.","type":"array","items":{"type":"object","required":["key","value"],"properties":{"key":{"description":"Key is the header key","type":"string"},"value":{"description":"Value is the header value","type":"string"}}}},"url":{"description":"URL is the JSON web service URL. A typical form is\n`https://{service}.{namespace}:{port}/{path}`.","type":"string"}}},"urlPath":{"description":"URLPath is the URL path to be used in the HTTP GET or POST request to the\nKubernetes API server (e.g. \"/api/v1/namespaces\" or  \"/apis/apps/v1/deployments\").\nThe format required is the same format used by the `kubectl get --raw` command.\nSee https://kyverno.io/docs/writing-policies/external-data-sources/#variables-from-kubernetes-api-server-calls\nfor details.\nIt's mutually exclusive with the Service field.","type":"string"}}},"configMap":{"description":"ConfigMap is the ConfigMap reference.","type":"object","required":["name"],"properties":{"name":{"description":"Name is the ConfigMap name.","type":"string"},"namespace":{"description":"Namespace is the ConfigMap namespace.","type":"string"}}},"globalReference":{"description":"GlobalContextEntryReference is a reference to a cached global context entry.","type":"object","required":["name"],"properties":{"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the JSON response returned from the server. For example\na JMESPath of \"items | length(@)\" applied to the API server response\nfor the URLPath \"/apis/apps/v1/deployments\" will return the total count\nof deployments across all namespaces.","type":"string"},"name":{"description":"Name of the global context entry","type":"string"}}},"imageRegistry":{"description":"ImageRegistry defines requests to an OCI/Docker V2 registry to fetch image\ndetails.","type":"object","required":["reference"],"properties":{"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"jmesPath":{"description":"JMESPath is an optional JSON Match Expression that can be used to\ntransform the ImageData struct returned as a result of processing\nthe image reference.","type":"string"},"reference":{"description":"Reference is image reference to a container image in the registry.\nExample: ghcr.io/kyverno/kyverno:latest","type":"string"}}},"name":{"description":"Name is the variable name.","type":"string"},"variable":{"description":"Variable defines an arbitrary JMESPath context variable that can be defined inline.","type":"object","properties":{"default":{"description":"Default is an optional arbitrary JSON object that the variable may take if the JMESPath\nexpression evaluates to nil","x-kubernetes-preserve-unknown-fields":true},"jmesPath":{"description":"JMESPath is an optional JMESPath Expression that can be used to\ntransform the variable.","type":"string"},"value":{"description":"Value is any arbitrary JSON object representable in YAML or JSON form.","x-kubernetes-preserve-unknown-fields":true}}}}}},"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"elementScope":{"description":"ElementScope specifies whether to use the current list element as the scope for validation. Defaults to \"true\" if not specified.\nWhen set to \"false\", \"request.object\" is used as the validation scope within the foreach\nblock to allow referencing other elements in the subtree.","type":"boolean"},"foreach":{"description":"Foreach declares a nested foreach iterator","x-kubernetes-preserve-unknown-fields":true},"list":{"description":"List specifies a JMESPath expression that results in one or more elements\nto which the validation logic is applied.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"preconditions":{"description":"AnyAllConditions are used to determine if a policy rule should be applied by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.\nSee: https://kyverno.io/docs/writing-policies/preconditions/","x-kubernetes-preserve-unknown-fields":true}}}},"manifests":{"description":"Manifest specifies conditions for manifest verification","type":"object","properties":{"annotationDomain":{"description":"AnnotationDomain is custom domain of annotation for message and signature. Default is \"cosign.sigstore.dev\".","type":"string"},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"dryRun":{"description":"DryRun configuration","type":"object","properties":{"enable":{"type":"boolean"},"namespace":{"type":"string"}}},"ignoreFields":{"description":"Fields which will be ignored while comparing manifests.","type":"array","items":{"type":"object","properties":{"fields":{"type":"array","items":{"type":"string"}},"objects":{"type":"array","items":{"type":"object","properties":{"group":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"version":{"type":"string"}}}}}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for resource bundle reference.\nThe repository can be overridden per Attestor or Attestation.","type":"string"}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"},"pattern":{"description":"Pattern specifies an overlay-style pattern used to check resources.","x-kubernetes-preserve-unknown-fields":true},"podSecurity":{"description":"PodSecurity applies exemptions for Kubernetes Pod Security admission\nby specifying exclusions for Pod Security Standards controls.","type":"object","properties":{"exclude":{"description":"Exclude specifies the Pod Security Standard controls to be excluded.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}},"level":{"description":"Level defines the Pod Security Standard level to be applied to workloads.\nAllowed values are privileged, baseline, and restricted.","type":"string","enum":["privileged","baseline","restricted"]},"version":{"description":"Version defines the Pod Security Standard versions that Kubernetes supports.\nAllowed values are v1.19, v1.20, v1.21, v1.22, v1.23, v1.24, v1.25, v1.26, v1.27, v1.28, v1.29, latest. Defaults to latest.","type":"string","enum":["v1.19","v1.20","v1.21","v1.22","v1.23","v1.24","v1.25","v1.26","v1.27","v1.28","v1.29","latest"]}}}}},"verifyImages":{"description":"VerifyImages is used to verify image signatures and mutate them to add a digest","type":"array","items":{"description":"ImageVerification validates that images that match the specified pattern\nare signed with the supplied public key. Once the image is verified it is\nmutated to include the SHA digest retrieved during the registration.","type":"object","properties":{"additionalExtensions":{"description":"Deprecated.","type":"object","additionalProperties":{"type":"string"}},"annotations":{"description":"Deprecated. Use annotations per Attestor instead.","type":"object","additionalProperties":{"type":"string"}},"attestations":{"description":"Attestations are optional checks for signed in-toto Statements used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statement declarations.","type":"array","items":{"description":"Attestation are checks for signed in-toto Statements that are used to verify the image.\nSee https://github.com/in-toto/attestation. Kyverno fetches signed attestations from the\nOCI registry and decodes them into a list of Statements.","type":"object","properties":{"attestors":{"description":"Attestors specify the required attestors (i.e. authorities).","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"conditions":{"description":"Conditions are used to verify attributes within a Predicate. If no Conditions are specified\nthe attestation check is satisfied as long there are predicates that match the predicate type.","type":"array","items":{"description":"AnyAllConditions consists of conditions wrapped denoting a logical criteria to be fulfilled.\nAnyConditions get fulfilled when at least one of its sub-conditions passes.\nAllConditions get fulfilled only when all of its sub-conditions pass.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass","type":"array","items":{"description":"Condition defines variable-based conditional criteria for rule execution.","type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","In","AnyIn","AllIn","NotIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}}},"name":{"description":"Name is the variable name.","type":"string"},"predicateType":{"description":"Deprecated in favour of 'Type', to be removed soon","type":"string"},"type":{"description":"Type defines the type of attestation contained within the Statement.","type":"string"}}}},"attestors":{"description":"Attestors specified the required attestors (i.e. authorities)","type":"array","items":{"type":"object","properties":{"count":{"description":"Count specifies the required number of entries that must match. If the count is null, all entries must match\n(a logical AND). If the count is 1, at least one entry must match (a logical OR). If the count contains a\nvalue N, then N must be less than or equal to the size of entries, and at least N entries must match.","type":"integer","minimum":1},"entries":{"description":"Entries contains the available attestors. An attestor can be a static key,\nattributes for keyless verification, or a nested attestor declaration.","type":"array","items":{"type":"object","properties":{"annotations":{"description":"Annotations are used for image verification.\nEvery specified key-value pair must exist and match in the verified payload.\nThe payload may contain other key-value pairs.","type":"object","additionalProperties":{"type":"string"}},"attestor":{"description":"Attestor is a nested set of Attestor used to specify a more complex set of match authorities.","x-kubernetes-preserve-unknown-fields":true},"certificates":{"description":"Certificates specifies one or more certificates.","type":"object","properties":{"cert":{"description":"Cert is an optional PEM-encoded public certificate.","type":"string"},"certChain":{"description":"CertChain is an optional PEM encoded set of certificates used to verify.","type":"string"},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}}}},"keyless":{"description":"Keyless is a set of attribute used to verify a Sigstore keyless attestor.\nSee https://github.com/sigstore/cosign/blob/main/KEYLESS.md.","type":"object","properties":{"additionalExtensions":{"description":"AdditionalExtensions are certificate-extensions used for keyless signing.","type":"object","additionalProperties":{"type":"string"}},"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"issuer":{"description":"Issuer is the certificate issuer used for keyless signing.","type":"string"},"issuerRegExp":{"description":"IssuerRegExp is the regular expression to match certificate issuer used for keyless signing.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"roots":{"description":"Roots is an optional set of PEM encoded trusted root certificates.\nIf not provided, the system roots are used.","type":"string"},"subject":{"description":"Subject is the verified identity used for keyless signing, for example the email address.","type":"string"},"subjectRegExp":{"description":"SubjectRegExp is the regular expression to match identity used for keyless signing, for example the email address.","type":"string"}}},"keys":{"description":"Keys specifies one or more public keys.","type":"object","properties":{"ctlog":{"description":"CTLog (certificate timestamp log) provides a configuration for validation of Signed Certificate\nTimestamps (SCTs). If the value is unset, the default behavior by Cosign is used.","type":"object","properties":{"ignoreSCT":{"description":"IgnoreSCT defines whether to use the Signed Certificate Timestamp (SCT) log to check for a certificate\ntimestamp. Default is false. Set to true if this was opted out during signing.","type":"boolean"},"pubkey":{"description":"PubKey, if set, is used to validate SCTs against a custom source.","type":"string"},"tsaCertChain":{"description":"TSACertChain, if set, is the PEM-encoded certificate chain file for the RFC3161 timestamp authority. Must\ncontain the root CA certificate. Optionally may contain intermediate CA certificates, and\nmay contain the leaf TSA certificate if not present in the timestamurce.","type":"string"}}},"kms":{"description":"KMS provides the URI to the public key stored in a Key Management System. See:\nhttps://github.com/sigstore/cosign/blob/main/KMS.md","type":"string"},"publicKeys":{"description":"Keys is a set of X.509 public keys used to verify image signatures. The keys can be directly\nspecified or can be a variable reference to a key specified in a ConfigMap (see\nhttps://kyverno.io/docs/writing-policies/variables/), or reference a standard Kubernetes Secret\nelsewhere in the cluster by specifying it in the format \"k8s://<namespace>/<secret_name>\".\nThe named Secret must specify a key `cosign.pub` containing the public key used for\nverification, (see https://github.com/sigstore/cosign/blob/main/KMS.md#kubernetes-secret).\nWhen multiple keys are specified each key is processed as a separate staticKey entry\n(.attestors[*].entries.keys) within the set of attestors and the count is applied across the keys.","type":"string"},"rekor":{"description":"Rekor provides configuration for the Rekor transparency log service. If an empty object\nis provided the public instance of Rekor (https://rekor.sigstore.dev) is used.","type":"object","properties":{"ignoreTlog":{"description":"IgnoreTlog skips transparency log verification.","type":"boolean"},"pubkey":{"description":"RekorPubKey is an optional PEM-encoded public key to use for a custom Rekor.\nIf set, this will be used to validate transparency log signatures from a custom Rekor.","type":"string"},"url":{"description":"URL is the address of the transparency log. Defaults to the public Rekor log instance https://rekor.sigstore.dev.","type":"string"}}},"secret":{"description":"Reference to a Secret resource that contains a public key","type":"object","required":["name","namespace"],"properties":{"name":{"description":"Name of the secret. The provided secret must contain a key named cosign.pub.","type":"string"},"namespace":{"description":"Namespace name where the Secret exists.","type":"string"}}},"signatureAlgorithm":{"description":"Deprecated. Use attestor.signatureAlgorithm instead.","type":"string"}}},"repository":{"description":"Repository is an optional alternate OCI repository to use for signatures and attestations that match this rule.\nIf specified Repository will override other OCI image repository locations for this Attestor.","type":"string"},"signatureAlgorithm":{"description":"Specify signature algorithm for public keys. Supported values are sha224, sha256, sha384 and sha512.","type":"string"}}}}}}},"cosignOCI11":{"description":"CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.\nDefaults to false.","type":"boolean"},"failureAction":{"description":"Allowed values are Audit or Enforce.","type":"string","enum":["Audit","Enforce"]},"image":{"description":"Deprecated. Use ImageReferences instead.","type":"string"},"imageReferences":{"description":"ImageReferences is a list of matching image reference patterns. At least one pattern in the\nlist must match the image for the rule to apply. Each image reference consists of a registry\naddress (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"imageRegistryCredentials":{"description":"ImageRegistryCredentials provides credentials that will be used for authentication with registry.","type":"object","properties":{"allowInsecureRegistry":{"description":"AllowInsecureRegistry allows insecure access to a registry.","type":"boolean"},"providers":{"description":"Providers specifies a list of OCI Registry names, whose authentication providers are provided.\nIt can be of one of these values: default,google,azure,amazon,github.","type":"array","items":{"description":"ImageRegistryCredentialsProvidersType provides the list of credential providers required.","type":"string","enum":["default","amazon","azure","google","github"]}},"secrets":{"description":"Secrets specifies a list of secrets that are provided for credentials.\nSecrets must live in the Kyverno namespace.","type":"array","items":{"type":"string"}}}},"issuer":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"key":{"description":"Deprecated. Use StaticKeyAttestor instead.","type":"string"},"mutateDigest":{"description":"MutateDigest enables replacement of image tags with digests.\nDefaults to true.","type":"boolean"},"repository":{"description":"Repository is an optional alternate OCI repository to use for image signatures and attestations that match this rule.\nIf specified Repository will override the default OCI image repository configured for the installation.\nThe repository can also be overridden per Attestor or Attestation.","type":"string"},"required":{"description":"Required validates that images are verified i.e. have matched passed a signature or attestation check.","type":"boolean"},"roots":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"skipImageReferences":{"description":"SkipImageReferences is a list of matching image reference patterns that should be skipped.\nAt least one pattern in the list must match the image for the rule to be skipped. Each image reference\nconsists of a registry address (defaults to docker.io), repository, image, and tag (defaults to latest).\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"subject":{"description":"Deprecated. Use KeylessAttestor instead.","type":"string"},"type":{"description":"Type specifies the method of signature validation. The allowed options\nare Cosign, Sigstore Bundle and Notary. By default Cosign is used if a type is not specified.","type":"string","enum":["Cosign","SigstoreBundle","Notary"]},"useCache":{"description":"UseCache enables caching of image verify responses for this rule.","type":"boolean"},"validate":{"description":"Validation checks conditions across multiple image\nverification attestations or context entries","type":"object","properties":{"deny":{"description":"Deny defines conditions used to pass or fail a validation rule.","type":"object","properties":{"conditions":{"description":"Multiple conditions can be declared under an `any` or `all` statement. A direct list\nof conditions (without `any` or `all` statements) is also supported for backwards compatibility\nbut will be deprecated in the next major release.\nSee: https://kyverno.io/docs/writing-policies/validate/#deny-rules","x-kubernetes-preserve-unknown-fields":true}}},"message":{"description":"Message specifies a custom message to be displayed on failure.","type":"string"}}},"verifyDigest":{"description":"VerifyDigest validates that images have a digest.","type":"boolean"}}}}}}}}},"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"ready":{"description":"Deprecated in favor of Conditions","type":"boolean"},"rulecount":{"description":"RuleCountStatus contains four variables which describes counts for\nvalidate, generate, mutate and verify images rules","type":"object","required":["generate","mutate","validate","verifyimages"],"properties":{"generate":{"description":"Count for generate rules in policy","type":"integer"},"mutate":{"description":"Count for mutate rules in policy","type":"integer"},"validate":{"description":"Count for validate rules in policy","type":"integer"},"verifyimages":{"description":"Count for verify image rules in policy","type":"integer"}}},"validatingadmissionpolicy":{"description":"ValidatingAdmissionPolicy contains status information","type":"object","required":["generated","message"],"properties":{"generated":{"description":"Generated indicates whether a validating admission policy is generated from the policy or not","type":"boolean"},"message":{"description":"Message is a human readable message indicating details about the generation of validating admission policy\nIt is an empty string when validating admission policy is successfully generated.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"Policy","version":"v2beta1"}]},"io.kyverno.v2beta1.PolicyException":{"description":"PolicyException declares resources to be excluded from specified policies.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec declares policy exception behaviors.","type":"object","required":["exceptions","match"],"properties":{"background":{"description":"Background controls if exceptions are applied to existing policies during a background scan.\nOptional. Default value is \"true\". The value must be set to \"false\" if the policy rule\nuses variables that are only available in the admission review request (e.g. user name).","type":"boolean"},"conditions":{"description":"Conditions are used to determine if a resource applies to the exception by evaluating a\nset of conditions. The declaration can contain nested `any` or `all` statements.","type":"object","properties":{"all":{"description":"AllConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, all of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}},"any":{"description":"AnyConditions enable variable-based conditional rule execution. This is useful for\nfiner control of when an rule is applied. A condition can reference object data\nusing JMESPath notation.\nHere, at least one of the conditions need to pass.","type":"array","items":{"type":"object","properties":{"key":{"description":"Key is the context entry (using JMESPath) for conditional rule evaluation.","x-kubernetes-preserve-unknown-fields":true},"message":{"description":"Message is an optional display message","type":"string"},"operator":{"description":"Operator is the conditional operation to perform. Valid operators are:\nEquals, NotEquals, In, AnyIn, AllIn, NotIn, AnyNotIn, AllNotIn, GreaterThanOrEquals,\nGreaterThan, LessThanOrEquals, LessThan, DurationGreaterThanOrEquals, DurationGreaterThan,\nDurationLessThanOrEquals, DurationLessThan","type":"string","enum":["Equals","NotEquals","AnyIn","AllIn","AnyNotIn","AllNotIn","GreaterThanOrEquals","GreaterThan","LessThanOrEquals","LessThan","DurationGreaterThanOrEquals","DurationGreaterThan","DurationLessThanOrEquals","DurationLessThan"]},"value":{"description":"Value is the conditional value, or set of values. The values can be fixed set\nor can be variables declared using JMESPath.","x-kubernetes-preserve-unknown-fields":true}}}}}},"exceptions":{"description":"Exceptions is a list policy/rules to be excluded","type":"array","items":{"description":"Exception stores infos about a policy and rules","type":"object","required":["policyName","ruleNames"],"properties":{"policyName":{"description":"PolicyName identifies the policy to which the exception is applied.\nThe policy name uses the format <namespace>/<name> unless it\nreferences a ClusterPolicy.","type":"string"},"ruleNames":{"description":"RuleNames identifies the rules to which the exception is applied.","type":"array","items":{"type":"string"}}}}},"match":{"description":"Match defines match clause used to check if a resource applies to the exception","type":"object","properties":{"all":{"description":"All allows specifying resources which will be ANDed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}},"any":{"description":"Any allows specifying resources which will be ORed","type":"array","items":{"description":"ResourceFilter allow users to \"AND\" or \"OR\" between resources","type":"object","properties":{"clusterRoles":{"description":"ClusterRoles is the list of cluster-wide role names for the user.","type":"array","items":{"type":"string"}},"resources":{"description":"ResourceDescription contains information about the resource being created or modified.","type":"object","properties":{"annotations":{"description":"Annotations is a  map of annotations (key-value pairs of type string). Annotation keys\nand values support the wildcard characters \"*\" (matches zero or many characters) and\n\"?\" (matches at least one character).","type":"object","additionalProperties":{"type":"string"}},"kinds":{"description":"Kinds is a list of resource kinds.","type":"array","items":{"type":"string"}},"name":{"description":"Name is the name of the resource. The name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).\nNOTE: \"Name\" is being deprecated in favor of \"Names\".","type":"string"},"names":{"description":"Names are the names of the resources. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector is a label selector for the resource namespace. Label keys and values\nin `matchLabels` support the wildcard characters `*` (matches zero or many characters)\nand `?` (matches one character).Wildcards allows writing label selectors like\n[\"storage.k8s.io/*\": \"*\"]. Note that using [\"*\" : \"*\"] matches any key and value but\ndoes not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"Namespaces is a list of namespaces names. Each name supports wildcard characters\n\"*\" (matches zero or many characters) and \"?\" (at least one character).","type":"array","items":{"type":"string"}},"operations":{"description":"Operations can contain values [\"CREATE, \"UPDATE\", \"CONNECT\", \"DELETE\"], which are used to match a specific action.","type":"array","items":{"description":"AdmissionOperation can have one of the values CREATE, UPDATE, CONNECT, DELETE, which are used to match a specific action.","type":"string","enum":["CREATE","CONNECT","UPDATE","DELETE"]}},"selector":{"description":"Selector is a label selector. Label keys and values in `matchLabels` support the wildcard\ncharacters `*` (matches zero or many characters) and `?` (matches one character).\nWildcards allows writing label selectors like [\"storage.k8s.io/*\": \"*\"]. Note that\nusing [\"*\" : \"*\"] matches any key and value but does not match an empty label set.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"roles":{"description":"Roles is the list of namespaced role names for the user.","type":"array","items":{"type":"string"}},"subjects":{"description":"Subjects is the list of subject names like users, user groups, and service accounts.","type":"array","items":{"description":"Subject contains a reference to the object or user identities a role binding applies to.  This can either hold a direct API object reference,\nor a value for non-objects such as user and group names.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup holds the API group of the referenced subject.\nDefaults to \"\" for ServiceAccount subjects.\nDefaults to \"rbac.authorization.k8s.io\" for User and Group subjects.","type":"string"},"kind":{"description":"Kind of object being referenced. Values defined by this API group are \"User\", \"Group\", and \"ServiceAccount\".\nIf the Authorizer does not recognized the kind value, the Authorizer should report an error.","type":"string"},"name":{"description":"Name of the object being referenced.","type":"string"},"namespace":{"description":"Namespace of the referenced object.  If the object kind is non-namespace, such as \"User\" or \"Group\", and this value is not empty\nthe Authorizer should report an error.","type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}}},"podSecurity":{"description":"PodSecurity specifies the Pod Security Standard controls to be excluded.\nApplicable only to policies that have validate.podSecurity subrule.","type":"array","items":{"description":"PodSecurityStandard specifies the Pod Security Standard controls to be excluded.","type":"object","required":["controlName"],"properties":{"controlName":{"description":"ControlName specifies the name of the Pod Security Standard control.\nSee: https://kubernetes.io/docs/concepts/security/pod-security-standards/","type":"string","enum":["HostProcess","Host Namespaces","Privileged Containers","Capabilities","HostPath Volumes","Host Ports","AppArmor","SELinux","/proc Mount Type","Seccomp","Sysctls","Volume Types","Privilege Escalation","Running as Non-root","Running as Non-root user"]},"images":{"description":"Images selects matching containers and applies the container level PSS.\nEach image is the image name consisting of the registry address, repository, image, and tag.\nEmpty list matches no containers, PSS checks are applied at the pod level only.\nWildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.","type":"array","items":{"type":"string"}},"restrictedField":{"description":"RestrictedField selects the field for the given Pod Security Standard control.\nWhen not set, all restricted fields for the control are selected.","type":"string"},"values":{"description":"Values defines the allowed values that can be excluded.","type":"array","items":{"type":"string"}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"PolicyException","version":"v2beta1"}]},"io.kyverno.v2beta1.PolicyExceptionList":{"description":"PolicyExceptionList is a list of PolicyException","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of policyexceptions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2beta1.PolicyException"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"PolicyExceptionList","version":"v2beta1"}]},"io.kyverno.v2beta1.PolicyList":{"description":"PolicyList is a list of Policy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of policies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.kyverno.v2beta1.Policy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kyverno.io","kind":"PolicyList","version":"v2beta1"}]},"io.min.job.v1alpha1.MinIOJob":{"type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["commands","serviceAccountName","tenant"],"properties":{"commands":{"type":"array","items":{"type":"object","required":["op"],"properties":{"args":{"type":"object","additionalProperties":{"type":"string"}},"dependsOn":{"type":"array","items":{"type":"string"}},"name":{"type":"string"},"op":{"type":"string"}}}},"execution":{"type":"string","enum":["parallel","sequential"]},"failureStrategy":{"type":"string","enum":["continueOnFailure","stopOnFailure"]},"mcImage":{"type":"string"},"serviceAccountName":{"type":"string"},"tenant":{"type":"object","required":["name","namespace"],"properties":{"name":{"type":"string"},"namespace":{"type":"string"}}}}},"status":{"type":"object","properties":{"commands":{"type":"array","items":{"type":"object","required":["result"],"properties":{"message":{"type":"string"},"name":{"type":"string"},"result":{"type":"string"}}}},"message":{"type":"string"},"phase":{"type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"job.min.io","kind":"MinIOJob","version":"v1alpha1"}]},"io.min.job.v1alpha1.MinIOJobList":{"description":"MinIOJobList is a list of MinIOJob","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of miniojobs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.min.job.v1alpha1.MinIOJob"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"job.min.io","kind":"MinIOJobList","version":"v1alpha1"}]},"io.min.minio.v2.Tenant":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"scheduler":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"spec":{"type":"object","required":["pools"],"properties":{"additionalVolumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"additionalVolumes":{"type":"array","items":{"type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"type":"object","required":["volumeID"],"properties":{"fsType":{"type":"string"},"partition":{"type":"integer","format":"int32"},"readOnly":{"type":"boolean"},"volumeID":{"type":"string"}}},"azureDisk":{"type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"type":"string"},"diskName":{"type":"string"},"diskURI":{"type":"string"},"fsType":{"type":"string"},"kind":{"type":"string"},"readOnly":{"type":"boolean"}}},"azureFile":{"type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"type":"boolean"},"secretName":{"type":"string"},"shareName":{"type":"string"}}},"cephfs":{"type":"object","required":["monitors"],"properties":{"monitors":{"type":"array","items":{"type":"string"}},"path":{"type":"string"},"readOnly":{"type":"boolean"},"secretFile":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"type":"string"}}},"cinder":{"type":"object","required":["volumeID"],"properties":{"fsType":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"type":"string"}}},"configMap":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"type":"object","required":["driver"],"properties":{"driver":{"type":"string"},"fsType":{"type":"string"},"nodePublishSecretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"type":"boolean"},"volumeAttributes":{"type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"items":{"type":"array","items":{"type":"object","required":["path"],"properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"emptyDir":{"type":"object","properties":{"medium":{"type":"string"},"sizeLimit":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"type":"object","properties":{"volumeClaimTemplate":{"type":"object","required":["spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","properties":{"accessModes":{"type":"array","items":{"type":"string"}},"dataSource":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"resources":{"type":"object","properties":{"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"type":"string"},"volumeAttributesClassName":{"type":"string"},"volumeMode":{"type":"string"},"volumeName":{"type":"string"}}}}}}},"fc":{"type":"object","properties":{"fsType":{"type":"string"},"lun":{"type":"integer","format":"int32"},"readOnly":{"type":"boolean"},"targetWWNs":{"type":"array","items":{"type":"string"}},"wwids":{"type":"array","items":{"type":"string"}}}},"flexVolume":{"type":"object","required":["driver"],"properties":{"driver":{"type":"string"},"fsType":{"type":"string"},"options":{"type":"object","additionalProperties":{"type":"string"}},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"type":"object","properties":{"datasetName":{"type":"string"},"datasetUUID":{"type":"string"}}},"gcePersistentDisk":{"type":"object","required":["pdName"],"properties":{"fsType":{"type":"string"},"partition":{"type":"integer","format":"int32"},"pdName":{"type":"string"},"readOnly":{"type":"boolean"}}},"gitRepo":{"type":"object","required":["repository"],"properties":{"directory":{"type":"string"},"repository":{"type":"string"},"revision":{"type":"string"}}},"glusterfs":{"type":"object","required":["endpoints","path"],"properties":{"endpoints":{"type":"string"},"path":{"type":"string"},"readOnly":{"type":"boolean"}}},"hostPath":{"type":"object","required":["path"],"properties":{"path":{"type":"string"},"type":{"type":"string"}}},"iscsi":{"type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"type":"boolean"},"chapAuthSession":{"type":"boolean"},"fsType":{"type":"string"},"initiatorName":{"type":"string"},"iqn":{"type":"string"},"iscsiInterface":{"type":"string"},"lun":{"type":"integer","format":"int32"},"portals":{"type":"array","items":{"type":"string"}},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"type":"string"}}},"name":{"type":"string"},"nfs":{"type":"object","required":["path","server"],"properties":{"path":{"type":"string"},"readOnly":{"type":"boolean"},"server":{"type":"string"}}},"persistentVolumeClaim":{"type":"object","required":["claimName"],"properties":{"claimName":{"type":"string"},"readOnly":{"type":"boolean"}}},"photonPersistentDisk":{"type":"object","required":["pdID"],"properties":{"fsType":{"type":"string"},"pdID":{"type":"string"}}},"portworxVolume":{"type":"object","required":["volumeID"],"properties":{"fsType":{"type":"string"},"readOnly":{"type":"boolean"},"volumeID":{"type":"string"}}},"projected":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"sources":{"type":"array","items":{"type":"object","properties":{"clusterTrustBundle":{"type":"object","required":["path"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"type":"string"},"optional":{"type":"boolean"},"path":{"type":"string"},"signerName":{"type":"string"}}},"configMap":{"type":"object","properties":{"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"type":"object","properties":{"items":{"type":"array","items":{"type":"object","required":["path"],"properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"secret":{"type":"object","properties":{"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"type":"object","required":["path"],"properties":{"audience":{"type":"string"},"expirationSeconds":{"type":"integer","format":"int64"},"path":{"type":"string"}}}}}}}},"quobyte":{"type":"object","required":["registry","volume"],"properties":{"group":{"type":"string"},"readOnly":{"type":"boolean"},"registry":{"type":"string"},"tenant":{"type":"string"},"user":{"type":"string"},"volume":{"type":"string"}}},"rbd":{"type":"object","required":["image","monitors"],"properties":{"fsType":{"type":"string"},"image":{"type":"string"},"keyring":{"type":"string"},"monitors":{"type":"array","items":{"type":"string"}},"pool":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"type":"string"}}},"scaleIO":{"type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"type":"string"},"gateway":{"type":"string"},"protectionDomain":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"type":"boolean"},"storageMode":{"type":"string"},"storagePool":{"type":"string"},"system":{"type":"string"},"volumeName":{"type":"string"}}},"secret":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"optional":{"type":"boolean"},"secretName":{"type":"string"}}},"storageos":{"type":"object","properties":{"fsType":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"type":"string"},"volumeNamespace":{"type":"string"}}},"vsphereVolume":{"type":"object","required":["volumePath"],"properties":{"fsType":{"type":"string"},"storagePolicyID":{"type":"string"},"storagePolicyName":{"type":"string"},"volumePath":{"type":"string"}}}}}},"buckets":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"},"objectLock":{"type":"boolean"},"region":{"type":"string"}}}},"certConfig":{"type":"object","properties":{"commonName":{"type":"string"},"dnsNames":{"type":"array","items":{"type":"string"}},"organizationName":{"type":"array","items":{"type":"string"}}}},"configuration":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"credsSecret":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"exposeServices":{"type":"object","properties":{"console":{"type":"boolean"},"minio":{"type":"boolean"}}},"externalCaCertSecret":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"type":{"type":"string"}}}},"externalCertSecret":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"type":{"type":"string"}}}},"externalClientCertSecret":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"type":{"type":"string"}}},"externalClientCertSecrets":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"type":{"type":"string"}}}},"features":{"type":"object","properties":{"bucketDNS":{"type":"boolean"},"domains":{"type":"object","properties":{"console":{"type":"string"},"minio":{"type":"array","items":{"type":"string"}}}},"enableSFTP":{"type":"boolean"}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"imagePullSecret":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"initContainers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"kes":{"type":"object","required":["kesSecret"],"properties":{"affinity":{"type":"object","properties":{"nodeAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["preference","weight"],"properties":{"preference":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}},"podAntiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}}}},"annotations":{"type":"object","additionalProperties":{"type":"string"}},"clientCertSecret":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"type":{"type":"string"}}},"containerSecurityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"externalCertSecret":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"type":{"type":"string"}}},"gcpCredentialSecretName":{"type":"string"},"gcpWorkloadIdentityPool":{"type":"string"},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"kesSecret":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"keyName":{"type":"string"},"labels":{"type":"object","additionalProperties":{"type":"string"}},"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"replicas":{"type":"integer","format":"int32"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"securityContext":{"type":"object","properties":{"fsGroup":{"type":"integer","format":"int64"},"fsGroupChangePolicy":{"type":"string"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"supplementalGroups":{"type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"serviceAccountName":{"type":"string"},"tolerations":{"type":"array","items":{"type":"object","properties":{"effect":{"type":"string"},"key":{"type":"string"},"operator":{"type":"string"},"tolerationSeconds":{"type":"integer","format":"int64"},"value":{"type":"string"}}}},"topologySpreadConstraints":{"type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"type":"integer","format":"int32"},"minDomains":{"type":"integer","format":"int32"},"nodeAffinityPolicy":{"type":"string"},"nodeTaintsPolicy":{"type":"string"},"topologyKey":{"type":"string"},"whenUnsatisfiable":{"type":"string"}}}}}},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"liveness":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"logging":{"type":"object","properties":{"anonymous":{"type":"boolean"},"json":{"type":"boolean"},"quiet":{"type":"boolean"}}},"mountPath":{"type":"string"},"podManagementPolicy":{"type":"string"},"pools":{"type":"array","items":{"type":"object","required":["name","servers","volumeClaimTemplate","volumesPerServer"],"properties":{"affinity":{"type":"object","properties":{"nodeAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["preference","weight"],"properties":{"preference":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"type":"array","items":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchFields":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}},"podAntiAffinity":{"type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}},"weight":{"type":"integer","format":"int32"}}}},"requiredDuringSchedulingIgnoredDuringExecution":{"type":"array","items":{"type":"object","required":["topologyKey"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"type":"array","items":{"type":"string"}},"topologyKey":{"type":"string"}}}}}}}},"annotations":{"type":"object","additionalProperties":{"type":"string"}},"containerSecurityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"nodeSelector":{"type":"object","additionalProperties":{"type":"string"}},"reclaimStorage":{"type":"boolean"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"runtimeClassName":{"type":"string"},"securityContext":{"type":"object","properties":{"fsGroup":{"type":"integer","format":"int64"},"fsGroupChangePolicy":{"type":"string"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"supplementalGroups":{"type":"array","items":{"type":"integer","format":"int64"}},"sysctls":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"servers":{"type":"integer","format":"int32","x-kubernetes-validations":[{"message":"servers is immutable","rule":"self == oldSelf"}]},"tolerations":{"type":"array","items":{"type":"object","properties":{"effect":{"type":"string"},"key":{"type":"string"},"operator":{"type":"string"},"tolerationSeconds":{"type":"integer","format":"int64"},"value":{"type":"string"}}}},"topologySpreadConstraints":{"type":"array","items":{"type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"type":"integer","format":"int32"},"minDomains":{"type":"integer","format":"int32"},"nodeAffinityPolicy":{"type":"string"},"nodeTaintsPolicy":{"type":"string"},"topologyKey":{"type":"string"},"whenUnsatisfiable":{"type":"string"}}}},"volumeClaimTemplate":{"type":"object","properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","properties":{"accessModes":{"type":"array","items":{"type":"string"}},"dataSource":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"resources":{"type":"object","properties":{"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"type":"string"},"volumeAttributesClassName":{"type":"string"},"volumeMode":{"type":"string"},"volumeName":{"type":"string"}}},"status":{"type":"object","properties":{"accessModes":{"type":"array","items":{"type":"string"}},"allocatedResourceStatuses":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"granular"},"allocatedResources":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"capacity":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"conditions":{"type":"array","items":{"type":"object","required":["status","type"],"properties":{"lastProbeTime":{"type":"string","format":"date-time"},"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}}},"currentVolumeAttributesClassName":{"type":"string"},"modifyVolumeStatus":{"type":"object","required":["status"],"properties":{"status":{"type":"string"},"targetVolumeAttributesClassName":{"type":"string"}}},"phase":{"type":"string"}}}}},"volumesPerServer":{"type":"integer","format":"int32","x-kubernetes-validations":[{"message":"volumesPerServer is immutable","rule":"self == oldSelf"}]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"priorityClassName":{"type":"string"},"prometheusOperator":{"type":"boolean"},"readiness":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"requestAutoCert":{"type":"boolean"},"serviceAccountName":{"type":"string"},"serviceMetadata":{"type":"object","properties":{"consoleServiceAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"consoleServiceLabels":{"type":"object","additionalProperties":{"type":"string"}},"minioServiceAnnotations":{"type":"object","additionalProperties":{"type":"string"}},"minioServiceLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"sideCars":{"type":"object","properties":{"containers":{"type":"array","items":{"type":"object","required":["name"],"properties":{"args":{"type":"array","items":{"type":"string"}},"command":{"type":"array","items":{"type":"string"}},"env":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"},"value":{"type":"string"},"valueFrom":{"type":"object","properties":{"configMapKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"type":"object","required":["key"],"properties":{"key":{"type":"string"},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"envFrom":{"type":"array","items":{"type":"object","properties":{"configMapRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}},"image":{"type":"string"},"imagePullPolicy":{"type":"string"},"lifecycle":{"type":"object","properties":{"postStart":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}},"preStop":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"sleep":{"type":"object","required":["seconds"],"properties":{"seconds":{"type":"integer","format":"int64"}}},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}}}}}},"livenessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"name":{"type":"string"},"ports":{"type":"array","items":{"type":"object","required":["containerPort"],"properties":{"containerPort":{"type":"integer","format":"int32"},"hostIP":{"type":"string"},"hostPort":{"type":"integer","format":"int32"},"name":{"type":"string"},"protocol":{"type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"resizePolicy":{"type":"array","items":{"type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"type":"string"},"restartPolicy":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"type":"string"},"securityContext":{"type":"object","properties":{"allowPrivilegeEscalation":{"type":"boolean"},"capabilities":{"type":"object","properties":{"add":{"type":"array","items":{"type":"string"}},"drop":{"type":"array","items":{"type":"string"}}}},"privileged":{"type":"boolean"},"procMount":{"type":"string"},"readOnlyRootFilesystem":{"type":"boolean"},"runAsGroup":{"type":"integer","format":"int64"},"runAsNonRoot":{"type":"boolean"},"runAsUser":{"type":"integer","format":"int64"},"seLinuxOptions":{"type":"object","properties":{"level":{"type":"string"},"role":{"type":"string"},"type":{"type":"string"},"user":{"type":"string"}}},"seccompProfile":{"type":"object","required":["type"],"properties":{"localhostProfile":{"type":"string"},"type":{"type":"string"}}},"windowsOptions":{"type":"object","properties":{"gmsaCredentialSpec":{"type":"string"},"gmsaCredentialSpecName":{"type":"string"},"hostProcess":{"type":"boolean"},"runAsUserName":{"type":"string"}}}}},"startupProbe":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"stdin":{"type":"boolean"},"stdinOnce":{"type":"boolean"},"terminationMessagePath":{"type":"string"},"terminationMessagePolicy":{"type":"string"},"tty":{"type":"boolean"},"volumeDevices":{"type":"array","items":{"type":"object","required":["devicePath","name"],"properties":{"devicePath":{"type":"string"},"name":{"type":"string"}}}},"volumeMounts":{"type":"array","items":{"type":"object","required":["mountPath","name"],"properties":{"mountPath":{"type":"string"},"mountPropagation":{"type":"string"},"name":{"type":"string"},"readOnly":{"type":"boolean"},"subPath":{"type":"string"},"subPathExpr":{"type":"string"}}}},"workingDir":{"type":"string"}}}},"resources":{"type":"object","properties":{"claims":{"type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"volumeClaimTemplates":{"type":"array","items":{"type":"object","properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","properties":{"accessModes":{"type":"array","items":{"type":"string"}},"dataSource":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"resources":{"type":"object","properties":{"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"type":"string"},"volumeAttributesClassName":{"type":"string"},"volumeMode":{"type":"string"},"volumeName":{"type":"string"}}},"status":{"type":"object","properties":{"accessModes":{"type":"array","items":{"type":"string"}},"allocatedResourceStatuses":{"type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"granular"},"allocatedResources":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"capacity":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"conditions":{"type":"array","items":{"type":"object","required":["status","type"],"properties":{"lastProbeTime":{"type":"string","format":"date-time"},"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}}},"currentVolumeAttributesClassName":{"type":"string"},"modifyVolumeStatus":{"type":"object","required":["status"],"properties":{"status":{"type":"string"},"targetVolumeAttributesClassName":{"type":"string"}}},"phase":{"type":"string"}}}}}},"volumes":{"type":"array","items":{"type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"type":"object","required":["volumeID"],"properties":{"fsType":{"type":"string"},"partition":{"type":"integer","format":"int32"},"readOnly":{"type":"boolean"},"volumeID":{"type":"string"}}},"azureDisk":{"type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"type":"string"},"diskName":{"type":"string"},"diskURI":{"type":"string"},"fsType":{"type":"string"},"kind":{"type":"string"},"readOnly":{"type":"boolean"}}},"azureFile":{"type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"type":"boolean"},"secretName":{"type":"string"},"shareName":{"type":"string"}}},"cephfs":{"type":"object","required":["monitors"],"properties":{"monitors":{"type":"array","items":{"type":"string"}},"path":{"type":"string"},"readOnly":{"type":"boolean"},"secretFile":{"type":"string"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"type":"string"}}},"cinder":{"type":"object","required":["volumeID"],"properties":{"fsType":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"type":"string"}}},"configMap":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"type":"object","required":["driver"],"properties":{"driver":{"type":"string"},"fsType":{"type":"string"},"nodePublishSecretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"type":"boolean"},"volumeAttributes":{"type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"items":{"type":"array","items":{"type":"object","required":["path"],"properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"emptyDir":{"type":"object","properties":{"medium":{"type":"string"},"sizeLimit":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"type":"object","properties":{"volumeClaimTemplate":{"type":"object","required":["spec"],"properties":{"metadata":{"type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"type":"object","properties":{"accessModes":{"type":"array","items":{"type":"string"}},"dataSource":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"type":"object","required":["kind","name"],"properties":{"apiGroup":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"resources":{"type":"object","properties":{"limits":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"type":"string"},"volumeAttributesClassName":{"type":"string"},"volumeMode":{"type":"string"},"volumeName":{"type":"string"}}}}}}},"fc":{"type":"object","properties":{"fsType":{"type":"string"},"lun":{"type":"integer","format":"int32"},"readOnly":{"type":"boolean"},"targetWWNs":{"type":"array","items":{"type":"string"}},"wwids":{"type":"array","items":{"type":"string"}}}},"flexVolume":{"type":"object","required":["driver"],"properties":{"driver":{"type":"string"},"fsType":{"type":"string"},"options":{"type":"object","additionalProperties":{"type":"string"}},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"type":"object","properties":{"datasetName":{"type":"string"},"datasetUUID":{"type":"string"}}},"gcePersistentDisk":{"type":"object","required":["pdName"],"properties":{"fsType":{"type":"string"},"partition":{"type":"integer","format":"int32"},"pdName":{"type":"string"},"readOnly":{"type":"boolean"}}},"gitRepo":{"type":"object","required":["repository"],"properties":{"directory":{"type":"string"},"repository":{"type":"string"},"revision":{"type":"string"}}},"glusterfs":{"type":"object","required":["endpoints","path"],"properties":{"endpoints":{"type":"string"},"path":{"type":"string"},"readOnly":{"type":"boolean"}}},"hostPath":{"type":"object","required":["path"],"properties":{"path":{"type":"string"},"type":{"type":"string"}}},"iscsi":{"type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"type":"boolean"},"chapAuthSession":{"type":"boolean"},"fsType":{"type":"string"},"initiatorName":{"type":"string"},"iqn":{"type":"string"},"iscsiInterface":{"type":"string"},"lun":{"type":"integer","format":"int32"},"portals":{"type":"array","items":{"type":"string"}},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"type":"string"}}},"name":{"type":"string"},"nfs":{"type":"object","required":["path","server"],"properties":{"path":{"type":"string"},"readOnly":{"type":"boolean"},"server":{"type":"string"}}},"persistentVolumeClaim":{"type":"object","required":["claimName"],"properties":{"claimName":{"type":"string"},"readOnly":{"type":"boolean"}}},"photonPersistentDisk":{"type":"object","required":["pdID"],"properties":{"fsType":{"type":"string"},"pdID":{"type":"string"}}},"portworxVolume":{"type":"object","required":["volumeID"],"properties":{"fsType":{"type":"string"},"readOnly":{"type":"boolean"},"volumeID":{"type":"string"}}},"projected":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"sources":{"type":"array","items":{"type":"object","properties":{"clusterTrustBundle":{"type":"object","required":["path"],"properties":{"labelSelector":{"type":"object","properties":{"matchExpressions":{"type":"array","items":{"type":"object","required":["key","operator"],"properties":{"key":{"type":"string"},"operator":{"type":"string"},"values":{"type":"array","items":{"type":"string"}}}}},"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"type":"string"},"optional":{"type":"boolean"},"path":{"type":"string"},"signerName":{"type":"string"}}},"configMap":{"type":"object","properties":{"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"type":"object","properties":{"items":{"type":"array","items":{"type":"object","required":["path"],"properties":{"fieldRef":{"type":"object","required":["fieldPath"],"properties":{"apiVersion":{"type":"string"},"fieldPath":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"},"resourceFieldRef":{"type":"object","required":["resource"],"properties":{"containerName":{"type":"string"},"divisor":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"type":"string"}},"x-kubernetes-map-type":"atomic"}}}}}},"secret":{"type":"object","properties":{"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"name":{"type":"string"},"optional":{"type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"type":"object","required":["path"],"properties":{"audience":{"type":"string"},"expirationSeconds":{"type":"integer","format":"int64"},"path":{"type":"string"}}}}}}}},"quobyte":{"type":"object","required":["registry","volume"],"properties":{"group":{"type":"string"},"readOnly":{"type":"boolean"},"registry":{"type":"string"},"tenant":{"type":"string"},"user":{"type":"string"},"volume":{"type":"string"}}},"rbd":{"type":"object","required":["image","monitors"],"properties":{"fsType":{"type":"string"},"image":{"type":"string"},"keyring":{"type":"string"},"monitors":{"type":"array","items":{"type":"string"}},"pool":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"type":"string"}}},"scaleIO":{"type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"type":"string"},"gateway":{"type":"string"},"protectionDomain":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"type":"boolean"},"storageMode":{"type":"string"},"storagePool":{"type":"string"},"system":{"type":"string"},"volumeName":{"type":"string"}}},"secret":{"type":"object","properties":{"defaultMode":{"type":"integer","format":"int32"},"items":{"type":"array","items":{"type":"object","required":["key","path"],"properties":{"key":{"type":"string"},"mode":{"type":"integer","format":"int32"},"path":{"type":"string"}}}},"optional":{"type":"boolean"},"secretName":{"type":"string"}}},"storageos":{"type":"object","properties":{"fsType":{"type":"string"},"readOnly":{"type":"boolean"},"secretRef":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"type":"string"},"volumeNamespace":{"type":"string"}}},"vsphereVolume":{"type":"object","required":["volumePath"],"properties":{"fsType":{"type":"string"},"storagePolicyID":{"type":"string"},"storagePolicyName":{"type":"string"},"volumePath":{"type":"string"}}}}}}}},"startup":{"type":"object","properties":{"exec":{"type":"object","properties":{"command":{"type":"array","items":{"type":"string"}}}},"failureThreshold":{"type":"integer","format":"int32"},"grpc":{"type":"object","required":["port"],"properties":{"port":{"type":"integer","format":"int32"},"service":{"type":"string"}}},"httpGet":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"httpHeaders":{"type":"array","items":{"type":"object","required":["name","value"],"properties":{"name":{"type":"string"},"value":{"type":"string"}}}},"path":{"type":"string"},"port":{"x-kubernetes-int-or-string":true},"scheme":{"type":"string"}}},"initialDelaySeconds":{"type":"integer","format":"int32"},"periodSeconds":{"type":"integer","format":"int32"},"successThreshold":{"type":"integer","format":"int32"},"tcpSocket":{"type":"object","required":["port"],"properties":{"host":{"type":"string"},"port":{"x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"type":"integer","format":"int64"},"timeoutSeconds":{"type":"integer","format":"int32"}}},"subPath":{"type":"string"},"users":{"type":"array","items":{"type":"object","properties":{"name":{"type":"string"}},"x-kubernetes-map-type":"atomic"}}}},"status":{"type":"object","required":["availableReplicas","currentState","revision","syncVersion"],"properties":{"availableReplicas":{"type":"integer","format":"int32"},"certificates":{},"currentState":{"type":"string"},"drivesHealing":{"type":"integer","format":"int32"},"drivesOffline":{"type":"integer","format":"int32"},"drivesOnline":{"type":"integer","format":"int32"},"healthMessage":{"type":"string"},"healthStatus":{"type":"string"},"pools":{},"provisionedBuckets":{"type":"boolean"},"provisionedUsers":{"type":"boolean"},"revision":{"type":"integer","format":"int32"},"syncVersion":{"type":"string"},"usage":{"type":"object","properties":{"capacity":{"type":"integer","format":"int64"},"rawCapacity":{"type":"integer","format":"int64"},"rawUsage":{"type":"integer","format":"int64"},"tiers":{"type":"array","items":{"type":"object","required":["Name","totalSize"],"properties":{"Name":{"type":"string"},"Type":{"type":"string"},"totalSize":{"type":"integer","format":"int64"}}}},"usage":{"type":"integer","format":"int64"}}},"waitingOnReady":{"type":"string","format":"date-time"},"writeQuorum":{"type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"minio.min.io","kind":"Tenant","version":"v2"}]},"io.min.minio.v2.TenantList":{"description":"TenantList is a list of Tenant","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tenants. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.min.minio.v2.Tenant"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"minio.min.io","kind":"TenantList","version":"v2"}]},"io.min.sts.v1alpha1.PolicyBinding":{"type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["application","policies"],"properties":{"application":{"type":"object","required":["namespace","serviceaccount"],"properties":{"namespace":{"type":"string"},"serviceaccount":{"type":"string"}}},"policies":{"type":"array","items":{"type":"string"}}}},"status":{"type":"object","required":["currentState"],"properties":{"currentState":{"type":"string"},"usage":{}}}},"x-kubernetes-group-version-kind":[{"group":"sts.min.io","kind":"PolicyBinding","version":"v1alpha1"}]},"io.min.sts.v1alpha1.PolicyBindingList":{"description":"PolicyBindingList is a list of PolicyBinding","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of policybindings. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.min.sts.v1alpha1.PolicyBinding"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"sts.min.io","kind":"PolicyBindingList","version":"v1alpha1"}]},"io.open-cluster-management.cluster.v1alpha1.ClusterClaim":{"description":"ClusterClaim represents cluster information that a managed cluster claims\nClusterClaims with well known names include,\n 1. id.k8s.io, it contains a unique identifier for the cluster.\n 2. clusterset.k8s.io, it contains an identifier that relates the cluster\n    to the ClusterSet in which it belongs.\n\nClusterClaims created on a managed cluster will be collected and saved into\nthe status of the corresponding ManagedCluster on hub.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the attributes of the ClusterClaim.","type":"object","properties":{"value":{"description":"value is a claim-dependent string","type":"string","maxLength":1024,"minLength":1}}}},"x-kubernetes-group-version-kind":[{"group":"cluster.open-cluster-management.io","kind":"ClusterClaim","version":"v1alpha1"}]},"io.open-cluster-management.cluster.v1alpha1.ClusterClaimList":{"description":"ClusterClaimList is a list of ClusterClaim","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterclaims. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.open-cluster-management.cluster.v1alpha1.ClusterClaim"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"cluster.open-cluster-management.io","kind":"ClusterClaimList","version":"v1alpha1"}]},"io.open-cluster-management.work.v1.AppliedManifestWork":{"description":"AppliedManifestWork represents an applied manifestwork on managed cluster that is placed\non a managed cluster. An AppliedManifestWork links to a manifestwork on a hub recording resources\ndeployed in the managed cluster.\nWhen the agent is removed from managed cluster, cluster-admin on managed cluster\ncan delete appliedmanifestwork to remove resources deployed by the agent.\nThe name of the appliedmanifestwork must be in the format of\n{hash of hub's first kube-apiserver url}-{manifestwork name}","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec represents the desired configuration of AppliedManifestWork.","type":"object","required":["hubHash","manifestWorkName"],"properties":{"agentID":{"description":"AgentID represents the ID of the work agent who is to handle this AppliedManifestWork.","type":"string"},"hubHash":{"description":"HubHash represents the hash of the first hub kube apiserver to identify which hub\nthis AppliedManifestWork links to.","type":"string"},"manifestWorkName":{"description":"ManifestWorkName represents the name of the related manifestwork on the hub.","type":"string"}}},"status":{"description":"Status represents the current status of AppliedManifestWork.","type":"object","properties":{"appliedResources":{"description":"AppliedResources represents a list of resources defined within the manifestwork that are applied.\nOnly resources with valid GroupVersionResource, namespace, and name are suitable.\nAn item in this slice is deleted when there is no mapped manifest in manifestwork.Spec or by finalizer.\nThe resource relating to the item will also be removed from managed cluster.\nThe deleted resource may still be present until the finalizers for that resource are finished.\nHowever, the resource will not be undeleted, so it can be removed from this list and eventual consistency is preserved.","type":"array","items":{"description":"AppliedManifestResourceMeta represents the group, version, resource, name and namespace of a resource.\nSince these resources have been created, they must have valid group, version, resource, namespace, and name.","type":"object","required":["name","resource","version"],"properties":{"group":{"description":"Group is the API Group of the Kubernetes resource,\nempty string indicates it is in core group.","type":"string"},"name":{"description":"Name is the name of the Kubernetes resource.","type":"string"},"namespace":{"description":"Name is the namespace of the Kubernetes resource, empty string indicates\nit is a cluster scoped resource.","type":"string"},"resource":{"description":"Resource is the resource name of the Kubernetes resource.","type":"string"},"uid":{"description":"UID is set on successful deletion of the Kubernetes resource by controller. The\nresource might be still visible on the managed cluster after this field is set.\nIt is not directly settable by a client.","type":"string"},"version":{"description":"Version is the version of the Kubernetes resource.","type":"string"}}}},"evictionStartTime":{"description":"EvictionStartTime represents the current appliedmanifestwork will be evicted after a grace period.\nAn appliedmanifestwork will be evicted from the managed cluster in the following two scenarios:\n  - the manifestwork of the current appliedmanifestwork is missing on the hub, or\n  - the appliedmanifestwork hub hash does not match the current hub hash of the work agent.","type":"string","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"work.open-cluster-management.io","kind":"AppliedManifestWork","version":"v1"}]},"io.open-cluster-management.work.v1.AppliedManifestWorkList":{"description":"AppliedManifestWorkList is a list of AppliedManifestWork","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of appliedmanifestworks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.open-cluster-management.work.v1.AppliedManifestWork"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"work.open-cluster-management.io","kind":"AppliedManifestWorkList","version":"v1"}]},"io.openshift.apiserver.v1.APIRequestCount":{"description":"APIRequestCount tracks requests made to an API. The instance name must be of the form `resource.version.group`, matching the resource. \n Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec defines the characteristics of the resource.","type":"object","properties":{"numberOfUsersToReport":{"description":"numberOfUsersToReport is the number of users to include in the report. If unspecified or zero, the default is ten.  This is default is subject to change.","type":"integer","format":"int64","maximum":100,"minimum":0}}},"status":{"description":"status contains the observed state of the resource.","type":"object","properties":{"conditions":{"description":"conditions contains details of the current status of this API Resource.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{     // Represents the observations of a foo's current state.     // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\"     // +patchMergeKey=type     // +patchStrategy=merge     // +listType=map     // +listMapKey=type     Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n     // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"currentHour":{"description":"currentHour contains request history for the current hour. This is porcelain to make the API easier to read by humans seeing if they addressed a problem. This field is reset on the hour.","type":"object","properties":{"byNode":{"description":"byNode contains logs of requests per node.","type":"array","maxItems":512,"items":{"description":"PerNodeAPIRequestLog contains logs of requests to a certain node.","type":"object","properties":{"byUser":{"description":"byUser contains request details by top .spec.numberOfUsersToReport users. Note that because in the case of an apiserver, restart the list of top users is determined on a best-effort basis, the list might be imprecise. In addition, some system users may be explicitly included in the list.","type":"array","maxItems":500,"items":{"description":"PerUserAPIRequestCount contains logs of a user's requests.","type":"object","properties":{"byVerb":{"description":"byVerb details by verb.","type":"array","maxItems":10,"items":{"description":"PerVerbAPIRequestCount requestCounts requests by API request verb.","type":"object","properties":{"requestCount":{"description":"requestCount of requests for verb.","type":"integer","format":"int64","minimum":0},"verb":{"description":"verb of API request (get, list, create, etc...)","type":"string","maxLength":20}}}},"requestCount":{"description":"requestCount of requests by the user across all verbs.","type":"integer","format":"int64","minimum":0},"userAgent":{"description":"userAgent that made the request. The same user often has multiple binaries which connect (pods with many containers).  The different binaries will have different userAgents, but the same user.  In addition, we have userAgents with version information embedded and the userName isn't likely to change.","type":"string","maxLength":1024},"username":{"description":"userName that made the request.","type":"string","maxLength":512}}}},"nodeName":{"description":"nodeName where the request are being handled.","type":"string","maxLength":512,"minLength":1},"requestCount":{"description":"requestCount is a sum of all requestCounts across all users, even those outside of the top 10 users.","type":"integer","format":"int64","minimum":0}}}},"requestCount":{"description":"requestCount is a sum of all requestCounts across nodes.","type":"integer","format":"int64","minimum":0}}},"last24h":{"description":"last24h contains request history for the last 24 hours, indexed by the hour, so 12:00AM-12:59 is in index 0, 6am-6:59am is index 6, etc. The index of the current hour is updated live and then duplicated into the requestsLastHour field.","type":"array","maxItems":24,"items":{"description":"PerResourceAPIRequestLog logs request for various nodes.","type":"object","properties":{"byNode":{"description":"byNode contains logs of requests per node.","type":"array","maxItems":512,"items":{"description":"PerNodeAPIRequestLog contains logs of requests to a certain node.","type":"object","properties":{"byUser":{"description":"byUser contains request details by top .spec.numberOfUsersToReport users. Note that because in the case of an apiserver, restart the list of top users is determined on a best-effort basis, the list might be imprecise. In addition, some system users may be explicitly included in the list.","type":"array","maxItems":500,"items":{"description":"PerUserAPIRequestCount contains logs of a user's requests.","type":"object","properties":{"byVerb":{"description":"byVerb details by verb.","type":"array","maxItems":10,"items":{"description":"PerVerbAPIRequestCount requestCounts requests by API request verb.","type":"object","properties":{"requestCount":{"description":"requestCount of requests for verb.","type":"integer","format":"int64","minimum":0},"verb":{"description":"verb of API request (get, list, create, etc...)","type":"string","maxLength":20}}}},"requestCount":{"description":"requestCount of requests by the user across all verbs.","type":"integer","format":"int64","minimum":0},"userAgent":{"description":"userAgent that made the request. The same user often has multiple binaries which connect (pods with many containers).  The different binaries will have different userAgents, but the same user.  In addition, we have userAgents with version information embedded and the userName isn't likely to change.","type":"string","maxLength":1024},"username":{"description":"userName that made the request.","type":"string","maxLength":512}}}},"nodeName":{"description":"nodeName where the request are being handled.","type":"string","maxLength":512,"minLength":1},"requestCount":{"description":"requestCount is a sum of all requestCounts across all users, even those outside of the top 10 users.","type":"integer","format":"int64","minimum":0}}}},"requestCount":{"description":"requestCount is a sum of all requestCounts across nodes.","type":"integer","format":"int64","minimum":0}}}},"removedInRelease":{"description":"removedInRelease is when the API will be removed.","type":"string","maxLength":64,"minLength":0,"pattern":"^[0-9][0-9]*\\.[0-9][0-9]*$"},"requestCount":{"description":"requestCount is a sum of all requestCounts across all current hours, nodes, and users.","type":"integer","format":"int64","minimum":0}}}},"x-kubernetes-group-version-kind":[{"group":"apiserver.openshift.io","kind":"APIRequestCount","version":"v1"}]},"io.openshift.apiserver.v1.APIRequestCountList":{"description":"APIRequestCountList is a list of APIRequestCount","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of apirequestcounts. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.apiserver.v1.APIRequestCount"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"apiserver.openshift.io","kind":"APIRequestCountList","version":"v1"}]},"io.openshift.authorization.v1.RoleBindingRestriction":{"description":"RoleBindingRestriction is an object that can be matched against a subject\n(user, group, or service account) to determine whether rolebindings on that\nsubject are allowed in the namespace to which the RoleBindingRestriction\nbelongs.  If any one of those RoleBindingRestriction objects matches\na subject, rolebindings on that subject in the namespace are allowed.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the matcher.","type":"object","properties":{"grouprestriction":{"description":"GroupRestriction matches against group subjects."},"serviceaccountrestriction":{"description":"ServiceAccountRestriction matches against service-account subjects."},"userrestriction":{"description":"UserRestriction matches against user subjects."}}}},"x-kubernetes-group-version-kind":[{"group":"authorization.openshift.io","kind":"RoleBindingRestriction","version":"v1"}]},"io.openshift.authorization.v1.RoleBindingRestrictionList":{"description":"RoleBindingRestrictionList is a list of RoleBindingRestriction","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of rolebindingrestrictions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.authorization.v1.RoleBindingRestriction"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"authorization.openshift.io","kind":"RoleBindingRestrictionList","version":"v1"}]},"io.openshift.cloudcredential.v1.CredentialsRequest":{"description":"CredentialsRequest is the Schema for the credentialsrequests API","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CredentialsRequestSpec defines the desired state of CredentialsRequest","type":"object","required":["secretRef"],"properties":{"cloudTokenPath":{"description":"cloudTokenPath is the path where the Kubernetes ServiceAccount token (JSON Web Token) is mounted\non the deployment for the workload requesting a credentials secret.\nThe presence of this field in combination with fields such as spec.providerSpec.stsIAMRoleARN\nindicate that CCO should broker creation of a credentials secret containing fields necessary for\ntoken based authentication methods such as with the AWS Secure Token Service (STS).\n\ncloudTokenPath may also be used to specify the azure_federated_token_file path used\nin Azure configuration secrets generated by ccoctl.\nDefaults to \"/var/run/secrets/openshift/serviceaccount/token\".","type":"string"},"providerSpec":{"description":"ProviderSpec contains the cloud provider specific credentials specification.","x-kubernetes-preserve-unknown-fields":true},"secretRef":{"description":"SecretRef points to the secret where the credentials should be stored once generated.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"serviceAccountNames":{"description":"ServiceAccountNames contains a list of ServiceAccounts that will use permissions associated with this\nCredentialsRequest. This is not used by CCO, but the information is needed for being able to properly\nset up access control in the cloud provider when the ServiceAccounts are used as part of the cloud\ncredentials flow.","type":"array","items":{"type":"string"}}}},"status":{"description":"CredentialsRequestStatus defines the observed state of CredentialsRequest","type":"object","required":["lastSyncGeneration","provisioned"],"properties":{"conditions":{"description":"Conditions includes detailed status for the CredentialsRequest","type":"array","items":{"description":"CredentialsRequestCondition contains details for any of the conditions on a CredentialsRequest object","type":"object","required":["status","type"],"properties":{"lastProbeTime":{"description":"LastProbeTime is the last time we probed the condition","type":"string","format":"date-time"},"lastTransitionTime":{"description":"LastTransitionTime is the last time the condition transitioned from one status to another.","type":"string","format":"date-time"},"message":{"description":"Message is a human-readable message indicating details about the last transition","type":"string"},"reason":{"description":"Reason is a unique, one-word, CamelCase reason for the condition's last transition","type":"string"},"status":{"description":"Status is the status of the condition","type":"string"},"type":{"description":"Type is the specific type of the condition","type":"string"}}}},"lastSyncCloudCredsSecretResourceVersion":{"description":"LastSyncCloudCredsSecretResourceVersion is the resource version of the\ncloud credentials secret resource when the credentials request resource\nwas last synced. Used to determine if the cloud credentials have\nbeen updated since the last sync.","type":"string"},"lastSyncGeneration":{"description":"LastSyncGeneration is the generation of the credentials request resource\nthat was last synced. Used to determine if the object has changed and\nrequires a sync.","type":"integer","format":"int64"},"lastSyncInfrastructureResourceVersion":{"description":"LastSyncInfrastructureResourceVersion is the resource version of the\nInfrastructure resource. It is used to determine if the user provided tags have\nbeen updated since the last sync.","type":"string"},"lastSyncTimestamp":{"description":"LastSyncTimestamp is the time that the credentials were last synced.","type":"string","format":"date-time"},"providerStatus":{"description":"ProviderStatus contains cloud provider specific status.","x-kubernetes-preserve-unknown-fields":true},"provisioned":{"description":"Provisioned is true once the credentials have been initially provisioned.","type":"boolean"}}}},"x-kubernetes-group-version-kind":[{"group":"cloudcredential.openshift.io","kind":"CredentialsRequest","version":"v1"}]},"io.openshift.cloudcredential.v1.CredentialsRequestList":{"description":"CredentialsRequestList is a list of CredentialsRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of credentialsrequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.cloudcredential.v1.CredentialsRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"cloudcredential.openshift.io","kind":"CredentialsRequestList","version":"v1"}]},"io.openshift.config.v1.APIServer":{"description":"APIServer holds configuration (like serving certificates, client CA and CORS domains)\nshared by all API servers in the system, among them especially kube-apiserver\nand openshift-apiserver. The canonical name of an instance is 'cluster'.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"additionalCORSAllowedOrigins":{"description":"additionalCORSAllowedOrigins lists additional, user-defined regular expressions describing hosts for which the\nAPI server allows access using the CORS headers. This may be needed to access the API and the integrated OAuth\nserver from JavaScript applications.\nThe values are regular expressions that correspond to the Golang regular expression language.","type":"array","items":{"type":"string"}},"audit":{"description":"audit specifies the settings for audit configuration to be applied to all OpenShift-provided\nAPI servers in the cluster.","type":"object","properties":{"customRules":{"description":"customRules specify profiles per group. These profile take precedence over the\ntop-level profile field if they apply. They are evaluation from top to bottom and\nthe first one that matches, applies.","type":"array","items":{"description":"AuditCustomRule describes a custom rule for an audit profile that takes precedence over\nthe top-level profile.","type":"object","required":["group","profile"],"properties":{"group":{"description":"group is a name of group a request user must be member of in order to this profile to apply.","type":"string","minLength":1},"profile":{"description":"profile specifies the name of the desired audit policy configuration to be deployed to\nall OpenShift-provided API servers in the cluster.\n\nThe following profiles are provided:\n- Default: the existing default policy.\n- WriteRequestBodies: like 'Default', but logs request and response HTTP payloads for\nwrite requests (create, update, patch).\n- AllRequestBodies: like 'WriteRequestBodies', but also logs request and response\nHTTP payloads for read requests (get, list).\n- None: no requests are logged at all, not even oauthaccesstokens and oauthauthorizetokens.\n\nIf unset, the 'Default' profile is used as the default.","type":"string","enum":["Default","WriteRequestBodies","AllRequestBodies","None"]}}},"x-kubernetes-list-map-keys":["group"],"x-kubernetes-list-type":"map"},"profile":{"description":"profile specifies the name of the desired top-level audit profile to be applied to all requests\nsent to any of the OpenShift-provided API servers in the cluster (kube-apiserver,\nopenshift-apiserver and oauth-apiserver), with the exception of those requests that match\none or more of the customRules.\n\nThe following profiles are provided:\n- Default: default policy which means MetaData level logging with the exception of events\n  (not logged at all), oauthaccesstokens and oauthauthorizetokens (both logged at RequestBody\n  level).\n- WriteRequestBodies: like 'Default', but logs request and response HTTP payloads for\nwrite requests (create, update, patch).\n- AllRequestBodies: like 'WriteRequestBodies', but also logs request and response\nHTTP payloads for read requests (get, list).\n- None: no requests are logged at all, not even oauthaccesstokens and oauthauthorizetokens.\n\nWarning: It is not recommended to disable audit logging by using the `None` profile unless you\nare fully aware of the risks of not logging data that can be beneficial when troubleshooting issues.\nIf you disable audit logging and a support situation arises, you might need to enable audit logging\nand reproduce the issue in order to troubleshoot properly.\n\nIf unset, the 'Default' profile is used as the default.","type":"string","enum":["Default","WriteRequestBodies","AllRequestBodies","None"]}}},"clientCA":{"description":"clientCA references a ConfigMap containing a certificate bundle for the signers that will be recognized for\nincoming client certificates in addition to the operator managed signers. If this is empty, then only operator managed signers are valid.\nYou usually only have to set this if you have your own PKI you wish to honor client certificates from.\nThe ConfigMap must exist in the openshift-config namespace and contain the following required fields:\n- ConfigMap.Data[\"ca-bundle.crt\"] - CA bundle.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"encryption":{"description":"encryption allows the configuration of encryption of resources at the datastore layer.","type":"object","properties":{"type":{"description":"type defines what encryption type should be used to encrypt resources at the datastore layer.\nWhen this field is unset (i.e. when it is set to the empty string), identity is implied.\nThe behavior of unset can and will change over time.  Even if encryption is enabled by default,\nthe meaning of unset may change to a different encryption type based on changes in best practices.\n\nWhen encryption is enabled, all sensitive resources shipped with the platform are encrypted.\nThis list of sensitive resources can and will change over time.  The current authoritative list is:\n\n  1. secrets\n  2. configmaps\n  3. routes.route.openshift.io\n  4. oauthaccesstokens.oauth.openshift.io\n  5. oauthauthorizetokens.oauth.openshift.io","type":"string","enum":["","identity","aescbc","aesgcm"]}}},"servingCerts":{"description":"servingCert is the TLS cert info for serving secure traffic. If not specified, operator managed certificates\nwill be used for serving secure traffic.","type":"object","properties":{"namedCertificates":{"description":"namedCertificates references secrets containing the TLS cert info for serving secure traffic to specific hostnames.\nIf no named certificates are provided, or no named certificates match the server name as understood by a client,\nthe defaultServingCertificate will be used.","type":"array","items":{"description":"APIServerNamedServingCert maps a server DNS name, as understood by a client, to a certificate.","type":"object","properties":{"names":{"description":"names is a optional list of explicit DNS names (leading wildcards allowed) that should use this certificate to\nserve secure traffic. If no names are provided, the implicit names will be extracted from the certificates.\nExact names trump over wildcard names. Explicit names defined here trump over extracted implicit names.","type":"array","items":{"type":"string"}},"servingCertificate":{"description":"servingCertificate references a kubernetes.io/tls type secret containing the TLS cert info for serving secure traffic.\nThe secret must exist in the openshift-config namespace and contain the following required fields:\n- Secret.Data[\"tls.key\"] - TLS private key.\n- Secret.Data[\"tls.crt\"] - TLS certificate.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}}}}},"tlsSecurityProfile":{"description":"tlsSecurityProfile specifies settings for TLS connections for externally exposed servers.\n\nIf unset, a default (which may change between releases) is chosen. Note that only Old,\nIntermediate and Custom profiles are currently supported, and the maximum available\nminTLSVersion is VersionTLS12.","type":"object","properties":{"custom":{"description":"custom is a user-defined TLS security profile. Be extremely careful using a custom\nprofile as invalid configurations can be catastrophic. An example custom profile\nlooks like this:\n\n  ciphers:\n\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-AES128-GCM-SHA256\n\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n\n  minTLSVersion: VersionTLS11"},"intermediate":{"description":"intermediate is a TLS security profile based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29\n\nand looks like this (yaml):\n\n  ciphers:\n\n    - TLS_AES_128_GCM_SHA256\n\n    - TLS_AES_256_GCM_SHA384\n\n    - TLS_CHACHA20_POLY1305_SHA256\n\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n\n    - ECDHE-RSA-AES128-GCM-SHA256\n\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n\n    - ECDHE-RSA-AES256-GCM-SHA384\n\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-CHACHA20-POLY1305\n\n    - DHE-RSA-AES128-GCM-SHA256\n\n    - DHE-RSA-AES256-GCM-SHA384\n\n  minTLSVersion: VersionTLS12"},"modern":{"description":"modern is a TLS security profile based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility\n\nand looks like this (yaml):\n\n  ciphers:\n\n    - TLS_AES_128_GCM_SHA256\n\n    - TLS_AES_256_GCM_SHA384\n\n    - TLS_CHACHA20_POLY1305_SHA256\n\n  minTLSVersion: VersionTLS13"},"old":{"description":"old is a TLS security profile based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility\n\nand looks like this (yaml):\n\n  ciphers:\n\n    - TLS_AES_128_GCM_SHA256\n\n    - TLS_AES_256_GCM_SHA384\n\n    - TLS_CHACHA20_POLY1305_SHA256\n\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n\n    - ECDHE-RSA-AES128-GCM-SHA256\n\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n\n    - ECDHE-RSA-AES256-GCM-SHA384\n\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-CHACHA20-POLY1305\n\n    - DHE-RSA-AES128-GCM-SHA256\n\n    - DHE-RSA-AES256-GCM-SHA384\n\n    - DHE-RSA-CHACHA20-POLY1305\n\n    - ECDHE-ECDSA-AES128-SHA256\n\n    - ECDHE-RSA-AES128-SHA256\n\n    - ECDHE-ECDSA-AES128-SHA\n\n    - ECDHE-RSA-AES128-SHA\n\n    - ECDHE-ECDSA-AES256-SHA384\n\n    - ECDHE-RSA-AES256-SHA384\n\n    - ECDHE-ECDSA-AES256-SHA\n\n    - ECDHE-RSA-AES256-SHA\n\n    - DHE-RSA-AES128-SHA256\n\n    - DHE-RSA-AES256-SHA256\n\n    - AES128-GCM-SHA256\n\n    - AES256-GCM-SHA384\n\n    - AES128-SHA256\n\n    - AES256-SHA256\n\n    - AES128-SHA\n\n    - AES256-SHA\n\n    - DES-CBC3-SHA\n\n  minTLSVersion: VersionTLS10"},"type":{"description":"type is one of Old, Intermediate, Modern or Custom. Custom provides\nthe ability to specify individual TLS security profile parameters.\nOld, Intermediate and Modern are TLS security profiles based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations\n\nThe profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers\nare found to be insecure.  Depending on precisely which ciphers are available to a process, the list may be\nreduced.\n\nNote that the Modern profile is currently not supported because it is not\nyet well adopted by common software libraries.","type":"string","enum":["Old","Intermediate","Modern","Custom"]}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"APIServer","version":"v1"}]},"io.openshift.config.v1.APIServerList":{"description":"APIServerList is a list of APIServer","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of apiservers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.APIServer"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"APIServerList","version":"v1"}]},"io.openshift.config.v1.Authentication":{"description":"Authentication specifies cluster-wide settings for authentication (like OAuth and\nwebhook token authenticators). The canonical name of an instance is `cluster`.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"oauthMetadata":{"description":"oauthMetadata contains the discovery endpoint data for OAuth 2.0\nAuthorization Server Metadata for an external OAuth server.\nThis discovery document can be viewed from its served location:\noc get --raw '/.well-known/oauth-authorization-server'\nFor further details, see the IETF Draft:\nhttps://tools.ietf.org/html/draft-ietf-oauth-discovery-04#section-2\nIf oauthMetadata.name is non-empty, this value has precedence\nover any metadata reference stored in status.\nThe key \"oauthMetadata\" is used to locate the data.\nIf specified and the config map or expected key is not found, no metadata is served.\nIf the specified metadata is not valid, no metadata is served.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"oidcProviders":{"description":"OIDCProviders are OIDC identity providers that can issue tokens\nfor this cluster\nCan only be set if \"Type\" is set to \"OIDC\".\n\nAt most one provider can be configured.","type":"array","maxItems":1,"items":{"type":"object","required":["issuer","name"],"properties":{"claimMappings":{"description":"ClaimMappings describes rules on how to transform information from an\nID token into a cluster identity","type":"object","properties":{"groups":{"description":"Groups is a name of the claim that should be used to construct\ngroups for the cluster identity.\nThe referenced claim must use array of strings values.","type":"object","required":["claim"],"properties":{"claim":{"description":"Claim is a JWT token claim to be used in the mapping","type":"string"},"prefix":{"description":"Prefix is a string to prefix the value from the token in the result of the\nclaim mapping.\n\nBy default, no prefixing occurs.\n\nExample: if `prefix` is set to \"myoidc:\"\" and the `claim` in JWT contains\nan array of strings \"a\", \"b\" and  \"c\", the mapping will result in an\narray of string \"myoidc:a\", \"myoidc:b\" and \"myoidc:c\".","type":"string"}}},"username":{"description":"Username is a name of the claim that should be used to construct\nusernames for the cluster identity.\n\nDefault value: \"sub\"","type":"object","required":["claim"],"properties":{"claim":{"description":"Claim is a JWT token claim to be used in the mapping","type":"string"},"prefix":{"type":"object","required":["prefixString"],"properties":{"prefixString":{"type":"string","minLength":1}}},"prefixPolicy":{"description":"PrefixPolicy specifies how a prefix should apply.\n\nBy default, claims other than `email` will be prefixed with the issuer URL to\nprevent naming clashes with other plugins.\n\nSet to \"NoPrefix\" to disable prefixing.\n\nExample:\n    (1) `prefix` is set to \"myoidc:\" and `claim` is set to \"username\".\n        If the JWT claim `username` contains value `userA`, the resulting\n        mapped value will be \"myoidc:userA\".\n    (2) `prefix` is set to \"myoidc:\" and `claim` is set to \"email\". If the\n        JWT `email` claim contains value \"userA@myoidc.tld\", the resulting\n        mapped value will be \"myoidc:userA@myoidc.tld\".\n    (3) `prefix` is unset, `issuerURL` is set to `https://myoidc.tld`,\n        the JWT claims include \"username\":\"userA\" and \"email\":\"userA@myoidc.tld\",\n        and `claim` is set to:\n        (a) \"username\": the mapped value will be \"https://myoidc.tld#userA\"\n        (b) \"email\": the mapped value will be \"userA@myoidc.tld\"","type":"string","enum":["","NoPrefix","Prefix"]}},"x-kubernetes-validations":[{"message":"prefix must be set if prefixPolicy is 'Prefix', but must remain unset otherwise","rule":"has(self.prefixPolicy) && self.prefixPolicy == 'Prefix' ? (has(self.prefix) && size(self.prefix.prefixString) > 0) : !has(self.prefix)"}]}}},"claimValidationRules":{"description":"ClaimValidationRules are rules that are applied to validate token claims to authenticate users.","type":"array","items":{"type":"object","properties":{"requiredClaim":{"description":"RequiredClaim allows configuring a required claim name and its expected\nvalue","type":"object","required":["claim","requiredValue"],"properties":{"claim":{"description":"Claim is a name of a required claim. Only claims with string values are\nsupported.","type":"string","minLength":1},"requiredValue":{"description":"RequiredValue is the required value for the claim.","type":"string","minLength":1}}},"type":{"description":"Type sets the type of the validation rule","type":"string","enum":["RequiredClaim"]}}},"x-kubernetes-list-type":"atomic"},"issuer":{"description":"Issuer describes atributes of the OIDC token issuer","type":"object","required":["audiences","issuerURL"],"properties":{"audiences":{"description":"Audiences is an array of audiences that the token was issued for.\nValid tokens must include at least one of these values in their\n\"aud\" claim.\nMust be set to exactly one value.","type":"array","maxItems":10,"minItems":1,"items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"issuerCertificateAuthority":{"description":"CertificateAuthority is a reference to a config map in the\nconfiguration namespace. The .data of the configMap must contain\nthe \"ca-bundle.crt\" key.\nIf unset, system trust is used instead.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"issuerURL":{"description":"URL is the serving URL of the token issuer.\nMust use the https:// scheme.","type":"string","pattern":"^https:\\/\\/[^\\s]"}}},"name":{"description":"Name of the OIDC provider","type":"string","minLength":1},"oidcClients":{"description":"OIDCClients contains configuration for the platform's clients that\nneed to request tokens from the issuer","type":"array","maxItems":20,"items":{"type":"object","required":["clientID","componentName","componentNamespace"],"properties":{"clientID":{"description":"ClientID is the identifier of the OIDC client from the OIDC provider","type":"string","minLength":1},"clientSecret":{"description":"ClientSecret refers to a secret in the `openshift-config` namespace that\ncontains the client secret in the `clientSecret` key of the `.data` field","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"componentName":{"description":"ComponentName is the name of the component that is supposed to consume this\nclient configuration","type":"string","maxLength":256,"minLength":1},"componentNamespace":{"description":"ComponentNamespace is the namespace of the component that is supposed to consume this\nclient configuration","type":"string","maxLength":63,"minLength":1},"extraScopes":{"description":"ExtraScopes is an optional set of scopes to request tokens with.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"}}},"x-kubernetes-list-map-keys":["componentNamespace","componentName"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"serviceAccountIssuer":{"description":"serviceAccountIssuer is the identifier of the bound service account token\nissuer.\nThe default is https://kubernetes.default.svc\nWARNING: Updating this field will not result in immediate invalidation of all bound tokens with the\nprevious issuer value. Instead, the tokens issued by previous service account issuer will continue to\nbe trusted for a time period chosen by the platform (currently set to 24h).\nThis time period is subject to change over time.\nThis allows internal components to transition to use new service account issuer without service distruption.","type":"string"},"type":{"description":"type identifies the cluster managed, user facing authentication mode in use.\nSpecifically, it manages the component that responds to login attempts.\nThe default is IntegratedOAuth.","type":"string","enum":["","None","IntegratedOAuth","OIDC"]},"webhookTokenAuthenticator":{"description":"webhookTokenAuthenticator configures a remote token reviewer.\nThese remote authentication webhooks can be used to verify bearer tokens\nvia the tokenreviews.authentication.k8s.io REST API. This is required to\nhonor bearer tokens that are provisioned by an external authentication service.\n\nCan only be set if \"Type\" is set to \"None\".","type":"object","required":["kubeConfig"],"properties":{"kubeConfig":{"description":"kubeConfig references a secret that contains kube config file data which\ndescribes how to access the remote webhook service.\nThe namespace for the referenced secret is openshift-config.\n\nFor further details, see:\n\nhttps://kubernetes.io/docs/reference/access-authn-authz/authentication/#webhook-token-authentication\n\nThe key \"kubeConfig\" is used to locate the data.\nIf the secret or expected key is not found, the webhook is not honored.\nIf the specified kube config data is not valid, the webhook is not honored.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}},"webhookTokenAuthenticators":{"description":"webhookTokenAuthenticators is DEPRECATED, setting it has no effect.","type":"array","items":{"description":"deprecatedWebhookTokenAuthenticator holds the necessary configuration options for a remote token authenticator.\nIt's the same as WebhookTokenAuthenticator but it's missing the 'required' validation on KubeConfig field.","type":"object","properties":{"kubeConfig":{"description":"kubeConfig contains kube config file data which describes how to access the remote webhook service.\nFor further details, see:\nhttps://kubernetes.io/docs/reference/access-authn-authz/authentication/#webhook-token-authentication\nThe key \"kubeConfig\" is used to locate the data.\nIf the secret or expected key is not found, the webhook is not honored.\nIf the specified kube config data is not valid, the webhook is not honored.\nThe namespace for this secret is determined by the point of use.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"integratedOAuthMetadata":{"description":"integratedOAuthMetadata contains the discovery endpoint data for OAuth 2.0\nAuthorization Server Metadata for the in-cluster integrated OAuth server.\nThis discovery document can be viewed from its served location:\noc get --raw '/.well-known/oauth-authorization-server'\nFor further details, see the IETF Draft:\nhttps://tools.ietf.org/html/draft-ietf-oauth-discovery-04#section-2\nThis contains the observed value based on cluster state.\nAn explicitly set value in spec.oauthMetadata has precedence over this field.\nThis field has no meaning if authentication spec.type is not set to IntegratedOAuth.\nThe key \"oauthMetadata\" is used to locate the data.\nIf the config map or expected key is not found, no metadata is served.\nIf the specified metadata is not valid, no metadata is served.\nThe namespace for this config map is openshift-config-managed.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"oidcClients":{"description":"OIDCClients is where participating operators place the current OIDC client status\nfor OIDC clients that can be customized by the cluster-admin.","type":"array","maxItems":20,"items":{"type":"object","required":["componentName","componentNamespace"],"properties":{"componentName":{"description":"ComponentName is the name of the component that will consume a client configuration.","type":"string","maxLength":256,"minLength":1},"componentNamespace":{"description":"ComponentNamespace is the namespace of the component that will consume a client configuration.","type":"string","maxLength":63,"minLength":1},"conditions":{"description":"Conditions are used to communicate the state of the `oidcClients` entry.\n\nSupported conditions include Available, Degraded and Progressing.\n\nIf Available is true, the component is successfully using the configured client.\nIf Degraded is true, that means something has gone wrong trying to handle the client configuration.\nIf Progressing is true, that means the component is taking some action related to the `oidcClients` entry.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"consumingUsers":{"description":"ConsumingUsers is a slice of ServiceAccounts that need to have read\npermission on the `clientSecret` secret.","type":"array","maxItems":5,"items":{"description":"ConsumingUser is an alias for string which we add validation to. Currently only service accounts are supported.","type":"string","maxLength":512,"minLength":1,"pattern":"^system:serviceaccount:[a-z0-9]([-a-z0-9]*[a-z0-9])?:[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"x-kubernetes-list-type":"set"},"currentOIDCClients":{"description":"CurrentOIDCClients is a list of clients that the component is currently using.","type":"array","items":{"type":"object","required":["clientID","issuerURL","oidcProviderName"],"properties":{"clientID":{"description":"ClientID is the identifier of the OIDC client from the OIDC provider","type":"string","minLength":1},"issuerURL":{"description":"URL is the serving URL of the token issuer.\nMust use the https:// scheme.","type":"string","pattern":"^https:\\/\\/[^\\s]"},"oidcProviderName":{"description":"OIDCName refers to the `name` of the provider from `oidcProviders`","type":"string","minLength":1}}},"x-kubernetes-list-map-keys":["issuerURL","clientID"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["componentNamespace","componentName"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Authentication","version":"v1"}],"x-kubernetes-validations":[{"message":"all oidcClients in the oidcProviders must match their componentName and componentNamespace to either a previously configured oidcClient or they must exist in the status.oidcClients","rule":"!has(self.spec.oidcProviders) || self.spec.oidcProviders.all(p, !has(p.oidcClients) || p.oidcClients.all(specC, self.status.oidcClients.exists(statusC, statusC.componentNamespace == specC.componentNamespace && statusC.componentName == specC.componentName) || (has(oldSelf.spec.oidcProviders) && oldSelf.spec.oidcProviders.exists(oldP, oldP.name == p.name && has(oldP.oidcClients) && oldP.oidcClients.exists(oldC, oldC.componentNamespace == specC.componentNamespace && oldC.componentName == specC.componentName)))))"}]},"io.openshift.config.v1.AuthenticationList":{"description":"AuthenticationList is a list of Authentication","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of authentications. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Authentication"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"AuthenticationList","version":"v1"}]},"io.openshift.config.v1.Build":{"description":"Build configures the behavior of OpenShift builds for the entire cluster.\nThis includes default settings that can be overridden in BuildConfig objects, and overrides which are applied to all builds.\n\nThe canonical name is \"cluster\"\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds user-settable values for the build controller configuration","type":"object","properties":{"additionalTrustedCA":{"description":"AdditionalTrustedCA is a reference to a ConfigMap containing additional CAs that\nshould be trusted for image pushes and pulls during builds.\nThe namespace for this config map is openshift-config.\n\nDEPRECATED: Additional CAs for image pull and push should be set on\nimage.config.openshift.io/cluster instead.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"buildDefaults":{"description":"BuildDefaults controls the default information for Builds","type":"object","properties":{"defaultProxy":{"description":"DefaultProxy contains the default proxy settings for all build operations, including image pull/push\nand source download.\n\nValues can be overrode by setting the `HTTP_PROXY`, `HTTPS_PROXY`, and `NO_PROXY` environment variables\nin the build config's strategy.","type":"object","properties":{"httpProxy":{"description":"httpProxy is the URL of the proxy for HTTP requests.  Empty means unset and will not result in an env var.","type":"string"},"httpsProxy":{"description":"httpsProxy is the URL of the proxy for HTTPS requests.  Empty means unset and will not result in an env var.","type":"string"},"noProxy":{"description":"noProxy is a comma-separated list of hostnames and/or CIDRs and/or IPs for which the proxy should not be used.\nEmpty means unset and will not result in an env var.","type":"string"},"readinessEndpoints":{"description":"readinessEndpoints is a list of endpoints used to verify readiness of the proxy.","type":"array","items":{"type":"string"}},"trustedCA":{"description":"trustedCA is a reference to a ConfigMap containing a CA certificate bundle.\nThe trustedCA field should only be consumed by a proxy validator. The\nvalidator is responsible for reading the certificate bundle from the required\nkey \"ca-bundle.crt\", merging it with the system default trust bundle,\nand writing the merged trust bundle to a ConfigMap named \"trusted-ca-bundle\"\nin the \"openshift-config-managed\" namespace. Clients that expect to make\nproxy connections must use the trusted-ca-bundle for all HTTPS requests to\nthe proxy, and may use the trusted-ca-bundle for non-proxy HTTPS requests as\nwell.\n\nThe namespace for the ConfigMap referenced by trustedCA is\n\"openshift-config\". Here is an example ConfigMap (in yaml):\n\napiVersion: v1\nkind: ConfigMap\nmetadata:\n name: user-ca-bundle\n namespace: openshift-config\n data:\n   ca-bundle.crt: |\n     -----BEGIN CERTIFICATE-----\n     Custom CA certificate bundle.\n     -----END CERTIFICATE-----","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}}}},"env":{"description":"Env is a set of default environment variables that will be applied to the\nbuild if the specified variables do not exist on the build","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"gitProxy":{"description":"GitProxy contains the proxy settings for git operations only. If set, this will override\nany Proxy settings for all git commands, such as git clone.\n\nValues that are not set here will be inherited from DefaultProxy.","type":"object","properties":{"httpProxy":{"description":"httpProxy is the URL of the proxy for HTTP requests.  Empty means unset and will not result in an env var.","type":"string"},"httpsProxy":{"description":"httpsProxy is the URL of the proxy for HTTPS requests.  Empty means unset and will not result in an env var.","type":"string"},"noProxy":{"description":"noProxy is a comma-separated list of hostnames and/or CIDRs and/or IPs for which the proxy should not be used.\nEmpty means unset and will not result in an env var.","type":"string"},"readinessEndpoints":{"description":"readinessEndpoints is a list of endpoints used to verify readiness of the proxy.","type":"array","items":{"type":"string"}},"trustedCA":{"description":"trustedCA is a reference to a ConfigMap containing a CA certificate bundle.\nThe trustedCA field should only be consumed by a proxy validator. The\nvalidator is responsible for reading the certificate bundle from the required\nkey \"ca-bundle.crt\", merging it with the system default trust bundle,\nand writing the merged trust bundle to a ConfigMap named \"trusted-ca-bundle\"\nin the \"openshift-config-managed\" namespace. Clients that expect to make\nproxy connections must use the trusted-ca-bundle for all HTTPS requests to\nthe proxy, and may use the trusted-ca-bundle for non-proxy HTTPS requests as\nwell.\n\nThe namespace for the ConfigMap referenced by trustedCA is\n\"openshift-config\". Here is an example ConfigMap (in yaml):\n\napiVersion: v1\nkind: ConfigMap\nmetadata:\n name: user-ca-bundle\n namespace: openshift-config\n data:\n   ca-bundle.crt: |\n     -----BEGIN CERTIFICATE-----\n     Custom CA certificate bundle.\n     -----END CERTIFICATE-----","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}}}},"imageLabels":{"description":"ImageLabels is a list of docker labels that are applied to the resulting image.\nUser can override a default label by providing a label with the same name in their\nBuild/BuildConfig.","type":"array","items":{"type":"object","properties":{"name":{"description":"Name defines the name of the label. It must have non-zero length.","type":"string"},"value":{"description":"Value defines the literal value of the label.","type":"string"}}}},"resources":{"description":"Resources defines resource requirements to execute the build.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}},"buildOverrides":{"description":"BuildOverrides controls override settings for builds","type":"object","properties":{"forcePull":{"description":"ForcePull overrides, if set, the equivalent value in the builds,\ni.e. false disables force pull for all builds,\ntrue enables force pull for all builds,\nindependently of what each build specifies itself","type":"boolean"},"imageLabels":{"description":"ImageLabels is a list of docker labels that are applied to the resulting image.\nIf user provided a label in their Build/BuildConfig with the same name as one in this\nlist, the user's label will be overwritten.","type":"array","items":{"type":"object","properties":{"name":{"description":"Name defines the name of the label. It must have non-zero length.","type":"string"},"value":{"description":"Value defines the literal value of the label.","type":"string"}}}},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the build pod to fit on a node","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"Tolerations is a list of Tolerations that will override any existing\ntolerations set on a build pod.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Build","version":"v1"}]},"io.openshift.config.v1.BuildList":{"description":"BuildList is a list of Build","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of builds. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Build"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"BuildList","version":"v1"}]},"io.openshift.config.v1.ClusterOperator":{"description":"ClusterOperator is the Custom Resource object which holds the current state\nof an operator. This object is used by operators to convey their state to\nthe rest of the cluster.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds configuration that could apply to any operator.","type":"object"},"status":{"description":"status holds the information about the state of an operator.  It is consistent with status information across\nthe Kubernetes ecosystem.","type":"object","properties":{"conditions":{"description":"conditions describes the state of the operator's managed and monitored components.","type":"array","items":{"description":"ClusterOperatorStatusCondition represents the state of the operator's\nmanaged and monitored components.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time of the last update to the current status property.","type":"string","format":"date-time"},"message":{"description":"message provides additional information about the current condition.\nThis is only to be consumed by humans.  It may contain Line Feed\ncharacters (U+000A), which should be rendered as new lines.","type":"string"},"reason":{"description":"reason is the CamelCase reason for the condition's current status.","type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"type specifies the aspect reported by this condition.","type":"string"}}}},"extension":{"description":"extension contains any additional status information specific to the\noperator which owns this status object.","x-kubernetes-preserve-unknown-fields":true},"relatedObjects":{"description":"relatedObjects is a list of objects that are \"interesting\" or related to this operator.  Common uses are:\n1. the detailed resource driving the operator\n2. operator namespaces\n3. operand namespaces","type":"array","items":{"description":"ObjectReference contains enough information to let you inspect or modify the referred object.","type":"object","required":["group","name","resource"],"properties":{"group":{"description":"group of the referent.","type":"string"},"name":{"description":"name of the referent.","type":"string"},"namespace":{"description":"namespace of the referent.","type":"string"},"resource":{"description":"resource of the referent.","type":"string"}}}},"versions":{"description":"versions is a slice of operator and operand version tuples.  Operators which manage multiple operands will have multiple\noperand entries in the array.  Available operators must report the version of the operator itself with the name \"operator\".\nAn operator reports a new \"operator\" version when it has rolled out the new version to all of its operands.","type":"array","items":{"type":"object","required":["name","version"],"properties":{"name":{"description":"name is the name of the particular operand this version is for.  It usually matches container images, not operators.","type":"string"},"version":{"description":"version indicates which version of a particular operand is currently being managed.  It must always match the Available\noperand.  If 1.0.0 is Available, then this must indicate 1.0.0 even if the operator is trying to rollout\n1.1.0","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ClusterOperator","version":"v1"}]},"io.openshift.config.v1.ClusterOperatorList":{"description":"ClusterOperatorList is a list of ClusterOperator","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusteroperators. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.ClusterOperator"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ClusterOperatorList","version":"v1"}]},"io.openshift.config.v1.ClusterVersion":{"description":"ClusterVersion is the configuration for the ClusterVersionOperator. This is where\nparameters related to automatic updates can be set.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the desired state of the cluster version - the operator will work\nto ensure that the desired version is applied to the cluster.","type":"object","required":["clusterID"],"properties":{"capabilities":{"description":"capabilities configures the installation of optional, core\ncluster components.  A null value here is identical to an\nempty object; see the child properties for default semantics.","type":"object","properties":{"additionalEnabledCapabilities":{"description":"additionalEnabledCapabilities extends the set of managed\ncapabilities beyond the baseline defined in\nbaselineCapabilitySet.  The default is an empty set.","type":"array","items":{"description":"ClusterVersionCapability enumerates optional, core cluster components.","type":"string","enum":["openshift-samples","baremetal","marketplace","Console","Insights","Storage","CSISnapshot","NodeTuning","MachineAPI","Build","DeploymentConfig","ImageRegistry","OperatorLifecycleManager","CloudCredential","Ingress","CloudControllerManager","OperatorLifecycleManagerV1"]},"x-kubernetes-list-type":"atomic"},"baselineCapabilitySet":{"description":"baselineCapabilitySet selects an initial set of\noptional capabilities to enable, which can be extended via\nadditionalEnabledCapabilities.  If unset, the cluster will\nchoose a default, and the default may change over time.\nThe current default is vCurrent.","type":"string","enum":["None","v4.11","v4.12","v4.13","v4.14","v4.15","v4.16","v4.17","v4.18","vCurrent"]}}},"channel":{"description":"channel is an identifier for explicitly requesting that a non-default\nset of updates be applied to this cluster. The default channel will be\ncontain stable updates that are appropriate for production clusters.","type":"string"},"clusterID":{"description":"clusterID uniquely identifies this cluster. This is expected to be\nan RFC4122 UUID value (xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx in\nhexadecimal values). This is a required field.","type":"string"},"desiredUpdate":{"description":"desiredUpdate is an optional field that indicates the desired value of\nthe cluster version. Setting this value will trigger an upgrade (if\nthe current version does not match the desired version). The set of\nrecommended update values is listed as part of available updates in\nstatus, and setting values outside that range may cause the upgrade\nto fail.\n\nSome of the fields are inter-related with restrictions and meanings described here.\n1. image is specified, version is specified, architecture is specified. API validation error.\n2. image is specified, version is specified, architecture is not specified. You should not do this. version is silently ignored and image is used.\n3. image is specified, version is not specified, architecture is specified. API validation error.\n4. image is specified, version is not specified, architecture is not specified. image is used.\n5. image is not specified, version is specified, architecture is specified. version and desired architecture are used to select an image.\n6. image is not specified, version is specified, architecture is not specified. version and current architecture are used to select an image.\n7. image is not specified, version is not specified, architecture is specified. API validation error.\n8. image is not specified, version is not specified, architecture is not specified. API validation error.\n\nIf an upgrade fails the operator will halt and report status\nabout the failing component. Setting the desired update value back to\nthe previous version will cause a rollback to be attempted. Not all\nrollbacks will succeed.","type":"object","properties":{"architecture":{"description":"architecture is an optional field that indicates the desired\nvalue of the cluster architecture. In this context cluster\narchitecture means either a single architecture or a multi\narchitecture. architecture can only be set to Multi thereby\nonly allowing updates from single to multi architecture. If\narchitecture is set, image cannot be set and version must be\nset.\nValid values are 'Multi' and empty.","type":"string","enum":["Multi",""]},"force":{"description":"force allows an administrator to update to an image that has failed\nverification or upgradeable checks. This option should only\nbe used when the authenticity of the provided image has been verified out\nof band because the provided image will run with full administrative access\nto the cluster. Do not use this flag with images that comes from unknown\nor potentially malicious sources.","type":"boolean"},"image":{"description":"image is a container image location that contains the update.\nimage should be used when the desired version does not exist in availableUpdates or history.\nWhen image is set, version is ignored. When image is set, version should be empty.\nWhen image is set, architecture cannot be specified.","type":"string"},"version":{"description":"version is a semantic version identifying the update version.\nversion is ignored if image is specified and required if\narchitecture is specified.","type":"string"}},"x-kubernetes-validations":[{"message":"cannot set both Architecture and Image","rule":"has(self.architecture) && has(self.image) ? (self.architecture == '' || self.image == '') : true"},{"message":"Version must be set if Architecture is set","rule":"has(self.architecture) && self.architecture != '' ? self.version != '' : true"}]},"overrides":{"description":"overrides is list of overides for components that are managed by\ncluster version operator. Marking a component unmanaged will prevent\nthe operator from creating or updating the object.","type":"array","items":{"description":"ComponentOverride allows overriding cluster version operator's behavior\nfor a component.","type":"object","required":["group","kind","name","namespace","unmanaged"],"properties":{"group":{"description":"group identifies the API group that the kind is in.","type":"string"},"kind":{"description":"kind indentifies which object to override.","type":"string"},"name":{"description":"name is the component's name.","type":"string"},"namespace":{"description":"namespace is the component's namespace. If the resource is cluster\nscoped, the namespace should be empty.","type":"string"},"unmanaged":{"description":"unmanaged controls if cluster version operator should stop managing the\nresources in this cluster.\nDefault: false","type":"boolean"}}},"x-kubernetes-list-map-keys":["kind","group","namespace","name"],"x-kubernetes-list-type":"map"},"upstream":{"description":"upstream may be used to specify the preferred update server. By default\nit will use the appropriate update server for the cluster and region.","type":"string"}}},"status":{"description":"status contains information about the available updates and any in-progress\nupdates.","type":"object","required":["desired","observedGeneration","versionHash"],"properties":{"availableUpdates":{"description":"availableUpdates contains updates recommended for this\ncluster. Updates which appear in conditionalUpdates but not in\navailableUpdates may expose this cluster to known issues. This list\nmay be empty if no updates are recommended, if the update service\nis unavailable, or if an invalid channel has been specified.","x-kubernetes-list-type":"atomic"},"capabilities":{"description":"capabilities describes the state of optional, core cluster components.","type":"object","properties":{"enabledCapabilities":{"description":"enabledCapabilities lists all the capabilities that are currently managed.","type":"array","items":{"description":"ClusterVersionCapability enumerates optional, core cluster components.","type":"string","enum":["openshift-samples","baremetal","marketplace","Console","Insights","Storage","CSISnapshot","NodeTuning","MachineAPI","Build","DeploymentConfig","ImageRegistry","OperatorLifecycleManager","CloudCredential","Ingress","CloudControllerManager","OperatorLifecycleManagerV1"]},"x-kubernetes-list-type":"atomic"},"knownCapabilities":{"description":"knownCapabilities lists all the capabilities known to the current cluster.","type":"array","items":{"description":"ClusterVersionCapability enumerates optional, core cluster components.","type":"string","enum":["openshift-samples","baremetal","marketplace","Console","Insights","Storage","CSISnapshot","NodeTuning","MachineAPI","Build","DeploymentConfig","ImageRegistry","OperatorLifecycleManager","CloudCredential","Ingress","CloudControllerManager","OperatorLifecycleManagerV1"]},"x-kubernetes-list-type":"atomic"}}},"conditionalUpdates":{"description":"conditionalUpdates contains the list of updates that may be\nrecommended for this cluster if it meets specific required\nconditions. Consumers interested in the set of updates that are\nactually recommended for this cluster should use\navailableUpdates. This list may be empty if no updates are\nrecommended, if the update service is unavailable, or if an empty\nor invalid channel has been specified.","type":"array","items":{"description":"ConditionalUpdate represents an update which is recommended to some\nclusters on the version the current cluster is reconciling, but which\nmay not be recommended for the current cluster.","type":"object","required":["release","risks"],"properties":{"conditions":{"description":"conditions represents the observations of the conditional update's\ncurrent status. Known types are:\n* Recommended, for whether the update is recommended for the current cluster.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"release":{"description":"release is the target of the update.","type":"object","required":["image","version"],"properties":{"channels":{"description":"channels is the set of Cincinnati channels to which the release\ncurrently belongs.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"image":{"description":"image is a container image location that contains the update. When this\nfield is part of spec, image is optional if version is specified and the\navailableUpdates field contains a matching version.","type":"string"},"url":{"description":"url contains information about this release. This URL is set by\nthe 'url' metadata property on a release or the metadata returned by\nthe update API and should be displayed as a link in user\ninterfaces. The URL field may not be set for test or nightly\nreleases.","type":"string"},"version":{"description":"version is a semantic version identifying the update version. When this\nfield is part of spec, version is optional if image is specified.","type":"string"}}},"risks":{"description":"risks represents the range of issues associated with\nupdating to the target release. The cluster-version\noperator will evaluate all entries, and only recommend the\nupdate if there is at least one entry and all entries\nrecommend the update.","type":"array","minItems":1,"items":{"description":"ConditionalUpdateRisk represents a reason and cluster-state\nfor not recommending a conditional update.","type":"object","required":["matchingRules","message","name","url"],"properties":{"matchingRules":{"description":"matchingRules is a slice of conditions for deciding which\nclusters match the risk and which do not. The slice is\nordered by decreasing precedence. The cluster-version\noperator will walk the slice in order, and stop after the\nfirst it can successfully evaluate. If no condition can be\nsuccessfully evaluated, the update will not be recommended.","type":"array","minItems":1,"items":{"description":"ClusterCondition is a union of typed cluster conditions.  The 'type'\nproperty determines which of the type-specific properties are relevant.\nWhen evaluated on a cluster, the condition may match, not match, or\nfail to evaluate.","type":"object","required":["type"],"properties":{"promql":{"description":"promQL represents a cluster condition based on PromQL.","type":"object","required":["promql"],"properties":{"promql":{"description":"PromQL is a PromQL query classifying clusters. This query\nquery should return a 1 in the match case and a 0 in the\ndoes-not-match case. Queries which return no time\nseries, or which return values besides 0 or 1, are\nevaluation failures.","type":"string"}}},"type":{"description":"type represents the cluster-condition type. This defines\nthe members and semantics of any additional properties.","type":"string","enum":["Always","PromQL"]}}},"x-kubernetes-list-type":"atomic"},"message":{"description":"message provides additional information about the risk of\nupdating, in the event that matchingRules match the cluster\nstate. This is only to be consumed by humans. It may\ncontain Line Feed characters (U+000A), which should be\nrendered as new lines.","type":"string","minLength":1},"name":{"description":"name is the CamelCase reason for not recommending a\nconditional update, in the event that matchingRules match the\ncluster state.","type":"string","minLength":1},"url":{"description":"url contains information about this risk.","type":"string","format":"uri","minLength":1}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-type":"atomic"},"conditions":{"description":"conditions provides information about the cluster version. The condition\n\"Available\" is set to true if the desiredUpdate has been reached. The\ncondition \"Progressing\" is set to true if an update is being applied.\nThe condition \"Degraded\" is set to true if an update is currently blocked\nby a temporary or permanent error. Conditions are only valid for the\ncurrent desiredUpdate when metadata.generation is equal to\nstatus.generation.","type":"array","items":{"description":"ClusterOperatorStatusCondition represents the state of the operator's\nmanaged and monitored components.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time of the last update to the current status property.","type":"string","format":"date-time"},"message":{"description":"message provides additional information about the current condition.\nThis is only to be consumed by humans.  It may contain Line Feed\ncharacters (U+000A), which should be rendered as new lines.","type":"string"},"reason":{"description":"reason is the CamelCase reason for the condition's current status.","type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"type specifies the aspect reported by this condition.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"desired":{"description":"desired is the version that the cluster is reconciling towards.\nIf the cluster is not yet fully initialized desired will be set\nwith the information available, which may be an image or a tag.","type":"object","required":["image","version"],"properties":{"channels":{"description":"channels is the set of Cincinnati channels to which the release\ncurrently belongs.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"image":{"description":"image is a container image location that contains the update. When this\nfield is part of spec, image is optional if version is specified and the\navailableUpdates field contains a matching version.","type":"string"},"url":{"description":"url contains information about this release. This URL is set by\nthe 'url' metadata property on a release or the metadata returned by\nthe update API and should be displayed as a link in user\ninterfaces. The URL field may not be set for test or nightly\nreleases.","type":"string"},"version":{"description":"version is a semantic version identifying the update version. When this\nfield is part of spec, version is optional if image is specified.","type":"string"}}},"history":{"description":"history contains a list of the most recent versions applied to the cluster.\nThis value may be empty during cluster startup, and then will be updated\nwhen a new update is being applied. The newest update is first in the\nlist and it is ordered by recency. Updates in the history have state\nCompleted if the rollout completed - if an update was failing or halfway\napplied the state will be Partial. Only a limited amount of update history\nis preserved.","type":"array","items":{"description":"UpdateHistory is a single attempted update to the cluster.","type":"object","required":["image","startedTime","state","verified"],"properties":{"acceptedRisks":{"description":"acceptedRisks records risks which were accepted to initiate the update.\nFor example, it may menition an Upgradeable=False or missing signature\nthat was overriden via desiredUpdate.force, or an update that was\ninitiated despite not being in the availableUpdates set of recommended\nupdate targets.","type":"string"},"completionTime":{"description":"completionTime, if set, is when the update was fully applied. The update\nthat is currently being applied will have a null completion time.\nCompletion time will always be set for entries that are not the current\nupdate (usually to the started time of the next update).","format":"date-time"},"image":{"description":"image is a container image location that contains the update. This value\nis always populated.","type":"string"},"startedTime":{"description":"startedTime is the time at which the update was started.","type":"string","format":"date-time"},"state":{"description":"state reflects whether the update was fully applied. The Partial state\nindicates the update is not fully applied, while the Completed state\nindicates the update was successfully rolled out at least once (all\nparts of the update successfully applied).","type":"string"},"verified":{"description":"verified indicates whether the provided update was properly verified\nbefore it was installed. If this is false the cluster may not be trusted.\nVerified does not cover upgradeable checks that depend on the cluster\nstate at the time when the update target was accepted.","type":"boolean"},"version":{"description":"version is a semantic version identifying the update version. If the\nrequested image does not define a version, or if a failure occurs\nretrieving the image, this value may be empty.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"observedGeneration":{"description":"observedGeneration reports which version of the spec is being synced.\nIf this value is not equal to metadata.generation, then the desired\nand conditions fields may represent a previous version.","type":"integer","format":"int64"},"versionHash":{"description":"versionHash is a fingerprint of the content that the cluster will be\nupdated with. It is used by the operator to avoid unnecessary work\nand is for internal use only.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ClusterVersion","version":"v1"}],"x-kubernetes-validations":[{"message":"the `marketplace` capability requires the `OperatorLifecycleManager` capability, which is neither explicitly or implicitly enabled in this cluster, please enable the `OperatorLifecycleManager` capability","rule":"has(self.spec.capabilities) && has(self.spec.capabilities.additionalEnabledCapabilities) && self.spec.capabilities.baselineCapabilitySet == 'None' && 'marketplace' in self.spec.capabilities.additionalEnabledCapabilities ? 'OperatorLifecycleManager' in self.spec.capabilities.additionalEnabledCapabilities || (has(self.status) && has(self.status.capabilities) && has(self.status.capabilities.enabledCapabilities) && 'OperatorLifecycleManager' in self.status.capabilities.enabledCapabilities) : true"}]},"io.openshift.config.v1.ClusterVersionList":{"description":"ClusterVersionList is a list of ClusterVersion","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterversions. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.ClusterVersion"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ClusterVersionList","version":"v1"}]},"io.openshift.config.v1.Console":{"description":"Console holds cluster-wide configuration for the web console, including the\nlogout URL, and reports the public URL of the console. The canonical name is\n`cluster`.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"authentication":{"description":"ConsoleAuthentication defines a list of optional configuration for console authentication.","type":"object","properties":{"logoutRedirect":{"description":"An optional, absolute URL to redirect web browsers to after logging out of\nthe console. If not specified, it will redirect to the default login page.\nThis is required when using an identity provider that supports single\nsign-on (SSO) such as:\n- OpenID (Keycloak, Azure)\n- RequestHeader (GSSAPI, SSPI, SAML)\n- OAuth (GitHub, GitLab, Google)\nLogging out of the console will destroy the user's token. The logoutRedirect\nprovides the user the option to perform single logout (SLO) through the identity\nprovider to destroy their single sign-on session.","type":"string","pattern":"^$|^((https):\\/\\/?)[^\\s()<>]+(?:\\([\\w\\d]+\\)|([^[:punct:]\\s]|\\/?))$"}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"consoleURL":{"description":"The URL for the console. This will be derived from the host for the route that\nis created for the console.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Console","version":"v1"}]},"io.openshift.config.v1.ConsoleList":{"description":"ConsoleList is a list of Console","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consoles. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Console"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ConsoleList","version":"v1"}]},"io.openshift.config.v1.DNS":{"description":"DNS holds cluster-wide information about DNS. The canonical name is `cluster`\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"baseDomain":{"description":"baseDomain is the base domain of the cluster. All managed DNS records will\nbe sub-domains of this base.\n\nFor example, given the base domain `openshift.example.com`, an API server\nDNS record may be created for `cluster-api.openshift.example.com`.\n\nOnce set, this field cannot be changed.","type":"string"},"platform":{"description":"platform holds configuration specific to the underlying\ninfrastructure provider for DNS.\nWhen omitted, this means the user has no opinion and the platform is left\nto choose reasonable defaults. These defaults are subject to change over time.","type":"object","required":["type"],"properties":{"aws":{"description":"aws contains DNS configuration specific to the Amazon Web Services cloud provider.","type":"object","properties":{"privateZoneIAMRole":{"description":"privateZoneIAMRole contains the ARN of an IAM role that should be assumed when performing\noperations on the cluster's private hosted zone specified in the cluster DNS config.\nWhen left empty, no role should be assumed.","type":"string","pattern":"^arn:(aws|aws-cn|aws-us-gov):iam::[0-9]{12}:role\\/.*$"}}},"type":{"description":"type is the underlying infrastructure provider for the cluster.\nAllowed values: \"\", \"AWS\".\n\nIndividual components may not support all platforms,\nand must handle unrecognized platforms with best-effort defaults.","type":"string","enum":["","AWS","Azure","BareMetal","GCP","Libvirt","OpenStack","None","VSphere","oVirt","IBMCloud","KubeVirt","EquinixMetal","PowerVS","AlibabaCloud","Nutanix","External"],"x-kubernetes-validations":[{"message":"allowed values are '' and 'AWS'","rule":"self in ['','AWS']"}]}},"x-kubernetes-validations":[{"message":"aws configuration is required when platform is AWS, and forbidden otherwise","rule":"has(self.type) && self.type == 'AWS' ?  has(self.aws) : !has(self.aws)"}]},"privateZone":{"description":"privateZone is the location where all the DNS records that are only available internally\nto the cluster exist.\n\nIf this field is nil, no private records should be created.\n\nOnce set, this field cannot be changed.","type":"object","properties":{"id":{"description":"id is the identifier that can be used to find the DNS hosted zone.\n\non AWS zone can be fetched using `ID` as id in [1]\non Azure zone can be fetched using `ID` as a pre-determined name in [2],\non GCP zone can be fetched using `ID` as a pre-determined name in [3].\n\n[1]: https://docs.aws.amazon.com/cli/latest/reference/route53/get-hosted-zone.html#options\n[2]: https://docs.microsoft.com/en-us/cli/azure/network/dns/zone?view=azure-cli-latest#az-network-dns-zone-show\n[3]: https://cloud.google.com/dns/docs/reference/v1/managedZones/get","type":"string"},"tags":{"description":"tags can be used to query the DNS hosted zone.\n\non AWS, resourcegroupstaggingapi [1] can be used to fetch a zone using `Tags` as tag-filters,\n\n[1]: https://docs.aws.amazon.com/cli/latest/reference/resourcegroupstaggingapi/get-resources.html#options","type":"object","additionalProperties":{"type":"string"}}}},"publicZone":{"description":"publicZone is the location where all the DNS records that are publicly accessible to\nthe internet exist.\n\nIf this field is nil, no public records should be created.\n\nOnce set, this field cannot be changed.","type":"object","properties":{"id":{"description":"id is the identifier that can be used to find the DNS hosted zone.\n\non AWS zone can be fetched using `ID` as id in [1]\non Azure zone can be fetched using `ID` as a pre-determined name in [2],\non GCP zone can be fetched using `ID` as a pre-determined name in [3].\n\n[1]: https://docs.aws.amazon.com/cli/latest/reference/route53/get-hosted-zone.html#options\n[2]: https://docs.microsoft.com/en-us/cli/azure/network/dns/zone?view=azure-cli-latest#az-network-dns-zone-show\n[3]: https://cloud.google.com/dns/docs/reference/v1/managedZones/get","type":"string"},"tags":{"description":"tags can be used to query the DNS hosted zone.\n\non AWS, resourcegroupstaggingapi [1] can be used to fetch a zone using `Tags` as tag-filters,\n\n[1]: https://docs.aws.amazon.com/cli/latest/reference/resourcegroupstaggingapi/get-resources.html#options","type":"object","additionalProperties":{"type":"string"}}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"DNS","version":"v1"}]},"io.openshift.config.v1.DNSList":{"description":"DNSList is a list of DNS","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of dnses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.DNS"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"DNSList","version":"v1"}]},"io.openshift.config.v1.FeatureGate":{"description":"Feature holds cluster-wide information about feature gates.  The canonical name is `cluster`\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"customNoUpgrade":{"description":"customNoUpgrade allows the enabling or disabling of any feature. Turning this feature set on IS NOT SUPPORTED, CANNOT BE UNDONE, and PREVENTS UPGRADES.\nBecause of its nature, this setting cannot be validated.  If you have any typos or accidentally apply invalid combinations\nyour cluster may fail in an unrecoverable way.  featureSet must equal \"CustomNoUpgrade\" must be set to use this field."},"featureSet":{"description":"featureSet changes the list of features in the cluster.  The default is empty.  Be very careful adjusting this setting.\nTurning on or off features may cause irreversible changes in your cluster which cannot be undone.","type":"string","enum":["CustomNoUpgrade","DevPreviewNoUpgrade","TechPreviewNoUpgrade",""],"x-kubernetes-validations":[{"message":"CustomNoUpgrade may not be changed","rule":"oldSelf == 'CustomNoUpgrade' ? self == 'CustomNoUpgrade' : true"},{"message":"TechPreviewNoUpgrade may not be changed","rule":"oldSelf == 'TechPreviewNoUpgrade' ? self == 'TechPreviewNoUpgrade' : true"},{"message":"DevPreviewNoUpgrade may not be changed","rule":"oldSelf == 'DevPreviewNoUpgrade' ? self == 'DevPreviewNoUpgrade' : true"}]}},"x-kubernetes-validations":[{"message":".spec.featureSet cannot be removed","rule":"has(oldSelf.featureSet) ? has(self.featureSet) : true"}]},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"conditions":{"description":"conditions represent the observations of the current state.\nKnown .status.conditions.type are: \"DeterminationDegraded\"","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"featureGates":{"description":"featureGates contains a list of enabled and disabled featureGates that are keyed by payloadVersion.\nOperators other than the CVO and cluster-config-operator, must read the .status.featureGates, locate\nthe version they are managing, find the enabled/disabled featuregates and make the operand and operator match.\nThe enabled/disabled values for a particular version may change during the life of the cluster as various\n.spec.featureSet values are selected.\nOperators may choose to restart their processes to pick up these changes, but remembering past enable/disable\nlists is beyond the scope of this API and is the responsibility of individual operators.\nOnly featureGates with .version in the ClusterVersion.status will be present in this list.","type":"array","items":{"type":"object","required":["version"],"properties":{"disabled":{"description":"disabled is a list of all feature gates that are disabled in the cluster for the named version.","type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the FeatureGate.","type":"string","pattern":"^([A-Za-z0-9-]+\\.)*[A-Za-z0-9-]+\\.?$"}}}},"enabled":{"description":"enabled is a list of all feature gates that are enabled in the cluster for the named version.","type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the FeatureGate.","type":"string","pattern":"^([A-Za-z0-9-]+\\.)*[A-Za-z0-9-]+\\.?$"}}}},"version":{"description":"version matches the version provided by the ClusterVersion and in the ClusterOperator.Status.Versions field.","type":"string"}}},"x-kubernetes-list-map-keys":["version"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"FeatureGate","version":"v1"}]},"io.openshift.config.v1.FeatureGateList":{"description":"FeatureGateList is a list of FeatureGate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of featuregates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.FeatureGate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"FeatureGateList","version":"v1"}]},"io.openshift.config.v1.Image":{"description":"Image governs policies related to imagestream imports and runtime configuration\nfor external registries. It allows cluster admins to configure which registries\nOpenShift is allowed to import images from, extra CA trust bundles for external\nregistries, and policies to block or allow registry hostnames.\nWhen exposing OpenShift's image registry to the public, this also lets cluster\nadmins specify the external hostname.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"additionalTrustedCA":{"description":"additionalTrustedCA is a reference to a ConfigMap containing additional CAs that\nshould be trusted during imagestream import, pod image pull, build image pull, and\nimageregistry pullthrough.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"allowedRegistriesForImport":{"description":"allowedRegistriesForImport limits the container image registries that normal users may import\nimages from. Set this list to the registries that you trust to contain valid Docker\nimages and that you want applications to be able to import from. Users with\npermission to create Images or ImageStreamMappings via the API are not affected by\nthis policy - typically only administrators or system integrations will have those\npermissions.","type":"array","items":{"description":"RegistryLocation contains a location of the registry specified by the registry domain\nname. The domain name might include wildcards, like '*' or '??'.","type":"object","properties":{"domainName":{"description":"domainName specifies a domain name for the registry\nIn case the registry use non-standard (80 or 443) port, the port should be included\nin the domain name as well.","type":"string"},"insecure":{"description":"insecure indicates whether the registry is secure (https) or insecure (http)\nBy default (if not specified) the registry is assumed as secure.","type":"boolean"}}},"x-kubernetes-list-type":"atomic"},"externalRegistryHostnames":{"description":"externalRegistryHostnames provides the hostnames for the default external image\nregistry. The external hostname should be set only when the image registry\nis exposed externally. The first value is used in 'publicDockerImageRepository'\nfield in ImageStreams. The value must be in \"hostname[:port]\" format.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"registrySources":{"description":"registrySources contains configuration that determines how the container runtime\nshould treat individual registries when accessing images for builds+pods. (e.g.\nwhether or not to allow insecure access).  It does not contain configuration for the\ninternal cluster registry.","type":"object","properties":{"allowedRegistries":{"description":"allowedRegistries are the only registries permitted for image pull and push actions. All other registries are denied.\n\nOnly one of BlockedRegistries or AllowedRegistries may be set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"blockedRegistries":{"description":"blockedRegistries cannot be used for image pull and push actions. All other registries are permitted.\n\nOnly one of BlockedRegistries or AllowedRegistries may be set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"containerRuntimeSearchRegistries":{"description":"containerRuntimeSearchRegistries are registries that will be searched when pulling images that do not have fully qualified\ndomains in their pull specs. Registries will be searched in the order provided in the list.\nNote: this search list only works with the container runtime, i.e CRI-O. Will NOT work with builds or imagestream imports.","type":"array","format":"hostname","minItems":1,"items":{"type":"string"},"x-kubernetes-list-type":"set"},"insecureRegistries":{"description":"insecureRegistries are registries which do not have a valid TLS certificates or only support HTTP connections.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"externalRegistryHostnames":{"description":"externalRegistryHostnames provides the hostnames for the default external image\nregistry. The external hostname should be set only when the image registry\nis exposed externally. The first value is used in 'publicDockerImageRepository'\nfield in ImageStreams. The value must be in \"hostname[:port]\" format.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"internalRegistryHostname":{"description":"internalRegistryHostname sets the hostname for the default internal image\nregistry. The value must be in \"hostname[:port]\" format.\nThis value is set by the image registry operator which controls the internal registry\nhostname.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Image","version":"v1"}]},"io.openshift.config.v1.ImageContentPolicy":{"description":"ImageContentPolicy holds cluster-wide information about how to handle registry mirror rules.\nWhen multiple policies are defined, the outcome of the behavior is defined on each field.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"repositoryDigestMirrors":{"description":"repositoryDigestMirrors allows images referenced by image digests in pods to be\npulled from alternative mirrored repository locations. The image pull specification\nprovided to the pod will be compared to the source locations described in RepositoryDigestMirrors\nand the image may be pulled down from any of the mirrors in the list instead of the\nspecified repository allowing administrators to choose a potentially faster mirror.\nTo pull image from mirrors by tags, should set the \"allowMirrorByTags\".\n\nEach “source” repository is treated independently; configurations for different “source”\nrepositories don’t interact.\n\nIf the \"mirrors\" is not specified, the image will continue to be pulled from the specified\nrepository in the pull spec.\n\nWhen multiple policies are defined for the same “source” repository, the sets of defined\nmirrors will be merged together, preserving the relative order of the mirrors, if possible.\nFor example, if policy A has mirrors `a, b, c` and policy B has mirrors `c, d, e`, the\nmirrors will be used in the order `a, b, c, d, e`.  If the orders of mirror entries conflict\n(e.g. `a, b` vs. `b, a`) the configuration is not rejected but the resulting order is unspecified.","type":"array","items":{"description":"RepositoryDigestMirrors holds cluster-wide information about how to handle mirrors in the registries config.","type":"object","required":["source"],"properties":{"allowMirrorByTags":{"description":"allowMirrorByTags if true, the mirrors can be used to pull the images that are referenced by their tags. Default is false, the mirrors only work when pulling the images that are referenced by their digests.\nPulling images by tag can potentially yield different images, depending on which endpoint\nwe pull from. Forcing digest-pulls for mirrors avoids that issue.","type":"boolean"},"mirrors":{"description":"mirrors is zero or more repositories that may also contain the same images.\nIf the \"mirrors\" is not specified, the image will continue to be pulled from the specified\nrepository in the pull spec. No mirror will be configured.\nThe order of mirrors in this list is treated as the user's desired priority, while source\nis by default considered lower priority than all mirrors. Other cluster configuration,\nincluding (but not limited to) other repositoryDigestMirrors objects,\nmay impact the exact order mirrors are contacted in, or some mirrors may be contacted\nin parallel, so this should be considered a preference rather than a guarantee of ordering.","type":"array","items":{"type":"string","pattern":"^(([a-zA-Z]|[a-zA-Z][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z]|[A-Za-z][A-Za-z0-9\\-]*[A-Za-z0-9])(:[0-9]+)?(\\/[^\\/:\\n]+)*(\\/[^\\/:\\n]+((:[^\\/:\\n]+)|(@[^\\n]+)))?$"},"x-kubernetes-list-type":"set"},"source":{"description":"source is the repository that users refer to, e.g. in image pull specifications.","type":"string","pattern":"^(([a-zA-Z]|[a-zA-Z][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z]|[A-Za-z][A-Za-z0-9\\-]*[A-Za-z0-9])(:[0-9]+)?(\\/[^\\/:\\n]+)*(\\/[^\\/:\\n]+((:[^\\/:\\n]+)|(@[^\\n]+)))?$"}}},"x-kubernetes-list-map-keys":["source"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ImageContentPolicy","version":"v1"}]},"io.openshift.config.v1.ImageContentPolicyList":{"description":"ImageContentPolicyList is a list of ImageContentPolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imagecontentpolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.ImageContentPolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ImageContentPolicyList","version":"v1"}]},"io.openshift.config.v1.ImageDigestMirrorSet":{"description":"ImageDigestMirrorSet holds cluster-wide information about how to handle registry mirror rules on using digest pull specification.\nWhen multiple policies are defined, the outcome of the behavior is defined on each field.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"imageDigestMirrors":{"description":"imageDigestMirrors allows images referenced by image digests in pods to be\npulled from alternative mirrored repository locations. The image pull specification\nprovided to the pod will be compared to the source locations described in imageDigestMirrors\nand the image may be pulled down from any of the mirrors in the list instead of the\nspecified repository allowing administrators to choose a potentially faster mirror.\nTo use mirrors to pull images using tag specification, users should configure\na list of mirrors using \"ImageTagMirrorSet\" CRD.\n\nIf the image pull specification matches the repository of \"source\" in multiple imagedigestmirrorset objects,\nonly the objects which define the most specific namespace match will be used.\nFor example, if there are objects using quay.io/libpod and quay.io/libpod/busybox as\nthe \"source\", only the objects using quay.io/libpod/busybox are going to apply\nfor pull specification quay.io/libpod/busybox.\nEach “source” repository is treated independently; configurations for different “source”\nrepositories don’t interact.\n\nIf the \"mirrors\" is not specified, the image will continue to be pulled from the specified\nrepository in the pull spec.\n\nWhen multiple policies are defined for the same “source” repository, the sets of defined\nmirrors will be merged together, preserving the relative order of the mirrors, if possible.\nFor example, if policy A has mirrors `a, b, c` and policy B has mirrors `c, d, e`, the\nmirrors will be used in the order `a, b, c, d, e`.  If the orders of mirror entries conflict\n(e.g. `a, b` vs. `b, a`) the configuration is not rejected but the resulting order is unspecified.\nUsers who want to use a specific order of mirrors, should configure them into one list of mirrors using the expected order.","type":"array","items":{"description":"ImageDigestMirrors holds cluster-wide information about how to handle mirrors in the registries config.","type":"object","required":["source"],"properties":{"mirrorSourcePolicy":{"description":"mirrorSourcePolicy defines the fallback policy if fails to pull image from the mirrors.\nIf unset, the image will continue to be pulled from the the repository in the pull spec.\nsourcePolicy is valid configuration only when one or more mirrors are in the mirror list.","type":"string","enum":["NeverContactSource","AllowContactingSource"]},"mirrors":{"description":"mirrors is zero or more locations that may also contain the same images. No mirror will be configured if not specified.\nImages can be pulled from these mirrors only if they are referenced by their digests.\nThe mirrored location is obtained by replacing the part of the input reference that\nmatches source by the mirrors entry, e.g. for registry.redhat.io/product/repo reference,\na (source, mirror) pair *.redhat.io, mirror.local/redhat causes a mirror.local/redhat/product/repo\nrepository to be used.\nThe order of mirrors in this list is treated as the user's desired priority, while source\nis by default considered lower priority than all mirrors.\nIf no mirror is specified or all image pulls from the mirror list fail, the image will continue to be\npulled from the repository in the pull spec unless explicitly prohibited by \"mirrorSourcePolicy\"\nOther cluster configuration, including (but not limited to) other imageDigestMirrors objects,\nmay impact the exact order mirrors are contacted in, or some mirrors may be contacted\nin parallel, so this should be considered a preference rather than a guarantee of ordering.\n\"mirrors\" uses one of the following formats:\nhost[:port]\nhost[:port]/namespace[/namespace…]\nhost[:port]/namespace[/namespace…]/repo\nfor more information about the format, see the document about the location field:\nhttps://github.com/containers/image/blob/main/docs/containers-registries.conf.5.md#choosing-a-registry-toml-table","type":"array","items":{"type":"string","pattern":"^((?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])(?:(?:\\.(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]))+)?(?::[0-9]+)?)(?:(?:/[a-z0-9]+(?:(?:(?:[._]|__|[-]*)[a-z0-9]+)+)?)+)?$"},"x-kubernetes-list-type":"set"},"source":{"description":"source matches the repository that users refer to, e.g. in image pull specifications. Setting source to a registry hostname\ne.g. docker.io. quay.io, or registry.redhat.io, will match the image pull specification of corressponding registry.\n\"source\" uses one of the following formats:\nhost[:port]\nhost[:port]/namespace[/namespace…]\nhost[:port]/namespace[/namespace…]/repo\n[*.]host\nfor more information about the format, see the document about the location field:\nhttps://github.com/containers/image/blob/main/docs/containers-registries.conf.5.md#choosing-a-registry-toml-table","type":"string","pattern":"^\\*(?:\\.(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]))+$|^((?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])(?:(?:\\.(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]))+)?(?::[0-9]+)?)(?:(?:/[a-z0-9]+(?:(?:(?:[._]|__|[-]*)[a-z0-9]+)+)?)+)?$"}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"status contains the observed state of the resource.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ImageDigestMirrorSet","version":"v1"}]},"io.openshift.config.v1.ImageDigestMirrorSetList":{"description":"ImageDigestMirrorSetList is a list of ImageDigestMirrorSet","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imagedigestmirrorsets. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.ImageDigestMirrorSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ImageDigestMirrorSetList","version":"v1"}]},"io.openshift.config.v1.ImageList":{"description":"ImageList is a list of Image","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of images. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Image"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ImageList","version":"v1"}]},"io.openshift.config.v1.ImageTagMirrorSet":{"description":"ImageTagMirrorSet holds cluster-wide information about how to handle registry mirror rules on using tag pull specification.\nWhen multiple policies are defined, the outcome of the behavior is defined on each field.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"imageTagMirrors":{"description":"imageTagMirrors allows images referenced by image tags in pods to be\npulled from alternative mirrored repository locations. The image pull specification\nprovided to the pod will be compared to the source locations described in imageTagMirrors\nand the image may be pulled down from any of the mirrors in the list instead of the\nspecified repository allowing administrators to choose a potentially faster mirror.\nTo use mirrors to pull images using digest specification only, users should configure\na list of mirrors using \"ImageDigestMirrorSet\" CRD.\n\nIf the image pull specification matches the repository of \"source\" in multiple imagetagmirrorset objects,\nonly the objects which define the most specific namespace match will be used.\nFor example, if there are objects using quay.io/libpod and quay.io/libpod/busybox as\nthe \"source\", only the objects using quay.io/libpod/busybox are going to apply\nfor pull specification quay.io/libpod/busybox.\nEach “source” repository is treated independently; configurations for different “source”\nrepositories don’t interact.\n\nIf the \"mirrors\" is not specified, the image will continue to be pulled from the specified\nrepository in the pull spec.\n\nWhen multiple policies are defined for the same “source” repository, the sets of defined\nmirrors will be merged together, preserving the relative order of the mirrors, if possible.\nFor example, if policy A has mirrors `a, b, c` and policy B has mirrors `c, d, e`, the\nmirrors will be used in the order `a, b, c, d, e`.  If the orders of mirror entries conflict\n(e.g. `a, b` vs. `b, a`) the configuration is not rejected but the resulting order is unspecified.\nUsers who want to use a deterministic order of mirrors, should configure them into one list of mirrors using the expected order.","type":"array","items":{"description":"ImageTagMirrors holds cluster-wide information about how to handle mirrors in the registries config.","type":"object","required":["source"],"properties":{"mirrorSourcePolicy":{"description":"mirrorSourcePolicy defines the fallback policy if fails to pull image from the mirrors.\nIf unset, the image will continue to be pulled from the repository in the pull spec.\nsourcePolicy is valid configuration only when one or more mirrors are in the mirror list.","type":"string","enum":["NeverContactSource","AllowContactingSource"]},"mirrors":{"description":"mirrors is zero or more locations that may also contain the same images. No mirror will be configured if not specified.\nImages can be pulled from these mirrors only if they are referenced by their tags.\nThe mirrored location is obtained by replacing the part of the input reference that\nmatches source by the mirrors entry, e.g. for registry.redhat.io/product/repo reference,\na (source, mirror) pair *.redhat.io, mirror.local/redhat causes a mirror.local/redhat/product/repo\nrepository to be used.\nPulling images by tag can potentially yield different images, depending on which endpoint we pull from.\nConfiguring a list of mirrors using \"ImageDigestMirrorSet\" CRD and forcing digest-pulls for mirrors avoids that issue.\nThe order of mirrors in this list is treated as the user's desired priority, while source\nis by default considered lower priority than all mirrors.\nIf no mirror is specified or all image pulls from the mirror list fail, the image will continue to be\npulled from the repository in the pull spec unless explicitly prohibited by \"mirrorSourcePolicy\".\nOther cluster configuration, including (but not limited to) other imageTagMirrors objects,\nmay impact the exact order mirrors are contacted in, or some mirrors may be contacted\nin parallel, so this should be considered a preference rather than a guarantee of ordering.\n\"mirrors\" uses one of the following formats:\nhost[:port]\nhost[:port]/namespace[/namespace…]\nhost[:port]/namespace[/namespace…]/repo\nfor more information about the format, see the document about the location field:\nhttps://github.com/containers/image/blob/main/docs/containers-registries.conf.5.md#choosing-a-registry-toml-table","type":"array","items":{"type":"string","pattern":"^((?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])(?:(?:\\.(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]))+)?(?::[0-9]+)?)(?:(?:/[a-z0-9]+(?:(?:(?:[._]|__|[-]*)[a-z0-9]+)+)?)+)?$"},"x-kubernetes-list-type":"set"},"source":{"description":"source matches the repository that users refer to, e.g. in image pull specifications. Setting source to a registry hostname\ne.g. docker.io. quay.io, or registry.redhat.io, will match the image pull specification of corressponding registry.\n\"source\" uses one of the following formats:\nhost[:port]\nhost[:port]/namespace[/namespace…]\nhost[:port]/namespace[/namespace…]/repo\n[*.]host\nfor more information about the format, see the document about the location field:\nhttps://github.com/containers/image/blob/main/docs/containers-registries.conf.5.md#choosing-a-registry-toml-table","type":"string","pattern":"^\\*(?:\\.(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]))+$|^((?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])(?:(?:\\.(?:[a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9]))+)?(?::[0-9]+)?)(?:(?:/[a-z0-9]+(?:(?:(?:[._]|__|[-]*)[a-z0-9]+)+)?)+)?$"}}},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"status contains the observed state of the resource.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ImageTagMirrorSet","version":"v1"}]},"io.openshift.config.v1.ImageTagMirrorSetList":{"description":"ImageTagMirrorSetList is a list of ImageTagMirrorSet","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imagetagmirrorsets. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.ImageTagMirrorSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ImageTagMirrorSetList","version":"v1"}]},"io.openshift.config.v1.Infrastructure":{"description":"Infrastructure holds cluster-wide information about Infrastructure.  The canonical name is `cluster`\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"cloudConfig":{"description":"cloudConfig is a reference to a ConfigMap containing the cloud provider configuration file.\nThis configuration file is used to configure the Kubernetes cloud provider integration\nwhen using the built-in cloud provider integration or the external cloud controller manager.\nThe namespace for this config map is openshift-config.\n\ncloudConfig should only be consumed by the kube_cloud_config controller.\nThe controller is responsible for using the user configuration in the spec\nfor various platforms and combining that with the user provided ConfigMap in this field\nto create a stitched kube cloud config.\nThe controller generates a ConfigMap `kube-cloud-config` in `openshift-config-managed` namespace\nwith the kube cloud config is stored in `cloud.conf` key.\nAll the clients are expected to use the generated ConfigMap only.","type":"object","properties":{"key":{"description":"Key allows pointing to a specific key/value inside of the configmap.  This is useful for logical file references.","type":"string"},"name":{"type":"string"}}},"platformSpec":{"description":"platformSpec holds desired information specific to the underlying\ninfrastructure provider.","type":"object","properties":{"alibabaCloud":{"description":"AlibabaCloud contains settings specific to the Alibaba Cloud infrastructure provider.","type":"object"},"aws":{"description":"AWS contains settings specific to the Amazon Web Services infrastructure provider.","type":"object","properties":{"serviceEndpoints":{"description":"serviceEndpoints list contains custom endpoints which will override default\nservice endpoint of AWS Services.\nThere must be only one ServiceEndpoint for a service.","type":"array","items":{"description":"AWSServiceEndpoint store the configuration of a custom url to\noverride existing defaults of AWS Services.","type":"object","properties":{"name":{"description":"name is the name of the AWS service.\nThe list of all the service names can be found at https://docs.aws.amazon.com/general/latest/gr/aws-service-information.html\nThis must be provided and cannot be empty.","type":"string","pattern":"^[a-z0-9-]+$"},"url":{"description":"url is fully qualified URI with scheme https, that overrides the default generated\nendpoint for a client.\nThis must be provided and cannot be empty.","type":"string","pattern":"^https://"}}},"x-kubernetes-list-type":"atomic"}}},"azure":{"description":"Azure contains settings specific to the Azure infrastructure provider.","type":"object"},"baremetal":{"description":"BareMetal contains settings specific to the BareMetal platform.","type":"object","properties":{"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers.\nIn dual stack clusters this list contains two IP addresses, one from IPv4\nfamily and one from IPv6.\nIn single stack clusters a single IP address is expected.\nWhen omitted, values from the status.apiServerInternalIPs will be used.\nOnce set, the list cannot be completely removed (but its second entry can).","type":"array","maxItems":2,"items":{"description":"IP is an IP address (for example, \"10.0.0.0\" or \"fd00::\").","type":"string","maxLength":39,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid IP address","rule":"isIP(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true"}]},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names.\nIn dual stack clusters this list contains two IP addresses, one from IPv4\nfamily and one from IPv6.\nIn single stack clusters a single IP address is expected.\nWhen omitted, values from the status.ingressIPs will be used.\nOnce set, the list cannot be completely removed (but its second entry can).","type":"array","maxItems":2,"items":{"description":"IP is an IP address (for example, \"10.0.0.0\" or \"fd00::\").","type":"string","maxLength":39,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid IP address","rule":"isIP(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true"}]},"machineNetworks":{"description":"machineNetworks are IP networks used to connect all the OpenShift cluster\nnodes. Each network is provided in the CIDR format and should be IPv4 or IPv6,\nfor example \"10.0.0.0/8\" or \"fd00::/8\".","type":"array","maxItems":32,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid CIDR network address","rule":"isCIDR(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"rule":"self.all(x, self.exists_one(y, x == y))"}]}},"x-kubernetes-validations":[{"message":"apiServerInternalIPs list is required once set","rule":"!has(oldSelf.apiServerInternalIPs) || has(self.apiServerInternalIPs)"},{"message":"ingressIPs list is required once set","rule":"!has(oldSelf.ingressIPs) || has(self.ingressIPs)"}]},"equinixMetal":{"description":"EquinixMetal contains settings specific to the Equinix Metal infrastructure provider.","type":"object"},"external":{"description":"ExternalPlatformType represents generic infrastructure provider.\nPlatform-specific components should be supplemented separately.","type":"object","properties":{"platformName":{"description":"PlatformName holds the arbitrary string representing the infrastructure provider name, expected to be set at the installation time.\nThis field is solely for informational and reporting purposes and is not expected to be used for decision-making.","type":"string","x-kubernetes-validations":[{"message":"platform name cannot be changed once set","rule":"oldSelf == 'Unknown' || self == oldSelf"}]}}},"gcp":{"description":"GCP contains settings specific to the Google Cloud Platform infrastructure provider.","type":"object"},"ibmcloud":{"description":"IBMCloud contains settings specific to the IBMCloud infrastructure provider.","type":"object"},"kubevirt":{"description":"Kubevirt contains settings specific to the kubevirt infrastructure provider.","type":"object"},"nutanix":{"description":"Nutanix contains settings specific to the Nutanix infrastructure provider.","type":"object","required":["prismCentral","prismElements"],"properties":{"failureDomains":{"description":"failureDomains configures failure domains information for the Nutanix platform.\nWhen set, the failure domains defined here may be used to spread Machines across\nprism element clusters to improve fault tolerance of the cluster.","type":"array","items":{"description":"NutanixFailureDomain configures failure domain information for the Nutanix platform.","type":"object","required":["cluster","name","subnets"],"properties":{"cluster":{"description":"cluster is to identify the cluster (the Prism Element under management of the Prism Central),\nin which the Machine's VM will be created. The cluster identifier (uuid or name) can be obtained\nfrom the Prism Central console or using the prism_central API.","type":"object","required":["type"],"properties":{"name":{"description":"name is the resource name in the PC. It cannot be empty if the type is Name.","type":"string"},"type":{"description":"type is the identifier type to use for this resource.","type":"string","enum":["UUID","Name"]},"uuid":{"description":"uuid is the UUID of the resource in the PC. It cannot be empty if the type is UUID.","type":"string"}},"x-kubernetes-validations":[{"message":"uuid configuration is required when type is UUID, and forbidden otherwise","rule":"has(self.type) && self.type == 'UUID' ?  has(self.uuid) : !has(self.uuid)"},{"message":"name configuration is required when type is Name, and forbidden otherwise","rule":"has(self.type) && self.type == 'Name' ?  has(self.name) : !has(self.name)"}]},"name":{"description":"name defines the unique name of a failure domain.\nName is required and must be at most 64 characters in length.\nIt must consist of only lower case alphanumeric characters and hyphens (-).\nIt must start and end with an alphanumeric character.\nThis value is arbitrary and is used to identify the failure domain within the platform.","type":"string","maxLength":64,"minLength":1,"pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?"},"subnets":{"description":"subnets holds a list of identifiers (one or more) of the cluster's network subnets\nIf the feature gate NutanixMultiSubnets is enabled, up to 32 subnets may be configured.\nfor the Machine's VM to connect to. The subnet identifiers (uuid or name) can be\nobtained from the Prism Central console or using the prism_central API.","type":"array","maxItems":1,"minItems":1,"items":{"description":"NutanixResourceIdentifier holds the identity of a Nutanix PC resource (cluster, image, subnet, etc.)","type":"object","required":["type"],"properties":{"name":{"description":"name is the resource name in the PC. It cannot be empty if the type is Name.","type":"string"},"type":{"description":"type is the identifier type to use for this resource.","type":"string","enum":["UUID","Name"]},"uuid":{"description":"uuid is the UUID of the resource in the PC. It cannot be empty if the type is UUID.","type":"string"}},"x-kubernetes-validations":[{"message":"uuid configuration is required when type is UUID, and forbidden otherwise","rule":"has(self.type) && self.type == 'UUID' ?  has(self.uuid) : !has(self.uuid)"},{"message":"name configuration is required when type is Name, and forbidden otherwise","rule":"has(self.type) && self.type == 'Name' ?  has(self.name) : !has(self.name)"}]},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"prismCentral":{"description":"prismCentral holds the endpoint address and port to access the Nutanix Prism Central.\nWhen a cluster-wide proxy is installed, by default, this endpoint will be accessed via the proxy.\nShould you wish for communication with this endpoint not to be proxied, please add the endpoint to the\nproxy spec.noProxy list.","type":"object","required":["address","port"],"properties":{"address":{"description":"address is the endpoint address (DNS name or IP address) of the Nutanix Prism Central or Element (cluster)","type":"string","maxLength":256},"port":{"description":"port is the port number to access the Nutanix Prism Central or Element (cluster)","type":"integer","format":"int32","maximum":65535,"minimum":1}}},"prismElements":{"description":"prismElements holds one or more endpoint address and port data to access the Nutanix\nPrism Elements (clusters) of the Nutanix Prism Central. Currently we only support one\nPrism Element (cluster) for an OpenShift cluster, where all the Nutanix resources (VMs, subnets, volumes, etc.)\nused in the OpenShift cluster are located. In the future, we may support Nutanix resources (VMs, etc.)\nspread over multiple Prism Elements (clusters) of the Prism Central.","type":"array","items":{"description":"NutanixPrismElementEndpoint holds the name and endpoint data for a Prism Element (cluster)","type":"object","required":["endpoint","name"],"properties":{"endpoint":{"description":"endpoint holds the endpoint address and port data of the Prism Element (cluster).\nWhen a cluster-wide proxy is installed, by default, this endpoint will be accessed via the proxy.\nShould you wish for communication with this endpoint not to be proxied, please add the endpoint to the\nproxy spec.noProxy list.","type":"object","required":["address","port"],"properties":{"address":{"description":"address is the endpoint address (DNS name or IP address) of the Nutanix Prism Central or Element (cluster)","type":"string","maxLength":256},"port":{"description":"port is the port number to access the Nutanix Prism Central or Element (cluster)","type":"integer","format":"int32","maximum":65535,"minimum":1}}},"name":{"description":"name is the name of the Prism Element (cluster). This value will correspond with\nthe cluster field configured on other resources (eg Machines, PVCs, etc).","type":"string","maxLength":256}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"openstack":{"description":"OpenStack contains settings specific to the OpenStack infrastructure provider.","type":"object","properties":{"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers.\nIn dual stack clusters this list contains two IP addresses, one from IPv4\nfamily and one from IPv6.\nIn single stack clusters a single IP address is expected.\nWhen omitted, values from the status.apiServerInternalIPs will be used.\nOnce set, the list cannot be completely removed (but its second entry can).","type":"array","maxItems":2,"items":{"description":"IP is an IP address (for example, \"10.0.0.0\" or \"fd00::\").","type":"string","maxLength":39,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid IP address","rule":"isIP(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true"}]},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names.\nIn dual stack clusters this list contains two IP addresses, one from IPv4\nfamily and one from IPv6.\nIn single stack clusters a single IP address is expected.\nWhen omitted, values from the status.ingressIPs will be used.\nOnce set, the list cannot be completely removed (but its second entry can).","type":"array","maxItems":2,"items":{"description":"IP is an IP address (for example, \"10.0.0.0\" or \"fd00::\").","type":"string","maxLength":39,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid IP address","rule":"isIP(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true"}]},"machineNetworks":{"description":"machineNetworks are IP networks used to connect all the OpenShift cluster\nnodes. Each network is provided in the CIDR format and should be IPv4 or IPv6,\nfor example \"10.0.0.0/8\" or \"fd00::/8\".","type":"array","maxItems":32,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid CIDR network address","rule":"isCIDR(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"rule":"self.all(x, self.exists_one(y, x == y))"}]}},"x-kubernetes-validations":[{"message":"apiServerInternalIPs list is required once set","rule":"!has(oldSelf.apiServerInternalIPs) || has(self.apiServerInternalIPs)"},{"message":"ingressIPs list is required once set","rule":"!has(oldSelf.ingressIPs) || has(self.ingressIPs)"}]},"ovirt":{"description":"Ovirt contains settings specific to the oVirt infrastructure provider.","type":"object"},"powervs":{"description":"PowerVS contains settings specific to the IBM Power Systems Virtual Servers infrastructure provider.","type":"object","properties":{"serviceEndpoints":{"description":"serviceEndpoints is a list of custom endpoints which will override the default\nservice endpoints of a Power VS service.","type":"array","items":{"description":"PowervsServiceEndpoint stores the configuration of a custom url to\noverride existing defaults of PowerVS Services.","type":"object","required":["name","url"],"properties":{"name":{"description":"name is the name of the Power VS service.\nFew of the services are\nIAM - https://cloud.ibm.com/apidocs/iam-identity-token-api\nResourceController - https://cloud.ibm.com/apidocs/resource-controller/resource-controller\nPower Cloud - https://cloud.ibm.com/apidocs/power-cloud","type":"string","enum":["CIS","COS","COSConfig","DNSServices","GlobalCatalog","GlobalSearch","GlobalTagging","HyperProtect","IAM","KeyProtect","Power","ResourceController","ResourceManager","VPC"]},"url":{"description":"url is fully qualified URI with scheme https, that overrides the default generated\nendpoint for a client.\nThis must be provided and cannot be empty.","type":"string","format":"uri","pattern":"^https://"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"type":{"description":"type is the underlying infrastructure provider for the cluster. This\nvalue controls whether infrastructure automation such as service load\nbalancers, dynamic volume provisioning, machine creation and deletion, and\nother integrations are enabled. If None, no infrastructure automation is\nenabled. Allowed values are \"AWS\", \"Azure\", \"BareMetal\", \"GCP\", \"Libvirt\",\n\"OpenStack\", \"VSphere\", \"oVirt\", \"KubeVirt\", \"EquinixMetal\", \"PowerVS\",\n\"AlibabaCloud\", \"Nutanix\" and \"None\". Individual components may not support all platforms,\nand must handle unrecognized platforms as None if they do not support that platform.","type":"string","enum":["","AWS","Azure","BareMetal","GCP","Libvirt","OpenStack","None","VSphere","oVirt","IBMCloud","KubeVirt","EquinixMetal","PowerVS","AlibabaCloud","Nutanix","External"]},"vsphere":{"description":"VSphere contains settings specific to the VSphere infrastructure provider.","type":"object","properties":{"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers.\nIn dual stack clusters this list contains two IP addresses, one from IPv4\nfamily and one from IPv6.\nIn single stack clusters a single IP address is expected.\nWhen omitted, values from the status.apiServerInternalIPs will be used.\nOnce set, the list cannot be completely removed (but its second entry can).","type":"array","maxItems":2,"items":{"description":"IP is an IP address (for example, \"10.0.0.0\" or \"fd00::\").","type":"string","maxLength":39,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid IP address","rule":"isIP(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true"}]},"failureDomains":{"description":"failureDomains contains the definition of region, zone and the vCenter topology.\nIf this is omitted failure domains (regions and zones) will not be used.","type":"array","items":{"description":"VSpherePlatformFailureDomainSpec holds the region and zone failure domain and\nthe vCenter topology of that failure domain.","type":"object","required":["name","region","server","topology","zone"],"properties":{"name":{"description":"name defines the arbitrary but unique name\nof a failure domain.","type":"string","maxLength":256,"minLength":1},"region":{"description":"region defines the name of a region tag that will\nbe attached to a vCenter datacenter. The tag\ncategory in vCenter must be named openshift-region.","type":"string","maxLength":80,"minLength":1},"server":{"description":"server is the fully-qualified domain name or the IP address of the vCenter server.","type":"string","maxLength":255,"minLength":1},"topology":{"description":"Topology describes a given failure domain using vSphere constructs","type":"object","required":["computeCluster","datacenter","datastore","networks"],"properties":{"computeCluster":{"description":"computeCluster the absolute path of the vCenter cluster\nin which virtual machine will be located.\nThe absolute path is of the form /<datacenter>/host/<cluster>.\nThe maximum length of the path is 2048 characters.","type":"string","maxLength":2048,"pattern":"^/.*?/host/.*?"},"datacenter":{"description":"datacenter is the name of vCenter datacenter in which virtual machines will be located.\nThe maximum length of the datacenter name is 80 characters.","type":"string","maxLength":80},"datastore":{"description":"datastore is the absolute path of the datastore in which the\nvirtual machine is located.\nThe absolute path is of the form /<datacenter>/datastore/<datastore>\nThe maximum length of the path is 2048 characters.","type":"string","maxLength":2048,"pattern":"^/.*?/datastore/.*?"},"folder":{"description":"folder is the absolute path of the folder where\nvirtual machines are located. The absolute path\nis of the form /<datacenter>/vm/<folder>.\nThe maximum length of the path is 2048 characters.","type":"string","maxLength":2048,"pattern":"^/.*?/vm/.*?"},"networks":{"description":"networks is the list of port group network names within this failure domain.\nIf feature gate VSphereMultiNetworks is enabled, up to 10 network adapters may be defined.\n10 is the maximum number of virtual network devices which may be attached to a VM as defined by:\nhttps://configmax.esp.vmware.com/guest?vmwareproduct=vSphere&release=vSphere%208.0&categories=1-0\nThe available networks (port groups) can be listed using\n`govc ls 'network/*'`\nNetworks should be in the form of an absolute path:\n/<datacenter>/network/<portgroup>.","type":"array","maxItems":1,"minItems":1,"items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"resourcePool":{"description":"resourcePool is the absolute path of the resource pool where virtual machines will be\ncreated. The absolute path is of the form /<datacenter>/host/<cluster>/Resources/<resourcepool>.\nThe maximum length of the path is 2048 characters.","type":"string","maxLength":2048,"pattern":"^/.*?/host/.*?/Resources.*"},"template":{"description":"template is the full inventory path of the virtual machine or template\nthat will be cloned when creating new machines in this failure domain.\nThe maximum length of the path is 2048 characters.\n\nWhen omitted, the template will be calculated by the control plane\nmachineset operator based on the region and zone defined in\nVSpherePlatformFailureDomainSpec.\nFor example, for zone=zonea, region=region1, and infrastructure name=test,\nthe template path would be calculated as /<datacenter>/vm/test-rhcos-region1-zonea.","type":"string","maxLength":2048,"minLength":1,"pattern":"^/.*?/vm/.*?"}}},"zone":{"description":"zone defines the name of a zone tag that will\nbe attached to a vCenter cluster. The tag\ncategory in vCenter must be named openshift-zone.","type":"string","maxLength":80,"minLength":1}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names.\nIn dual stack clusters this list contains two IP addresses, one from IPv4\nfamily and one from IPv6.\nIn single stack clusters a single IP address is expected.\nWhen omitted, values from the status.ingressIPs will be used.\nOnce set, the list cannot be completely removed (but its second entry can).","type":"array","maxItems":2,"items":{"description":"IP is an IP address (for example, \"10.0.0.0\" or \"fd00::\").","type":"string","maxLength":39,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid IP address","rule":"isIP(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true"}]},"machineNetworks":{"description":"machineNetworks are IP networks used to connect all the OpenShift cluster\nnodes. Each network is provided in the CIDR format and should be IPv4 or IPv6,\nfor example \"10.0.0.0/8\" or \"fd00::/8\".","type":"array","maxItems":32,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid CIDR network address","rule":"isCIDR(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"rule":"self.all(x, self.exists_one(y, x == y))"}]},"nodeNetworking":{"description":"nodeNetworking contains the definition of internal and external network constraints for\nassigning the node's networking.\nIf this field is omitted, networking defaults to the legacy\naddress selection behavior which is to only support a single address and\nreturn the first one found.","type":"object","properties":{"external":{"description":"external represents the network configuration of the node that is externally routable.","type":"object","properties":{"excludeNetworkSubnetCidr":{"description":"excludeNetworkSubnetCidr IP addresses in subnet ranges will be excluded when selecting\nthe IP address from the VirtualMachine's VM for use in the status.addresses fields.","type":"array","items":{"type":"string","format":"cidr"},"x-kubernetes-list-type":"atomic"},"network":{"description":"network VirtualMachine's VM Network names that will be used to when searching\nfor status.addresses fields. Note that if internal.networkSubnetCIDR and\nexternal.networkSubnetCIDR are not set, then the vNIC associated to this network must\nonly have a single IP address assigned to it.\nThe available networks (port groups) can be listed using\n`govc ls 'network/*'`","type":"string"},"networkSubnetCidr":{"description":"networkSubnetCidr IP address on VirtualMachine's network interfaces included in the fields' CIDRs\nthat will be used in respective status.addresses fields.","type":"array","items":{"type":"string","format":"cidr"},"x-kubernetes-list-type":"set"}}},"internal":{"description":"internal represents the network configuration of the node that is routable only within the cluster.","type":"object","properties":{"excludeNetworkSubnetCidr":{"description":"excludeNetworkSubnetCidr IP addresses in subnet ranges will be excluded when selecting\nthe IP address from the VirtualMachine's VM for use in the status.addresses fields.","type":"array","items":{"type":"string","format":"cidr"},"x-kubernetes-list-type":"atomic"},"network":{"description":"network VirtualMachine's VM Network names that will be used to when searching\nfor status.addresses fields. Note that if internal.networkSubnetCIDR and\nexternal.networkSubnetCIDR are not set, then the vNIC associated to this network must\nonly have a single IP address assigned to it.\nThe available networks (port groups) can be listed using\n`govc ls 'network/*'`","type":"string"},"networkSubnetCidr":{"description":"networkSubnetCidr IP address on VirtualMachine's network interfaces included in the fields' CIDRs\nthat will be used in respective status.addresses fields.","type":"array","items":{"type":"string","format":"cidr"},"x-kubernetes-list-type":"set"}}}}},"vcenters":{"description":"vcenters holds the connection details for services to communicate with vCenter.\nCurrently, only a single vCenter is supported, but in tech preview 3 vCenters are supported.\nOnce the cluster has been installed, you are unable to change the current number of defined\nvCenters except in the case where the cluster has been upgraded from a version of OpenShift\nwhere the vsphere platform spec was not present.  You may make modifications to the existing\nvCenters that are defined in the vcenters list in order to match with any added or modified\nfailure domains.","type":"array","maxItems":3,"minItems":0,"items":{"description":"VSpherePlatformVCenterSpec stores the vCenter connection fields.\nThis is used by the vSphere CCM.","type":"object","required":["datacenters","server"],"properties":{"datacenters":{"description":"The vCenter Datacenters in which the RHCOS\nvm guests are located. This field will\nbe used by the Cloud Controller Manager.\nEach datacenter listed here should be used within\na topology.","type":"array","minItems":1,"items":{"type":"string"},"x-kubernetes-list-type":"set"},"port":{"description":"port is the TCP port that will be used to communicate to\nthe vCenter endpoint.\nWhen omitted, this means the user has no opinion and\nit is up to the platform to choose a sensible default,\nwhich is subject to change over time.","type":"integer","format":"int32","maximum":32767,"minimum":1},"server":{"description":"server is the fully-qualified domain name or the IP address of the vCenter server.","type":"string","maxLength":255}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"vcenters cannot be added or removed once set","rule":"size(self) != size(oldSelf) ? size(oldSelf) == 0 && size(self) < 2 : true"}]}},"x-kubernetes-validations":[{"message":"apiServerInternalIPs list is required once set","rule":"!has(oldSelf.apiServerInternalIPs) || has(self.apiServerInternalIPs)"},{"message":"ingressIPs list is required once set","rule":"!has(oldSelf.ingressIPs) || has(self.ingressIPs)"},{"message":"vcenters can have at most 1 item when configured post-install","rule":"!has(oldSelf.vcenters) && has(self.vcenters) ? size(self.vcenters) < 2 : true"}]}},"x-kubernetes-validations":[{"message":"vcenters can have at most 1 item when configured post-install","rule":"!has(oldSelf.vsphere) && has(self.vsphere) ? size(self.vsphere.vcenters) < 2 : true"}]}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"apiServerInternalURI":{"description":"apiServerInternalURL is a valid URI with scheme 'https',\naddress and optionally a port (defaulting to 443).  apiServerInternalURL can be used by components\nlike kubelets, to contact the Kubernetes API server using the\ninfrastructure provider rather than Kubernetes networking.","type":"string"},"apiServerURL":{"description":"apiServerURL is a valid URI with scheme 'https', address and\noptionally a port (defaulting to 443).  apiServerURL can be used by components like the web console\nto tell users where to find the Kubernetes API.","type":"string"},"controlPlaneTopology":{"description":"controlPlaneTopology expresses the expectations for operands that normally run on control nodes.\nThe default is 'HighlyAvailable', which represents the behavior operators have in a \"normal\" cluster.\nThe 'SingleReplica' mode will be used in single-node deployments\nand the operators should not configure the operand for highly-available operation\nThe 'External' mode indicates that the control plane is hosted externally to the cluster and that\nits components are not visible within the cluster.","type":"string","enum":["HighlyAvailable","SingleReplica","External"]},"cpuPartitioning":{"description":"cpuPartitioning expresses if CPU partitioning is a currently enabled feature in the cluster.\nCPU Partitioning means that this cluster can support partitioning workloads to specific CPU Sets.\nValid values are \"None\" and \"AllNodes\". When omitted, the default value is \"None\".\nThe default value of \"None\" indicates that no nodes will be setup with CPU partitioning.\nThe \"AllNodes\" value indicates that all nodes have been setup with CPU partitioning,\nand can then be further configured via the PerformanceProfile API.","type":"string","enum":["None","AllNodes"]},"etcdDiscoveryDomain":{"description":"etcdDiscoveryDomain is the domain used to fetch the SRV records for discovering\netcd servers and clients.\nFor more info: https://github.com/etcd-io/etcd/blob/329be66e8b3f9e2e6af83c123ff89297e49ebd15/Documentation/op-guide/clustering.md#dns-discovery\ndeprecated: as of 4.7, this field is no longer set or honored.  It will be removed in a future release.","type":"string"},"infrastructureName":{"description":"infrastructureName uniquely identifies a cluster with a human friendly name.\nOnce set it should not be changed. Must be of max length 27 and must have only\nalphanumeric or hyphen characters.","type":"string"},"infrastructureTopology":{"description":"infrastructureTopology expresses the expectations for infrastructure services that do not run on control\nplane nodes, usually indicated by a node selector for a `role` value\nother than `master`.\nThe default is 'HighlyAvailable', which represents the behavior operators have in a \"normal\" cluster.\nThe 'SingleReplica' mode will be used in single-node deployments\nand the operators should not configure the operand for highly-available operation\nNOTE: External topology mode is not applicable for this field.","type":"string","enum":["HighlyAvailable","SingleReplica"]},"platform":{"description":"platform is the underlying infrastructure provider for the cluster.\n\nDeprecated: Use platformStatus.type instead.","type":"string","enum":["","AWS","Azure","BareMetal","GCP","Libvirt","OpenStack","None","VSphere","oVirt","IBMCloud","KubeVirt","EquinixMetal","PowerVS","AlibabaCloud","Nutanix","External"]},"platformStatus":{"description":"platformStatus holds status information specific to the underlying\ninfrastructure provider.","type":"object","properties":{"alibabaCloud":{"description":"AlibabaCloud contains settings specific to the Alibaba Cloud infrastructure provider.","type":"object","required":["region"],"properties":{"region":{"description":"region specifies the region for Alibaba Cloud resources created for the cluster.","type":"string","pattern":"^[0-9A-Za-z-]+$"},"resourceGroupID":{"description":"resourceGroupID is the ID of the resource group for the cluster.","type":"string","pattern":"^(rg-[0-9A-Za-z]+)?$"},"resourceTags":{"description":"resourceTags is a list of additional tags to apply to Alibaba Cloud resources created for the cluster.","type":"array","maxItems":20,"items":{"description":"AlibabaCloudResourceTag is the set of tags to add to apply to resources.","type":"object","required":["key","value"],"properties":{"key":{"description":"key is the key of the tag.","type":"string","maxLength":128,"minLength":1},"value":{"description":"value is the value of the tag.","type":"string","maxLength":128,"minLength":1}}},"x-kubernetes-list-map-keys":["key"],"x-kubernetes-list-type":"map"}}},"aws":{"description":"AWS contains settings specific to the Amazon Web Services infrastructure provider.","type":"object","properties":{"region":{"description":"region holds the default AWS region for new AWS resources created by the cluster.","type":"string"},"resourceTags":{"description":"resourceTags is a list of additional tags to apply to AWS resources created for the cluster.\nSee https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html for information on tagging AWS resources.\nAWS supports a maximum of 50 tags per resource. OpenShift reserves 25 tags for its use, leaving 25 tags\navailable for the user.","type":"array","maxItems":25,"items":{"description":"AWSResourceTag is a tag to apply to AWS resources created for the cluster.","type":"object","required":["key","value"],"properties":{"key":{"description":"key is the key of the tag","type":"string","maxLength":128,"minLength":1,"pattern":"^[0-9A-Za-z_.:/=+-@]+$"},"value":{"description":"value is the value of the tag.\nSome AWS service do not support empty values. Since tags are added to resources in many services, the\nlength of the tag value must meet the requirements of all services.","type":"string","maxLength":256,"minLength":1,"pattern":"^[0-9A-Za-z_.:/=+-@]+$"}}},"x-kubernetes-list-type":"atomic"},"serviceEndpoints":{"description":"ServiceEndpoints list contains custom endpoints which will override default\nservice endpoint of AWS Services.\nThere must be only one ServiceEndpoint for a service.","type":"array","items":{"description":"AWSServiceEndpoint store the configuration of a custom url to\noverride existing defaults of AWS Services.","type":"object","properties":{"name":{"description":"name is the name of the AWS service.\nThe list of all the service names can be found at https://docs.aws.amazon.com/general/latest/gr/aws-service-information.html\nThis must be provided and cannot be empty.","type":"string","pattern":"^[a-z0-9-]+$"},"url":{"description":"url is fully qualified URI with scheme https, that overrides the default generated\nendpoint for a client.\nThis must be provided and cannot be empty.","type":"string","pattern":"^https://"}}},"x-kubernetes-list-type":"atomic"}}},"azure":{"description":"Azure contains settings specific to the Azure infrastructure provider.","type":"object","properties":{"armEndpoint":{"description":"armEndpoint specifies a URL to use for resource management in non-soverign clouds such as Azure Stack.","type":"string"},"cloudName":{"description":"cloudName is the name of the Azure cloud environment which can be used to configure the Azure SDK\nwith the appropriate Azure API endpoints.\nIf empty, the value is equal to `AzurePublicCloud`.","type":"string","enum":["","AzurePublicCloud","AzureUSGovernmentCloud","AzureChinaCloud","AzureGermanCloud","AzureStackCloud"]},"networkResourceGroupName":{"description":"networkResourceGroupName is the Resource Group for network resources like the Virtual Network and Subnets used by the cluster.\nIf empty, the value is same as ResourceGroupName.","type":"string"},"resourceGroupName":{"description":"resourceGroupName is the Resource Group for new Azure resources created for the cluster.","type":"string"},"resourceTags":{"description":"resourceTags is a list of additional tags to apply to Azure resources created for the cluster.\nSee https://docs.microsoft.com/en-us/rest/api/resources/tags for information on tagging Azure resources.\nDue to limitations on Automation, Content Delivery Network, DNS Azure resources, a maximum of 15 tags\nmay be applied. OpenShift reserves 5 tags for internal use, allowing 10 tags for user configuration.","type":"array","maxItems":10,"items":{"description":"AzureResourceTag is a tag to apply to Azure resources created for the cluster.","type":"object","required":["key","value"],"properties":{"key":{"description":"key is the key part of the tag. A tag key can have a maximum of 128 characters and cannot be empty. Key\nmust begin with a letter, end with a letter, number or underscore, and must contain only alphanumeric\ncharacters and the following special characters `_ . -`.","type":"string","maxLength":128,"minLength":1,"pattern":"^[a-zA-Z]([0-9A-Za-z_.-]*[0-9A-Za-z_])?$"},"value":{"description":"value is the value part of the tag. A tag value can have a maximum of 256 characters and cannot be empty. Value\nmust contain only alphanumeric characters and the following special characters `_ + , - . / : ; < = > ? @`.","type":"string","maxLength":256,"minLength":1,"pattern":"^[0-9A-Za-z_.=+-@]+$"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"resourceTags are immutable and may only be configured during installation","rule":"self.all(x, x in oldSelf) && oldSelf.all(x, x in self)"}]}},"x-kubernetes-validations":[{"message":"resourceTags may only be configured during installation","rule":"!has(oldSelf.resourceTags) && !has(self.resourceTags) || has(oldSelf.resourceTags) && has(self.resourceTags)"}]},"baremetal":{"description":"BareMetal contains settings specific to the BareMetal platform.","type":"object","properties":{"apiServerInternalIP":{"description":"apiServerInternalIP is an IP address to contact the Kubernetes API server that can be used\nby components inside the cluster, like kubelets using the infrastructure rather\nthan Kubernetes networking. It is the IP that the Infrastructure.status.apiServerInternalURI\npoints to. It is the IP for a self-hosted load balancer in front of the API servers.\n\nDeprecated: Use APIServerInternalIPs instead.","type":"string"},"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers. In dual\nstack clusters this list contains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"ingressIP":{"description":"ingressIP is an external IP which routes to the default ingress controller.\nThe IP is a suitable target of a wildcard DNS record used to resolve default route host names.\n\nDeprecated: Use IngressIPs instead.","type":"string"},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names. In dual stack clusters this list\ncontains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"loadBalancer":{"description":"loadBalancer defines how the load balancer used by the cluster is configured.","type":"object","properties":{"type":{"description":"type defines the type of load balancer used by the cluster on BareMetal platform\nwhich can be a user-managed or openshift-managed load balancer\nthat is to be used for the OpenShift API and Ingress endpoints.\nWhen set to OpenShiftManagedDefault the static pods in charge of API and Ingress traffic load-balancing\ndefined in the machine config operator will be deployed.\nWhen set to UserManaged these static pods will not be deployed and it is expected that\nthe load balancer is configured out of band by the deployer.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default.\nThe default value is OpenShiftManagedDefault.","type":"string","enum":["OpenShiftManagedDefault","UserManaged"],"x-kubernetes-validations":[{"message":"type is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]}}},"machineNetworks":{"description":"machineNetworks are IP networks used to connect all the OpenShift cluster nodes.","type":"array","maxItems":32,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid CIDR network address","rule":"isCIDR(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"rule":"self.all(x, self.exists_one(y, x == y))"}]},"nodeDNSIP":{"description":"nodeDNSIP is the IP address for the internal DNS used by the\nnodes. Unlike the one managed by the DNS operator, `NodeDNSIP`\nprovides name resolution for the nodes themselves. There is no DNS-as-a-service for\nBareMetal deployments. In order to minimize necessary changes to the\ndatacenter DNS, a DNS service is hosted as a static pod to serve those hostnames\nto the nodes in the cluster.","type":"string"}}},"equinixMetal":{"description":"EquinixMetal contains settings specific to the Equinix Metal infrastructure provider.","type":"object","properties":{"apiServerInternalIP":{"description":"apiServerInternalIP is an IP address to contact the Kubernetes API server that can be used\nby components inside the cluster, like kubelets using the infrastructure rather\nthan Kubernetes networking. It is the IP that the Infrastructure.status.apiServerInternalURI\npoints to. It is the IP for a self-hosted load balancer in front of the API servers.","type":"string"},"ingressIP":{"description":"ingressIP is an external IP which routes to the default ingress controller.\nThe IP is a suitable target of a wildcard DNS record used to resolve default route host names.","type":"string"}}},"external":{"description":"External contains settings specific to the generic External infrastructure provider.","type":"object","properties":{"cloudControllerManager":{"description":"cloudControllerManager contains settings specific to the external Cloud Controller Manager (a.k.a. CCM or CPI).\nWhen omitted, new nodes will be not tainted\nand no extra initialization from the cloud controller manager is expected.","type":"object","properties":{"state":{"description":"state determines whether or not an external Cloud Controller Manager is expected to\nbe installed within the cluster.\nhttps://kubernetes.io/docs/tasks/administer-cluster/running-cloud-controller/#running-cloud-controller-manager\n\nValid values are \"External\", \"None\" and omitted.\nWhen set to \"External\", new nodes will be tainted as uninitialized when created,\npreventing them from running workloads until they are initialized by the cloud controller manager.\nWhen omitted or set to \"None\", new nodes will be not tainted\nand no extra initialization from the cloud controller manager is expected.","type":"string","enum":["","External","None"],"x-kubernetes-validations":[{"message":"state is immutable once set","rule":"self == oldSelf"}]}},"x-kubernetes-validations":[{"message":"state may not be added or removed once set","rule":"(has(self.state) == has(oldSelf.state)) || (!has(oldSelf.state) && self.state != \"External\")"}]}},"x-kubernetes-validations":[{"message":"cloudControllerManager may not be added or removed once set","rule":"has(self.cloudControllerManager) == has(oldSelf.cloudControllerManager)"}]},"gcp":{"description":"GCP contains settings specific to the Google Cloud Platform infrastructure provider.","type":"object","properties":{"projectID":{"description":"resourceGroupName is the Project ID for new GCP resources created for the cluster.","type":"string"},"region":{"description":"region holds the region for new GCP resources created for the cluster.","type":"string"},"resourceLabels":{"description":"resourceLabels is a list of additional labels to apply to GCP resources created for the cluster.\nSee https://cloud.google.com/compute/docs/labeling-resources for information on labeling GCP resources.\nGCP supports a maximum of 64 labels per resource. OpenShift reserves 32 labels for internal use,\nallowing 32 labels for user configuration.","type":"array","maxItems":32,"items":{"description":"GCPResourceLabel is a label to apply to GCP resources created for the cluster.","type":"object","required":["key","value"],"properties":{"key":{"description":"key is the key part of the label. A label key can have a maximum of 63 characters and cannot be empty.\nLabel key must begin with a lowercase letter, and must contain only lowercase letters, numeric characters,\nand the following special characters `_-`. Label key must not have the reserved prefixes `kubernetes-io`\nand `openshift-io`.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-z][0-9a-z_-]{0,62}$","x-kubernetes-validations":[{"message":"label keys must not start with either `openshift-io` or `kubernetes-io`","rule":"!self.startsWith('openshift-io') && !self.startsWith('kubernetes-io')"}]},"value":{"description":"value is the value part of the label. A label value can have a maximum of 63 characters and cannot be empty.\nValue must contain only lowercase letters, numeric characters, and the following special characters `_-`.","type":"string","maxLength":63,"minLength":1,"pattern":"^[0-9a-z_-]{1,63}$"}}},"x-kubernetes-list-map-keys":["key"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"resourceLabels are immutable and may only be configured during installation","rule":"self.all(x, x in oldSelf) && oldSelf.all(x, x in self)"}]},"resourceTags":{"description":"resourceTags is a list of additional tags to apply to GCP resources created for the cluster.\nSee https://cloud.google.com/resource-manager/docs/tags/tags-overview for information on\ntagging GCP resources. GCP supports a maximum of 50 tags per resource.","type":"array","maxItems":50,"items":{"description":"GCPResourceTag is a tag to apply to GCP resources created for the cluster.","type":"object","required":["key","parentID","value"],"properties":{"key":{"description":"key is the key part of the tag. A tag key can have a maximum of 63 characters and cannot be empty.\nTag key must begin and end with an alphanumeric character, and must contain only uppercase, lowercase\nalphanumeric characters, and the following special characters `._-`.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-zA-Z0-9]([0-9A-Za-z_.-]{0,61}[a-zA-Z0-9])?$"},"parentID":{"description":"parentID is the ID of the hierarchical resource where the tags are defined,\ne.g. at the Organization or the Project level. To find the Organization or Project ID refer to the following pages:\nhttps://cloud.google.com/resource-manager/docs/creating-managing-organization#retrieving_your_organization_id,\nhttps://cloud.google.com/resource-manager/docs/creating-managing-projects#identifying_projects.\nAn OrganizationID must consist of decimal numbers, and cannot have leading zeroes.\nA ProjectID must be 6 to 30 characters in length, can only contain lowercase letters, numbers,\nand hyphens, and must start with a letter, and cannot end with a hyphen.","type":"string","maxLength":32,"minLength":1,"pattern":"(^[1-9][0-9]{0,31}$)|(^[a-z][a-z0-9-]{4,28}[a-z0-9]$)"},"value":{"description":"value is the value part of the tag. A tag value can have a maximum of 63 characters and cannot be empty.\nTag value must begin and end with an alphanumeric character, and must contain only uppercase, lowercase\nalphanumeric characters, and the following special characters `_-.@%=+:,*#&(){}[]` and spaces.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-zA-Z0-9]([0-9A-Za-z_.@%=+:,*#&()\\[\\]{}\\-\\s]{0,61}[a-zA-Z0-9])?$"}}},"x-kubernetes-list-map-keys":["key"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"resourceTags are immutable and may only be configured during installation","rule":"self.all(x, x in oldSelf) && oldSelf.all(x, x in self)"}]}},"x-kubernetes-validations":[{"message":"resourceLabels may only be configured during installation","rule":"!has(oldSelf.resourceLabels) && !has(self.resourceLabels) || has(oldSelf.resourceLabels) && has(self.resourceLabels)"},{"message":"resourceTags may only be configured during installation","rule":"!has(oldSelf.resourceTags) && !has(self.resourceTags) || has(oldSelf.resourceTags) && has(self.resourceTags)"}]},"ibmcloud":{"description":"IBMCloud contains settings specific to the IBMCloud infrastructure provider.","type":"object","properties":{"cisInstanceCRN":{"description":"CISInstanceCRN is the CRN of the Cloud Internet Services instance managing\nthe DNS zone for the cluster's base domain","type":"string"},"dnsInstanceCRN":{"description":"DNSInstanceCRN is the CRN of the DNS Services instance managing the DNS zone\nfor the cluster's base domain","type":"string"},"location":{"description":"Location is where the cluster has been deployed","type":"string"},"providerType":{"description":"ProviderType indicates the type of cluster that was created","type":"string"},"resourceGroupName":{"description":"ResourceGroupName is the Resource Group for new IBMCloud resources created for the cluster.","type":"string"},"serviceEndpoints":{"description":"serviceEndpoints is a list of custom endpoints which will override the default\nservice endpoints of an IBM Cloud service. These endpoints are consumed by\ncomponents within the cluster to reach the respective IBM Cloud Services.","type":"array","items":{"description":"IBMCloudServiceEndpoint stores the configuration of a custom url to\noverride existing defaults of IBM Cloud Services.","type":"object","required":["name","url"],"properties":{"name":{"description":"name is the name of the IBM Cloud service.\nPossible values are: CIS, COS, COSConfig, DNSServices, GlobalCatalog, GlobalSearch, GlobalTagging, HyperProtect, IAM, KeyProtect, ResourceController, ResourceManager, or VPC.\nFor example, the IBM Cloud Private IAM service could be configured with the\nservice `name` of `IAM` and `url` of `https://private.iam.cloud.ibm.com`\nWhereas the IBM Cloud Private VPC service for US South (Dallas) could be configured\nwith the service `name` of `VPC` and `url` of `https://us.south.private.iaas.cloud.ibm.com`","type":"string","enum":["CIS","COS","COSConfig","DNSServices","GlobalCatalog","GlobalSearch","GlobalTagging","HyperProtect","IAM","KeyProtect","ResourceController","ResourceManager","VPC"]},"url":{"description":"url is fully qualified URI with scheme https, that overrides the default generated\nendpoint for a client.\nThis must be provided and cannot be empty.","type":"string","x-kubernetes-validations":[{"message":"url must be a valid absolute URL","rule":"isURL(self)"}]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"kubevirt":{"description":"Kubevirt contains settings specific to the kubevirt infrastructure provider.","type":"object","properties":{"apiServerInternalIP":{"description":"apiServerInternalIP is an IP address to contact the Kubernetes API server that can be used\nby components inside the cluster, like kubelets using the infrastructure rather\nthan Kubernetes networking. It is the IP that the Infrastructure.status.apiServerInternalURI\npoints to. It is the IP for a self-hosted load balancer in front of the API servers.","type":"string"},"ingressIP":{"description":"ingressIP is an external IP which routes to the default ingress controller.\nThe IP is a suitable target of a wildcard DNS record used to resolve default route host names.","type":"string"}}},"nutanix":{"description":"Nutanix contains settings specific to the Nutanix infrastructure provider.","type":"object","properties":{"apiServerInternalIP":{"description":"apiServerInternalIP is an IP address to contact the Kubernetes API server that can be used\nby components inside the cluster, like kubelets using the infrastructure rather\nthan Kubernetes networking. It is the IP that the Infrastructure.status.apiServerInternalURI\npoints to. It is the IP for a self-hosted load balancer in front of the API servers.\n\nDeprecated: Use APIServerInternalIPs instead.","type":"string"},"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers. In dual\nstack clusters this list contains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"set","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"ingressIP":{"description":"ingressIP is an external IP which routes to the default ingress controller.\nThe IP is a suitable target of a wildcard DNS record used to resolve default route host names.\n\nDeprecated: Use IngressIPs instead.","type":"string"},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names. In dual stack clusters this list\ncontains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"set","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"loadBalancer":{"description":"loadBalancer defines how the load balancer used by the cluster is configured.","type":"object","properties":{"type":{"description":"type defines the type of load balancer used by the cluster on Nutanix platform\nwhich can be a user-managed or openshift-managed load balancer\nthat is to be used for the OpenShift API and Ingress endpoints.\nWhen set to OpenShiftManagedDefault the static pods in charge of API and Ingress traffic load-balancing\ndefined in the machine config operator will be deployed.\nWhen set to UserManaged these static pods will not be deployed and it is expected that\nthe load balancer is configured out of band by the deployer.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default.\nThe default value is OpenShiftManagedDefault.","type":"string","enum":["OpenShiftManagedDefault","UserManaged"],"x-kubernetes-validations":[{"message":"type is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]}}}}},"openstack":{"description":"OpenStack contains settings specific to the OpenStack infrastructure provider.","type":"object","properties":{"apiServerInternalIP":{"description":"apiServerInternalIP is an IP address to contact the Kubernetes API server that can be used\nby components inside the cluster, like kubelets using the infrastructure rather\nthan Kubernetes networking. It is the IP that the Infrastructure.status.apiServerInternalURI\npoints to. It is the IP for a self-hosted load balancer in front of the API servers.\n\nDeprecated: Use APIServerInternalIPs instead.","type":"string"},"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers. In dual\nstack clusters this list contains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"cloudName":{"description":"cloudName is the name of the desired OpenStack cloud in the\nclient configuration file (`clouds.yaml`).","type":"string"},"ingressIP":{"description":"ingressIP is an external IP which routes to the default ingress controller.\nThe IP is a suitable target of a wildcard DNS record used to resolve default route host names.\n\nDeprecated: Use IngressIPs instead.","type":"string"},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names. In dual stack clusters this list\ncontains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"loadBalancer":{"description":"loadBalancer defines how the load balancer used by the cluster is configured.","type":"object","properties":{"type":{"description":"type defines the type of load balancer used by the cluster on OpenStack platform\nwhich can be a user-managed or openshift-managed load balancer\nthat is to be used for the OpenShift API and Ingress endpoints.\nWhen set to OpenShiftManagedDefault the static pods in charge of API and Ingress traffic load-balancing\ndefined in the machine config operator will be deployed.\nWhen set to UserManaged these static pods will not be deployed and it is expected that\nthe load balancer is configured out of band by the deployer.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default.\nThe default value is OpenShiftManagedDefault.","type":"string","enum":["OpenShiftManagedDefault","UserManaged"],"x-kubernetes-validations":[{"message":"type is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]}}},"machineNetworks":{"description":"machineNetworks are IP networks used to connect all the OpenShift cluster nodes.","type":"array","maxItems":32,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid CIDR network address","rule":"isCIDR(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"rule":"self.all(x, self.exists_one(y, x == y))"}]},"nodeDNSIP":{"description":"nodeDNSIP is the IP address for the internal DNS used by the\nnodes. Unlike the one managed by the DNS operator, `NodeDNSIP`\nprovides name resolution for the nodes themselves. There is no DNS-as-a-service for\nOpenStack deployments. In order to minimize necessary changes to the\ndatacenter DNS, a DNS service is hosted as a static pod to serve those hostnames\nto the nodes in the cluster.","type":"string"}}},"ovirt":{"description":"Ovirt contains settings specific to the oVirt infrastructure provider.","type":"object","properties":{"apiServerInternalIP":{"description":"apiServerInternalIP is an IP address to contact the Kubernetes API server that can be used\nby components inside the cluster, like kubelets using the infrastructure rather\nthan Kubernetes networking. It is the IP that the Infrastructure.status.apiServerInternalURI\npoints to. It is the IP for a self-hosted load balancer in front of the API servers.\n\nDeprecated: Use APIServerInternalIPs instead.","type":"string"},"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers. In dual\nstack clusters this list contains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"set","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"ingressIP":{"description":"ingressIP is an external IP which routes to the default ingress controller.\nThe IP is a suitable target of a wildcard DNS record used to resolve default route host names.\n\nDeprecated: Use IngressIPs instead.","type":"string"},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names. In dual stack clusters this list\ncontains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"set","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"loadBalancer":{"description":"loadBalancer defines how the load balancer used by the cluster is configured.","type":"object","properties":{"type":{"description":"type defines the type of load balancer used by the cluster on Ovirt platform\nwhich can be a user-managed or openshift-managed load balancer\nthat is to be used for the OpenShift API and Ingress endpoints.\nWhen set to OpenShiftManagedDefault the static pods in charge of API and Ingress traffic load-balancing\ndefined in the machine config operator will be deployed.\nWhen set to UserManaged these static pods will not be deployed and it is expected that\nthe load balancer is configured out of band by the deployer.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default.\nThe default value is OpenShiftManagedDefault.","type":"string","enum":["OpenShiftManagedDefault","UserManaged"],"x-kubernetes-validations":[{"message":"type is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]}}},"nodeDNSIP":{"description":"deprecated: as of 4.6, this field is no longer set or honored.  It will be removed in a future release.","type":"string"}}},"powervs":{"description":"PowerVS contains settings specific to the Power Systems Virtual Servers infrastructure provider.","type":"object","properties":{"cisInstanceCRN":{"description":"CISInstanceCRN is the CRN of the Cloud Internet Services instance managing\nthe DNS zone for the cluster's base domain","type":"string"},"dnsInstanceCRN":{"description":"DNSInstanceCRN is the CRN of the DNS Services instance managing the DNS zone\nfor the cluster's base domain","type":"string"},"region":{"description":"region holds the default Power VS region for new Power VS resources created by the cluster.","type":"string"},"resourceGroup":{"description":"resourceGroup is the resource group name for new IBMCloud resources created for a cluster.\nThe resource group specified here will be used by cluster-image-registry-operator to set up a COS Instance in IBMCloud for the cluster registry.\nMore about resource groups can be found here: https://cloud.ibm.com/docs/account?topic=account-rgs.\nWhen omitted, the image registry operator won't be able to configure storage,\nwhich results in the image registry cluster operator not being in an available state.","type":"string","maxLength":40,"pattern":"^[a-zA-Z0-9-_ ]+$","x-kubernetes-validations":[{"message":"resourceGroup is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]},"serviceEndpoints":{"description":"serviceEndpoints is a list of custom endpoints which will override the default\nservice endpoints of a Power VS service.","type":"array","items":{"description":"PowervsServiceEndpoint stores the configuration of a custom url to\noverride existing defaults of PowerVS Services.","type":"object","required":["name","url"],"properties":{"name":{"description":"name is the name of the Power VS service.\nFew of the services are\nIAM - https://cloud.ibm.com/apidocs/iam-identity-token-api\nResourceController - https://cloud.ibm.com/apidocs/resource-controller/resource-controller\nPower Cloud - https://cloud.ibm.com/apidocs/power-cloud","type":"string","enum":["CIS","COS","COSConfig","DNSServices","GlobalCatalog","GlobalSearch","GlobalTagging","HyperProtect","IAM","KeyProtect","Power","ResourceController","ResourceManager","VPC"]},"url":{"description":"url is fully qualified URI with scheme https, that overrides the default generated\nendpoint for a client.\nThis must be provided and cannot be empty.","type":"string","format":"uri","pattern":"^https://"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"zone":{"description":"zone holds the default zone for the new Power VS resources created by the cluster.\nNote: Currently only single-zone OCP clusters are supported","type":"string"}},"x-kubernetes-validations":[{"message":"cannot unset resourceGroup once set","rule":"!has(oldSelf.resourceGroup) || has(self.resourceGroup)"}]},"type":{"description":"type is the underlying infrastructure provider for the cluster. This\nvalue controls whether infrastructure automation such as service load\nbalancers, dynamic volume provisioning, machine creation and deletion, and\nother integrations are enabled. If None, no infrastructure automation is\nenabled. Allowed values are \"AWS\", \"Azure\", \"BareMetal\", \"GCP\", \"Libvirt\",\n\"OpenStack\", \"VSphere\", \"oVirt\", \"EquinixMetal\", \"PowerVS\", \"AlibabaCloud\", \"Nutanix\" and \"None\".\nIndividual components may not support all platforms, and must handle\nunrecognized platforms as None if they do not support that platform.\n\nThis value will be synced with to the `status.platform` and `status.platformStatus.type`.\nCurrently this value cannot be changed once set.","type":"string","enum":["","AWS","Azure","BareMetal","GCP","Libvirt","OpenStack","None","VSphere","oVirt","IBMCloud","KubeVirt","EquinixMetal","PowerVS","AlibabaCloud","Nutanix","External"]},"vsphere":{"description":"VSphere contains settings specific to the VSphere infrastructure provider.","type":"object","properties":{"apiServerInternalIP":{"description":"apiServerInternalIP is an IP address to contact the Kubernetes API server that can be used\nby components inside the cluster, like kubelets using the infrastructure rather\nthan Kubernetes networking. It is the IP that the Infrastructure.status.apiServerInternalURI\npoints to. It is the IP for a self-hosted load balancer in front of the API servers.\n\nDeprecated: Use APIServerInternalIPs instead.","type":"string"},"apiServerInternalIPs":{"description":"apiServerInternalIPs are the IP addresses to contact the Kubernetes API\nserver that can be used by components inside the cluster, like kubelets\nusing the infrastructure rather than Kubernetes networking. These are the\nIPs for a self-hosted load balancer in front of the API servers. In dual\nstack clusters this list contains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"apiServerInternalIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"ingressIP":{"description":"ingressIP is an external IP which routes to the default ingress controller.\nThe IP is a suitable target of a wildcard DNS record used to resolve default route host names.\n\nDeprecated: Use IngressIPs instead.","type":"string"},"ingressIPs":{"description":"ingressIPs are the external IPs which route to the default ingress\ncontroller. The IPs are suitable targets of a wildcard DNS record used to\nresolve default route host names. In dual stack clusters this list\ncontains two IPs otherwise only one.","type":"array","format":"ip","maxItems":2,"items":{"type":"string"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"ingressIPs must contain at most one IPv4 address and at most one IPv6 address","rule":"self == oldSelf || (size(self) == 2 && isIP(self[0]) && isIP(self[1]) ? ip(self[0]).family() != ip(self[1]).family() : true)"}]},"loadBalancer":{"description":"loadBalancer defines how the load balancer used by the cluster is configured.","type":"object","properties":{"type":{"description":"type defines the type of load balancer used by the cluster on VSphere platform\nwhich can be a user-managed or openshift-managed load balancer\nthat is to be used for the OpenShift API and Ingress endpoints.\nWhen set to OpenShiftManagedDefault the static pods in charge of API and Ingress traffic load-balancing\ndefined in the machine config operator will be deployed.\nWhen set to UserManaged these static pods will not be deployed and it is expected that\nthe load balancer is configured out of band by the deployer.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default.\nThe default value is OpenShiftManagedDefault.","type":"string","enum":["OpenShiftManagedDefault","UserManaged"],"x-kubernetes-validations":[{"message":"type is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]}}},"machineNetworks":{"description":"machineNetworks are IP networks used to connect all the OpenShift cluster nodes.","type":"array","maxItems":32,"items":{"description":"CIDR is an IP address range in CIDR notation (for example, \"10.0.0.0/8\" or \"fd00::/8\").","type":"string","maxLength":43,"minLength":1,"x-kubernetes-validations":[{"message":"value must be a valid CIDR network address","rule":"isCIDR(self)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"rule":"self.all(x, self.exists_one(y, x == y))"}]},"nodeDNSIP":{"description":"nodeDNSIP is the IP address for the internal DNS used by the\nnodes. Unlike the one managed by the DNS operator, `NodeDNSIP`\nprovides name resolution for the nodes themselves. There is no DNS-as-a-service for\nvSphere deployments. In order to minimize necessary changes to the\ndatacenter DNS, a DNS service is hosted as a static pod to serve those hostnames\nto the nodes in the cluster.","type":"string"}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Infrastructure","version":"v1"}]},"io.openshift.config.v1.InfrastructureList":{"description":"InfrastructureList is a list of Infrastructure","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of infrastructures. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Infrastructure"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"InfrastructureList","version":"v1"}]},"io.openshift.config.v1.Ingress":{"description":"Ingress holds cluster-wide information about ingress, including the default ingress domain\nused for routes. The canonical name is `cluster`.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"appsDomain":{"description":"appsDomain is an optional domain to use instead of the one specified\nin the domain field when a Route is created without specifying an explicit\nhost. If appsDomain is nonempty, this value is used to generate default\nhost values for Route. Unlike domain, appsDomain may be modified after\ninstallation.\nThis assumes a new ingresscontroller has been setup with a wildcard\ncertificate.","type":"string"},"componentRoutes":{"description":"componentRoutes is an optional list of routes that are managed by OpenShift components\nthat a cluster-admin is able to configure the hostname and serving certificate for.\nThe namespace and name of each route in this list should match an existing entry in the\nstatus.componentRoutes list.\n\nTo determine the set of configurable Routes, look at namespace and name of entries in the\n.status.componentRoutes list, where participating operators write the status of\nconfigurable routes.","type":"array","items":{"description":"ComponentRouteSpec allows for configuration of a route's hostname and serving certificate.","type":"object","required":["hostname","name","namespace"],"properties":{"hostname":{"description":"hostname is the hostname that should be used by the route.","type":"string","pattern":"^([a-zA-Z0-9\\p{S}\\p{L}]((-?[a-zA-Z0-9\\p{S}\\p{L}]{0,62})?)|([a-zA-Z0-9\\p{S}\\p{L}](([a-zA-Z0-9-\\p{S}\\p{L}]{0,61}[a-zA-Z0-9\\p{S}\\p{L}])?)(\\.)){1,}([a-zA-Z\\p{L}]){2,63})$|^(([a-z0-9][-a-z0-9]{0,61}[a-z0-9]|[a-z0-9]{1,63})[\\.]){0,}([a-z0-9][-a-z0-9]{0,61}[a-z0-9]|[a-z0-9]{1,63})$"},"name":{"description":"name is the logical name of the route to customize.\n\nThe namespace and name of this componentRoute must match a corresponding\nentry in the list of status.componentRoutes if the route is to be customized.","type":"string","maxLength":256,"minLength":1},"namespace":{"description":"namespace is the namespace of the route to customize.\n\nThe namespace and name of this componentRoute must match a corresponding\nentry in the list of status.componentRoutes if the route is to be customized.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"servingCertKeyPairSecret":{"description":"servingCertKeyPairSecret is a reference to a secret of type `kubernetes.io/tls` in the openshift-config namespace.\nThe serving cert/key pair must match and will be used by the operator to fulfill the intent of serving with this name.\nIf the custom hostname uses the default routing suffix of the cluster,\nthe Secret specification for a serving certificate will not be needed.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}},"x-kubernetes-list-map-keys":["namespace","name"],"x-kubernetes-list-type":"map"},"domain":{"description":"domain is used to generate a default host name for a route when the\nroute's host name is empty. The generated host name will follow this\npattern: \"<route-name>.<route-namespace>.<domain>\".\n\nIt is also used as the default wildcard domain suffix for ingress. The\ndefault ingresscontroller domain will follow this pattern: \"*.<domain>\".\n\nOnce set, changing domain is not currently supported.","type":"string"},"loadBalancer":{"description":"loadBalancer contains the load balancer details in general which are not only specific to the underlying infrastructure\nprovider of the current cluster and are required for Ingress Controller to work on OpenShift.","type":"object","properties":{"platform":{"description":"platform holds configuration specific to the underlying\ninfrastructure provider for the ingress load balancers.\nWhen omitted, this means the user has no opinion and the platform is left\nto choose reasonable defaults. These defaults are subject to change over time.","type":"object","properties":{"aws":{"description":"aws contains settings specific to the Amazon Web Services infrastructure provider.","type":"object","required":["type"],"properties":{"type":{"description":"type allows user to set a load balancer type.\nWhen this field is set the default ingresscontroller will get created using the specified LBType.\nIf this field is not set then the default ingress controller of LBType Classic will be created.\nValid values are:\n\n* \"Classic\": A Classic Load Balancer that makes routing decisions at either\n  the transport layer (TCP/SSL) or the application layer (HTTP/HTTPS). See\n  the following for additional details:\n\n    https://docs.aws.amazon.com/AmazonECS/latest/developerguide/load-balancer-types.html#clb\n\n* \"NLB\": A Network Load Balancer that makes routing decisions at the\n  transport layer (TCP/SSL). See the following for additional details:\n\n    https://docs.aws.amazon.com/AmazonECS/latest/developerguide/load-balancer-types.html#nlb","type":"string","enum":["NLB","Classic"]}}},"type":{"description":"type is the underlying infrastructure provider for the cluster.\nAllowed values are \"AWS\", \"Azure\", \"BareMetal\", \"GCP\", \"Libvirt\",\n\"OpenStack\", \"VSphere\", \"oVirt\", \"KubeVirt\", \"EquinixMetal\", \"PowerVS\",\n\"AlibabaCloud\", \"Nutanix\" and \"None\". Individual components may not support all platforms,\nand must handle unrecognized platforms as None if they do not support that platform.","type":"string","enum":["","AWS","Azure","BareMetal","GCP","Libvirt","OpenStack","None","VSphere","oVirt","IBMCloud","KubeVirt","EquinixMetal","PowerVS","AlibabaCloud","Nutanix","External"]}}}}},"requiredHSTSPolicies":{"description":"requiredHSTSPolicies specifies HSTS policies that are required to be set on newly created  or updated routes\nmatching the domainPattern/s and namespaceSelector/s that are specified in the policy.\nEach requiredHSTSPolicy must have at least a domainPattern and a maxAge to validate a route HSTS Policy route\nannotation, and affect route admission.\n\nA candidate route is checked for HSTS Policies if it has the HSTS Policy route annotation:\n\"haproxy.router.openshift.io/hsts_header\"\nE.g. haproxy.router.openshift.io/hsts_header: max-age=31536000;preload;includeSubDomains\n\n- For each candidate route, if it matches a requiredHSTSPolicy domainPattern and optional namespaceSelector,\nthen the maxAge, preloadPolicy, and includeSubdomainsPolicy must be valid to be admitted.  Otherwise, the route\nis rejected.\n- The first match, by domainPattern and optional namespaceSelector, in the ordering of the RequiredHSTSPolicies\ndetermines the route's admission status.\n- If the candidate route doesn't match any requiredHSTSPolicy domainPattern and optional namespaceSelector,\nthen it may use any HSTS Policy annotation.\n\nThe HSTS policy configuration may be changed after routes have already been created. An update to a previously\nadmitted route may then fail if the updated route does not conform to the updated HSTS policy configuration.\nHowever, changing the HSTS policy configuration will not cause a route that is already admitted to stop working.\n\nNote that if there are no RequiredHSTSPolicies, any HSTS Policy annotation on the route is valid.","type":"array","items":{"type":"object","required":["domainPatterns"],"properties":{"domainPatterns":{"description":"domainPatterns is a list of domains for which the desired HSTS annotations are required.\nIf domainPatterns is specified and a route is created with a spec.host matching one of the domains,\nthe route must specify the HSTS Policy components described in the matching RequiredHSTSPolicy.\n\nThe use of wildcards is allowed like this: *.foo.com matches everything under foo.com.\nfoo.com only matches foo.com, so to cover foo.com and everything under it, you must specify *both*.","type":"array","minItems":1,"items":{"type":"string"}},"includeSubDomainsPolicy":{"description":"includeSubDomainsPolicy means the HSTS Policy should apply to any subdomains of the host's\ndomain name.  Thus, for the host bar.foo.com, if includeSubDomainsPolicy was set to RequireIncludeSubDomains:\n- the host app.bar.foo.com would inherit the HSTS Policy of bar.foo.com\n- the host bar.foo.com would inherit the HSTS Policy of bar.foo.com\n- the host foo.com would NOT inherit the HSTS Policy of bar.foo.com\n- the host def.foo.com would NOT inherit the HSTS Policy of bar.foo.com","type":"string","enum":["RequireIncludeSubDomains","RequireNoIncludeSubDomains","NoOpinion"]},"maxAge":{"description":"maxAge is the delta time range in seconds during which hosts are regarded as HSTS hosts.\nIf set to 0, it negates the effect, and hosts are removed as HSTS hosts.\nIf set to 0 and includeSubdomains is specified, all subdomains of the host are also removed as HSTS hosts.\nmaxAge is a time-to-live value, and if this policy is not refreshed on a client, the HSTS\npolicy will eventually expire on that client.","type":"object","properties":{"largestMaxAge":{"description":"The largest allowed value (in seconds) of the RequiredHSTSPolicy max-age\nThis value can be left unspecified, in which case no upper limit is enforced.","type":"integer","format":"int32","maximum":2147483647,"minimum":0},"smallestMaxAge":{"description":"The smallest allowed value (in seconds) of the RequiredHSTSPolicy max-age\nSetting max-age=0 allows the deletion of an existing HSTS header from a host.  This is a necessary\ntool for administrators to quickly correct mistakes.\nThis value can be left unspecified, in which case no lower limit is enforced.","type":"integer","format":"int32","maximum":2147483647,"minimum":0}}},"namespaceSelector":{"description":"namespaceSelector specifies a label selector such that the policy applies only to those routes that\nare in namespaces with labels that match the selector, and are in one of the DomainPatterns.\nDefaults to the empty LabelSelector, which matches everything.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"preloadPolicy":{"description":"preloadPolicy directs the client to include hosts in its host preload list so that\nit never needs to do an initial load to get the HSTS header (note that this is not defined\nin RFC 6797 and is therefore client implementation-dependent).","type":"string","enum":["RequirePreload","RequireNoPreload","NoOpinion"]}}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"componentRoutes":{"description":"componentRoutes is where participating operators place the current route status for routes whose\nhostnames and serving certificates can be customized by the cluster-admin.","type":"array","items":{"description":"ComponentRouteStatus contains information allowing configuration of a route's hostname and serving certificate.","type":"object","required":["defaultHostname","name","namespace","relatedObjects"],"properties":{"conditions":{"description":"conditions are used to communicate the state of the componentRoutes entry.\n\nSupported conditions include Available, Degraded and Progressing.\n\nIf available is true, the content served by the route can be accessed by users. This includes cases\nwhere a default may continue to serve content while the customized route specified by the cluster-admin\nis being configured.\n\nIf Degraded is true, that means something has gone wrong trying to handle the componentRoutes entry.\nThe currentHostnames field may or may not be in effect.\n\nIf Progressing is true, that means the component is taking some action related to the componentRoutes entry.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"consumingUsers":{"description":"consumingUsers is a slice of ServiceAccounts that need to have read permission on the servingCertKeyPairSecret secret.","type":"array","maxItems":5,"items":{"description":"ConsumingUser is an alias for string which we add validation to. Currently only service accounts are supported.","type":"string","maxLength":512,"minLength":1,"pattern":"^system:serviceaccount:[a-z0-9]([-a-z0-9]*[a-z0-9])?:[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"currentHostnames":{"description":"currentHostnames is the list of current names used by the route. Typically, this list should consist of a single\nhostname, but if multiple hostnames are supported by the route the operator may write multiple entries to this list.","type":"array","minItems":1,"items":{"description":"Hostname is a host name as defined by RFC-1123.","type":"string","pattern":"^([a-zA-Z0-9\\p{S}\\p{L}]((-?[a-zA-Z0-9\\p{S}\\p{L}]{0,62})?)|([a-zA-Z0-9\\p{S}\\p{L}](([a-zA-Z0-9-\\p{S}\\p{L}]{0,61}[a-zA-Z0-9\\p{S}\\p{L}])?)(\\.)){1,}([a-zA-Z\\p{L}]){2,63})$|^(([a-z0-9][-a-z0-9]{0,61}[a-z0-9]|[a-z0-9]{1,63})[\\.]){0,}([a-z0-9][-a-z0-9]{0,61}[a-z0-9]|[a-z0-9]{1,63})$"}},"defaultHostname":{"description":"defaultHostname is the hostname of this route prior to customization.","type":"string","pattern":"^([a-zA-Z0-9\\p{S}\\p{L}]((-?[a-zA-Z0-9\\p{S}\\p{L}]{0,62})?)|([a-zA-Z0-9\\p{S}\\p{L}](([a-zA-Z0-9-\\p{S}\\p{L}]{0,61}[a-zA-Z0-9\\p{S}\\p{L}])?)(\\.)){1,}([a-zA-Z\\p{L}]){2,63})$|^(([a-z0-9][-a-z0-9]{0,61}[a-z0-9]|[a-z0-9]{1,63})[\\.]){0,}([a-z0-9][-a-z0-9]{0,61}[a-z0-9]|[a-z0-9]{1,63})$"},"name":{"description":"name is the logical name of the route to customize. It does not have to be the actual name of a route resource\nbut it cannot be renamed.\n\nThe namespace and name of this componentRoute must match a corresponding\nentry in the list of spec.componentRoutes if the route is to be customized.","type":"string","maxLength":256,"minLength":1},"namespace":{"description":"namespace is the namespace of the route to customize. It must be a real namespace. Using an actual namespace\nensures that no two components will conflict and the same component can be installed multiple times.\n\nThe namespace and name of this componentRoute must match a corresponding\nentry in the list of spec.componentRoutes if the route is to be customized.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"relatedObjects":{"description":"relatedObjects is a list of resources which are useful when debugging or inspecting how spec.componentRoutes is applied.","type":"array","minItems":1,"items":{"description":"ObjectReference contains enough information to let you inspect or modify the referred object.","type":"object","required":["group","name","resource"],"properties":{"group":{"description":"group of the referent.","type":"string"},"name":{"description":"name of the referent.","type":"string"},"namespace":{"description":"namespace of the referent.","type":"string"},"resource":{"description":"resource of the referent.","type":"string"}}}}}},"x-kubernetes-list-map-keys":["namespace","name"],"x-kubernetes-list-type":"map"},"defaultPlacement":{"description":"defaultPlacement is set at installation time to control which\nnodes will host the ingress router pods by default. The options are\ncontrol-plane nodes or worker nodes.\n\nThis field works by dictating how the Cluster Ingress Operator will\nconsider unset replicas and nodePlacement fields in IngressController\nresources when creating the corresponding Deployments.\n\nSee the documentation for the IngressController replicas and nodePlacement\nfields for more information.\n\nWhen omitted, the default value is Workers","type":"string","enum":["ControlPlane","Workers",""]}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Ingress","version":"v1"}]},"io.openshift.config.v1.IngressList":{"description":"IngressList is a list of Ingress","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ingresses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Ingress"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"IngressList","version":"v1"}]},"io.openshift.config.v1.Network":{"description":"Network holds cluster-wide information about Network. The canonical name is `cluster`. It is used to configure the desired network configuration, such as: IP address pools for services/pod IPs, network plugin, etc.\nPlease view network.spec for an explanation on what applies when configuring this resource.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration.\nAs a general rule, this SHOULD NOT be read directly. Instead, you should\nconsume the NetworkStatus, as it indicates the currently deployed configuration.\nCurrently, most spec fields are immutable after installation. Please view the individual ones for further details on each.","type":"object","properties":{"clusterNetwork":{"description":"IP address pool to use for pod IPs.\nThis field is immutable after installation.","type":"array","items":{"description":"ClusterNetworkEntry is a contiguous block of IP addresses from which pod IPs\nare allocated.","type":"object","properties":{"cidr":{"description":"The complete block for pod IPs.","type":"string"},"hostPrefix":{"description":"The size (prefix) of block to allocate to each node. If this\nfield is not used by the plugin, it can be left unset.","type":"integer","format":"int32","minimum":0}}},"x-kubernetes-list-type":"atomic"},"externalIP":{"description":"externalIP defines configuration for controllers that\naffect Service.ExternalIP. If nil, then ExternalIP is\nnot allowed to be set.","type":"object","properties":{"autoAssignCIDRs":{"description":"autoAssignCIDRs is a list of CIDRs from which to automatically assign\nService.ExternalIP. These are assigned when the service is of type\nLoadBalancer. In general, this is only useful for bare-metal clusters.\nIn Openshift 3.x, this was misleadingly called \"IngressIPs\".\nAutomatically assigned External IPs are not affected by any\nExternalIPPolicy rules.\nCurrently, only one entry may be provided.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"policy":{"description":"policy is a set of restrictions applied to the ExternalIP field.\nIf nil or empty, then ExternalIP is not allowed to be set.","type":"object","properties":{"allowedCIDRs":{"description":"allowedCIDRs is the list of allowed CIDRs.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"rejectedCIDRs":{"description":"rejectedCIDRs is the list of disallowed CIDRs. These take precedence\nover allowedCIDRs.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}}},"networkDiagnostics":{"description":"networkDiagnostics defines network diagnostics configuration.\n\nTakes precedence over spec.disableNetworkDiagnostics in network.operator.openshift.io.\nIf networkDiagnostics is not specified or is empty,\nand the spec.disableNetworkDiagnostics flag in network.operator.openshift.io is set to true,\nthe network diagnostics feature will be disabled.","type":"object","properties":{"mode":{"description":"mode controls the network diagnostics mode\n\nWhen omitted, this means the user has no opinion and the platform is left\nto choose reasonable defaults. These defaults are subject to change over time.\nThe current default is All.","type":"string","enum":["","All","Disabled"]},"sourcePlacement":{"description":"sourcePlacement controls the scheduling of network diagnostics source deployment\n\nSee NetworkDiagnosticsSourcePlacement for more details about default values.","type":"object","properties":{"nodeSelector":{"description":"nodeSelector is the node selector applied to network diagnostics components\n\nWhen omitted, this means the user has no opinion and the platform is left\nto choose reasonable defaults. These defaults are subject to change over time.\nThe current default is `kubernetes.io/os: linux`.","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"tolerations is a list of tolerations applied to network diagnostics components\n\nWhen omitted, this means the user has no opinion and the platform is left\nto choose reasonable defaults. These defaults are subject to change over time.\nThe current default is an empty list.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"targetPlacement":{"description":"targetPlacement controls the scheduling of network diagnostics target daemonset\n\nSee NetworkDiagnosticsTargetPlacement for more details about default values.","type":"object","properties":{"nodeSelector":{"description":"nodeSelector is the node selector applied to network diagnostics components\n\nWhen omitted, this means the user has no opinion and the platform is left\nto choose reasonable defaults. These defaults are subject to change over time.\nThe current default is `kubernetes.io/os: linux`.","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"tolerations is a list of tolerations applied to network diagnostics components\n\nWhen omitted, this means the user has no opinion and the platform is left\nto choose reasonable defaults. These defaults are subject to change over time.\nThe current default is `- operator: \"Exists\"` which means that all taints are tolerated.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"networkType":{"description":"NetworkType is the plugin that is to be deployed (e.g. OVNKubernetes).\nThis should match a value that the cluster-network-operator understands,\nor else no networking will be installed.\nCurrently supported values are:\n- OVNKubernetes\nThis field is immutable after installation.","type":"string"},"serviceNetwork":{"description":"IP address pool for services.\nCurrently, we only support a single entry here.\nThis field is immutable after installation.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"serviceNodePortRange":{"description":"The port range allowed for Services of type NodePort.\nIf not specified, the default of 30000-32767 will be used.\nSuch Services without a NodePort specified will have one\nautomatically allocated from this range.\nThis parameter can be updated after the cluster is\ninstalled.","type":"string","pattern":"^([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])-([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"}},"x-kubernetes-validations":[{"message":"cannot set networkDiagnostics.sourcePlacement and networkDiagnostics.targetPlacement when networkDiagnostics.mode is Disabled","rule":"!has(self.networkDiagnostics) || !has(self.networkDiagnostics.mode) || self.networkDiagnostics.mode!='Disabled' || !has(self.networkDiagnostics.sourcePlacement) && !has(self.networkDiagnostics.targetPlacement)"}]},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"clusterNetwork":{"description":"IP address pool to use for pod IPs.","type":"array","items":{"description":"ClusterNetworkEntry is a contiguous block of IP addresses from which pod IPs\nare allocated.","type":"object","properties":{"cidr":{"description":"The complete block for pod IPs.","type":"string"},"hostPrefix":{"description":"The size (prefix) of block to allocate to each node. If this\nfield is not used by the plugin, it can be left unset.","type":"integer","format":"int32","minimum":0}}},"x-kubernetes-list-type":"atomic"},"clusterNetworkMTU":{"description":"ClusterNetworkMTU is the MTU for inter-pod networking.","type":"integer"},"conditions":{"description":"conditions represents the observations of a network.config current state.\nKnown .status.conditions.type are: \"NetworkDiagnosticsAvailable\"","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"migration":{"description":"Migration contains the cluster network migration configuration.","type":"object","properties":{"mtu":{"description":"MTU is the MTU configuration that is being deployed.","type":"object","properties":{"machine":{"description":"Machine contains MTU migration configuration for the machine's uplink.","type":"object","properties":{"from":{"description":"From is the MTU to migrate from.","type":"integer","format":"int32","minimum":0},"to":{"description":"To is the MTU to migrate to.","type":"integer","format":"int32","minimum":0}}},"network":{"description":"Network contains MTU migration configuration for the default network.","type":"object","properties":{"from":{"description":"From is the MTU to migrate from.","type":"integer","format":"int32","minimum":0},"to":{"description":"To is the MTU to migrate to.","type":"integer","format":"int32","minimum":0}}}}},"networkType":{"description":"NetworkType is the target plugin that is being deployed.\nDEPRECATED: network type migration is no longer supported,\nso this should always be unset.","type":"string"}}},"networkType":{"description":"NetworkType is the plugin that is deployed (e.g. OVNKubernetes).","type":"string"},"serviceNetwork":{"description":"IP address pool for services.\nCurrently, we only support a single entry here.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Network","version":"v1"}]},"io.openshift.config.v1.NetworkList":{"description":"NetworkList is a list of Network","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of networks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Network"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"NetworkList","version":"v1"}]},"io.openshift.config.v1.Node":{"description":"Node holds cluster-wide information about node specific features.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"cgroupMode":{"description":"CgroupMode determines the cgroups version on the node","type":"string","enum":["v1","v2",""]},"workerLatencyProfile":{"description":"WorkerLatencyProfile determins the how fast the kubelet is updating\nthe status and corresponding reaction of the cluster","type":"string","enum":["Default","MediumUpdateAverageReaction","LowUpdateSlowReaction"]}}},"status":{"description":"status holds observed values.","type":"object","properties":{"conditions":{"description":"conditions contain the details and the current state of the nodes.config object","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Node","version":"v1"}]},"io.openshift.config.v1.NodeList":{"description":"NodeList is a list of Node","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of nodes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Node"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"NodeList","version":"v1"}]},"io.openshift.config.v1.OAuth":{"description":"OAuth holds cluster-wide information about OAuth.  The canonical name is `cluster`.\nIt is used to configure the integrated OAuth server.\nThis configuration is only honored when the top level Authentication config has type set to IntegratedOAuth.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"identityProviders":{"description":"identityProviders is an ordered list of ways for a user to identify themselves.\nWhen this list is empty, no identities are provisioned for users.","type":"array","items":{"description":"IdentityProvider provides identities for users authenticating using credentials","type":"object","properties":{"basicAuth":{"description":"basicAuth contains configuration options for the BasicAuth IdP","type":"object","properties":{"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca.crt\" is used to locate the data.\nIf specified and the config map or expected key is not found, the identity provider is not honored.\nIf the specified ca data is not valid, the identity provider is not honored.\nIf empty, the default system roots are used.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"tlsClientCert":{"description":"tlsClientCert is an optional reference to a secret by name that contains the\nPEM-encoded TLS client certificate to present when connecting to the server.\nThe key \"tls.crt\" is used to locate the data.\nIf specified and the secret or expected key is not found, the identity provider is not honored.\nIf the specified certificate data is not valid, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"tlsClientKey":{"description":"tlsClientKey is an optional reference to a secret by name that contains the\nPEM-encoded TLS private key for the client certificate referenced in tlsClientCert.\nThe key \"tls.key\" is used to locate the data.\nIf specified and the secret or expected key is not found, the identity provider is not honored.\nIf the specified certificate data is not valid, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"url":{"description":"url is the remote URL to connect to","type":"string"}}},"github":{"description":"github enables user authentication using GitHub credentials","type":"object","properties":{"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca.crt\" is used to locate the data.\nIf specified and the config map or expected key is not found, the identity provider is not honored.\nIf the specified ca data is not valid, the identity provider is not honored.\nIf empty, the default system roots are used.\nThis can only be configured when hostname is set to a non-empty value.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"clientID":{"description":"clientID is the oauth client ID","type":"string"},"clientSecret":{"description":"clientSecret is a required reference to the secret by name containing the oauth client secret.\nThe key \"clientSecret\" is used to locate the data.\nIf the secret or expected key is not found, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"hostname":{"description":"hostname is the optional domain (e.g. \"mycompany.com\") for use with a hosted instance of\nGitHub Enterprise.\nIt must match the GitHub Enterprise settings value configured at /setup/settings#hostname.","type":"string"},"organizations":{"description":"organizations optionally restricts which organizations are allowed to log in","type":"array","items":{"type":"string"}},"teams":{"description":"teams optionally restricts which teams are allowed to log in. Format is <org>/<team>.","type":"array","items":{"type":"string"}}}},"gitlab":{"description":"gitlab enables user authentication using GitLab credentials","type":"object","properties":{"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca.crt\" is used to locate the data.\nIf specified and the config map or expected key is not found, the identity provider is not honored.\nIf the specified ca data is not valid, the identity provider is not honored.\nIf empty, the default system roots are used.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"clientID":{"description":"clientID is the oauth client ID","type":"string"},"clientSecret":{"description":"clientSecret is a required reference to the secret by name containing the oauth client secret.\nThe key \"clientSecret\" is used to locate the data.\nIf the secret or expected key is not found, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"url":{"description":"url is the oauth server base URL","type":"string"}}},"google":{"description":"google enables user authentication using Google credentials","type":"object","properties":{"clientID":{"description":"clientID is the oauth client ID","type":"string"},"clientSecret":{"description":"clientSecret is a required reference to the secret by name containing the oauth client secret.\nThe key \"clientSecret\" is used to locate the data.\nIf the secret or expected key is not found, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"hostedDomain":{"description":"hostedDomain is the optional Google App domain (e.g. \"mycompany.com\") to restrict logins to","type":"string"}}},"htpasswd":{"description":"htpasswd enables user authentication using an HTPasswd file to validate credentials","type":"object","properties":{"fileData":{"description":"fileData is a required reference to a secret by name containing the data to use as the htpasswd file.\nThe key \"htpasswd\" is used to locate the data.\nIf the secret or expected key is not found, the identity provider is not honored.\nIf the specified htpasswd data is not valid, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}},"keystone":{"description":"keystone enables user authentication using keystone password credentials","type":"object","properties":{"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca.crt\" is used to locate the data.\nIf specified and the config map or expected key is not found, the identity provider is not honored.\nIf the specified ca data is not valid, the identity provider is not honored.\nIf empty, the default system roots are used.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"domainName":{"description":"domainName is required for keystone v3","type":"string"},"tlsClientCert":{"description":"tlsClientCert is an optional reference to a secret by name that contains the\nPEM-encoded TLS client certificate to present when connecting to the server.\nThe key \"tls.crt\" is used to locate the data.\nIf specified and the secret or expected key is not found, the identity provider is not honored.\nIf the specified certificate data is not valid, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"tlsClientKey":{"description":"tlsClientKey is an optional reference to a secret by name that contains the\nPEM-encoded TLS private key for the client certificate referenced in tlsClientCert.\nThe key \"tls.key\" is used to locate the data.\nIf specified and the secret or expected key is not found, the identity provider is not honored.\nIf the specified certificate data is not valid, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"url":{"description":"url is the remote URL to connect to","type":"string"}}},"ldap":{"description":"ldap enables user authentication using LDAP credentials","type":"object","properties":{"attributes":{"description":"attributes maps LDAP attributes to identities","type":"object","properties":{"email":{"description":"email is the list of attributes whose values should be used as the email address. Optional.\nIf unspecified, no email is set for the identity","type":"array","items":{"type":"string"}},"id":{"description":"id is the list of attributes whose values should be used as the user ID. Required.\nFirst non-empty attribute is used. At least one attribute is required. If none of the listed\nattribute have a value, authentication fails.\nLDAP standard identity attribute is \"dn\"","type":"array","items":{"type":"string"}},"name":{"description":"name is the list of attributes whose values should be used as the display name. Optional.\nIf unspecified, no display name is set for the identity\nLDAP standard display name attribute is \"cn\"","type":"array","items":{"type":"string"}},"preferredUsername":{"description":"preferredUsername is the list of attributes whose values should be used as the preferred username.\nLDAP standard login attribute is \"uid\"","type":"array","items":{"type":"string"}}}},"bindDN":{"description":"bindDN is an optional DN to bind with during the search phase.","type":"string"},"bindPassword":{"description":"bindPassword is an optional reference to a secret by name\ncontaining a password to bind with during the search phase.\nThe key \"bindPassword\" is used to locate the data.\nIf specified and the secret or expected key is not found, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca.crt\" is used to locate the data.\nIf specified and the config map or expected key is not found, the identity provider is not honored.\nIf the specified ca data is not valid, the identity provider is not honored.\nIf empty, the default system roots are used.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"insecure":{"description":"insecure, if true, indicates the connection should not use TLS\nWARNING: Should not be set to `true` with the URL scheme \"ldaps://\" as \"ldaps://\" URLs always\n         attempt to connect using TLS, even when `insecure` is set to `true`\nWhen `true`, \"ldap://\" URLS connect insecurely. When `false`, \"ldap://\" URLs are upgraded to\na TLS connection using StartTLS as specified in https://tools.ietf.org/html/rfc2830.","type":"boolean"},"url":{"description":"url is an RFC 2255 URL which specifies the LDAP search parameters to use.\nThe syntax of the URL is:\nldap://host:port/basedn?attribute?scope?filter","type":"string"}}},"mappingMethod":{"description":"mappingMethod determines how identities from this provider are mapped to users\nDefaults to \"claim\"","type":"string"},"name":{"description":"name is used to qualify the identities returned by this provider.\n- It MUST be unique and not shared by any other identity provider used\n- It MUST be a valid path segment: name cannot equal \".\" or \"..\" or contain \"/\" or \"%\" or \":\"\n  Ref: https://godoc.org/github.com/openshift/origin/pkg/user/apis/user/validation#ValidateIdentityProviderName","type":"string"},"openID":{"description":"openID enables user authentication using OpenID credentials","type":"object","properties":{"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca.crt\" is used to locate the data.\nIf specified and the config map or expected key is not found, the identity provider is not honored.\nIf the specified ca data is not valid, the identity provider is not honored.\nIf empty, the default system roots are used.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"claims":{"description":"claims mappings","type":"object","properties":{"email":{"description":"email is the list of claims whose values should be used as the email address. Optional.\nIf unspecified, no email is set for the identity","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"groups":{"description":"groups is the list of claims value of which should be used to synchronize groups\nfrom the OIDC provider to OpenShift for the user.\nIf multiple claims are specified, the first one with a non-empty value is used.","type":"array","items":{"description":"OpenIDClaim represents a claim retrieved from an OpenID provider's tokens or userInfo\nresponses","type":"string","minLength":1},"x-kubernetes-list-type":"atomic"},"name":{"description":"name is the list of claims whose values should be used as the display name. Optional.\nIf unspecified, no display name is set for the identity","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"preferredUsername":{"description":"preferredUsername is the list of claims whose values should be used as the preferred username.\nIf unspecified, the preferred username is determined from the value of the sub claim","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"clientID":{"description":"clientID is the oauth client ID","type":"string"},"clientSecret":{"description":"clientSecret is a required reference to the secret by name containing the oauth client secret.\nThe key \"clientSecret\" is used to locate the data.\nIf the secret or expected key is not found, the identity provider is not honored.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"extraAuthorizeParameters":{"description":"extraAuthorizeParameters are any custom parameters to add to the authorize request.","type":"object","additionalProperties":{"type":"string"}},"extraScopes":{"description":"extraScopes are any scopes to request in addition to the standard \"openid\" scope.","type":"array","items":{"type":"string"}},"issuer":{"description":"issuer is the URL that the OpenID Provider asserts as its Issuer Identifier.\nIt must use the https scheme with no query or fragment component.","type":"string"}}},"requestHeader":{"description":"requestHeader enables user authentication using request header credentials","type":"object","properties":{"ca":{"description":"ca is a required reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nSpecifically, it allows verification of incoming requests to prevent header spoofing.\nThe key \"ca.crt\" is used to locate the data.\nIf the config map or expected key is not found, the identity provider is not honored.\nIf the specified ca data is not valid, the identity provider is not honored.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"challengeURL":{"description":"challengeURL is a URL to redirect unauthenticated /authorize requests to\nUnauthenticated requests from OAuth clients which expect WWW-Authenticate challenges will be\nredirected here.\n${url} is replaced with the current URL, escaped to be safe in a query parameter\n  https://www.example.com/sso-login?then=${url}\n${query} is replaced with the current query string\n  https://www.example.com/auth-proxy/oauth/authorize?${query}\nRequired when challenge is set to true.","type":"string"},"clientCommonNames":{"description":"clientCommonNames is an optional list of common names to require a match from. If empty, any\nclient certificate validated against the clientCA bundle is considered authoritative.","type":"array","items":{"type":"string"}},"emailHeaders":{"description":"emailHeaders is the set of headers to check for the email address","type":"array","items":{"type":"string"}},"headers":{"description":"headers is the set of headers to check for identity information","type":"array","items":{"type":"string"}},"loginURL":{"description":"loginURL is a URL to redirect unauthenticated /authorize requests to\nUnauthenticated requests from OAuth clients which expect interactive logins will be redirected here\n${url} is replaced with the current URL, escaped to be safe in a query parameter\n  https://www.example.com/sso-login?then=${url}\n${query} is replaced with the current query string\n  https://www.example.com/auth-proxy/oauth/authorize?${query}\nRequired when login is set to true.","type":"string"},"nameHeaders":{"description":"nameHeaders is the set of headers to check for the display name","type":"array","items":{"type":"string"}},"preferredUsernameHeaders":{"description":"preferredUsernameHeaders is the set of headers to check for the preferred username","type":"array","items":{"type":"string"}}}},"type":{"description":"type identifies the identity provider type for this entry.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"templates":{"description":"templates allow you to customize pages like the login page.","type":"object","properties":{"error":{"description":"error is the name of a secret that specifies a go template to use to render error pages\nduring the authentication or grant flow.\nThe key \"errors.html\" is used to locate the template data.\nIf specified and the secret or expected key is not found, the default error page is used.\nIf the specified template is not valid, the default error page is used.\nIf unspecified, the default error page is used.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"login":{"description":"login is the name of a secret that specifies a go template to use to render the login page.\nThe key \"login.html\" is used to locate the template data.\nIf specified and the secret or expected key is not found, the default login page is used.\nIf the specified template is not valid, the default login page is used.\nIf unspecified, the default login page is used.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"providerSelection":{"description":"providerSelection is the name of a secret that specifies a go template to use to render\nthe provider selection page.\nThe key \"providers.html\" is used to locate the template data.\nIf specified and the secret or expected key is not found, the default provider selection page is used.\nIf the specified template is not valid, the default provider selection page is used.\nIf unspecified, the default provider selection page is used.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}},"tokenConfig":{"description":"tokenConfig contains options for authorization and access tokens","type":"object","properties":{"accessTokenInactivityTimeout":{"description":"accessTokenInactivityTimeout defines the token inactivity timeout\nfor tokens granted by any client.\nThe value represents the maximum amount of time that can occur between\nconsecutive uses of the token. Tokens become invalid if they are not\nused within this temporal window. The user will need to acquire a new\ntoken to regain access once a token times out. Takes valid time\nduration string such as \"5m\", \"1.5h\" or \"2h45m\". The minimum allowed\nvalue for duration is 300s (5 minutes). If the timeout is configured\nper client, then that value takes precedence. If the timeout value is\nnot specified and the client does not override the value, then tokens\nare valid until their lifetime.\n\nWARNING: existing tokens' timeout will not be affected (lowered) by changing this value","type":"string"},"accessTokenInactivityTimeoutSeconds":{"description":"accessTokenInactivityTimeoutSeconds - DEPRECATED: setting this field has no effect.","type":"integer","format":"int32"},"accessTokenMaxAgeSeconds":{"description":"accessTokenMaxAgeSeconds defines the maximum age of access tokens","type":"integer","format":"int32"}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"OAuth","version":"v1"}]},"io.openshift.config.v1.OAuthList":{"description":"OAuthList is a list of OAuth","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of oauths. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.OAuth"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"OAuthList","version":"v1"}]},"io.openshift.config.v1.OperatorHub":{"description":"OperatorHub is the Schema for the operatorhubs API. It can be used to change the state of the default hub sources for OperatorHub on the cluster from enabled to disabled and vice versa. \n Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperatorHubSpec defines the desired state of OperatorHub","type":"object","properties":{"disableAllDefaultSources":{"description":"disableAllDefaultSources allows you to disable all the default hub sources. If this is true, a specific entry in sources can be used to enable a default source. If this is false, a specific entry in sources can be used to disable or enable a default source.","type":"boolean"},"sources":{"description":"sources is the list of default hub sources and their configuration. If the list is empty, it implies that the default hub sources are enabled on the cluster unless disableAllDefaultSources is true. If disableAllDefaultSources is true and sources is not empty, the configuration present in sources will take precedence. The list of default hub sources and their current state will always be reflected in the status block.","type":"array","items":{"description":"HubSource is used to specify the hub source and its configuration","type":"object","properties":{"disabled":{"description":"disabled is used to disable a default hub source on cluster","type":"boolean"},"name":{"description":"name is the name of one of the default hub sources","type":"string","maxLength":253,"minLength":1}}}}}},"status":{"description":"OperatorHubStatus defines the observed state of OperatorHub. The current state of the default hub sources will always be reflected here.","type":"object","properties":{"sources":{"description":"sources encapsulates the result of applying the configuration for each hub source","type":"array","items":{"description":"HubSourceStatus is used to reflect the current state of applying the configuration to a default source","type":"object","properties":{"disabled":{"description":"disabled is used to disable a default hub source on cluster","type":"boolean"},"message":{"description":"message provides more information regarding failures","type":"string"},"name":{"description":"name is the name of one of the default hub sources","type":"string","maxLength":253,"minLength":1},"status":{"description":"status indicates success or failure in applying the configuration","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"OperatorHub","version":"v1"}]},"io.openshift.config.v1.OperatorHubList":{"description":"OperatorHubList is a list of OperatorHub","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operatorhubs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.OperatorHub"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"OperatorHubList","version":"v1"}]},"io.openshift.config.v1.Project":{"description":"Project holds cluster-wide information about Project.  The canonical name is `cluster`\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"projectRequestMessage":{"description":"projectRequestMessage is the string presented to a user if they are unable to request a project via the projectrequest api endpoint","type":"string"},"projectRequestTemplate":{"description":"projectRequestTemplate is the template to use for creating projects in response to projectrequest.\nThis must point to a template in 'openshift-config' namespace. It is optional.\nIf it is not specified, a default template is used.","type":"object","properties":{"name":{"description":"name is the metadata.name of the referenced project request template","type":"string"}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Project","version":"v1"}]},"io.openshift.config.v1.ProjectList":{"description":"ProjectList is a list of Project","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of projects. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Project"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ProjectList","version":"v1"}]},"io.openshift.config.v1.Proxy":{"description":"Proxy holds cluster-wide information on how to configure default proxies for the cluster. The canonical name is `cluster`\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec holds user-settable values for the proxy configuration","type":"object","properties":{"httpProxy":{"description":"httpProxy is the URL of the proxy for HTTP requests.  Empty means unset and will not result in an env var.","type":"string"},"httpsProxy":{"description":"httpsProxy is the URL of the proxy for HTTPS requests.  Empty means unset and will not result in an env var.","type":"string"},"noProxy":{"description":"noProxy is a comma-separated list of hostnames and/or CIDRs and/or IPs for which the proxy should not be used.\nEmpty means unset and will not result in an env var.","type":"string"},"readinessEndpoints":{"description":"readinessEndpoints is a list of endpoints used to verify readiness of the proxy.","type":"array","items":{"type":"string"}},"trustedCA":{"description":"trustedCA is a reference to a ConfigMap containing a CA certificate bundle.\nThe trustedCA field should only be consumed by a proxy validator. The\nvalidator is responsible for reading the certificate bundle from the required\nkey \"ca-bundle.crt\", merging it with the system default trust bundle,\nand writing the merged trust bundle to a ConfigMap named \"trusted-ca-bundle\"\nin the \"openshift-config-managed\" namespace. Clients that expect to make\nproxy connections must use the trusted-ca-bundle for all HTTPS requests to\nthe proxy, and may use the trusted-ca-bundle for non-proxy HTTPS requests as\nwell.\n\nThe namespace for the ConfigMap referenced by trustedCA is\n\"openshift-config\". Here is an example ConfigMap (in yaml):\n\napiVersion: v1\nkind: ConfigMap\nmetadata:\n name: user-ca-bundle\n namespace: openshift-config\n data:\n   ca-bundle.crt: |\n     -----BEGIN CERTIFICATE-----\n     Custom CA certificate bundle.\n     -----END CERTIFICATE-----","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"httpProxy":{"description":"httpProxy is the URL of the proxy for HTTP requests.","type":"string"},"httpsProxy":{"description":"httpsProxy is the URL of the proxy for HTTPS requests.","type":"string"},"noProxy":{"description":"noProxy is a comma-separated list of hostnames and/or CIDRs for which the proxy should not be used.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Proxy","version":"v1"}]},"io.openshift.config.v1.ProxyList":{"description":"ProxyList is a list of Proxy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of proxies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Proxy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"ProxyList","version":"v1"}]},"io.openshift.config.v1.Scheduler":{"description":"Scheduler holds cluster-wide config information to run the Kubernetes Scheduler\nand influence its placement decisions. The canonical name for this config is `cluster`.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"defaultNodeSelector":{"description":"defaultNodeSelector helps set the cluster-wide default node selector to\nrestrict pod placement to specific nodes. This is applied to the pods\ncreated in all namespaces and creates an intersection with any existing\nnodeSelectors already set on a pod, additionally constraining that pod's selector.\nFor example,\ndefaultNodeSelector: \"type=user-node,region=east\" would set nodeSelector\nfield in pod spec to \"type=user-node,region=east\" to all pods created\nin all namespaces. Namespaces having project-wide node selectors won't be\nimpacted even if this field is set. This adds an annotation section to\nthe namespace.\nFor example, if a new namespace is created with\nnode-selector='type=user-node,region=east',\nthe annotation openshift.io/node-selector: type=user-node,region=east\ngets added to the project. When the openshift.io/node-selector annotation\nis set on the project the value is used in preference to the value we are setting\nfor defaultNodeSelector field.\nFor instance,\nopenshift.io/node-selector: \"type=user-node,region=west\" means\nthat the default of \"type=user-node,region=east\" set in defaultNodeSelector\nwould not be applied.","type":"string"},"mastersSchedulable":{"description":"MastersSchedulable allows masters nodes to be schedulable. When this flag is\nturned on, all the master nodes in the cluster will be made schedulable,\nso that workload pods can run on them. The default value for this field is false,\nmeaning none of the master nodes are schedulable.\nImportant Note: Once the workload pods start running on the master nodes,\nextreme care must be taken to ensure that cluster-critical control plane components\nare not impacted.\nPlease turn on this field after doing due diligence.","type":"boolean"},"policy":{"description":"DEPRECATED: the scheduler Policy API has been deprecated and will be removed in a future release.\npolicy is a reference to a ConfigMap containing scheduler policy which has\nuser specified predicates and priorities. If this ConfigMap is not available\nscheduler will default to use DefaultAlgorithmProvider.\nThe namespace for this configmap is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"profile":{"description":"profile sets which scheduling profile should be set in order to configure scheduling\ndecisions for new pods.\n\nValid values are \"LowNodeUtilization\", \"HighNodeUtilization\", \"NoScoring\"\nDefaults to \"LowNodeUtilization\"","type":"string","enum":["","LowNodeUtilization","HighNodeUtilization","NoScoring"]}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"Scheduler","version":"v1"}]},"io.openshift.config.v1.SchedulerList":{"description":"SchedulerList is a list of Scheduler","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of schedulers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.config.v1.Scheduler"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"config.openshift.io","kind":"SchedulerList","version":"v1"}]},"io.openshift.console.v1.ConsoleCLIDownload":{"description":"ConsoleCLIDownload is an extension for configuring openshift web console command line interface (CLI) downloads.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsoleCLIDownloadSpec is the desired cli download configuration.","type":"object","required":["description","displayName","links"],"properties":{"description":{"description":"description is the description of the CLI download (can include markdown).","type":"string"},"displayName":{"description":"displayName is the display name of the CLI download.","type":"string"},"links":{"description":"links is a list of objects that provide CLI download link details.","type":"array","items":{"type":"object","required":["href"],"properties":{"href":{"description":"href is the absolute secure URL for the link (must use https)","type":"string","pattern":"^https://"},"text":{"description":"text is the display text for the link","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleCLIDownload","version":"v1"}]},"io.openshift.console.v1.ConsoleCLIDownloadList":{"description":"ConsoleCLIDownloadList is a list of ConsoleCLIDownload","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consoleclidownloads. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleCLIDownload"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleCLIDownloadList","version":"v1"}]},"io.openshift.console.v1.ConsoleExternalLogLink":{"description":"ConsoleExternalLogLink is an extension for customizing OpenShift web console log links.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsoleExternalLogLinkSpec is the desired log link configuration.\nThe log link will appear on the logs tab of the pod details page.","type":"object","required":["hrefTemplate","text"],"properties":{"hrefTemplate":{"description":"hrefTemplate is an absolute secure URL (must use https) for the log link including\nvariables to be replaced. Variables are specified in the URL with the format ${variableName},\nfor instance, ${containerName} and will be replaced with the corresponding values\nfrom the resource. Resource is a pod.\nSupported variables are:\n- ${resourceName} - name of the resource which containes the logs\n- ${resourceUID} - UID of the resource which contains the logs\n              - e.g. `11111111-2222-3333-4444-555555555555`\n- ${containerName} - name of the resource's container that contains the logs\n- ${resourceNamespace} - namespace of the resource that contains the logs\n- ${resourceNamespaceUID} - namespace UID of the resource that contains the logs\n- ${podLabels} - JSON representation of labels matching the pod with the logs\n            - e.g. `{\"key1\":\"value1\",\"key2\":\"value2\"}`\n\ne.g., https://example.com/logs?resourceName=${resourceName}&containerName=${containerName}&resourceNamespace=${resourceNamespace}&podLabels=${podLabels}","type":"string","pattern":"^https://"},"namespaceFilter":{"description":"namespaceFilter is a regular expression used to restrict a log link to a\nmatching set of namespaces (e.g., `^openshift-`). The string is converted\ninto a regular expression using the JavaScript RegExp constructor.\nIf not specified, links will be displayed for all the namespaces.","type":"string"},"text":{"description":"text is the display text for the link","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleExternalLogLink","version":"v1"}]},"io.openshift.console.v1.ConsoleExternalLogLinkList":{"description":"ConsoleExternalLogLinkList is a list of ConsoleExternalLogLink","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consoleexternalloglinks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleExternalLogLink"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleExternalLogLinkList","version":"v1"}]},"io.openshift.console.v1.ConsoleLink":{"description":"ConsoleLink is an extension for customizing OpenShift web console links.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsoleLinkSpec is the desired console link configuration.","type":"object","required":["href","location","text"],"properties":{"applicationMenu":{"description":"applicationMenu holds information about section and icon used for the link in the\napplication menu, and it is applicable only when location is set to ApplicationMenu.","type":"object","required":["section"],"properties":{"imageURL":{"description":"imageUrl is the URL for the icon used in front of the link in the application menu.\nThe URL must be an HTTPS URL or a Data URI. The image should be square and will be shown at 24x24 pixels.","type":"string"},"section":{"description":"section is the section of the application menu in which the link should appear.\nThis can be any text that will appear as a subheading in the application menu dropdown.\nA new section will be created if the text does not match text of an existing section.","type":"string"}}},"href":{"description":"href is the absolute secure URL for the link (must use https)","type":"string","pattern":"^https://"},"location":{"description":"location determines which location in the console the link will be appended to (ApplicationMenu, HelpMenu, UserMenu, NamespaceDashboard).","type":"string","pattern":"^(ApplicationMenu|HelpMenu|UserMenu|NamespaceDashboard)$"},"namespaceDashboard":{"description":"namespaceDashboard holds information about namespaces in which the dashboard link should\nappear, and it is applicable only when location is set to NamespaceDashboard.\nIf not specified, the link will appear in all namespaces.","type":"object","properties":{"namespaceSelector":{"description":"namespaceSelector is used to select the Namespaces that should contain dashboard link by label.\nIf the namespace labels match, dashboard link will be shown for the namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces is an array of namespace names in which the dashboard link should appear.","type":"array","items":{"type":"string"}}}},"text":{"description":"text is the display text for the link","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleLink","version":"v1"}]},"io.openshift.console.v1.ConsoleLinkList":{"description":"ConsoleLinkList is a list of ConsoleLink","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consolelinks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleLink"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleLinkList","version":"v1"}]},"io.openshift.console.v1.ConsoleNotification":{"description":"ConsoleNotification is the extension for configuring openshift web console notifications.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsoleNotificationSpec is the desired console notification configuration.","type":"object","required":["text"],"properties":{"backgroundColor":{"description":"backgroundColor is the color of the background for the notification as CSS data type color.","type":"string"},"color":{"description":"color is the color of the text for the notification as CSS data type color.","type":"string"},"link":{"description":"link is an object that holds notification link details.","type":"object","required":["href","text"],"properties":{"href":{"description":"href is the absolute secure URL for the link (must use https)","type":"string","pattern":"^https://"},"text":{"description":"text is the display text for the link","type":"string"}}},"location":{"description":"location is the location of the notification in the console.\nValid values are: \"BannerTop\", \"BannerBottom\", \"BannerTopBottom\".","type":"string","pattern":"^(BannerTop|BannerBottom|BannerTopBottom)$"},"text":{"description":"text is the visible text of the notification.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleNotification","version":"v1"}]},"io.openshift.console.v1.ConsoleNotificationList":{"description":"ConsoleNotificationList is a list of ConsoleNotification","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consolenotifications. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleNotification"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleNotificationList","version":"v1"}]},"io.openshift.console.v1.ConsolePlugin":{"description":"ConsolePlugin is an extension for customizing OpenShift web console by\ndynamically loading code from another service running on the cluster.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsolePluginSpec is the desired plugin configuration.","type":"object","required":["backend","displayName"],"properties":{"backend":{"description":"backend holds the configuration of backend which is serving console's plugin .","type":"object","required":["type"],"properties":{"service":{"description":"service is a Kubernetes Service that exposes the plugin using a\ndeployment with an HTTP server. The Service must use HTTPS and\nService serving certificate. The console backend will proxy the\nplugins assets from the Service using the service CA bundle.","type":"object","required":["name","namespace","port"],"properties":{"basePath":{"description":"basePath is the path to the plugin's assets. The primary asset it the\nmanifest file called `plugin-manifest.json`, which is a JSON document\nthat contains metadata about the plugin and the extensions.","type":"string","maxLength":256,"minLength":1,"pattern":"^[a-zA-Z0-9.\\-_~!$&'()*+,;=:@\\/]*$"},"name":{"description":"name of Service that is serving the plugin assets.","type":"string","maxLength":128,"minLength":1},"namespace":{"description":"namespace of Service that is serving the plugin assets.","type":"string","maxLength":128,"minLength":1},"port":{"description":"port on which the Service that is serving the plugin is listening to.","type":"integer","format":"int32","maximum":65535,"minimum":1}}},"type":{"description":"type is the backend type which servers the console's plugin. Currently only \"Service\" is supported.\n","type":"string","enum":["Service"]}}},"displayName":{"description":"displayName is the display name of the plugin.\nThe dispalyName should be between 1 and 128 characters.","type":"string","maxLength":128,"minLength":1},"i18n":{"description":"i18n is the configuration of plugin's localization resources.","type":"object","required":["loadType"],"properties":{"loadType":{"description":"loadType indicates how the plugin's localization resource should be loaded.\nValid values are Preload, Lazy and the empty string.\nWhen set to Preload, all localization resources are fetched when the plugin is loaded.\nWhen set to Lazy, localization resources are lazily loaded as and when they are required by the console.\nWhen omitted or set to the empty string, the behaviour is equivalent to Lazy type.","type":"string","enum":["Preload","Lazy",""]}}},"proxy":{"description":"proxy is a list of proxies that describe various service type\nto which the plugin needs to connect to.","type":"array","items":{"description":"ConsolePluginProxy holds information on various service types\nto which console's backend will proxy the plugin's requests.","type":"object","required":["alias","endpoint"],"properties":{"alias":{"description":"alias is a proxy name that identifies the plugin's proxy. An alias name\nshould be unique per plugin. The console backend exposes following\nproxy endpoint:\n\n/api/proxy/plugin/<plugin-name>/<proxy-alias>/<request-path>?<optional-query-parameters>\n\nRequest example path:\n\n/api/proxy/plugin/acm/search/pods?namespace=openshift-apiserver","type":"string","maxLength":128,"minLength":1,"pattern":"^[A-Za-z0-9-_]+$"},"authorization":{"description":"authorization provides information about authorization type,\nwhich the proxied request should contain","type":"string","enum":["UserToken","None"]},"caCertificate":{"description":"caCertificate provides the cert authority certificate contents,\nin case the proxied Service is using custom service CA.\nBy default, the service CA bundle provided by the service-ca operator is used.","type":"string","pattern":"^-----BEGIN CERTIFICATE-----([\\s\\S]*)-----END CERTIFICATE-----\\s?$"},"endpoint":{"description":"endpoint provides information about endpoint to which the request is proxied to.","type":"object","required":["type"],"properties":{"service":{"description":"service is an in-cluster Service that the plugin will connect to.\nThe Service must use HTTPS. The console backend exposes an endpoint\nin order to proxy communication between the plugin and the Service.\nNote: service field is required for now, since currently only \"Service\"\ntype is supported.","type":"object","required":["name","namespace","port"],"properties":{"name":{"description":"name of Service that the plugin needs to connect to.","type":"string","maxLength":128,"minLength":1},"namespace":{"description":"namespace of Service that the plugin needs to connect to","type":"string","maxLength":128,"minLength":1},"port":{"description":"port on which the Service that the plugin needs to connect to\nis listening on.","type":"integer","format":"int32","maximum":65535,"minimum":1}}},"type":{"description":"type is the type of the console plugin's proxy. Currently only \"Service\" is supported.\n","type":"string","enum":["Service"]}}}}},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1"}]},"io.openshift.console.v1.ConsolePluginList":{"description":"ConsolePluginList is a list of ConsolePlugin","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consoleplugins. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsolePlugin"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsolePluginList","version":"v1"}]},"io.openshift.console.v1.ConsoleQuickStart":{"description":"ConsoleQuickStart is an extension for guiding user through various\nworkflows in the OpenShift web console.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsoleQuickStartSpec is the desired quick start configuration.","type":"object","required":["description","displayName","durationMinutes","introduction","tasks"],"properties":{"accessReviewResources":{"description":"accessReviewResources contains a list of resources that the user's access\nwill be reviewed against in order for the user to complete the Quick Start.\nThe Quick Start will be hidden if any of the access reviews fail.","type":"array","items":{"description":"ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface","type":"object","properties":{"fieldSelector":{"description":"fieldSelector describes the limitation on access based on field.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the\n`AuthorizeWithSelectors` feature gate (disabled by default).","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter.\nWebhook implementations are encouraged to ignore rawSelector.\nThe kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a field selector.\nAll requirements must be met for a resource instance to match the selector.\nWebhook implementations should handle requirements, but how to handle them is up to the webhook.\nSince requirements can only limit the request, it is safe to authorize as unlimited request if the requirements\nare not understood.","type":"array","items":{"description":"FieldSelectorRequirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the field selector key that the requirement applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist.\nThe list of operators may grow in the future.","type":"string"},"values":{"description":"values is an array of string values.\nIf the operator is In or NotIn, the values array must be non-empty.\nIf the operator is Exists or DoesNotExist, the values array must be empty.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"group":{"description":"Group is the API Group of the Resource.  \"*\" means all.","type":"string"},"labelSelector":{"description":"labelSelector describes the limitation on access based on labels.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the\n`AuthorizeWithSelectors` feature gate (disabled by default).","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter.\nWebhook implementations are encouraged to ignore rawSelector.\nThe kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a label selector.\nAll requirements must be met for a resource instance to match the selector.\nWebhook implementations should handle requirements, but how to handle them is up to the webhook.\nSince requirements can only limit the request, it is safe to authorize as unlimited request if the requirements\nare not understood.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"name":{"description":"Name is the name of the resource being requested for a \"get\" or deleted for a \"delete\". \"\" (empty) means all.","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces\n\"\" (empty) is defaulted for LocalSubjectAccessReviews\n\"\" (empty) is empty for cluster-scoped resources\n\"\" (empty) means \"all\" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview","type":"string"},"resource":{"description":"Resource is one of the existing resource types.  \"*\" means all.","type":"string"},"subresource":{"description":"Subresource is one of the existing resource types.  \"\" means none.","type":"string"},"verb":{"description":"Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  \"*\" means all.","type":"string"},"version":{"description":"Version is the API Version of the Resource.  \"*\" means all.","type":"string"}}}},"conclusion":{"description":"conclusion sums up the Quick Start and suggests the possible next steps. (includes markdown)","type":"string"},"description":{"description":"description is the description of the Quick Start. (includes markdown)","type":"string","maxLength":256,"minLength":1},"displayName":{"description":"displayName is the display name of the Quick Start.","type":"string","minLength":1},"durationMinutes":{"description":"durationMinutes describes approximately how many minutes it will take to complete the Quick Start.","type":"integer","minimum":1},"icon":{"description":"icon is a base64 encoded image that will be displayed beside the Quick Start display name.\nThe icon should be an vector image for easy scaling. The size of the icon should be 40x40.","type":"string"},"introduction":{"description":"introduction describes the purpose of the Quick Start. (includes markdown)","type":"string","minLength":1},"nextQuickStart":{"description":"nextQuickStart is a list of the following Quick Starts, suggested for the user to try.","type":"array","items":{"type":"string"}},"prerequisites":{"description":"prerequisites contains all prerequisites that need to be met before taking a Quick Start. (includes markdown)","type":"array","items":{"type":"string"}},"tags":{"description":"tags is a list of strings that describe the Quick Start.","type":"array","items":{"type":"string"}},"tasks":{"description":"tasks is the list of steps the user has to perform to complete the Quick Start.","type":"array","minItems":1,"items":{"description":"ConsoleQuickStartTask is a single step in a Quick Start.","type":"object","required":["description","title"],"properties":{"description":{"description":"description describes the steps needed to complete the task. (includes markdown)","type":"string","minLength":1},"review":{"description":"review contains instructions to validate the task is complete. The user will select 'Yes' or 'No'.\nusing a radio button, which indicates whether the step was completed successfully.","type":"object","required":["failedTaskHelp","instructions"],"properties":{"failedTaskHelp":{"description":"failedTaskHelp contains suggestions for a failed task review and is shown at the end of task. (includes markdown)","type":"string","minLength":1},"instructions":{"description":"instructions contains steps that user needs to take in order\nto validate his work after going through a task. (includes markdown)","type":"string","minLength":1}}},"summary":{"description":"summary contains information about the passed step.","type":"object","required":["failed","success"],"properties":{"failed":{"description":"failed briefly describes the unsuccessfully passed task. (includes markdown)","type":"string","maxLength":128,"minLength":1},"success":{"description":"success describes the succesfully passed task.","type":"string","minLength":1}}},"title":{"description":"title describes the task and is displayed as a step heading.","type":"string","minLength":1}}}}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleQuickStart","version":"v1"}]},"io.openshift.console.v1.ConsoleQuickStartList":{"description":"ConsoleQuickStartList is a list of ConsoleQuickStart","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consolequickstarts. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleQuickStart"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleQuickStartList","version":"v1"}]},"io.openshift.console.v1.ConsoleSample":{"description":"ConsoleSample is an extension to customizing OpenShift web console by adding samples.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec contains configuration for a console sample.","type":"object","required":["abstract","description","source","title"],"properties":{"abstract":{"description":"abstract is a short introduction to the sample.\n\nIt is required and must be no more than 100 characters in length.\n\nThe abstract is shown on the sample card tile below the title and provider\nand is limited to three lines of content.","type":"string","maxLength":100},"description":{"description":"description is a long form explanation of the sample.\n\nIt is required and can have a maximum length of **4096** characters.\n\nIt is a README.md-like content for additional information, links, pre-conditions, and other instructions.\nIt will be rendered as Markdown so that it can contain line breaks, links, and other simple formatting.","type":"string","maxLength":4096},"icon":{"description":"icon is an optional base64 encoded image and shown beside the sample title.\n\nThe format must follow the data: URL format and can have a maximum size of **10 KB**.\n\n  data:[<mediatype>][;base64],<base64 encoded image>\n\nFor example:\n\n  data:image;base64,             plus the base64 encoded image.\n\nVector images can also be used. SVG icons must start with:\n\n  data:image/svg+xml;base64,     plus the base64 encoded SVG image.\n\nAll sample catalog icons will be shown on a white background (also when the dark theme is used).\nThe web console ensures that different aspect ratios work correctly.\nCurrently, the surface of the icon is at most 40x100px.\n\nFor more information on the data URL format, please visit\nhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/Data_URLs.","type":"string","maxLength":14000,"pattern":"^data:([a-z/\\.+0-9]*;(([-a-zA-Z0-9=])*;)?)?base64,"},"provider":{"description":"provider is an optional label to honor who provides the sample.\n\nIt is optional and must be no more than 50 characters in length.\n\nA provider can be a company like \"Red Hat\" or an organization like \"CNCF\" or \"Knative\".\n\nCurrently, the provider is only shown on the sample card tile below the title with the prefix \"Provided by \"","type":"string","maxLength":50},"source":{"description":"source defines where to deploy the sample service from.\nThe sample may be sourced from an external git repository or container image.","type":"object","required":["type"],"properties":{"containerImport":{"description":"containerImport allows the user import a container image.","type":"object","required":["image"],"properties":{"image":{"description":"reference to a container image that provides a HTTP service.\nThe service must be exposed on the default port (8080) unless\notherwise configured with the port field.\n\nSupported formats:\n  - <repository-name>/<image-name>\n  - docker.io/<repository-name>/<image-name>\n  - quay.io/<repository-name>/<image-name>\n  - quay.io/<repository-name>/<image-name>@sha256:<image hash>\n  - quay.io/<repository-name>/<image-name>:<tag>","type":"string","maxLength":256,"minLength":1},"service":{"description":"service contains configuration for the Service resource created for this sample.","type":"object","properties":{"targetPort":{"description":"targetPort is the port that the service listens on for HTTP requests.\nThis port will be used for Service and Route created for this sample.\nPort must be in the range 1 to 65535.\nDefault port is 8080.","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}},"gitImport":{"description":"gitImport allows the user to import code from a git repository.","type":"object","required":["repository"],"properties":{"repository":{"description":"repository contains the reference to the actual Git repository.","type":"object","required":["url"],"properties":{"contextDir":{"description":"contextDir is used to specify a directory within the repository to build the\ncomponent.\nMust start with `/` and have a maximum length of 256 characters.\nWhen omitted, the default value is to build from the root of the repository.","type":"string","maxLength":256,"pattern":"^/"},"revision":{"description":"revision is the git revision at which to clone the git repository\nCan be used to clone a specific branch, tag or commit SHA.\nMust be at most 256 characters in length.\nWhen omitted the repository's default branch is used.","type":"string","maxLength":256},"url":{"description":"url of the Git repository that contains a HTTP service.\nThe HTTP service must be exposed on the default port (8080) unless\notherwise configured with the port field.\n\nOnly public repositories on GitHub, GitLab and Bitbucket are currently supported:\n\n  - https://github.com/<org>/<repository>\n  - https://gitlab.com/<org>/<repository>\n  - https://bitbucket.org/<org>/<repository>\n\nThe url must have a maximum length of 256 characters.","type":"string","maxLength":256,"minLength":1,"pattern":"^https:\\/\\/(github.com|gitlab.com|bitbucket.org)\\/[a-zA-Z0-9-]+\\/[a-zA-Z0-9-]+(.git)?$"}}},"service":{"description":"service contains configuration for the Service resource created for this sample.","type":"object","properties":{"targetPort":{"description":"targetPort is the port that the service listens on for HTTP requests.\nThis port will be used for Service created for this sample.\nPort must be in the range 1 to 65535.\nDefault port is 8080.","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}},"type":{"description":"type of the sample, currently supported: \"GitImport\";\"ContainerImport\"","type":"string"}},"x-kubernetes-validations":[{"message":"source.gitImport is required when source.type is GitImport, and forbidden otherwise","rule":"self.type == 'GitImport' ? has(self.gitImport) : !has(self.gitImport)"},{"message":"source.containerImport is required when source.type is ContainerImport, and forbidden otherwise","rule":"self.type == 'ContainerImport' ? has(self.containerImport) : !has(self.containerImport)"}]},"tags":{"description":"tags are optional string values that can be used to find samples in the samples catalog.\n\nExamples of common tags may be \"Java\", \"Quarkus\", etc.\n\nThey will be displayed on the samples details page.","type":"array","maxItems":10,"items":{"type":"string"},"x-kubernetes-list-type":"set"},"title":{"description":"title is the display name of the sample.\n\nIt is required and must be no more than 50 characters in length.","type":"string","maxLength":50,"minLength":1},"type":{"description":"type is an optional label to group multiple samples.\n\nIt is optional and must be no more than 20 characters in length.\n\nRecommendation is a singular term like \"Builder Image\", \"Devfile\" or \"Serverless Function\".\n\nCurrently, the type is shown a badge on the sample card tile in the top right corner.","type":"string","maxLength":20}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleSample","version":"v1"}]},"io.openshift.console.v1.ConsoleSampleList":{"description":"ConsoleSampleList is a list of ConsoleSample","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consolesamples. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleSample"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleSampleList","version":"v1"}]},"io.openshift.console.v1.ConsoleYAMLSample":{"description":"ConsoleYAMLSample is an extension for customizing OpenShift web console YAML samples.\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsoleYAMLSampleSpec is the desired YAML sample configuration.\nSamples will appear with their descriptions in a samples sidebar\nwhen creating a resources in the web console.","type":"object","required":["description","targetResource","title","yaml"],"properties":{"description":{"description":"description of the YAML sample.","type":"string","pattern":"^(.|\\s)*\\S(.|\\s)*$"},"snippet":{"description":"snippet indicates that the YAML sample is not the full YAML resource\ndefinition, but a fragment that can be inserted into the existing\nYAML document at the user's cursor.","type":"boolean"},"targetResource":{"description":"targetResource contains apiVersion and kind of the resource\nYAML sample is representating.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object.\nServers should convert recognized schemas to the latest internal value, and\nmay reject unrecognized values.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents.\nServers may infer this from the endpoint the client submits requests to.\nCannot be updated.\nIn CamelCase.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"}}},"title":{"description":"title of the YAML sample.","type":"string","pattern":"^(.|\\s)*\\S(.|\\s)*$"},"yaml":{"description":"yaml is the YAML sample to display.","type":"string","pattern":"^(.|\\s)*\\S(.|\\s)*$"}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleYAMLSample","version":"v1"}]},"io.openshift.console.v1.ConsoleYAMLSampleList":{"description":"ConsoleYAMLSampleList is a list of ConsoleYAMLSample","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consoleyamlsamples. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1.ConsoleYAMLSample"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsoleYAMLSampleList","version":"v1"}]},"io.openshift.console.v1alpha1.ConsolePlugin":{"description":"ConsolePlugin is an extension for customizing OpenShift web console by dynamically loading code from another service running on the cluster. \n Compatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsolePluginSpec is the desired plugin configuration.","type":"object","required":["service"],"properties":{"displayName":{"description":"displayName is the display name of the plugin.","type":"string","minLength":1},"proxy":{"description":"proxy is a list of proxies that describe various service type to which the plugin needs to connect to.","type":"array","items":{"description":"ConsolePluginProxy holds information on various service types to which console's backend will proxy the plugin's requests.","type":"object","required":["alias","type"],"properties":{"alias":{"description":"alias is a proxy name that identifies the plugin's proxy. An alias name should be unique per plugin. The console backend exposes following proxy endpoint: \n /api/proxy/plugin/<plugin-name>/<proxy-alias>/<request-path>?<optional-query-parameters> \n Request example path: \n /api/proxy/plugin/acm/search/pods?namespace=openshift-apiserver","type":"string","maxLength":128,"minLength":1,"pattern":"^[A-Za-z0-9-_]+$"},"authorize":{"description":"authorize indicates if the proxied request should contain the logged-in user's OpenShift access token in the \"Authorization\" request header. For example: \n Authorization: Bearer sha256~kV46hPnEYhCWFnB85r5NrprAxggzgb6GOeLbgcKNsH0 \n By default the access token is not part of the proxied request.","type":"boolean"},"caCertificate":{"description":"caCertificate provides the cert authority certificate contents, in case the proxied Service is using custom service CA. By default, the service CA bundle provided by the service-ca operator is used.","type":"string","pattern":"^-----BEGIN CERTIFICATE-----([\\s\\S]*)-----END CERTIFICATE-----\\s?$"},"service":{"description":"service is an in-cluster Service that the plugin will connect to. The Service must use HTTPS. The console backend exposes an endpoint in order to proxy communication between the plugin and the Service. Note: service field is required for now, since currently only \"Service\" type is supported.","type":"object","required":["name","namespace","port"],"properties":{"name":{"description":"name of Service that the plugin needs to connect to.","type":"string","maxLength":128,"minLength":1},"namespace":{"description":"namespace of Service that the plugin needs to connect to","type":"string","maxLength":128,"minLength":1},"port":{"description":"port on which the Service that the plugin needs to connect to is listening on.","type":"integer","format":"int32","maximum":65535,"minimum":1}}},"type":{"description":"type is the type of the console plugin's proxy. Currently only \"Service\" is supported.","type":"string","pattern":"^(Service)$"}}}},"service":{"description":"service is a Kubernetes Service that exposes the plugin using a deployment with an HTTP server. The Service must use HTTPS and Service serving certificate. The console backend will proxy the plugins assets from the Service using the service CA bundle.","type":"object","required":["basePath","name","namespace","port"],"properties":{"basePath":{"description":"basePath is the path to the plugin's assets. The primary asset it the manifest file called `plugin-manifest.json`, which is a JSON document that contains metadata about the plugin and the extensions.","type":"string","minLength":1,"pattern":"^/"},"name":{"description":"name of Service that is serving the plugin assets.","type":"string","maxLength":128,"minLength":1},"namespace":{"description":"namespace of Service that is serving the plugin assets.","type":"string","maxLength":128,"minLength":1},"port":{"description":"port on which the Service that is serving the plugin is listening to.","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsolePlugin","version":"v1alpha1"}]},"io.openshift.console.v1alpha1.ConsolePluginList":{"description":"ConsolePluginList is a list of ConsolePlugin","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consoleplugins. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.console.v1alpha1.ConsolePlugin"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"console.openshift.io","kind":"ConsolePluginList","version":"v1alpha1"}]},"io.openshift.helm.v1beta1.HelmChartRepository":{"description":"HelmChartRepository holds cluster-wide configuration for proxied Helm chart repository\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"connectionConfig":{"description":"Required configuration for connecting to the chart repo","type":"object","properties":{"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca-bundle.crt\" is used to locate the data.\nIf empty, the default system roots are used.\nThe namespace for this config map is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"tlsClientConfig":{"description":"tlsClientConfig is an optional reference to a secret by name that contains the\nPEM-encoded TLS client certificate and private key to present when connecting to the server.\nThe key \"tls.crt\" is used to locate the client certificate.\nThe key \"tls.key\" is used to locate the private key.\nThe namespace for this secret is openshift-config.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"url":{"description":"Chart repository URL","type":"string","maxLength":2048,"pattern":"^https?:\\/\\/"}}},"description":{"description":"Optional human readable repository description, it can be used by UI for displaying purposes","type":"string","maxLength":2048,"minLength":1},"disabled":{"description":"If set to true, disable the repo usage in the cluster/namespace","type":"boolean"},"name":{"description":"Optional associated human readable repository name, it can be used by UI for displaying purposes","type":"string","maxLength":100,"minLength":1}}},"status":{"description":"Observed status of the repository within the cluster..","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their statuses","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"helm.openshift.io","kind":"HelmChartRepository","version":"v1beta1"}]},"io.openshift.helm.v1beta1.HelmChartRepositoryList":{"description":"HelmChartRepositoryList is a list of HelmChartRepository","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of helmchartrepositories. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.helm.v1beta1.HelmChartRepository"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"helm.openshift.io","kind":"HelmChartRepositoryList","version":"v1beta1"}]},"io.openshift.helm.v1beta1.ProjectHelmChartRepository":{"description":"ProjectHelmChartRepository holds namespace-wide configuration for proxied Helm chart repository\n\nCompatibility level 2: Stable within a major release for a minimum of 9 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"connectionConfig":{"description":"Required configuration for connecting to the chart repo","type":"object","properties":{"basicAuthConfig":{"description":"basicAuthConfig is an optional reference to a secret by name that contains\nthe basic authentication credentials to present when connecting to the server.\nThe key \"username\" is used locate the username.\nThe key \"password\" is used to locate the password.\nThe namespace for this secret must be same as the namespace where the project helm chart repository is getting instantiated.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"ca":{"description":"ca is an optional reference to a config map by name containing the PEM-encoded CA bundle.\nIt is used as a trust anchor to validate the TLS certificate presented by the remote server.\nThe key \"ca-bundle.crt\" is used to locate the data.\nIf empty, the default system roots are used.\nThe namespace for this configmap must be same as the namespace where the project helm chart repository is getting instantiated.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"tlsClientConfig":{"description":"tlsClientConfig is an optional reference to a secret by name that contains the\nPEM-encoded TLS client certificate and private key to present when connecting to the server.\nThe key \"tls.crt\" is used to locate the client certificate.\nThe key \"tls.key\" is used to locate the private key.\nThe namespace for this secret must be same as the namespace where the project helm chart repository is getting instantiated.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}},"url":{"description":"Chart repository URL","type":"string","maxLength":2048,"pattern":"^https?:\\/\\/"}}},"description":{"description":"Optional human readable repository description, it can be used by UI for displaying purposes","type":"string","maxLength":2048,"minLength":1},"disabled":{"description":"If set to true, disable the repo usage in the namespace","type":"boolean"},"name":{"description":"Optional associated human readable repository name, it can be used by UI for displaying purposes","type":"string","maxLength":100,"minLength":1}}},"status":{"description":"Observed status of the repository within the namespace..","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their statuses","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"helm.openshift.io","kind":"ProjectHelmChartRepository","version":"v1beta1"}]},"io.openshift.helm.v1beta1.ProjectHelmChartRepositoryList":{"description":"ProjectHelmChartRepositoryList is a list of ProjectHelmChartRepository","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of projecthelmchartrepositories. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.helm.v1beta1.ProjectHelmChartRepository"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"helm.openshift.io","kind":"ProjectHelmChartRepositoryList","version":"v1beta1"}]},"io.openshift.internal.security.v1.RangeAllocation":{"description":"RangeAllocation is used so we can easily expose a RangeAllocation typed for security group\nThis is an internal API, not intended for external consumption.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"data":{"description":"data is a byte array representing the serialized state of a range allocation.  It is a bitmap\nwith each bit set to one to represent a range is taken.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"range":{"description":"range is a string representing a unique label for a range of uids, \"1000000000-2000000000/10000\".","type":"string"}},"x-kubernetes-group-version-kind":[{"group":"security.internal.openshift.io","kind":"RangeAllocation","version":"v1"}]},"io.openshift.internal.security.v1.RangeAllocationList":{"description":"RangeAllocationList is a list of RangeAllocation","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of rangeallocations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.internal.security.v1.RangeAllocation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"security.internal.openshift.io","kind":"RangeAllocationList","version":"v1"}]},"io.openshift.kueue.v1.Kueue":{"description":"Kueue is the CRD to represent the Kueue operator.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","required":["config"],"properties":{"config":{"description":"config is the desired configuration\nfor the Kueue operator.","type":"object","required":["integrations"],"properties":{"gangScheduling":{"description":"gangScheduling controls how Kueue admits workloads.\nGang Scheduling is the act of all or nothing scheduling,\nwhere workloads do not become ready within a certain period, they may be evicted and later retried.\nThis field is optional.\nIf gangScheduling is not specified, the operator will decide the default.\nThis default could change over time.","type":"object","required":["policy"],"properties":{"byWorkload":{"description":"byWorkload configures how Kueue will process workloads for admission.\nbyWorkload is required when policy is ByWorkload, and forbidden otherwise.","type":"object","required":["admission"],"properties":{"admission":{"description":"admission controls how Kueue will process workloads.\nadmission is required.\nAllowed values are Sequential, Parallel and \"\".\nWhen admission is set to Sequential, only pods from the currently processing workload will be admitted.\nOnce all pods from the current workload are admitted, and ready, Kueue will process the next workload.\nSequential processing may slow down admission when the cluster has sufficient capacity for multiple workloads,\nbut provides a higher guarantee of workloads scheduling all pods together successfully.\nWhen set to Parallel, pods from any workload will be admitted at any time.\nThis may lead to a deadlock where workloads are in contention for cluster capacity and\npods from another workload having successfully scheduled prevent pods from the current workload scheduling.\nWhen set to \"\", this means no opinion and the operator is left\nto choose a reasonable default, which is subject to change over time.\nThe current default is Parallel.","type":"string","enum":["","Parallel","Sequential"]}}},"policy":{"description":"policy allows you to enable and configure gang scheduling.\nThe allowed values are ByWorkload, None and \"\".\nWhen set to ByWorkload, this means each workload is processed and considered\nfor admission as a single unit.\nWhere workloads do not become ready over time, the entire workload may then be evicted and retried at a later time.\nNone means gang scheduling is disabled.\nWhen set to \"\", this means no opinion and the operator is left\nto choose a reasonable default, which is subject to change over time.\nThe current default is None.\npolicy is a required field.","type":"string","enum":["ByWorkload","None",""]}},"x-kubernetes-validations":[{"message":"byWorkload is required when policy is byWorkload, and forbidden otherwise","rule":"has(self.policy) && self.policy == 'ByWorkload' ?  has(self.byWorkload) : !has(self.byWorkload)"}]},"integrations":{"description":"integrations is a required field that configures the Kueue's workload integrations.\nKueue has both standard integrations, known as job frameworks, and external integrations\nknown as external frameworks.\nKueue will only manage workloads that correspond to the specified integrations.","type":"object","required":["frameworks"],"properties":{"externalFrameworks":{"description":"externalFrameworks are a list of GroupVersionResources\nthat are managed for Kueue by external controllers.\nexternalFrameworks are optional and should only be used if you have an external controller\nthat integrates with Kueue.\nexternalFrameworks, if specified, can not have more than 32 items.","type":"array","maxItems":32,"items":{"description":"This is the GVR for an external framework.\nController runtime requires this in this format\nfor api discoverability.","type":"object","required":["group","resource","version"],"properties":{"group":{"description":"group is the API group of the externalFramework.\nMust be a valid DNS 1123 subdomain consisting of of lower-case alphanumeric characters,\nhyphens and periods, of at most 253 characters in length.\nEach period separated segment within the subdomain must start and end with an alphanumeric character.","type":"string","maxLength":253,"minLength":1,"x-kubernetes-validations":[{"rule":"self.matches(r'^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$')"}]},"resource":{"description":"resource is the Resource type of the external framework.\nResource types are lowercase and plural (e.g. pods, deployments).\nMust be a valid DNS 1123 label consisting of a lower-case alphanumeric string\nand hyphens of at most 63 characters in length.\nThe value must start and end with an alphanumeric character.","type":"string","maxLength":63,"minLength":1,"x-kubernetes-validations":[{"rule":"self.matches(r'^[a-z0-9]([-a-z0-9]*[a-z0-9])?$')"}]},"version":{"description":"version is the version of the api (e.g. v1alpha1, v1beta1, v1).\nMust be a valid DNS 1035 label consisting of a lower-case alphanumeric string\nand hyphens of at most 63 characters in length.\nThe value must start with an alphabetic character and end with an alphanumeric character.","type":"string","maxLength":63,"minLength":1,"x-kubernetes-validations":[{"rule":"self.matches(r'^[a-z0-9]([-a-z0-9]*[a-z0-9])?$')"}]}}},"x-kubernetes-list-map-keys":["group"],"x-kubernetes-list-type":"map"},"frameworks":{"description":"frameworks are a list of frameworks that Kueue has support for.\nThe allowed values are BatchJob, RayJob, RayCluster, JobSet, MPIJob, PaddleJob, PyTorchJob, TFJob, TrainJob, XGBoostJob, AppWrapper, Pod, Deployment, StatefulSet and LeaderWorkerSet.\nframeworks are required and must have at least one element.\nframeworks can not have more than 14 elements.\nEach framework represents a type of job that Kueue will manage.","type":"array","maxItems":14,"minItems":1,"items":{"type":"string","enum":["BatchJob","RayJob","RayCluster","JobSet","MPIJob","PaddleJob","PyTorchJob","TFJob","TrainJob","XGBoostJob","JaxJob","AppWrapper","Pod","Deployment","StatefulSet","LeaderWorkerSet"]},"x-kubernetes-list-type":"set","x-kubernetes-validations":[{"message":"each item in frameworks must be unique","rule":"self.all(x, self.exists_one(y, x == y))"}]},"labelKeysToCopy":{"description":"labelKeysToCopy are a list of label keys that are copied once a workload is created.\nThese keys are persisted to the internal Kueue workload object.\nIf not specified, only the Kueue labels will be copied.\nlabelKeysToCopy, if specified, is limited to a maximum of 64 items.","type":"array","maxItems":64,"items":{"type":"object","required":["key"],"properties":{"key":{"description":"key is the label key.\nA label key must be a valid qualified name consisting of a lower-case alphanumeric string,\nand hyphens of at most 63 characters in length.\nTo support older openshift versions, matches is used instead of CEL validation.\nThe name must start and end with an alphanumeric character.\nThe name may be optionally prefixed with a subdomain consisting of lower-case alphanumeric characters,\nhyphens and periods, of at most 253 characters in length.\nEach period separated segment within the subdomain must start and end with an alphanumeric character.\nThe optional prefix and the name are separate by a forward slash (/).","type":"string","maxLength":317,"minLength":1,"x-kubernetes-validations":[{"rule":"self.matches(r'^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?([a-z0-9]([-a-z0-9]*[a-z0-9])?)$')"}]}}},"x-kubernetes-list-map-keys":["key"],"x-kubernetes-list-type":"map"}}},"multiKueue":{"description":"multiKueue controls the behaviour of the MultiKueue AdmissionCheck Controller.\nMultiKueue enables multi-cluster workload distribution.\nThis field is optional.\nIf multiKueue is not specified, MultiKueue is disabled.","type":"object","properties":{"externalFrameworks":{"description":"externalFrameworks are a list of GroupVersionKinds that should be supported\nby the generic MultiKueue adapter. Each entry defines how to handle a specific\nGroupVersionKind (GVK) for MultiKueue operations.\nexternalFrameworks are optional and should only be used if you have external frameworks\nthat need MultiKueue support.\nexternalFrameworks, if specified, must have at least one item and no more than 32 items.","type":"array","maxItems":32,"minItems":1,"items":{"description":"This is the GVR for an external framework.\nController runtime requires this in this format\nfor api discoverability.","type":"object","required":["group","resource","version"],"properties":{"group":{"description":"group is the API group of the externalFramework.\nMust be a valid DNS 1123 subdomain consisting of of lower-case alphanumeric characters,\nhyphens and periods, of at most 253 characters in length.\nEach period separated segment within the subdomain must start and end with an alphanumeric character.","type":"string","maxLength":253,"minLength":1,"x-kubernetes-validations":[{"rule":"self.matches(r'^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$')"}]},"resource":{"description":"resource is the Resource type of the external framework.\nResource types are lowercase and plural (e.g. pods, deployments).\nMust be a valid DNS 1123 label consisting of a lower-case alphanumeric string\nand hyphens of at most 63 characters in length.\nThe value must start and end with an alphanumeric character.","type":"string","maxLength":63,"minLength":1,"x-kubernetes-validations":[{"rule":"self.matches(r'^[a-z0-9]([-a-z0-9]*[a-z0-9])?$')"}]},"version":{"description":"version is the version of the api (e.g. v1alpha1, v1beta1, v1).\nMust be a valid DNS 1035 label consisting of a lower-case alphanumeric string\nand hyphens of at most 63 characters in length.\nThe value must start with an alphabetic character and end with an alphanumeric character.","type":"string","maxLength":63,"minLength":1,"x-kubernetes-validations":[{"rule":"self.matches(r'^[a-z0-9]([-a-z0-9]*[a-z0-9])?$')"}]}}},"x-kubernetes-list-map-keys":["group"],"x-kubernetes-list-type":"map"}}},"preemption":{"description":"preemption is the process of evicting one or more admitted Workloads to accommodate another Workload.\nKueue has classical premption and preemption via fair sharing.\npreemption is optional.\nIf preemption is not specified, the operator will decide the default.\nThis default could change over time.","type":"object","required":["preemptionPolicy"],"properties":{"preemptionPolicy":{"description":"preemptionPolicy are the types of preemption Kueue allows.\npreemptionPolicy is an optional field.\nThe allowed values are Classical, FairSharing and \"\".\nClassical means that an incoming workload, which does\nnot fit within the unusued quota, is eligible to issue preemptions\nwhen the requests of the workload are below the\nresource flavor's nominal quota or borrowWithinCohort is enabled\non the Cluster Queue.\nFairSharing means that ClusterQueues with pending Workloads can preempt other Workloads\nin their cohort until the preempting ClusterQueue\nobtains an equal or weighted share of the borrowable resources.\nThe borrowable resources are the unused nominal quota\nof all the ClusterQueues in the cohort.\nFairSharing is a more heavy weight algorithm.\nWhen set to \"\", this means no opinion and the operator is left\nto choose a reasonable default, which is subject to change over time.\nThe current default is Classical.","type":"string","enum":["","Classical","FairSharing"]}}},"workloadManagement":{"description":"workloadManagement controls how Kueue manages workloads.\nBy default Kueue will manage workloads that have a queue-name label.\nWorkloads that are missing the queue-name will be ignored by Kueue.\nIf workloadManagement is not specified, the operator will decide the\ndefault.\nThis default could change over time.\nThis field is optional.","type":"object","required":["labelPolicy"],"properties":{"labelPolicy":{"description":"labelPolicy controls whether or not Kueue reconciles\njobs that don't set the label kueue.x-k8s.io/queue-name.\nlabelPolicy is a required field.\nThe allowed values are QueueName, None and \"\".\nNone means that workloads will be suspended on\ncreation and a label will be added via a mutating webhook.\nThis will be applied for all integrations that Kueue manages.\nQueueName means that workloads that are managed\nby Kueue must have a label kueue.x-k8s.io/queue-name.\nIf this label is not present on the workload, then Kueue will\nignore this workload.\nWhen set to \"\", this means no opinion and the operator is left\nto choose a reasonable default, which is subject to change over time.\nThe current default is QueueName.","type":"string","enum":["","QueueName","None"]}}}}},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status holds observed values from the cluster.\nThey may not be overridden.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.openshift.io","kind":"Kueue","version":"v1"}],"x-kubernetes-validations":[{"message":"Kueue is a singleton, .metadata.name must be 'cluster'","rule":"self.metadata.name == 'cluster'"}]},"io.openshift.kueue.v1.KueueList":{"description":"KueueList is a list of Kueue","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of kueues. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.kueue.v1.Kueue"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.openshift.io","kind":"KueueList","version":"v1"}]},"io.openshift.machineconfiguration.v1.ControllerConfig":{"description":"ControllerConfig describes configuration for MachineConfigController.\nThis is currently only used to drive the MachineConfig objects generated by the TemplateController.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ControllerConfigSpec is the spec for ControllerConfig resource.","type":"object","required":["baseOSContainerImage","cloudProviderConfig","clusterDNSIP","images","ipFamilies","kubeAPIServerServingCAData","releaseImage","rootCAData"],"properties":{"additionalTrustBundle":{"description":"additionalTrustBundle is a certificate bundle that will be added to the nodes\ntrusted certificate store.","format":"byte"},"baseOSContainerImage":{"description":"BaseOSContainerImage is the new-format container image for operating system updates.","type":"string"},"baseOSExtensionsContainerImage":{"description":"BaseOSExtensionsContainerImage is the matching extensions container for the new-format container","type":"string"},"cloudProviderCAData":{"description":"cloudProvider specifies the cloud provider CA data","format":"byte"},"cloudProviderConfig":{"description":"cloudProviderConfig is the configuration for the given cloud provider","type":"string"},"clusterDNSIP":{"description":"clusterDNSIP is the cluster DNS IP address","type":"string"},"dns":{"description":"dns holds the cluster dns details","required":["spec","kind","apiVersion"],"properties":{"apiVersion":{"description":"apiVersion defines the versioned schema of this representation of an object. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"kind is a string value representing the type of this object. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-embedded-resource":true},"etcdDiscoveryDomain":{"description":"etcdDiscoveryDomain is deprecated, use Infra.Status.EtcdDiscoveryDomain instead","type":"string"},"imageRegistryBundleData":{"description":"imageRegistryBundleData is the ImageRegistryData","type":"array","items":{"description":"ImageRegistryBundle contains information for writing image registry certificates","type":"object","required":["data","file"],"properties":{"data":{"description":"data holds the contents of the bundle that will be written to the file location","type":"string","format":"byte"},"file":{"description":"file holds the name of the file where the bundle will be written to disk","type":"string"}}},"x-kubernetes-list-type":"atomic"},"imageRegistryBundleUserData":{"description":"imageRegistryBundleUserData is Image Registry Data provided by the user","type":"array","items":{"description":"ImageRegistryBundle contains information for writing image registry certificates","type":"object","required":["data","file"],"properties":{"data":{"description":"data holds the contents of the bundle that will be written to the file location","type":"string","format":"byte"},"file":{"description":"file holds the name of the file where the bundle will be written to disk","type":"string"}}},"x-kubernetes-list-type":"atomic"},"images":{"description":"images is map of images that are used by the controller to render templates under ./templates/","type":"object","additionalProperties":{"type":"string"}},"infra":{"description":"infra holds the infrastructure details","required":["spec","kind","apiVersion"],"properties":{"apiVersion":{"description":"apiVersion defines the versioned schema of this representation of an object. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"kind is a string value representing the type of this object. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"}},"x-kubernetes-embedded-resource":true},"internalRegistryPullSecret":{"description":"internalRegistryPullSecret is the pull secret for the internal registry, used by\nrpm-ostree to pull images from the internal registry if present","format":"byte"},"ipFamilies":{"description":"ipFamilies indicates the IP families in use by the cluster network","type":"string"},"kubeAPIServerServingCAData":{"description":"kubeAPIServerServingCAData managed Kubelet to API Server Cert... Rotated automatically","type":"string","format":"byte"},"network":{"description":"Network contains additional network related information","required":["mtuMigration"]},"networkType":{"description":"networkType holds the type of network the cluster is using\nXXX: this is temporary and will be dropped as soon as possible in favor of a better support\nto start network related services the proper way.\nNobody is also changing this once the cluster is up and running the first time, so, disallow\nregeneration if this changes.","type":"string"},"osImageURL":{"description":"OSImageURL is the old-format container image that contains the OS update payload.","type":"string"},"platform":{"description":"platform is deprecated, use Infra.Status.PlatformStatus.Type instead","type":"string"},"proxy":{"description":"proxy holds the current proxy configuration for the nodes"},"pullSecret":{"description":"pullSecret is the default pull secret that needs to be installed\non all machines.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"releaseImage":{"description":"releaseImage is the image used when installing the cluster","type":"string"},"rootCAData":{"description":"rootCAData specifies the root CA data","type":"string","format":"byte"}}},"status":{"description":"ControllerConfigStatus is the status for ControllerConfig","type":"object","properties":{"conditions":{"description":"conditions represents the latest available observations of current state.","type":"array","items":{"description":"ControllerConfigStatusCondition contains condition information for ControllerConfigStatus","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time of the last update to the current status object.","format":"date-time"},"message":{"description":"message provides additional information about the current condition.\nThis is only to be consumed by humans.","type":"string"},"reason":{"description":"reason is the reason for the condition's last transition.  Reasons are PascalCase","type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"type specifies the state of the operator's reconciliation functionality.","type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"controllerCertificates":{"description":"controllerCertificates represents the latest available observations of the automatically rotating certificates in the MCO.","type":"array","items":{"description":"ControllerCertificate contains info about a specific cert.","type":"object","required":["bundleFile","signer","subject"],"properties":{"bundleFile":{"description":"bundleFile is the larger bundle a cert comes from","type":"string"},"notAfter":{"description":"notAfter is the upper boundary for validity","type":"string","format":"date-time"},"notBefore":{"description":"notBefore is the lower boundary for validity","type":"string","format":"date-time"},"signer":{"description":"signer is the  cert Issuer","type":"string"},"subject":{"description":"subject is the cert subject","type":"string"}}},"x-kubernetes-list-type":"atomic"},"observedGeneration":{"description":"observedGeneration represents the generation observed by the controller.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"machineconfiguration.openshift.io","kind":"ControllerConfig","version":"v1"}]},"io.openshift.machineconfiguration.v1.ControllerConfigList":{"description":"ControllerConfigList is a list of ControllerConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of controllerconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.machineconfiguration.v1.ControllerConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"machineconfiguration.openshift.io","kind":"ControllerConfigList","version":"v1"}]},"io.openshift.monitoring.v1.AlertRelabelConfig":{"description":"AlertRelabelConfig defines a set of relabel configs for alerts.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec describes the desired state of this AlertRelabelConfig object.","type":"object","required":["configs"],"properties":{"configs":{"description":"configs is a list of sequentially evaluated alert relabel configs.","type":"array","minItems":1,"items":{"description":"RelabelConfig allows dynamic rewriting of label sets for alerts.\nSee Prometheus documentation:\n- https://prometheus.io/docs/prometheus/latest/configuration/configuration/#alert_relabel_configs\n- https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config","type":"object","properties":{"action":{"description":"action to perform based on regex matching. Must be one of: 'Replace', 'Keep',\n'Drop', 'HashMod', 'LabelMap', 'LabelDrop', or 'LabelKeep'. Default is: 'Replace'","type":"string","enum":["Replace","Keep","Drop","HashMod","LabelMap","LabelDrop","LabelKeep"]},"modulus":{"description":"modulus to take of the hash of the source label values.  This can be\ncombined with the 'HashMod' action to set 'target_label' to the 'modulus'\nof a hash of the concatenated 'source_labels'. This is only valid if\nsourceLabels is not empty and action is not 'LabelKeep' or 'LabelDrop'.","type":"integer","format":"int64"},"regex":{"description":"regex against which the extracted value is matched. Default is: '(.*)'\nregex is required for all actions except 'HashMod'","type":"string","maxLength":2048},"replacement":{"description":"replacement value against which a regex replace is performed if the regular\nexpression matches. This is required if the action is 'Replace' or\n'LabelMap' and forbidden for actions 'LabelKeep' and 'LabelDrop'.\nRegex capture groups are available. Default is: '$1'","type":"string","maxLength":2048},"separator":{"description":"separator placed between concatenated source label values. When omitted,\nPrometheus will use its default value of ';'.","type":"string","maxLength":2048},"sourceLabels":{"description":"sourceLabels select values from existing labels. Their content is\nconcatenated using the configured separator and matched against the\nconfigured regular expression for the 'Replace', 'Keep', and 'Drop' actions.\nNot allowed for actions 'LabelKeep' and 'LabelDrop'.","type":"array","items":{"description":"LabelName is a valid Prometheus label name which may only contain ASCII\nletters, numbers, and underscores.","type":"string","maxLength":2048,"pattern":"^[a-zA-Z_][a-zA-Z0-9_]*$"}},"targetLabel":{"description":"targetLabel to which the resulting value is written in a 'Replace' action.\nIt is required for 'Replace' and 'HashMod' actions and forbidden for\nactions 'LabelKeep' and 'LabelDrop'. Regex capture groups\nare available.","type":"string","maxLength":2048}},"x-kubernetes-validations":[{"message":"relabel action hashmod requires non-zero modulus","rule":"self.action != 'HashMod' || self.modulus != 0"},{"message":"targetLabel is required when action is Replace or HashMod","rule":"(self.action != 'Replace' && self.action != 'HashMod') || has(self.targetLabel)"},{"message":"LabelKeep and LabelDrop actions require only 'regex', and no other fields (found sourceLabels)","rule":"(self.action != 'LabelDrop' && self.action != 'LabelKeep') || !has(self.sourceLabels)"},{"message":"LabelKeep and LabelDrop actions require only 'regex', and no other fields (found targetLabel)","rule":"(self.action != 'LabelDrop' && self.action != 'LabelKeep') || !has(self.targetLabel)"},{"message":"LabelKeep and LabelDrop actions require only 'regex', and no other fields (found modulus)","rule":"(self.action != 'LabelDrop' && self.action != 'LabelKeep') || !has(self.modulus)"},{"message":"LabelKeep and LabelDrop actions require only 'regex', and no other fields (found separator)","rule":"(self.action != 'LabelDrop' && self.action != 'LabelKeep') || !has(self.separator)"},{"message":"LabelKeep and LabelDrop actions require only 'regex', and no other fields (found replacement)","rule":"(self.action != 'LabelDrop' && self.action != 'LabelKeep') || !has(self.replacement)"},{"message":"modulus requires sourceLabels to be present","rule":"!has(self.modulus) || (has(self.modulus) && size(self.sourceLabels) > 0)"},{"message":"sourceLabels is required for actions Replace, Keep, Drop, HashMod and LabelMap","rule":"(self.action == 'LabelDrop' || self.action == 'LabelKeep') || has(self.sourceLabels)"},{"message":"replacement is required for actions Replace and LabelMap","rule":"(self.action != 'Replace' && self.action != 'LabelMap') || has(self.replacement)"}]}}}},"status":{"description":"status describes the current state of this AlertRelabelConfig object.","type":"object","properties":{"conditions":{"description":"conditions contains details on the state of the AlertRelabelConfig, may be\nempty.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.openshift.io","kind":"AlertRelabelConfig","version":"v1"}]},"io.openshift.monitoring.v1.AlertRelabelConfigList":{"description":"AlertRelabelConfigList is a list of AlertRelabelConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of alertrelabelconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertRelabelConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.openshift.io","kind":"AlertRelabelConfigList","version":"v1"}]},"io.openshift.monitoring.v1.AlertingRule":{"description":"AlertingRule represents a set of user-defined Prometheus rule groups containing\nalerting rules.  This resource is the supported method for cluster admins to\ncreate alerts based on metrics recorded by the platform monitoring stack in\nOpenShift, i.e. the Prometheus instance deployed to the openshift-monitoring\nnamespace.  You might use this to create custom alerting rules not shipped with\nOpenShift based on metrics from components such as the node_exporter, which\nprovides machine-level metrics such as CPU usage, or kube-state-metrics, which\nprovides metrics on Kubernetes usage.\n\nThe API is mostly compatible with the upstream PrometheusRule type from the\nprometheus-operator.  The primary difference being that recording rules are not\nallowed here -- only alerting rules.  For each AlertingRule resource created, a\ncorresponding PrometheusRule will be created in the openshift-monitoring\nnamespace.  OpenShift requires admins to use the AlertingRule resource rather\nthan the upstream type in order to allow better OpenShift specific defaulting\nand validation, while not modifying the upstream APIs directly.\n\nYou can find upstream API documentation for PrometheusRule resources here:\n\nhttps://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec describes the desired state of this AlertingRule object.","type":"object","required":["groups"],"properties":{"groups":{"description":"groups is a list of grouped alerting rules.  Rule groups are the unit at\nwhich Prometheus parallelizes rule processing.  All rules in a single group\nshare a configured evaluation interval.  All rules in the group will be\nprocessed together on this interval, sequentially, and all rules will be\nprocessed.\n\nIt's common to group related alerting rules into a single AlertingRule\nresources, and within that resource, closely related alerts, or simply\nalerts with the same interval, into individual groups.  You are also free\nto create AlertingRule resources with only a single rule group, but be\naware that this can have a performance impact on Prometheus if the group is\nextremely large or has very complex query expressions to evaluate.\nSpreading very complex rules across multiple groups to allow them to be\nprocessed in parallel is also a common use-case.","type":"array","minItems":1,"items":{"description":"RuleGroup is a list of sequentially evaluated alerting rules.","type":"object","required":["name","rules"],"properties":{"interval":{"description":"interval is how often rules in the group are evaluated.  If not specified,\nit defaults to the global.evaluation_interval configured in Prometheus,\nwhich itself defaults to 30 seconds.  You can check if this value has been\nmodified from the default on your cluster by inspecting the platform\nPrometheus configuration:\nThe relevant field in that resource is: spec.evaluationInterval","type":"string","maxLength":2048,"pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"name":{"description":"name is the name of the group.","type":"string","maxLength":2048,"minLength":1},"rules":{"description":"rules is a list of sequentially evaluated alerting rules.  Prometheus may\nprocess rule groups in parallel, but rules within a single group are always\nprocessed sequentially, and all rules are processed.","type":"array","minItems":1,"items":{"description":"Rule describes an alerting rule.\nSee Prometheus documentation:\n- https://www.prometheus.io/docs/prometheus/latest/configuration/alerting_rules","type":"object","required":["alert","expr"],"properties":{"alert":{"description":"alert is the name of the alert. Must be a valid label value, i.e. may\ncontain any Unicode character.","type":"string","maxLength":2048,"minLength":1},"annotations":{"description":"annotations to add to each alert.  These are values that can be used to\nstore longer additional information that you won't query on, such as alert\ndescriptions or runbook links.","type":"object","additionalProperties":{"type":"string"}},"expr":{"description":"expr is the PromQL expression to evaluate. Every evaluation cycle this is\nevaluated at the current time, and all resultant time series become pending\nor firing alerts.  This is most often a string representing a PromQL\nexpression, e.g.: mapi_current_pending_csr > mapi_max_pending_csr\nIn rare cases this could be a simple integer, e.g. a simple \"1\" if the\nintent is to create an alert that is always firing.  This is sometimes used\nto create an always-firing \"Watchdog\" alert in order to ensure the alerting\npipeline is functional.","x-kubernetes-int-or-string":true},"for":{"description":"for is the time period after which alerts are considered firing after first\nreturning results.  Alerts which have not yet fired for long enough are\nconsidered pending.","type":"string","maxLength":2048,"pattern":"^(0|(([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?)$"},"labels":{"description":"labels to add or overwrite for each alert.  The results of the PromQL\nexpression for the alert will result in an existing set of labels for the\nalert, after evaluating the expression, for any label specified here with\nthe same name as a label in that set, the label here wins and overwrites\nthe previous value.  These should typically be short identifying values\nthat may be useful to query against.  A common example is the alert\nseverity, where one sets `severity: warning` under the `labels` key:","type":"object","additionalProperties":{"type":"string"}}}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"status":{"description":"status describes the current state of this AlertOverrides object.","type":"object","properties":{"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with.","type":"integer","format":"int64"},"prometheusRule":{"description":"prometheusRule is the generated PrometheusRule for this AlertingRule.  Each\nAlertingRule instance results in a generated PrometheusRule object in the\nsame namespace, which is always the openshift-monitoring namespace.","type":"object","required":["name"],"properties":{"name":{"description":"name of the referenced PrometheusRule.","type":"string","maxLength":2048,"minLength":1}}}}}},"x-kubernetes-group-version-kind":[{"group":"monitoring.openshift.io","kind":"AlertingRule","version":"v1"}]},"io.openshift.monitoring.v1.AlertingRuleList":{"description":"AlertingRuleList is a list of AlertingRule","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of alertingrules. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.monitoring.v1.AlertingRule"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"monitoring.openshift.io","kind":"AlertingRuleList","version":"v1"}]},"io.openshift.network.cloud.v1.CloudPrivateIPConfig":{"description":"CloudPrivateIPConfig performs an assignment of a private IP address to the\nprimary NIC associated with cloud VMs. This is done by specifying the IP and\nKubernetes node which the IP should be assigned to. This CRD is intended to\nbe used by the network plugin which manages the cluster network. The spec\nside represents the desired state requested by the network plugin, and the\nstatus side represents the current state that this CRD's controller has\nexecuted. No users will have permission to modify it, and if a cluster-admin\ndecides to edit it for some reason, their changes will be overwritten the\nnext time the network plugin reconciles the object. Note: the CR's name\nmust specify the requested private IP address (can be IPv4 or IPv6).\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the definition of the desired private IP request.","type":"object","properties":{"node":{"description":"node is the node name, as specified by the Kubernetes field: node.metadata.name","type":"string"}}},"status":{"description":"status is the observed status of the desired private IP request. Read-only.","type":"object","required":["conditions"],"properties":{"conditions":{"description":"condition is the assignment condition of the private IP and its status","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"node":{"description":"node is the node name, as specified by the Kubernetes field: node.metadata.name","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfig","version":"v1"}]},"io.openshift.network.cloud.v1.CloudPrivateIPConfigList":{"description":"CloudPrivateIPConfigList is a list of CloudPrivateIPConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cloudprivateipconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.network.cloud.v1.CloudPrivateIPConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"cloud.network.openshift.io","kind":"CloudPrivateIPConfigList","version":"v1"}]},"io.openshift.oadp.v1alpha1.CloudStorage":{"type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["creationSecret","name","provider"],"properties":{"creationSecret":{"description":"creationSecret is the secret that is needed to be used while creating the bucket.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"enableSharedConfig":{"description":"enableSharedConfig enable the use of shared config loading for AWS Buckets","type":"boolean"},"name":{"description":"name is the name requested for the bucket (aws, gcp) or container (azure)","type":"string"},"provider":{"description":"provider is the provider of the cloud storage","type":"string","enum":["aws"]},"region":{"description":"region for the bucket to be in, will be us-east-1 if not set.","type":"string"},"tags":{"description":"tags for the bucket","type":"object","additionalProperties":{"type":"string"}}}},"status":{"type":"object","required":["name"],"properties":{"lastSyncTimestamp":{"type":"string","format":"date-time"},"name":{"type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"oadp.openshift.io","kind":"CloudStorage","version":"v1alpha1"}]},"io.openshift.oadp.v1alpha1.CloudStorageList":{"description":"CloudStorageList is a list of CloudStorage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cloudstorages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.CloudStorage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"oadp.openshift.io","kind":"CloudStorageList","version":"v1alpha1"}]},"io.openshift.oadp.v1alpha1.DataProtectionApplication":{"description":"DataProtectionApplication is the Schema for the dpa API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DataProtectionApplicationSpec defines the desired state of Velero","type":"object","required":["configuration"],"properties":{"backupImages":{"description":"backupImages is used to specify whether you want to deploy a registry for enabling backup and restore of images","type":"boolean"},"backupLocations":{"description":"backupLocations defines the list of desired configuration to use for BackupStorageLocations","type":"array","items":{"description":"BackupLocation defines the configuration for the DPA backup storage","type":"object","properties":{"bucket":{"description":"CloudStorageLocation defines BackupStorageLocation using bucket referenced by CloudStorage CR.","type":"object","required":["cloudStorageRef"],"properties":{"backupSyncPeriod":{"description":"backupSyncPeriod defines how frequently to sync backup API objects from object storage. A value of 0 disables sync."},"caCert":{"description":"CACert defines a CA bundle to use when verifying TLS connections to the provider.","type":"string","format":"byte"},"cloudStorageRef":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"config":{"description":"config is for provider-specific configuration fields.","type":"object","additionalProperties":{"type":"string"}},"credential":{"description":"credential contains the credential information intended to be used with this location","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"default":{"description":"default indicates this location is the default backup storage location.","type":"boolean"},"prefix":{"description":"Prefix is the path inside a bucket to use for Velero storage. Optional.","type":"string"}}},"name":{"type":"string"},"velero":{"description":"BackupStorageLocationSpec defines the desired state of a Velero BackupStorageLocation","type":"object","required":["objectStorage","provider"],"properties":{"accessMode":{"description":"AccessMode defines the permissions for the backup storage location.","type":"string","enum":["ReadOnly","ReadWrite"]},"backupSyncPeriod":{"description":"BackupSyncPeriod defines how frequently to sync backup API objects from object storage. A value of 0 disables sync."},"config":{"description":"Config is for provider-specific configuration fields.","type":"object","additionalProperties":{"type":"string"}},"credential":{"description":"Credential contains the credential information intended to be used with this location","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"default":{"description":"Default indicates this location is the default backup storage location.","type":"boolean"},"objectStorage":{"description":"ObjectStorageLocation specifies the settings necessary to connect to a provider's object storage.","type":"object","required":["bucket"],"properties":{"bucket":{"description":"Bucket is the bucket to use for object storage.","type":"string"},"caCert":{"description":"CACert defines a CA bundle to use when verifying TLS connections to the provider.","type":"string","format":"byte"},"prefix":{"description":"Prefix is the path inside a bucket to use for Velero storage. Optional.","type":"string"}}},"provider":{"description":"Provider is the provider of the backup storage.","type":"string"},"validationFrequency":{"description":"ValidationFrequency defines how frequently to validate the corresponding object storage. A value of 0 disables validation."}}}}}},"configuration":{"description":"configuration is used to configure the data protection application's server config","type":"object","properties":{"nodeAgent":{"description":"NodeAgent is needed to allow selection between kopia or restic","type":"object","required":["uploaderType"],"properties":{"enable":{"description":"enable defines a boolean pointer whether we want the daemonset to\nexist or not","type":"boolean"},"podConfig":{"description":"Pod specific configuration","type":"object","properties":{"env":{"description":"env defines the list of environment variables to be supplied to podSpec","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"labels":{"description":"labels to add to pods","type":"object","additionalProperties":{"type":"string"}},"nodeSelector":{"description":"nodeSelector defines the nodeSelector to be supplied to podSpec","type":"object","additionalProperties":{"type":"string"}},"resourceAllocations":{"description":"resourceAllocations defines the CPU, Memory and ephemeral-storage resource allocations for the Pod"},"tolerations":{"description":"tolerations defines the list of tolerations to be applied to daemonset","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"supplementalGroups":{"description":"supplementalGroups defines the linux groups to be applied to the NodeAgent Pod","type":"array","items":{"type":"integer","format":"int64"}},"timeout":{"description":"timeout defines the NodeAgent timeout, default value is 1h","type":"string"},"uploaderType":{"description":"The type of uploader to transfer the data of pod volumes, the supported values are 'restic' or 'kopia'","type":"string","enum":["restic","kopia"]}}},"restic":{"description":"(deprecation warning) ResticConfig is the configuration for restic DaemonSet.\nrestic is for backwards compatibility and is replaced by the nodeAgent\nrestic will be removed in the future","type":"object","properties":{"enable":{"description":"enable defines a boolean pointer whether we want the daemonset to\nexist or not","type":"boolean"},"podConfig":{"description":"Pod specific configuration","type":"object","properties":{"env":{"description":"env defines the list of environment variables to be supplied to podSpec","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"labels":{"description":"labels to add to pods","type":"object","additionalProperties":{"type":"string"}},"nodeSelector":{"description":"nodeSelector defines the nodeSelector to be supplied to podSpec","type":"object","additionalProperties":{"type":"string"}},"resourceAllocations":{"description":"resourceAllocations defines the CPU, Memory and ephemeral-storage resource allocations for the Pod"},"tolerations":{"description":"tolerations defines the list of tolerations to be applied to daemonset","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"supplementalGroups":{"description":"supplementalGroups defines the linux groups to be applied to the NodeAgent Pod","type":"array","items":{"type":"integer","format":"int64"}},"timeout":{"description":"timeout defines the NodeAgent timeout, default value is 1h","type":"string"}}},"velero":{"type":"object","properties":{"args":{"description":"Velero args are settings to customize velero server arguments. Overrides values in other fields.","type":"object","properties":{"add_dir_header":{"description":"If true, adds the file directory to the header of the log messages","type":"boolean"},"alsologtostderr":{"description":"log to standard error as well as files (no effect when -logtostderr=true)","type":"boolean"},"backup-sync-period":{"description":"How often (in nanoseconds) to ensure all Velero backups in object storage exist as Backup API objects in the cluster. This is the default sync period if none is explicitly specified for a backup storage location.","type":"integer","format":"int64"},"client-burst":{"description":"Maximum number of requests by the server to the Kubernetes API in a short period of time.","type":"integer"},"client-page-size":{"description":"Page size of requests by the server to the Kubernetes API when listing objects during a backup. Set to 0 to disable paging.","type":"integer"},"client-qps":{"description":"Maximum number of requests per second by the server to the Kubernetes API once the burst limit has been reached.\nthis will be validated as a valid float32","type":"string"},"colorized":{"description":"Show colored output in TTY","type":"boolean"},"default-backup-ttl":{"description":"How long (in nanoseconds) to wait by default before backups can be garbage collected. (default is 720 hours)","type":"integer","format":"int64"},"default-item-operation-timeout":{"description":"How long (in nanoseconds) to wait on asynchronous BackupItemActions and RestoreItemActions to complete before timing out. (default is 1 hour)","type":"integer","format":"int64"},"default-repo-maintain-frequency":{"description":"How often (in nanoseconds) 'maintain' is run for backup repositories by default.","type":"integer","format":"int64"},"default-volumes-to-fs-backup":{"description":"Backup all volumes with pod volume file system backup by default.","type":"boolean"},"disabled-controllers":{"description":"List of controllers to disable on startup. Valid values are backup,backup-operations,backup-deletion,backup-finalizer,backup-sync,download-request,gc,backup-repo,restore,restore-operations,schedule,server-status-request","type":"array","enum":["backup","backup-operations","backup-deletion","backup-finalizer","backup-sync","download-request","gc","backup-repo","restore","restore-operations","schedule","server-status-request"],"items":{"type":"string"}},"fs-backup-timeout":{"description":"How long (in nanoseconds) pod volume file system backups/restores should be allowed to run before timing out. (default is 4 hours)","type":"integer","format":"int64"},"garbage-collection-frequency":{"description":"How often (in nanoseconds) garbage collection checks for expired backups. (default is 1 hour)","type":"integer","format":"int64"},"item-operation-sync-frequency":{"description":"How often (in nanoseconds) to check status on backup/restore operations after backup/restore processing.","type":"integer","format":"int64"},"log-format":{"description":"The format for log output. Valid values are text, json. (default text)","type":"string","enum":["text","json"]},"log_backtrace_at":{"description":"when logging hits line file:N, emit a stack trace","type":"string"},"log_dir":{"description":"If non-empty, write log files in this directory (no effect when -logtostderr=true)","type":"string"},"log_file":{"description":"If non-empty, use this log file (no effect when -logtostderr=true)","type":"string"},"log_file_max_size":{"description":"Defines the maximum size a log file can grow to (no effect when -logtostderr=true). Unit is megabytes. If the value is 0, the maximum file size is unlimited. (default 1800)","type":"integer","format":"int64","minimum":0},"logtostderr":{"description":"Boolean flags. Not handled atomically because the flag.Value interface\ndoes not let us avoid the =true, and that shorthand is necessary for\ncompatibility. TODO: does this matter enough to fix? Seems unlikely.","type":"boolean"},"max-concurrent-k8s-connections":{"description":"Max concurrent connections number that Velero can create with kube-apiserver. Default is 30. (default 30)","type":"integer"},"metrics-address":{"description":"The address to expose prometheus metrics","type":"string"},"one_output":{"description":"If true, only write logs to their native severity level (vs also writing to each lower severity level; no effect when -logtostderr=true)","type":"boolean"},"profiler-address":{"description":"The address to expose the pprof profiler.","type":"string"},"resource-timeout":{"description":"How long (in nanoseconds) to wait for resource processes which are not covered by other specific timeout parameters. (default is 10 minutes)","type":"integer","format":"int64"},"restore-resource-priorities":{"description":"Desired order of resource restores, the priority list contains two parts which are split by \"-\" element. The resources before \"-\" element are restored first as high priorities, the resources after \"-\" element are restored last as low priorities, and any resource not in the list will be restored alphabetically between the high and low priorities. (default securitycontextconstraints,customresourcedefinitions,klusterletconfigs.config.open-cluster-management.io,managedcluster.cluster.open-cluster-management.io,namespaces,roles,rolebindings,clusterrolebindings,klusterletaddonconfig.agent.open-cluster-management.io,managedclusteraddon.addon.open-cluster-management.io,storageclasses,volumesnapshotclass.snapshot.storage.k8s.io,volumesnapshotcontents.snapshot.storage.k8s.io,volumesnapshots.snapshot.storage.k8s.io,datauploads.velero.io,persistentvolumes,persistentvolumeclaims,serviceaccounts,secrets,configmaps,limitranges,pods,replicasets.apps,clusterclasses.cluster.x-k8s.io,endpoints,services,-,clusterbootstraps.run.tanzu.vmware.com,clusters.cluster.x-k8s.io,clusterresourcesets.addons.cluster.x-k8s.io)","type":"string"},"skip_headers":{"description":"If true, avoid header prefixes in the log messages","type":"boolean"},"skip_log_headers":{"description":"If true, avoid headers when opening log files (no effect when -logtostderr=true)","type":"boolean"},"stderrthreshold":{"description":"logs at or above this threshold go to stderr when writing to files and stderr (no effect when -logtostderr=true or -alsologtostderr=false) (default 2)","type":"integer"},"store-validation-frequency":{"description":"How often (in nanoseconds) to verify if the storage is valid. Optional. Set this to `0` to disable sync. (default is 1 minute)","type":"integer","format":"int64"},"terminating-resource-timeout":{"description":"How long (in nanoseconds) to wait on persistent volumes and namespaces to terminate during a restore before timing out.","type":"integer","format":"int64"},"v":{"description":"number for the log level verbosity","type":"integer"},"vmodule":{"description":"comma-separated list of pattern=N settings for file-filtered logging","type":"string"}}},"client-burst":{"description":"maximum number of requests by the server to the Kubernetes API in a short period of time. (default 100)","type":"integer"},"client-qps":{"description":"maximum number of requests per second by the server to the Kubernetes API once the burst limit has been reached. (default 100)","type":"integer"},"customPlugins":{"description":"customPlugins defines the custom plugin to be installed with Velero","type":"array","items":{"type":"object","required":["image","name"],"properties":{"image":{"type":"string"},"name":{"type":"string"}}}},"defaultItemOperationTimeout":{"description":"How long to wait on asynchronous BackupItemActions and RestoreItemActions to complete before timing out. Default value is 1h.","type":"string"},"defaultPlugins":{"type":"array","items":{"type":"string","enum":["aws","legacy-aws","gcp","azure","csi","vsm","openshift","kubevirt","hypershift"]}},"defaultSnapshotMoveData":{"description":"Specify whether CSI snapshot data should be moved to backup storage by default","type":"boolean"},"defaultVolumesToFSBackup":{"description":"Use pod volume file system backup by default for volumes","type":"boolean"},"disableInformerCache":{"description":"Disable informer cache for Get calls on restore. With this enabled, it will speed up restore in cases where there are backup resources which already exist in the cluster, but for very large clusters this will increase velero memory usage. Default is false.","type":"boolean"},"featureFlags":{"description":"featureFlags defines the list of features to enable for Velero instance","type":"array","items":{"type":"string"}},"itemOperationSyncFrequency":{"description":"How often to check status on async backup/restore operations after backup processing. Default value is 2m.","type":"string"},"logLevel":{"description":"Velero server’s log level (use debug for the most logging, leave unset for velero default)","type":"string","enum":["trace","debug","info","warning","error","fatal","panic"]},"noDefaultBackupLocation":{"description":"If you need to install Velero without a default backup storage location noDefaultBackupLocation flag is required for confirmation","type":"boolean"},"podConfig":{"description":"Pod specific configuration","type":"object","properties":{"env":{"description":"env defines the list of environment variables to be supplied to podSpec","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable. Must be a C_IDENTIFIER.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"labels":{"description":"labels to add to pods","type":"object","additionalProperties":{"type":"string"}},"nodeSelector":{"description":"nodeSelector defines the nodeSelector to be supplied to podSpec","type":"object","additionalProperties":{"type":"string"}},"resourceAllocations":{"description":"resourceAllocations defines the CPU, Memory and ephemeral-storage resource allocations for the Pod"},"tolerations":{"description":"tolerations defines the list of tolerations to be applied to daemonset","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"resourceTimeout":{"description":"resourceTimeout defines how long to wait for several Velero resources before timeout occurs,\nsuch as Velero CRD availability, volumeSnapshot deletion, and repo availability.\nDefault is 10m","type":"string"},"restoreResourcesVersionPriority":{"description":"restoreResourceVersionPriority represents a configmap that will be created if defined for use in conjunction with EnableAPIGroupVersions feature flag\nDefining this field automatically add EnableAPIGroupVersions to the velero server feature flag","type":"string"}}}}},"features":{"description":"features defines the configuration for the DPA to enable the OADP tech preview features","type":"object","properties":{"dataMover":{"description":"(do not use warning) Contains data mover specific configurations\ndataMover is for backwards compatibility and is not necessary in OADP 1.3\ndataMover will be removed with the OADP 1.4","type":"object","properties":{"credentialName":{"description":"User supplied Restic Secret name","type":"string"},"enable":{"description":"enable flag is used to specify whether you want to deploy the volume snapshot mover controller","type":"boolean"},"maxConcurrentBackupVolumes":{"description":"the number of batched volumeSnapshotBackups that can be inProgress at once, default value is 10","type":"string"},"maxConcurrentRestoreVolumes":{"description":"the number of batched volumeSnapshotRestores that can be inProgress at once, default value is 10","type":"string"},"pruneInterval":{"description":"defines how often (in days) to prune the datamover snapshots from the repository","type":"string"},"schedule":{"description":"schedule is a cronspec (https://en.wikipedia.org/wiki/Cron#Overview) that\ncan be used to schedule datamover(volsync) synchronization to occur at regular, time-based\nintervals. For example, in order to enforce datamover SnapshotRetainPolicy at a regular interval you need to\nspecify this Schedule trigger as a cron expression, by default the trigger is a manual trigger. For more details\non Volsync triggers, refer: https://volsync.readthedocs.io/en/stable/usage/triggers.html","type":"string","pattern":"^(\\d+|\\*)(/\\d+)?(\\s+(\\d+|\\*)(/\\d+)?){4}$"},"snapshotRetainPolicy":{"description":"defines the parameters that can be specified for retention of datamover snapshots","type":"object","properties":{"daily":{"description":"Daily defines the number of snapshots to be kept daily","type":"string"},"hourly":{"description":"Hourly defines the number of snapshots to be kept hourly","type":"string"},"monthly":{"description":"Monthly defines the number of snapshots to be kept monthly","type":"string"},"weekly":{"description":"Weekly defines the number of snapshots to be kept weekly","type":"string"},"within":{"description":"Within defines the number of snapshots to be kept Within the given time period","type":"string"},"yearly":{"description":"Yearly defines the number of snapshots to be kept yearly","type":"string"}}},"timeout":{"description":"User supplied timeout to be used for VolumeSnapshotBackup and VolumeSnapshotRestore to complete, default value is 10m","type":"string"},"volumeOptionsForStorageClasses":{"description":"defines configurations for data mover volume options for a storageClass","type":"object","additionalProperties":{"type":"object","properties":{"destinationVolumeOptions":{"description":"VolumeOptions defines configurations for VolSync options","type":"object","properties":{"accessMode":{"description":"accessMode can be used to override the accessMode of the source or\ndestination PVC","type":"string"},"cacheAccessMode":{"description":"cacheAccessMode is the access mode to be used to provision the cache volume","type":"string"},"cacheCapacity":{"description":"cacheCapacity determines the size of the restic metadata cache volume","type":"string"},"cacheStorageClassName":{"description":"cacheStorageClassName is the storageClass that should be used when provisioning\nthe data mover cache volume","type":"string"},"storageClassName":{"description":"storageClassName can be used to override the StorageClass of the source\nor destination PVC","type":"string"}}},"sourceVolumeOptions":{"description":"VolumeOptions defines configurations for VolSync options","type":"object","properties":{"accessMode":{"description":"accessMode can be used to override the accessMode of the source or\ndestination PVC","type":"string"},"cacheAccessMode":{"description":"cacheAccessMode is the access mode to be used to provision the cache volume","type":"string"},"cacheCapacity":{"description":"cacheCapacity determines the size of the restic metadata cache volume","type":"string"},"cacheStorageClassName":{"description":"cacheStorageClassName is the storageClass that should be used when provisioning\nthe data mover cache volume","type":"string"},"storageClassName":{"description":"storageClassName can be used to override the StorageClass of the source\nor destination PVC","type":"string"}}}}}}}}}},"imagePullPolicy":{"description":"which imagePullPolicy to use in all container images used by OADP.\nBy default, for images with sha256 or sha512 digest, OADP uses IfNotPresent and uses Always for all other images.","type":"string","enum":["Always","IfNotPresent","Never"]},"podAnnotations":{"description":"add annotations to pods deployed by operator","type":"object","additionalProperties":{"type":"string"}},"podDnsConfig":{"description":"podDnsConfig defines the DNS parameters of a pod in addition to\nthose generated from DNSPolicy.\nhttps://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pod-dns-config","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"}},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Required.","type":"string"},"value":{"type":"string"}}}},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"}}}},"podDnsPolicy":{"description":"podDnsPolicy defines how a pod's DNS will be configured.\nhttps://kubernetes.io/docs/concepts/services-networking/dns-pod-service/#pod-s-dns-policy","type":"string"},"snapshotLocations":{"description":"snapshotLocations defines the list of desired configuration to use for VolumeSnapshotLocations","type":"array","items":{"description":"SnapshotLocation defines the configuration for the DPA snapshot store","type":"object","required":["velero"],"properties":{"name":{"type":"string"},"velero":{"description":"VolumeSnapshotLocationSpec defines the specification for a Velero VolumeSnapshotLocation.","type":"object","required":["provider"],"properties":{"config":{"description":"Config is for provider-specific configuration fields.","type":"object","additionalProperties":{"type":"string"}},"credential":{"description":"Credential contains the credential information intended to be used with this location","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"provider":{"description":"Provider is the provider of the volume storage.","type":"string"}}}}}},"unsupportedOverrides":{"description":"unsupportedOverrides can be used to override images used in deployments.\nAvailable keys are:\n  - veleroImageFqin\n  - awsPluginImageFqin\n  - legacyAWSPluginImageFqin\n  - openshiftPluginImageFqin\n  - azurePluginImageFqin\n  - gcpPluginImageFqin\n  - resticRestoreImageFqin\n  - kubevirtPluginImageFqin\n  - hypershiftPluginImageFqin\n  - operator-type","type":"object","additionalProperties":{"type":"string"}}}},"status":{"description":"DataProtectionApplicationStatus defines the observed state of DataProtectionApplication","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"oadp.openshift.io","kind":"DataProtectionApplication","version":"v1alpha1"}]},"io.openshift.oadp.v1alpha1.DataProtectionApplicationList":{"description":"DataProtectionApplicationList is a list of DataProtectionApplication","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of dataprotectionapplications. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.oadp.v1alpha1.DataProtectionApplication"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"oadp.openshift.io","kind":"DataProtectionApplicationList","version":"v1alpha1"}]},"io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck":{"description":"PodNetworkConnectivityCheck\n\nCompatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the source and target of the connectivity check","type":"object","required":["sourcePod","targetEndpoint"],"properties":{"sourcePod":{"description":"SourcePod names the pod from which the condition will be checked","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"targetEndpoint":{"description":"EndpointAddress to check. A TCP address of the form host:port. Note that\nif host is a DNS name, then the check would fail if the DNS name cannot\nbe resolved. Specify an IP address for host to bypass DNS name lookup.","type":"string","pattern":"^\\S+:\\d*$"},"tlsClientCert":{"description":"TLSClientCert, if specified, references a kubernetes.io/tls type secret with 'tls.crt' and\n'tls.key' entries containing an optional TLS client certificate and key to be used when\nchecking endpoints that require a client certificate in order to gracefully preform the\nscan without causing excessive logging in the endpoint process. The secret must exist in\nthe same namespace as this resource.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}},"status":{"description":"Status contains the observed status of the connectivity check","type":"object","properties":{"conditions":{"description":"Conditions summarize the status of the check","type":"array","items":{"description":"PodNetworkConnectivityCheckCondition represents the overall status of the pod network connectivity.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"Last time the condition transitioned from one status to another.","format":"date-time"},"message":{"description":"Message indicating details about last transition in a human readable format.","type":"string"},"reason":{"description":"Reason for the condition's last status transition in a machine readable format.","type":"string"},"status":{"description":"Status of the condition","type":"string"},"type":{"description":"Type of the condition","type":"string"}}}},"failures":{"description":"Failures contains logs of unsuccessful check actions","type":"array","items":{"description":"LogEntry records events","type":"object","required":["success"],"properties":{"latency":{"description":"Latency records how long the action mentioned in the entry took."},"message":{"description":"Message explaining status in a human readable format.","type":"string"},"reason":{"description":"Reason for status in a machine readable format.","type":"string"},"success":{"description":"Success indicates if the log entry indicates a success or failure.","type":"boolean"},"time":{"description":"Start time of check action.","format":"date-time"}}}},"outages":{"description":"Outages contains logs of time periods of outages","type":"array","items":{"description":"OutageEntry records time period of an outage","type":"object","properties":{"end":{"description":"End of outage detected","format":"date-time"},"endLogs":{"description":"EndLogs contains log entries related to the end of this outage. Should contain the success\nentry that resolved the outage and possibly a few of the failure log entries that preceded it.","type":"array","items":{"description":"LogEntry records events","type":"object","required":["success"],"properties":{"latency":{"description":"Latency records how long the action mentioned in the entry took."},"message":{"description":"Message explaining status in a human readable format.","type":"string"},"reason":{"description":"Reason for status in a machine readable format.","type":"string"},"success":{"description":"Success indicates if the log entry indicates a success or failure.","type":"boolean"},"time":{"description":"Start time of check action.","format":"date-time"}}}},"message":{"description":"Message summarizes outage details in a human readable format.","type":"string"},"start":{"description":"Start of outage detected","format":"date-time"},"startLogs":{"description":"StartLogs contains log entries related to the start of this outage. Should contain\nthe original failure, any entries where the failure mode changed.","type":"array","items":{"description":"LogEntry records events","type":"object","required":["success"],"properties":{"latency":{"description":"Latency records how long the action mentioned in the entry took."},"message":{"description":"Message explaining status in a human readable format.","type":"string"},"reason":{"description":"Reason for status in a machine readable format.","type":"string"},"success":{"description":"Success indicates if the log entry indicates a success or failure.","type":"boolean"},"time":{"description":"Start time of check action.","format":"date-time"}}}}}}},"successes":{"description":"Successes contains logs successful check actions","type":"array","items":{"description":"LogEntry records events","type":"object","required":["success"],"properties":{"latency":{"description":"Latency records how long the action mentioned in the entry took."},"message":{"description":"Message explaining status in a human readable format.","type":"string"},"reason":{"description":"Reason for status in a machine readable format.","type":"string"},"success":{"description":"Success indicates if the log entry indicates a success or failure.","type":"boolean"},"time":{"description":"Start time of check action.","format":"date-time"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheck","version":"v1alpha1"}]},"io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheckList":{"description":"PodNetworkConnectivityCheckList is a list of PodNetworkConnectivityCheck","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of podnetworkconnectivitychecks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.controlplane.v1alpha1.PodNetworkConnectivityCheck"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"controlplane.operator.openshift.io","kind":"PodNetworkConnectivityCheckList","version":"v1alpha1"}]},"io.openshift.operator.imageregistry.v1.Config":{"description":"Config is the configuration object for a registry instance managed by\nthe registry operator\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ImageRegistrySpec defines the specs for the running registry.","type":"object","required":["replicas"],"properties":{"affinity":{"description":"affinity is a group of node affinity scheduling rules for the image registry pod(s).","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"defaultRoute":{"description":"defaultRoute indicates whether an external facing route for the registry\nshould be created using the default generated hostname.","type":"boolean"},"disableRedirect":{"description":"disableRedirect controls whether to route all data through the Registry,\nrather than redirecting to the backend.","type":"boolean"},"httpSecret":{"description":"httpSecret is the value needed by the registry to secure uploads, generated by default.","type":"string"},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"logging":{"description":"logging is deprecated, use logLevel instead.","type":"integer","format":"int64"},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"nodeSelector":{"description":"nodeSelector defines the node selection constraints for the registry\npod.","type":"object","additionalProperties":{"type":"string"}},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"proxy":{"description":"proxy defines the proxy to be used when calling master api, upstream\nregistries, etc.","type":"object","properties":{"http":{"description":"http defines the proxy to be used by the image registry when\naccessing HTTP endpoints.","type":"string"},"https":{"description":"https defines the proxy to be used by the image registry when\naccessing HTTPS endpoints.","type":"string"},"noProxy":{"description":"noProxy defines a comma-separated list of host names that shouldn't\ngo through any proxy.","type":"string"}}},"readOnly":{"description":"readOnly indicates whether the registry instance should reject attempts\nto push new images or delete existing ones.","type":"boolean"},"replicas":{"description":"replicas determines the number of registry instances to run.","type":"integer","format":"int32"},"requests":{"description":"requests controls how many parallel requests a given registry instance\nwill handle before queuing additional requests.","type":"object","properties":{"read":{"description":"read defines limits for image registry's reads.","type":"object","properties":{"maxInQueue":{"description":"maxInQueue sets the maximum queued api requests to the registry.","type":"integer"},"maxRunning":{"description":"maxRunning sets the maximum in flight api requests to the registry.","type":"integer"},"maxWaitInQueue":{"description":"maxWaitInQueue sets the maximum time a request can wait in the queue\nbefore being rejected.","type":"string","format":"duration"}}},"write":{"description":"write defines limits for image registry's writes.","type":"object","properties":{"maxInQueue":{"description":"maxInQueue sets the maximum queued api requests to the registry.","type":"integer"},"maxRunning":{"description":"maxRunning sets the maximum in flight api requests to the registry.","type":"integer"},"maxWaitInQueue":{"description":"maxWaitInQueue sets the maximum time a request can wait in the queue\nbefore being rejected.","type":"string","format":"duration"}}}},"x-kubernetes-map-type":"atomic"},"resources":{"description":"resources defines the resource requests+limits for the registry pod.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-map-type":"atomic"},"rolloutStrategy":{"description":"rolloutStrategy defines rollout strategy for the image registry\ndeployment.","type":"string","pattern":"^(RollingUpdate|Recreate)$"},"routes":{"description":"routes defines additional external facing routes which should be\ncreated for the registry.","type":"array","items":{"description":"ImageRegistryConfigRoute holds information on external route access to image\nregistry.","type":"object","required":["name"],"properties":{"hostname":{"description":"hostname for the route.","type":"string"},"name":{"description":"name of the route to be created.","type":"string"},"secretName":{"description":"secretName points to secret containing the certificates to be used\nby the route.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"storage":{"description":"storage details for configuring registry storage, e.g. S3 bucket\ncoordinates.","type":"object","properties":{"azure":{"description":"azure represents configuration that uses Azure Blob Storage.","type":"object","properties":{"accountName":{"description":"accountName defines the account to be used by the registry.","type":"string"},"cloudName":{"description":"cloudName is the name of the Azure cloud environment to be used by the\nregistry. If empty, the operator will set it based on the infrastructure\nobject.","type":"string"},"container":{"description":"container defines Azure's container to be used by registry.","type":"string","maxLength":63,"minLength":3,"pattern":"^[0-9a-z]+(-[0-9a-z]+)*$"},"networkAccess":{"description":"networkAccess defines the network access properties for the storage account.\nDefaults to type: External.","type":"object","properties":{"internal":{"description":"internal defines the vnet and subnet names to configure a private\nendpoint and connect it to the storage account in order to make it\nprivate.\nwhen type: Internal and internal is unset, the image registry operator\nwill discover vnet and subnet names, and generate a private endpoint\nname.","type":"object","properties":{"networkResourceGroupName":{"description":"networkResourceGroupName is the resource group name where the cluster's vnet\nand subnet are. When omitted, the registry operator will use the cluster\nresource group (from in the infrastructure status).\nIf you set a networkResourceGroupName on your install-config.yaml, that\nvalue will be used automatically (for clusters configured with publish:Internal).\nNote that both vnet and subnet must be in the same resource group.\nIt must be between 1 and 90 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_), and\nnot end with a period.","type":"string","maxLength":90,"minLength":1,"pattern":"^[0-9A-Za-z_.-](?:[0-9A-Za-z_.-]*[0-9A-Za-z_-])?$"},"privateEndpointName":{"description":"privateEndpointName is the name of the private endpoint for the registry.\nWhen provided, the registry will use it as the name of the private endpoint\nit will create for the storage account. When omitted, the registry will\ngenerate one.\nIt must be between 2 and 64 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_).\nIt must start with an alphanumeric character and end with an alphanumeric character or an underscore.","type":"string","maxLength":64,"minLength":2,"pattern":"^[0-9A-Za-z][0-9A-Za-z_.-]*[0-9A-Za-z_]$"},"subnetName":{"description":"subnetName is the name of the subnet the registry operates in. When omitted,\nthe registry operator will discover and set this by using the `kubernetes.io_cluster.<cluster-id>`\ntag in the vnet resource, then using one of listed subnets.\nAdvanced cluster network configurations that use network security groups\nto protect subnets should ensure the provided subnetName has access to\nAzure Storage service.\nIt must be between 1 and 80 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_).","type":"string","maxLength":80,"minLength":1,"pattern":"^[0-9A-Za-z](?:[0-9A-Za-z_.-]*[0-9A-Za-z_])?$"},"vnetName":{"description":"vnetName is the name of the vnet the registry operates in. When omitted,\nthe registry operator will discover and set this by using the `kubernetes.io_cluster.<cluster-id>`\ntag in the vnet resource. This tag is set automatically by the installer.\nCommonly, this will be the same vnet as the cluster.\nAdvanced cluster network configurations should ensure the provided vnetName\nis the vnet of the nodes where the image registry pods are running from.\nIt must be between 2 and 64 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_).\nIt must start with an alphanumeric character and end with an alphanumeric character or an underscore.","type":"string","maxLength":64,"minLength":2,"pattern":"^[0-9A-Za-z][0-9A-Za-z_.-]*[0-9A-Za-z_]$"}}},"type":{"description":"type is the network access level to be used for the storage account.\ntype: Internal means the storage account will be private, type: External\nmeans the storage account will be publicly accessible.\nInternal storage accounts are only exposed within the cluster's vnet.\nExternal storage accounts are publicly exposed on the internet.\nWhen type: Internal is used, a vnetName, subNetName and privateEndpointName\nmay optionally be specified. If unspecificed, the image registry operator\nwill discover vnet and subnet names, and generate a privateEndpointName.\nDefaults to \"External\".","type":"string","enum":["Internal","External"]}},"x-kubernetes-validations":[{"message":"internal is forbidden when type is not Internal","rule":"has(self.type) && self.type == 'Internal' ?  true : !has(self.internal)"}]}}},"emptyDir":{"description":"emptyDir represents ephemeral storage on the pod's host node.\nWARNING: this storage cannot be used with more than 1 replica and\nis not suitable for production use. When the pod is removed from a\nnode for any reason, the data in the emptyDir is deleted forever.","type":"object"},"gcs":{"description":"gcs represents configuration that uses Google Cloud Storage.","type":"object","properties":{"bucket":{"description":"bucket is the bucket name in which you want to store the registry's\ndata.\nOptional, will be generated if not provided.","type":"string"},"keyID":{"description":"keyID is the KMS key ID to use for encryption.\nOptional, buckets are encrypted by default on GCP.\nThis allows for the use of a custom encryption key.","type":"string"},"projectID":{"description":"projectID is the Project ID of the GCP project that this bucket should\nbe associated with.","type":"string"},"region":{"description":"region is the GCS location in which your bucket exists.\nOptional, will be set based on the installed GCS Region.","type":"string"}}},"ibmcos":{"description":"ibmcos represents configuration that uses IBM Cloud Object Storage.","type":"object","properties":{"bucket":{"description":"bucket is the bucket name in which you want to store the registry's\ndata.\nOptional, will be generated if not provided.","type":"string"},"location":{"description":"location is the IBM Cloud location in which your bucket exists.\nOptional, will be set based on the installed IBM Cloud location.","type":"string"},"resourceGroupName":{"description":"resourceGroupName is the name of the IBM Cloud resource group that this\nbucket and its service instance is associated with.\nOptional, will be set based on the installed IBM Cloud resource group.","type":"string"},"resourceKeyCRN":{"description":"resourceKeyCRN is the CRN of the IBM Cloud resource key that is created\nfor the service instance. Commonly referred as a service credential and\nmust contain HMAC type credentials.\nOptional, will be computed if not provided.","type":"string","pattern":"^crn:.+:.+:.+:cloud-object-storage:.+:.+:.+:resource-key:.+$"},"serviceInstanceCRN":{"description":"serviceInstanceCRN is the CRN of the IBM Cloud Object Storage service\ninstance that this bucket is associated with.\nOptional, will be computed if not provided.","type":"string","pattern":"^crn:.+:.+:.+:cloud-object-storage:.+:.+:.+::$"}}},"managementState":{"description":"managementState indicates if the operator manages the underlying\nstorage unit. If Managed the operator will remove the storage when\nthis operator gets Removed.","type":"string","pattern":"^(Managed|Unmanaged)$"},"oss":{"description":"Oss represents configuration that uses Alibaba Cloud Object Storage Service.","type":"object","properties":{"bucket":{"description":"Bucket is the bucket name in which you want to store the registry's data.\nAbout Bucket naming, more details you can look at the [official documentation](https://www.alibabacloud.com/help/doc-detail/257087.htm)\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default will be autogenerated in the form of <clusterid>-image-registry-<region>-<random string 27 chars>","type":"string","maxLength":63,"minLength":3,"pattern":"^[0-9a-z]+(-[0-9a-z]+)*$"},"encryption":{"description":"Encryption specifies whether you would like your data encrypted on the server side.\nMore details, you can look cat the [official documentation](https://www.alibabacloud.com/help/doc-detail/117914.htm)","type":"object","properties":{"kms":{"description":"KMS (key management service) is an encryption type that holds the struct for KMS KeyID","type":"object","required":["keyID"],"properties":{"keyID":{"description":"KeyID holds the KMS encryption key ID","type":"string","minLength":1}}},"method":{"description":"Method defines the different encrytion modes available\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default is `AES256`.","type":"string","enum":["KMS","AES256"]}}},"endpointAccessibility":{"description":"EndpointAccessibility specifies whether the registry use the OSS VPC internal endpoint\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default is `Internal`.","type":"string","enum":["Internal","Public",""]},"region":{"description":"Region is the Alibaba Cloud Region in which your bucket exists.\nFor a list of regions, you can look at the [official documentation](https://www.alibabacloud.com/help/doc-detail/31837.html).\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default will be based on the installed Alibaba Cloud Region.","type":"string"}}},"pvc":{"description":"pvc represents configuration that uses a PersistentVolumeClaim.","type":"object","properties":{"claim":{"description":"claim defines the Persisent Volume Claim's name to be used.","type":"string"}}},"s3":{"description":"s3 represents configuration that uses Amazon Simple Storage Service.","type":"object","properties":{"bucket":{"description":"bucket is the bucket name in which you want to store the registry's\ndata.\nOptional, will be generated if not provided.","type":"string"},"chunkSizeMiB":{"description":"chunkSizeMiB defines the size of the multipart upload chunks of the S3 API.\nThe S3 API requires multipart upload chunks to be at least 5MiB.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.\nThe current default value is 10 MiB.\nThe value is an integer number of MiB.\nThe minimum value is 5 and the maximum value is 5120 (5 GiB).","type":"integer","format":"int32","maximum":5120,"minimum":5},"cloudFront":{"description":"cloudFront configures Amazon Cloudfront as the storage middleware in a\nregistry.","type":"object","required":["baseURL","keypairID","privateKey"],"properties":{"baseURL":{"description":"baseURL contains the SCHEME://HOST[/PATH] at which Cloudfront is served.","type":"string"},"duration":{"description":"duration is the duration of the Cloudfront session.","type":"string","format":"duration"},"keypairID":{"description":"keypairID is key pair ID provided by AWS.","type":"string"},"privateKey":{"description":"privateKey points to secret containing the private key, provided by AWS.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"encrypt":{"description":"encrypt specifies whether the registry stores the image in encrypted\nformat or not.\nOptional, defaults to false.","type":"boolean"},"keyID":{"description":"keyID is the KMS key ID to use for encryption.\nOptional, Encrypt must be true, or this parameter is ignored.","type":"string"},"region":{"description":"region is the AWS region in which your bucket exists.\nOptional, will be set based on the installed AWS Region.","type":"string"},"regionEndpoint":{"description":"regionEndpoint is the endpoint for S3 compatible storage services.\nIt should be a valid URL with scheme, e.g. https://s3.example.com.\nOptional, defaults based on the Region that is provided.","type":"string"},"trustedCA":{"description":"trustedCA is a reference to a config map containing a CA bundle. The\nimage registry and its operator use certificates from this bundle to\nverify S3 server certificates.\n\nThe namespace for the config map referenced by trustedCA is\n\"openshift-config\". The key for the bundle in the config map is\n\"ca-bundle.crt\".","type":"object","properties":{"name":{"description":"name is the metadata.name of the referenced config map.\nThis field must adhere to standard config map naming restrictions.\nThe name must consist solely of alphanumeric characters, hyphens (-)\nand periods (.). It has a maximum length of 253 characters.\nIf this field is not specified or is empty string, the default trust\nbundle will be used.","type":"string","maxLength":253,"pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}}},"virtualHostedStyle":{"description":"virtualHostedStyle enables using S3 virtual hosted style bucket paths with\na custom RegionEndpoint\nOptional, defaults to false.","type":"boolean"}}},"swift":{"description":"swift represents configuration that uses OpenStack Object Storage.","type":"object","properties":{"authURL":{"description":"authURL defines the URL for obtaining an authentication token.","type":"string"},"authVersion":{"description":"authVersion specifies the OpenStack Auth's version.","type":"string"},"container":{"description":"container defines the name of Swift container where to store the\nregistry's data.","type":"string"},"domain":{"description":"domain specifies Openstack's domain name for Identity v3 API.","type":"string"},"domainID":{"description":"domainID specifies Openstack's domain id for Identity v3 API.","type":"string"},"regionName":{"description":"regionName defines Openstack's region in which container exists.","type":"string"},"tenant":{"description":"tenant defines Openstack tenant name to be used by registry.","type":"string"},"tenantID":{"description":"tenant defines Openstack tenant id to be used by registry.","type":"string"}}}}},"tolerations":{"description":"tolerations defines the tolerations for the registry pod.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"topologySpreadConstraints specify how to spread matching pods among the given topology.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.\nThis is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"ImageRegistryStatus reports image registry operational status.","type":"object","required":["storage","storageManaged"],"properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"storage":{"description":"storage indicates the current applied storage configuration of the\nregistry.","type":"object","properties":{"azure":{"description":"azure represents configuration that uses Azure Blob Storage.","type":"object","properties":{"accountName":{"description":"accountName defines the account to be used by the registry.","type":"string"},"cloudName":{"description":"cloudName is the name of the Azure cloud environment to be used by the\nregistry. If empty, the operator will set it based on the infrastructure\nobject.","type":"string"},"container":{"description":"container defines Azure's container to be used by registry.","type":"string","maxLength":63,"minLength":3,"pattern":"^[0-9a-z]+(-[0-9a-z]+)*$"},"networkAccess":{"description":"networkAccess defines the network access properties for the storage account.\nDefaults to type: External.","type":"object","properties":{"internal":{"description":"internal defines the vnet and subnet names to configure a private\nendpoint and connect it to the storage account in order to make it\nprivate.\nwhen type: Internal and internal is unset, the image registry operator\nwill discover vnet and subnet names, and generate a private endpoint\nname.","type":"object","properties":{"networkResourceGroupName":{"description":"networkResourceGroupName is the resource group name where the cluster's vnet\nand subnet are. When omitted, the registry operator will use the cluster\nresource group (from in the infrastructure status).\nIf you set a networkResourceGroupName on your install-config.yaml, that\nvalue will be used automatically (for clusters configured with publish:Internal).\nNote that both vnet and subnet must be in the same resource group.\nIt must be between 1 and 90 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_), and\nnot end with a period.","type":"string","maxLength":90,"minLength":1,"pattern":"^[0-9A-Za-z_.-](?:[0-9A-Za-z_.-]*[0-9A-Za-z_-])?$"},"privateEndpointName":{"description":"privateEndpointName is the name of the private endpoint for the registry.\nWhen provided, the registry will use it as the name of the private endpoint\nit will create for the storage account. When omitted, the registry will\ngenerate one.\nIt must be between 2 and 64 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_).\nIt must start with an alphanumeric character and end with an alphanumeric character or an underscore.","type":"string","maxLength":64,"minLength":2,"pattern":"^[0-9A-Za-z][0-9A-Za-z_.-]*[0-9A-Za-z_]$"},"subnetName":{"description":"subnetName is the name of the subnet the registry operates in. When omitted,\nthe registry operator will discover and set this by using the `kubernetes.io_cluster.<cluster-id>`\ntag in the vnet resource, then using one of listed subnets.\nAdvanced cluster network configurations that use network security groups\nto protect subnets should ensure the provided subnetName has access to\nAzure Storage service.\nIt must be between 1 and 80 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_).","type":"string","maxLength":80,"minLength":1,"pattern":"^[0-9A-Za-z](?:[0-9A-Za-z_.-]*[0-9A-Za-z_])?$"},"vnetName":{"description":"vnetName is the name of the vnet the registry operates in. When omitted,\nthe registry operator will discover and set this by using the `kubernetes.io_cluster.<cluster-id>`\ntag in the vnet resource. This tag is set automatically by the installer.\nCommonly, this will be the same vnet as the cluster.\nAdvanced cluster network configurations should ensure the provided vnetName\nis the vnet of the nodes where the image registry pods are running from.\nIt must be between 2 and 64 characters in length and must consist only of\nalphanumeric characters, hyphens (-), periods (.) and underscores (_).\nIt must start with an alphanumeric character and end with an alphanumeric character or an underscore.","type":"string","maxLength":64,"minLength":2,"pattern":"^[0-9A-Za-z][0-9A-Za-z_.-]*[0-9A-Za-z_]$"}}},"type":{"description":"type is the network access level to be used for the storage account.\ntype: Internal means the storage account will be private, type: External\nmeans the storage account will be publicly accessible.\nInternal storage accounts are only exposed within the cluster's vnet.\nExternal storage accounts are publicly exposed on the internet.\nWhen type: Internal is used, a vnetName, subNetName and privateEndpointName\nmay optionally be specified. If unspecificed, the image registry operator\nwill discover vnet and subnet names, and generate a privateEndpointName.\nDefaults to \"External\".","type":"string","enum":["Internal","External"]}},"x-kubernetes-validations":[{"message":"internal is forbidden when type is not Internal","rule":"has(self.type) && self.type == 'Internal' ?  true : !has(self.internal)"}]}}},"emptyDir":{"description":"emptyDir represents ephemeral storage on the pod's host node.\nWARNING: this storage cannot be used with more than 1 replica and\nis not suitable for production use. When the pod is removed from a\nnode for any reason, the data in the emptyDir is deleted forever.","type":"object"},"gcs":{"description":"gcs represents configuration that uses Google Cloud Storage.","type":"object","properties":{"bucket":{"description":"bucket is the bucket name in which you want to store the registry's\ndata.\nOptional, will be generated if not provided.","type":"string"},"keyID":{"description":"keyID is the KMS key ID to use for encryption.\nOptional, buckets are encrypted by default on GCP.\nThis allows for the use of a custom encryption key.","type":"string"},"projectID":{"description":"projectID is the Project ID of the GCP project that this bucket should\nbe associated with.","type":"string"},"region":{"description":"region is the GCS location in which your bucket exists.\nOptional, will be set based on the installed GCS Region.","type":"string"}}},"ibmcos":{"description":"ibmcos represents configuration that uses IBM Cloud Object Storage.","type":"object","properties":{"bucket":{"description":"bucket is the bucket name in which you want to store the registry's\ndata.\nOptional, will be generated if not provided.","type":"string"},"location":{"description":"location is the IBM Cloud location in which your bucket exists.\nOptional, will be set based on the installed IBM Cloud location.","type":"string"},"resourceGroupName":{"description":"resourceGroupName is the name of the IBM Cloud resource group that this\nbucket and its service instance is associated with.\nOptional, will be set based on the installed IBM Cloud resource group.","type":"string"},"resourceKeyCRN":{"description":"resourceKeyCRN is the CRN of the IBM Cloud resource key that is created\nfor the service instance. Commonly referred as a service credential and\nmust contain HMAC type credentials.\nOptional, will be computed if not provided.","type":"string","pattern":"^crn:.+:.+:.+:cloud-object-storage:.+:.+:.+:resource-key:.+$"},"serviceInstanceCRN":{"description":"serviceInstanceCRN is the CRN of the IBM Cloud Object Storage service\ninstance that this bucket is associated with.\nOptional, will be computed if not provided.","type":"string","pattern":"^crn:.+:.+:.+:cloud-object-storage:.+:.+:.+::$"}}},"managementState":{"description":"managementState indicates if the operator manages the underlying\nstorage unit. If Managed the operator will remove the storage when\nthis operator gets Removed.","type":"string","pattern":"^(Managed|Unmanaged)$"},"oss":{"description":"Oss represents configuration that uses Alibaba Cloud Object Storage Service.","type":"object","properties":{"bucket":{"description":"Bucket is the bucket name in which you want to store the registry's data.\nAbout Bucket naming, more details you can look at the [official documentation](https://www.alibabacloud.com/help/doc-detail/257087.htm)\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default will be autogenerated in the form of <clusterid>-image-registry-<region>-<random string 27 chars>","type":"string","maxLength":63,"minLength":3,"pattern":"^[0-9a-z]+(-[0-9a-z]+)*$"},"encryption":{"description":"Encryption specifies whether you would like your data encrypted on the server side.\nMore details, you can look cat the [official documentation](https://www.alibabacloud.com/help/doc-detail/117914.htm)","type":"object","properties":{"kms":{"description":"KMS (key management service) is an encryption type that holds the struct for KMS KeyID","type":"object","required":["keyID"],"properties":{"keyID":{"description":"KeyID holds the KMS encryption key ID","type":"string","minLength":1}}},"method":{"description":"Method defines the different encrytion modes available\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default is `AES256`.","type":"string","enum":["KMS","AES256"]}}},"endpointAccessibility":{"description":"EndpointAccessibility specifies whether the registry use the OSS VPC internal endpoint\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default is `Internal`.","type":"string","enum":["Internal","Public",""]},"region":{"description":"Region is the Alibaba Cloud Region in which your bucket exists.\nFor a list of regions, you can look at the [official documentation](https://www.alibabacloud.com/help/doc-detail/31837.html).\nEmpty value means no opinion and the platform chooses the a default, which is subject to change over time.\nCurrently the default will be based on the installed Alibaba Cloud Region.","type":"string"}}},"pvc":{"description":"pvc represents configuration that uses a PersistentVolumeClaim.","type":"object","properties":{"claim":{"description":"claim defines the Persisent Volume Claim's name to be used.","type":"string"}}},"s3":{"description":"s3 represents configuration that uses Amazon Simple Storage Service.","type":"object","properties":{"bucket":{"description":"bucket is the bucket name in which you want to store the registry's\ndata.\nOptional, will be generated if not provided.","type":"string"},"chunkSizeMiB":{"description":"chunkSizeMiB defines the size of the multipart upload chunks of the S3 API.\nThe S3 API requires multipart upload chunks to be at least 5MiB.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.\nThe current default value is 10 MiB.\nThe value is an integer number of MiB.\nThe minimum value is 5 and the maximum value is 5120 (5 GiB).","type":"integer","format":"int32","maximum":5120,"minimum":5},"cloudFront":{"description":"cloudFront configures Amazon Cloudfront as the storage middleware in a\nregistry.","type":"object","required":["baseURL","keypairID","privateKey"],"properties":{"baseURL":{"description":"baseURL contains the SCHEME://HOST[/PATH] at which Cloudfront is served.","type":"string"},"duration":{"description":"duration is the duration of the Cloudfront session.","type":"string","format":"duration"},"keypairID":{"description":"keypairID is key pair ID provided by AWS.","type":"string"},"privateKey":{"description":"privateKey points to secret containing the private key, provided by AWS.","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"encrypt":{"description":"encrypt specifies whether the registry stores the image in encrypted\nformat or not.\nOptional, defaults to false.","type":"boolean"},"keyID":{"description":"keyID is the KMS key ID to use for encryption.\nOptional, Encrypt must be true, or this parameter is ignored.","type":"string"},"region":{"description":"region is the AWS region in which your bucket exists.\nOptional, will be set based on the installed AWS Region.","type":"string"},"regionEndpoint":{"description":"regionEndpoint is the endpoint for S3 compatible storage services.\nIt should be a valid URL with scheme, e.g. https://s3.example.com.\nOptional, defaults based on the Region that is provided.","type":"string"},"trustedCA":{"description":"trustedCA is a reference to a config map containing a CA bundle. The\nimage registry and its operator use certificates from this bundle to\nverify S3 server certificates.\n\nThe namespace for the config map referenced by trustedCA is\n\"openshift-config\". The key for the bundle in the config map is\n\"ca-bundle.crt\".","type":"object","properties":{"name":{"description":"name is the metadata.name of the referenced config map.\nThis field must adhere to standard config map naming restrictions.\nThe name must consist solely of alphanumeric characters, hyphens (-)\nand periods (.). It has a maximum length of 253 characters.\nIf this field is not specified or is empty string, the default trust\nbundle will be used.","type":"string","maxLength":253,"pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}}},"virtualHostedStyle":{"description":"virtualHostedStyle enables using S3 virtual hosted style bucket paths with\na custom RegionEndpoint\nOptional, defaults to false.","type":"boolean"}}},"swift":{"description":"swift represents configuration that uses OpenStack Object Storage.","type":"object","properties":{"authURL":{"description":"authURL defines the URL for obtaining an authentication token.","type":"string"},"authVersion":{"description":"authVersion specifies the OpenStack Auth's version.","type":"string"},"container":{"description":"container defines the name of Swift container where to store the\nregistry's data.","type":"string"},"domain":{"description":"domain specifies Openstack's domain name for Identity v3 API.","type":"string"},"domainID":{"description":"domainID specifies Openstack's domain id for Identity v3 API.","type":"string"},"regionName":{"description":"regionName defines Openstack's region in which container exists.","type":"string"},"tenant":{"description":"tenant defines Openstack tenant name to be used by registry.","type":"string"},"tenantID":{"description":"tenant defines Openstack tenant id to be used by registry.","type":"string"}}}}},"storageManaged":{"description":"storageManaged is deprecated, please refer to Storage.managementState","type":"boolean"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"imageregistry.operator.openshift.io","kind":"Config","version":"v1"}]},"io.openshift.operator.imageregistry.v1.ConfigList":{"description":"ConfigList is a list of Config","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of configs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.Config"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"imageregistry.operator.openshift.io","kind":"ConfigList","version":"v1"}]},"io.openshift.operator.imageregistry.v1.ImagePruner":{"description":"ImagePruner is the configuration object for an image registry pruner\nmanaged by the registry operator.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ImagePrunerSpec defines the specs for the running image pruner.","type":"object","properties":{"affinity":{"description":"affinity is a group of node affinity scheduling rules for the image pruner pod.","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.\nThis is a beta field and requires enabling MatchLabelKeysInPodAffinity feature gate (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"failedJobsHistoryLimit":{"description":"failedJobsHistoryLimit specifies how many failed image pruner jobs to retain.\nDefaults to 3 if not set.","type":"integer","format":"int32"},"ignoreInvalidImageReferences":{"description":"ignoreInvalidImageReferences indicates whether the pruner can ignore\nerrors while parsing image references.","type":"boolean"},"keepTagRevisions":{"description":"keepTagRevisions specifies the number of image revisions for a tag in an image stream that will be preserved.\nDefaults to 3.","type":"integer"},"keepYoungerThan":{"description":"keepYoungerThan specifies the minimum age in nanoseconds of an image and its referrers for it to be considered a candidate for pruning.\nDEPRECATED: This field is deprecated in favor of keepYoungerThanDuration. If both are set, this field is ignored and keepYoungerThanDuration takes precedence.","type":"integer","format":"int64"},"keepYoungerThanDuration":{"description":"keepYoungerThanDuration specifies the minimum age of an image and its referrers for it to be considered a candidate for pruning.\nDefaults to 60m (60 minutes).","type":"string","format":"duration"},"logLevel":{"description":"logLevel sets the level of log output for the pruner job.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"nodeSelector":{"description":"nodeSelector defines the node selection constraints for the image pruner pod.","type":"object","additionalProperties":{"type":"string"}},"resources":{"description":"resources defines the resource requests and limits for the image pruner pod.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis is an alpha field and requires enabling the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"schedule":{"description":"schedule specifies when to execute the job using standard cronjob syntax: https://wikipedia.org/wiki/Cron.\nDefaults to `0 0 * * *`.","type":"string"},"successfulJobsHistoryLimit":{"description":"successfulJobsHistoryLimit specifies how many successful image pruner jobs to retain.\nDefaults to 3 if not set.","type":"integer","format":"int32"},"suspend":{"description":"suspend specifies whether or not to suspend subsequent executions of this cronjob.\nDefaults to false.","type":"boolean"},"tolerations":{"description":"tolerations defines the node tolerations for the image pruner pod.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"status":{"description":"ImagePrunerStatus reports image pruner operational status.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status.","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"observedGeneration":{"description":"observedGeneration is the last generation change that has been applied.","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"imageregistry.operator.openshift.io","kind":"ImagePruner","version":"v1"}]},"io.openshift.operator.imageregistry.v1.ImagePrunerList":{"description":"ImagePrunerList is a list of ImagePruner","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imagepruners. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.imageregistry.v1.ImagePruner"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"imageregistry.operator.openshift.io","kind":"ImagePrunerList","version":"v1"}]},"io.openshift.operator.ingress.v1.DNSRecord":{"description":"DNSRecord is a DNS record managed in the zones defined by\ndns.config.openshift.io/cluster .spec.publicZone and .spec.privateZone.\n\nCluster admin manipulation of this resource is not supported. This resource\nis only for internal communication of OpenShift operators.\n\nIf DNSManagementPolicy is \"Unmanaged\", the operator will not be responsible\nfor managing the DNS records on the cloud provider.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the dnsRecord.","type":"object","required":["dnsManagementPolicy","dnsName","recordTTL","recordType","targets"],"properties":{"dnsManagementPolicy":{"description":"dnsManagementPolicy denotes the current policy applied on the DNS\nrecord. Records that have policy set as \"Unmanaged\" are ignored by\nthe ingress operator.  This means that the DNS record on the cloud\nprovider is not managed by the operator, and the \"Published\" status\ncondition will be updated to \"Unknown\" status, since it is externally\nmanaged. Any existing record on the cloud provider can be deleted at\nthe discretion of the cluster admin.\n\nThis field defaults to Managed. Valid values are \"Managed\" and\n\"Unmanaged\".","type":"string","enum":["Managed","Unmanaged"]},"dnsName":{"description":"dnsName is the hostname of the DNS record","type":"string","minLength":1},"recordTTL":{"description":"recordTTL is the record TTL in seconds. If zero, the default is 30.\nRecordTTL will not be used in AWS regions Alias targets, but\nwill be used in CNAME targets, per AWS API contract.","type":"integer","format":"int64","minimum":0},"recordType":{"description":"recordType is the DNS record type. For example, \"A\" or \"CNAME\".","type":"string","enum":["CNAME","A"]},"targets":{"description":"targets are record targets.","type":"array","minItems":1,"items":{"type":"string"}}}},"status":{"description":"status is the most recently observed status of the dnsRecord.","type":"object","properties":{"observedGeneration":{"description":"observedGeneration is the most recently observed generation of the\nDNSRecord.  When the DNSRecord is updated, the controller updates the\ncorresponding record in each managed zone.  If an update for a\nparticular zone fails, that failure is recorded in the status\ncondition for the zone so that the controller can determine that it\nneeds to retry the update for that specific zone.","type":"integer","format":"int64"},"zones":{"description":"zones are the status of the record in each zone.","type":"array","items":{"description":"DNSZoneStatus is the status of a record within a specific zone.","type":"object","properties":{"conditions":{"description":"conditions are any conditions associated with the record in the zone.\n\nIf publishing the record succeeds, the \"Published\" condition will be\nset with status \"True\" and upon failure it will be set to \"False\" along\nwith the reason and message describing the cause of the failure.","type":"array","items":{"description":"DNSZoneCondition is just the standard condition fields.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string","minLength":1},"type":{"type":"string","minLength":1}}}},"dnsZone":{"description":"dnsZone is the zone where the record is published.","type":"object","properties":{"id":{"description":"id is the identifier that can be used to find the DNS hosted zone.\n\non AWS zone can be fetched using `ID` as id in [1]\non Azure zone can be fetched using `ID` as a pre-determined name in [2],\non GCP zone can be fetched using `ID` as a pre-determined name in [3].\n\n[1]: https://docs.aws.amazon.com/cli/latest/reference/route53/get-hosted-zone.html#options\n[2]: https://docs.microsoft.com/en-us/cli/azure/network/dns/zone?view=azure-cli-latest#az-network-dns-zone-show\n[3]: https://cloud.google.com/dns/docs/reference/v1/managedZones/get","type":"string"},"tags":{"description":"tags can be used to query the DNS hosted zone.\n\non AWS, resourcegroupstaggingapi [1] can be used to fetch a zone using `Tags` as tag-filters,\n\n[1]: https://docs.aws.amazon.com/cli/latest/reference/resourcegroupstaggingapi/get-resources.html#options","type":"object","additionalProperties":{"type":"string"}}}}}}}}}},"x-kubernetes-group-version-kind":[{"group":"ingress.operator.openshift.io","kind":"DNSRecord","version":"v1"}]},"io.openshift.operator.ingress.v1.DNSRecordList":{"description":"DNSRecordList is a list of DNSRecord","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of dnsrecords. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.ingress.v1.DNSRecord"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"ingress.operator.openshift.io","kind":"DNSRecordList","version":"v1"}]},"io.openshift.operator.network.v1.EgressRouter":{"description":"EgressRouter is a feature allowing the user to define an egress router\nthat acts as a bridge between pods and external systems. The egress router runs\na service that redirects egress traffic originating from a pod or a group of\npods to a remote external system or multiple destinations as per configuration.\n\nIt is consumed by the cluster-network-operator.\nMore specifically, given an EgressRouter CR with <name>, the CNO will create and manage:\n- A service called <name>\n- An egress pod called <name>\n- A NAD called <name>\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).\n\nEgressRouter is a single egressrouter pod configuration object.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired egress router.","type":"object","required":["addresses","mode","networkInterface"],"properties":{"addresses":{"description":"List of IP addresses to configure on the pod's secondary interface.","type":"array","items":{"description":"EgressRouterAddress contains a pair of IP CIDR and gateway to be configured on the router's interface","type":"object","required":["ip"],"properties":{"gateway":{"description":"IP address of the next-hop gateway, if it cannot be automatically determined. Can be IPv4 or IPv6.","type":"string"},"ip":{"description":"IP is the address to configure on the router's interface. Can be IPv4 or IPv6.","type":"string"}}}},"mode":{"description":"Mode depicts the mode that is used for the egress router. The default mode is \"Redirect\" and is the only supported mode currently.","type":"string","enum":["Redirect"]},"networkInterface":{"description":"Specification of interface to create/use. The default is macvlan.\nCurrently only macvlan is supported.","type":"object","properties":{"macvlan":{"description":"Arguments specific to the interfaceType macvlan","type":"object","required":["mode"],"properties":{"master":{"description":"Name of the master interface. Need not be specified if it can be inferred from the IP address.","type":"string"},"mode":{"description":"Mode depicts the mode that is used for the macvlan interface; one of Bridge|Private|VEPA|Passthru. The default mode is \"Bridge\".","type":"string","enum":["Bridge","Private","VEPA","Passthru"]}}}}},"redirect":{"description":"Redirect represents the configuration parameters specific to redirect mode.","type":"object","properties":{"fallbackIP":{"description":"FallbackIP specifies the remote destination's IP address. Can be IPv4 or IPv6.\nIf no redirect rules are specified, all traffic from the router are redirected to this IP.\nIf redirect rules are specified, then any connections on any other port (undefined in the rules) on the router will be redirected to this IP.\nIf redirect rules are specified and no fallback IP is provided, connections on other ports will simply be rejected.","type":"string"},"redirectRules":{"description":"List of L4RedirectRules that define the DNAT redirection from the pod to the destination in redirect mode.","type":"array","items":{"description":"L4RedirectRule defines a DNAT redirection from a given port to a destination IP and port.","type":"object","required":["destinationIP","port","protocol"],"properties":{"destinationIP":{"description":"IP specifies the remote destination's IP address. Can be IPv4 or IPv6.","type":"string"},"port":{"description":"Port is the port number to which clients should send traffic to be redirected.","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"Protocol can be TCP, SCTP or UDP.","type":"string","enum":["TCP","UDP","SCTP"]},"targetPort":{"description":"TargetPort allows specifying the port number on the remote destination to which the traffic gets redirected to.\nIf unspecified, the value from \"Port\" is used.","type":"integer","format":"int32","maximum":65535,"minimum":1}}}}}}}},"status":{"description":"Observed status of EgressRouter.","type":"object","required":["conditions"],"properties":{"conditions":{"description":"Observed status of the egress router","type":"array","items":{"description":"EgressRouterStatusCondition represents the state of the egress router's\nmanaged and monitored components.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"LastTransitionTime is the time of the last update to the current status property.","format":"date-time"},"message":{"description":"Message provides additional information about the current condition.\nThis is only to be consumed by humans.  It may contain Line Feed\ncharacters (U+000A), which should be rendered as new lines.","type":"string"},"reason":{"description":"Reason is the CamelCase reason for the condition's current status.","type":"string"},"status":{"description":"Status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"Type specifies the aspect reported by this condition; one of Available, Progressing, Degraded","type":"string","enum":["Available","Progressing","Degraded"]}}}}}}},"x-kubernetes-group-version-kind":[{"group":"network.operator.openshift.io","kind":"EgressRouter","version":"v1"}]},"io.openshift.operator.network.v1.EgressRouterList":{"description":"EgressRouterList is a list of EgressRouter","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of egressrouters. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.network.v1.EgressRouter"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"network.operator.openshift.io","kind":"EgressRouterList","version":"v1"}]},"io.openshift.operator.network.v1.OperatorPKI":{"description":"OperatorPKI is a simple certificate authority. It is not intended for external\nuse - rather, it is internal to the network operator. The CNO creates a CA and\na certificate signed by that CA. The certificate has both ClientAuth\nand ServerAuth extended usages enabled.\n\n\tMore specifically, given an OperatorPKI with <name>, the CNO will manage:\n\n- A Secret called <name>-ca with two data keys:\n  - tls.key - the private key\n  - tls.crt - the CA certificate\n\n- A ConfigMap called <name>-ca with a single data key:\n  - cabundle.crt - the CA certificate(s)\n\n- A Secret called <name>-cert with two data keys:\n  - tls.key - the private key\n  - tls.crt - the certificate, signed by the CA\n\nThe CA certificate will have a validity of 10 years, rotated after 9.\nThe target certificate will have a validity of 6 months, rotated after 3\n\nThe CA certificate will have a CommonName of \"<namespace>_<name>-ca@<timestamp>\", where\n<timestamp> is the last rotation time.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"OperatorPKISpec is the PKI configuration.","type":"object","required":["targetCert"],"properties":{"targetCert":{"description":"targetCert configures the certificate signed by the CA. It will have\nboth ClientAuth and ServerAuth enabled","type":"object","required":["commonName"],"properties":{"commonName":{"description":"commonName is the value in the certificate's CN","type":"string","minLength":1}}}}},"status":{"description":"OperatorPKIStatus is not implemented.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"network.operator.openshift.io","kind":"OperatorPKI","version":"v1"}]},"io.openshift.operator.network.v1.OperatorPKIList":{"description":"OperatorPKIList is a list of OperatorPKI","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of operatorpkis. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.network.v1.OperatorPKI"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"network.operator.openshift.io","kind":"OperatorPKIList","version":"v1"}]},"io.openshift.operator.samples.v1.Config":{"description":"Config contains the configuration and detailed condition status for the Samples Operator. \n Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConfigSpec contains the desired configuration and state for the Samples Operator, controlling various behavior around the imagestreams and templates it creates/updates in the openshift namespace.","type":"object","properties":{"architectures":{"description":"architectures determine which hardware architecture(s) to install, where x86_64, ppc64le, and s390x are the only supported choices currently.","type":"array","items":{"type":"string"}},"managementState":{"description":"managementState is top level on/off type of switch for all operators. When \"Managed\", this operator processes config and manipulates the samples accordingly. When \"Unmanaged\", this operator ignores any updates to the resources it watches. When \"Removed\", it reacts that same wasy as it does if the Config object is deleted, meaning any ImageStreams or Templates it manages (i.e. it honors the skipped lists) and the registry secret are deleted, along with the ConfigMap in the operator's namespace that represents the last config used to manipulate the samples,","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"samplesRegistry":{"description":"samplesRegistry allows for the specification of which registry is accessed by the ImageStreams for their image content.  Defaults on the content in https://github.com/openshift/library that are pulled into this github repository, but based on our pulling only ocp content it typically defaults to registry.redhat.io.","type":"string"},"skippedImagestreams":{"description":"skippedImagestreams specifies names of image streams that should NOT be created/updated.  Admins can use this to allow them to delete content they don’t want.  They will still have to manually delete the content but the operator will not recreate(or update) anything listed here.","type":"array","items":{"type":"string"}},"skippedTemplates":{"description":"skippedTemplates specifies names of templates that should NOT be created/updated.  Admins can use this to allow them to delete content they don’t want.  They will still have to manually delete the content but the operator will not recreate(or update) anything listed here.","type":"array","items":{"type":"string"}}}},"status":{"description":"ConfigStatus contains the actual configuration in effect, as well as various details that describe the state of the Samples Operator.","type":"object","properties":{"architectures":{"description":"architectures determine which hardware architecture(s) to install, where x86_64 and ppc64le are the supported choices.","type":"array","items":{"type":"string"}},"conditions":{"description":"conditions represents the available maintenance status of the sample imagestreams and templates.","type":"array","items":{"description":"ConfigCondition captures various conditions of the Config as entries are processed.","type":"object","required":["status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.","type":"string","format":"date-time"},"lastUpdateTime":{"description":"lastUpdateTime is the last time this condition was updated.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.","type":"string"},"reason":{"description":"reason is what caused the condition's last transition.","type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"type of condition.","type":"string"}}}},"managementState":{"description":"managementState reflects the current operational status of the on/off switch for the operator.  This operator compares the ManagementState as part of determining that we are turning the operator back on (i.e. \"Managed\") when it was previously \"Unmanaged\".","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"samplesRegistry":{"description":"samplesRegistry allows for the specification of which registry is accessed by the ImageStreams for their image content.  Defaults on the content in https://github.com/openshift/library that are pulled into this github repository, but based on our pulling only ocp content it typically defaults to registry.redhat.io.","type":"string"},"skippedImagestreams":{"description":"skippedImagestreams specifies names of image streams that should NOT be created/updated.  Admins can use this to allow them to delete content they don’t want.  They will still have to manually delete the content but the operator will not recreate(or update) anything listed here.","type":"array","items":{"type":"string"}},"skippedTemplates":{"description":"skippedTemplates specifies names of templates that should NOT be created/updated.  Admins can use this to allow them to delete content they don’t want.  They will still have to manually delete the content but the operator will not recreate(or update) anything listed here.","type":"array","items":{"type":"string"}},"version":{"description":"version is the value of the operator's payload based version indicator when it was last successfully processed","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"samples.operator.openshift.io","kind":"Config","version":"v1"}]},"io.openshift.operator.samples.v1.ConfigList":{"description":"ConfigList is a list of Config","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of configs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.samples.v1.Config"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"samples.operator.openshift.io","kind":"ConfigList","version":"v1"}]},"io.openshift.operator.v1.CSISnapshotController":{"description":"CSISnapshotController provides a means to configure an operator to manage the CSI snapshots. `cluster` is the canonical name.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"CSISnapshotController","version":"v1"}]},"io.openshift.operator.v1.CSISnapshotControllerList":{"description":"CSISnapshotControllerList is a list of CSISnapshotController","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of csisnapshotcontrollers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.CSISnapshotController"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"CSISnapshotControllerList","version":"v1"}]},"io.openshift.operator.v1.CloudCredential":{"description":"CloudCredential provides a means to configure an operator to manage CredentialsRequests. \n Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CloudCredentialSpec is the specification of the desired behavior of the cloud-credential-operator.","type":"object","properties":{"credentialsMode":{"description":"CredentialsMode allows informing CCO that it should not attempt to dynamically determine the root cloud credentials capabilities, and it should just run in the specified mode. It also allows putting the operator into \"manual\" mode if desired. Leaving the field in default mode runs CCO so that the cluster's cloud credentials will be dynamically probed for capabilities (on supported clouds/platforms). Supported modes: AWS/Azure/GCP: \"\" (Default), \"Mint\", \"Passthrough\", \"Manual\" Others: Do not set value as other platforms only support running in \"Passthrough\"","type":"string","enum":["","Manual","Mint","Passthrough"]},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a simple way to manage coarse grained logging choices that operators have to interpret for their operands. \n Valid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\". Defaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because it is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a simple way to manage coarse grained logging choices that operators have to interpret for themselves. \n Valid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\". Defaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator. Red Hat does not support the use of this field. Misuse of this field could lead to unexpected behavior or conflict with other configuration options. Seek guidance from the Red Hat support before using this field. Use of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"CloudCredentialStatus defines the observed status of the cloud-credential-operator.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"CloudCredential","version":"v1"}]},"io.openshift.operator.v1.CloudCredentialList":{"description":"CloudCredentialList is a list of CloudCredential","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cloudcredentials. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.CloudCredential"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"CloudCredentialList","version":"v1"}]},"io.openshift.operator.v1.ClusterCSIDriver":{"description":"ClusterCSIDriver object allows management and configuration of a CSI driver operator\ninstalled by default in OpenShift. Name of the object must be name of the CSI driver\nit operates. See CSIDriverName type for list of allowed values.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"driverConfig":{"description":"driverConfig can be used to specify platform specific driver configuration.\nWhen omitted, this means no opinion and the platform is left to choose reasonable\ndefaults. These defaults are subject to change over time.","type":"object","required":["driverType"],"properties":{"aws":{"description":"aws is used to configure the AWS CSI driver.","type":"object","properties":{"efsVolumeMetrics":{"description":"efsVolumeMetrics sets the configuration for collecting metrics from EFS volumes used by the EFS CSI Driver.","type":"object","required":["state"],"properties":{"recursiveWalk":{"description":"recursiveWalk provides additional configuration for collecting volume metrics in the AWS EFS CSI Driver\nwhen the state is set to RecursiveWalk.","type":"object","properties":{"fsRateLimit":{"description":"fsRateLimit defines the rate limit, in goroutines per file system, for processing volume metrics.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable\ndefault, which is subject to change over time. The current default is 5.\nThe valid range is from 1 to 100 goroutines.","type":"integer","format":"int32","maximum":100,"minimum":1},"refreshPeriodMinutes":{"description":"refreshPeriodMinutes specifies the frequency, in minutes, at which volume metrics are refreshed.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable\ndefault, which is subject to change over time. The current default is 240.\nThe valid range is from 1 to 43200 minutes (30 days).","type":"integer","format":"int32","maximum":43200,"minimum":1}}},"state":{"description":"state defines the state of metric collection in the AWS EFS CSI Driver.\nThis field is required and must be set to one of the following values: Disabled or RecursiveWalk.\nDisabled means no metrics collection will be performed. This is the default value.\nRecursiveWalk means the AWS EFS CSI Driver will recursively scan volumes to collect metrics.\nThis process may result in high CPU and memory usage, depending on the volume size.","type":"string","enum":["RecursiveWalk","Disabled"]}}},"kmsKeyARN":{"description":"kmsKeyARN sets the cluster default storage class to encrypt volumes with a user-defined KMS key,\nrather than the default KMS key used by AWS.\nThe value may be either the ARN or Alias ARN of a KMS key.","type":"string","pattern":"^arn:(aws|aws-cn|aws-us-gov|aws-iso|aws-iso-b|aws-iso-e|aws-iso-f):kms:[a-z0-9-]+:[0-9]{12}:(key|alias)\\/.*$"}}},"azure":{"description":"azure is used to configure the Azure CSI driver.","type":"object","properties":{"diskEncryptionSet":{"description":"diskEncryptionSet sets the cluster default storage class to encrypt volumes with a\ncustomer-managed encryption set, rather than the default platform-managed keys.","type":"object","required":["name","resourceGroup","subscriptionID"],"properties":{"name":{"description":"name is the name of the disk encryption set that will be set on the default storage class.\nThe value should consist of only alphanumberic characters,\nunderscores (_), hyphens, and be at most 80 characters in length.","type":"string","maxLength":80,"pattern":"^[a-zA-Z0-9\\_-]+$"},"resourceGroup":{"description":"resourceGroup defines the Azure resource group that contains the disk encryption set.\nThe value should consist of only alphanumberic characters,\nunderscores (_), parentheses, hyphens and periods.\nThe value should not end in a period and be at most 90 characters in\nlength.","type":"string","maxLength":90,"pattern":"^[\\w\\.\\-\\(\\)]*[\\w\\-\\(\\)]$"},"subscriptionID":{"description":"subscriptionID defines the Azure subscription that contains the disk encryption set.\nThe value should meet the following conditions:\n1. It should be a 128-bit number.\n2. It should be 36 characters (32 hexadecimal characters and 4 hyphens) long.\n3. It should be displayed in five groups separated by hyphens (-).\n4. The first group should be 8 characters long.\n5. The second, third, and fourth groups should be 4 characters long.\n6. The fifth group should be 12 characters long.\nAn Example SubscrionID: f2007bbf-f802-4a47-9336-cf7c6b89b378","type":"string","maxLength":36,"pattern":"^[a-fA-F0-9]{8}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{12}$"}}}}},"driverType":{"description":"driverType indicates type of CSI driver for which the\ndriverConfig is being applied to.\nValid values are: AWS, Azure, GCP, IBMCloud, vSphere and omitted.\nConsumers should treat unknown values as a NO-OP.","type":"string","enum":["","AWS","Azure","GCP","IBMCloud","vSphere"]},"gcp":{"description":"gcp is used to configure the GCP CSI driver.","type":"object","properties":{"kmsKey":{"description":"kmsKey sets the cluster default storage class to encrypt volumes with customer-supplied\nencryption keys, rather than the default keys managed by GCP.","type":"object","required":["keyRing","name","projectID"],"properties":{"keyRing":{"description":"keyRing is the name of the KMS Key Ring which the KMS Key belongs to.\nThe value should correspond to an existing KMS key ring and should\nconsist of only alphanumeric characters, hyphens (-) and underscores (_),\nand be at most 63 characters in length.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-zA-Z0-9\\_-]+$"},"location":{"description":"location is the GCP location in which the Key Ring exists.\nThe value must match an existing GCP location, or \"global\".\nDefaults to global, if not set.","type":"string","pattern":"^[a-zA-Z0-9\\_-]+$"},"name":{"description":"name is the name of the customer-managed encryption key to be used for disk encryption.\nThe value should correspond to an existing KMS key and should\nconsist of only alphanumeric characters, hyphens (-) and underscores (_),\nand be at most 63 characters in length.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-zA-Z0-9\\_-]+$"},"projectID":{"description":"projectID is the ID of the Project in which the KMS Key Ring exists.\nIt must be 6 to 30 lowercase letters, digits, or hyphens.\nIt must start with a letter. Trailing hyphens are prohibited.","type":"string","maxLength":30,"minLength":6,"pattern":"^[a-z][a-z0-9-]+[a-z0-9]$"}}}}},"ibmcloud":{"description":"ibmcloud is used to configure the IBM Cloud CSI driver.","type":"object","required":["encryptionKeyCRN"],"properties":{"encryptionKeyCRN":{"description":"encryptionKeyCRN is the IBM Cloud CRN of the customer-managed root key to use\nfor disk encryption of volumes for the default storage classes.","type":"string","maxLength":154,"minLength":144,"pattern":"^crn:v[0-9]+:bluemix:(public|private):(kms|hs-crypto):[a-z-]+:a/[0-9a-f]+:[0-9a-f-]{36}:key:[0-9a-f-]{36}$"}}},"vSphere":{"description":"vsphere is used to configure the vsphere CSI driver.","type":"object","properties":{"globalMaxSnapshotsPerBlockVolume":{"description":"globalMaxSnapshotsPerBlockVolume is a global configuration parameter that applies to volumes on all kinds of\ndatastores. If omitted, the platform chooses a default, which is subject to change over time, currently that default is 3.\nSnapshots can not be disabled using this parameter.\nIncreasing number of snapshots above 3 can have negative impact on performance, for more details see: https://kb.vmware.com/s/article/1025279\nVolume snapshot documentation: https://docs.vmware.com/en/VMware-vSphere-Container-Storage-Plug-in/3.0/vmware-vsphere-csp-getting-started/GUID-E0B41C69-7EEB-450F-A73D-5FD2FF39E891.html","type":"integer","format":"int32","maximum":32,"minimum":1},"granularMaxSnapshotsPerBlockVolumeInVSAN":{"description":"granularMaxSnapshotsPerBlockVolumeInVSAN is a granular configuration parameter on vSAN datastore only. It\noverrides GlobalMaxSnapshotsPerBlockVolume if set, while it falls back to the global constraint if unset.\nSnapshots for VSAN can not be disabled using this parameter.","type":"integer","format":"int32","maximum":32,"minimum":1},"granularMaxSnapshotsPerBlockVolumeInVVOL":{"description":"granularMaxSnapshotsPerBlockVolumeInVVOL is a granular configuration parameter on Virtual Volumes datastore only.\nIt overrides GlobalMaxSnapshotsPerBlockVolume if set, while it falls back to the global constraint if unset.\nSnapshots for VVOL can not be disabled using this parameter.","type":"integer","format":"int32","maximum":32,"minimum":1},"topologyCategories":{"description":"topologyCategories indicates tag categories with which\nvcenter resources such as hostcluster or datacenter were tagged with.\nIf cluster Infrastructure object has a topology, values specified in\nInfrastructure object will be used and modifications to topologyCategories\nwill be rejected.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"x-kubernetes-validations":[{"message":"ibmcloud must be set if driverType is 'IBMCloud', but remain unset otherwise","rule":"has(self.driverType) && self.driverType == 'IBMCloud' ? has(self.ibmcloud) : !has(self.ibmcloud)"}]},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"storageClassState":{"description":"StorageClassState determines if CSI operator should create and manage storage classes.\nIf this field value is empty or Managed - CSI operator will continuously reconcile\nstorage class and create if necessary.\nIf this field value is Unmanaged - CSI operator will not reconcile any previously created\nstorage class.\nIf this field value is Removed - CSI operator will delete the storage class it created previously.\nWhen omitted, this means the user has no opinion and the platform chooses a reasonable default,\nwhich is subject to change over time.\nThe current default behaviour is Managed.","type":"string","enum":["","Managed","Unmanaged","Removed"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ClusterCSIDriver","version":"v1"}]},"io.openshift.operator.v1.ClusterCSIDriverList":{"description":"ClusterCSIDriverList is a list of ClusterCSIDriver","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clustercsidrivers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.ClusterCSIDriver"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ClusterCSIDriverList","version":"v1"}]},"io.openshift.operator.v1.Config":{"description":"Config specifies the behavior of the config operator which is responsible for creating the initial configuration of other components\non the cluster.  The operator also handles installation, migration or synchronization of cloud configurations for AWS and Azure cloud based clusters\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the Config Operator.","type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status defines the observed status of the Config Operator.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"Config","version":"v1"}]},"io.openshift.operator.v1.ConfigList":{"description":"ConfigList is a list of Config","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of configs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.Config"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ConfigList","version":"v1"}]},"io.openshift.operator.v1.Console":{"description":"Console provides a means to configure an operator to manage the console.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ConsoleSpec is the specification of the desired behavior of the Console.","type":"object","properties":{"customization":{"description":"customization is used to optionally provide a small set of\ncustomization options to the web console.","type":"object","properties":{"addPage":{"description":"addPage allows customizing actions on the Add page in developer perspective.","type":"object","properties":{"disabledActions":{"description":"disabledActions is a list of actions that are not shown to users.\nEach action in the list is represented by its ID.","type":"array","minItems":1,"items":{"type":"string"}}}},"brand":{"description":"brand is the default branding of the web console which can be overridden by\nproviding the brand field.  There is a limited set of specific brand options.\nThis field controls elements of the console such as the logo.\nInvalid value will prevent a console rollout.","type":"string","enum":["openshift","okd","online","ocp","dedicated","azure","OpenShift","OKD","Online","OCP","Dedicated","Azure","ROSA"]},"capabilities":{"description":"capabilities defines an array of capabilities that can be interacted with in the console UI.\nEach capability defines a visual state that can be interacted with the console to render in the UI.\nAvailable capabilities are LightspeedButton and GettingStartedBanner.\nEach of the available capabilities may appear only once in the list.","type":"array","maxItems":2,"minItems":1,"items":{"description":"Capabilities contains set of UI capabilities and their state in the console UI.","type":"object","required":["name","visibility"],"properties":{"name":{"description":"name is the unique name of a capability.\nAvailable capabilities are LightspeedButton and GettingStartedBanner.","type":"string","enum":["LightspeedButton","GettingStartedBanner"]},"visibility":{"description":"visibility defines the visibility state of the capability.","type":"object","required":["state"],"properties":{"state":{"description":"state defines if the capability is enabled or disabled in the console UI.\nEnabling the capability in the console UI is represented by the \"Enabled\" value.\nDisabling the capability in the console UI is represented by the \"Disabled\" value.","type":"string","enum":["Enabled","Disabled"]}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"customLogoFile":{"description":"customLogoFile replaces the default OpenShift logo in the masthead and about dialog. It is a reference to a\nConfigMap in the openshift-config namespace. This can be created with a command like\n'oc create configmap custom-logo --from-file=/path/to/file -n openshift-config'.\nImage size must be less than 1 MB due to constraints on the ConfigMap size.\nThe ConfigMap key should include a file extension so that the console serves the file\nwith the correct MIME type.\nRecommended logo specifications:\nDimensions: Max height of 68px and max width of 200px\nSVG format preferred","type":"object","properties":{"key":{"description":"Key allows pointing to a specific key/value inside of the configmap.  This is useful for logical file references.","type":"string"},"name":{"type":"string"}}},"customProductName":{"description":"customProductName is the name that will be displayed in page titles, logo alt text, and the about dialog\ninstead of the normal OpenShift product name.","type":"string"},"developerCatalog":{"description":"developerCatalog allows to configure the shown developer catalog categories (filters) and types (sub-catalogs).","type":"object","properties":{"categories":{"description":"categories which are shown in the developer catalog.","type":"array","items":{"description":"DeveloperConsoleCatalogCategory for the developer console catalog.","type":"object","required":["id","label"],"properties":{"id":{"description":"ID is an identifier used in the URL to enable deep linking in console.\nID is required and must have 1-32 URL safe (A-Z, a-z, 0-9, - and _) characters.","type":"string","maxLength":32,"minLength":1,"pattern":"^[A-Za-z0-9-_]+$"},"label":{"description":"label defines a category display label. It is required and must have 1-64 characters.","type":"string","maxLength":64,"minLength":1},"subcategories":{"description":"subcategories defines a list of child categories.","type":"array","items":{"description":"DeveloperConsoleCatalogCategoryMeta are the key identifiers of a developer catalog category.","type":"object","required":["id","label"],"properties":{"id":{"description":"ID is an identifier used in the URL to enable deep linking in console.\nID is required and must have 1-32 URL safe (A-Z, a-z, 0-9, - and _) characters.","type":"string","maxLength":32,"minLength":1,"pattern":"^[A-Za-z0-9-_]+$"},"label":{"description":"label defines a category display label. It is required and must have 1-64 characters.","type":"string","maxLength":64,"minLength":1},"tags":{"description":"tags is a list of strings that will match the category. A selected category\nshow all items which has at least one overlapping tag between category and item.","type":"array","items":{"type":"string"}}}}},"tags":{"description":"tags is a list of strings that will match the category. A selected category\nshow all items which has at least one overlapping tag between category and item.","type":"array","items":{"type":"string"}}}}},"types":{"description":"types allows enabling or disabling of sub-catalog types that user can see in the Developer catalog.\nWhen omitted, all the sub-catalog types will be shown.","type":"object","required":["state"],"properties":{"disabled":{"description":"disabled is a list of developer catalog types (sub-catalogs IDs) that are not shown to users.\nTypes (sub-catalogs) are added via console plugins, the available types (sub-catalog IDs) are available\nin the console on the cluster configuration page, or when editing the YAML in the console.\nExample: \"Devfile\", \"HelmChart\", \"BuilderImage\"\nIf the list is empty or all the available sub-catalog types are added, then the complete developer catalog should be hidden.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"enabled":{"description":"enabled is a list of developer catalog types (sub-catalogs IDs) that will be shown to users.\nTypes (sub-catalogs) are added via console plugins, the available types (sub-catalog IDs) are available\nin the console on the cluster configuration page, or when editing the YAML in the console.\nExample: \"Devfile\", \"HelmChart\", \"BuilderImage\"\nIf the list is non-empty, a new type will not be shown to the user until it is added to list.\nIf the list is empty the complete developer catalog will be shown.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"state":{"description":"state defines if a list of catalog types should be enabled or disabled.","type":"string","enum":["Enabled","Disabled"]}},"x-kubernetes-validations":[{"message":"enabled is forbidden when state is not Enabled","rule":"self.state == 'Enabled' ? true : !has(self.enabled)"},{"message":"disabled is forbidden when state is not Disabled","rule":"self.state == 'Disabled' ? true : !has(self.disabled)"}]}}},"documentationBaseURL":{"description":"documentationBaseURL links to external documentation are shown in various sections\nof the web console.  Providing documentationBaseURL will override the default\ndocumentation URL.\nInvalid value will prevent a console rollout.","type":"string","pattern":"^$|^((https):\\/\\/?)[^\\s()<>]+(?:\\([\\w\\d]+\\)|([^[:punct:]\\s]|\\/?))\\/$"},"perspectives":{"description":"perspectives allows enabling/disabling of perspective(s) that user can see in the Perspective switcher dropdown.","type":"array","items":{"description":"Perspective defines a perspective that cluster admins want to show/hide in the perspective switcher dropdown","type":"object","required":["id","visibility"],"properties":{"id":{"description":"id defines the id of the perspective.\nExample: \"dev\", \"admin\".\nThe available perspective ids can be found in the code snippet section next to the yaml editor.\nIncorrect or unknown ids will be ignored.","type":"string"},"pinnedResources":{"description":"pinnedResources defines the list of default pinned resources that users will see on the perspective navigation if they have not customized these pinned resources themselves.\nThe list of available Kubernetes resources could be read via `kubectl api-resources`.\nThe console will also provide a configuration UI and a YAML snippet that will list the available resources that can be pinned to the navigation.\nIncorrect or unknown resources will be ignored.","type":"array","maxItems":100,"items":{"description":"PinnedResourceReference includes the group, version and type of resource","type":"object","required":["group","resource","version"],"properties":{"group":{"description":"group is the API Group of the Resource.\nEnter empty string for the core group.\nThis value should consist of only lowercase alphanumeric characters, hyphens and periods.\nExample: \"\", \"apps\", \"build.openshift.io\", etc.","type":"string","pattern":"^$|^[a-z0-9]([-a-z0-9]*[a-z0-9])?(.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resource":{"description":"resource is the type that is being referenced.\nIt is normally the plural form of the resource kind in lowercase.\nThis value should consist of only lowercase alphanumeric characters and hyphens.\nExample: \"deployments\", \"deploymentconfigs\", \"pods\", etc.","type":"string","pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"version":{"description":"version is the API Version of the Resource.\nThis value should consist of only lowercase alphanumeric characters.\nExample: \"v1\", \"v1beta1\", etc.","type":"string","pattern":"^[a-z0-9]+$"}}}},"visibility":{"description":"visibility defines the state of perspective along with access review checks if needed for that perspective.","type":"object","required":["state"],"properties":{"accessReview":{"description":"accessReview defines required and missing access review checks.","type":"object","minProperties":1,"properties":{"missing":{"description":"missing defines a list of permission checks. The perspective will only be shown when at least one check fails. When omitted, the access review is skipped and the perspective will not be shown unless it is required to do so based on the configuration of the required access review list.","type":"array","items":{"description":"ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface","type":"object","properties":{"fieldSelector":{"description":"fieldSelector describes the limitation on access based on field.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the\n`AuthorizeWithSelectors` feature gate (disabled by default).","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter.\nWebhook implementations are encouraged to ignore rawSelector.\nThe kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a field selector.\nAll requirements must be met for a resource instance to match the selector.\nWebhook implementations should handle requirements, but how to handle them is up to the webhook.\nSince requirements can only limit the request, it is safe to authorize as unlimited request if the requirements\nare not understood.","type":"array","items":{"description":"FieldSelectorRequirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the field selector key that the requirement applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist.\nThe list of operators may grow in the future.","type":"string"},"values":{"description":"values is an array of string values.\nIf the operator is In or NotIn, the values array must be non-empty.\nIf the operator is Exists or DoesNotExist, the values array must be empty.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"group":{"description":"Group is the API Group of the Resource.  \"*\" means all.","type":"string"},"labelSelector":{"description":"labelSelector describes the limitation on access based on labels.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the\n`AuthorizeWithSelectors` feature gate (disabled by default).","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter.\nWebhook implementations are encouraged to ignore rawSelector.\nThe kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a label selector.\nAll requirements must be met for a resource instance to match the selector.\nWebhook implementations should handle requirements, but how to handle them is up to the webhook.\nSince requirements can only limit the request, it is safe to authorize as unlimited request if the requirements\nare not understood.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"name":{"description":"Name is the name of the resource being requested for a \"get\" or deleted for a \"delete\". \"\" (empty) means all.","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces\n\"\" (empty) is defaulted for LocalSubjectAccessReviews\n\"\" (empty) is empty for cluster-scoped resources\n\"\" (empty) means \"all\" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview","type":"string"},"resource":{"description":"Resource is one of the existing resource types.  \"*\" means all.","type":"string"},"subresource":{"description":"Subresource is one of the existing resource types.  \"\" means none.","type":"string"},"verb":{"description":"Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  \"*\" means all.","type":"string"},"version":{"description":"Version is the API Version of the Resource.  \"*\" means all.","type":"string"}}}},"required":{"description":"required defines a list of permission checks. The perspective will only be shown when all checks are successful. When omitted, the access review is skipped and the perspective will not be shown unless it is required to do so based on the configuration of the missing access review list.","type":"array","items":{"description":"ResourceAttributes includes the authorization attributes available for resource requests to the Authorizer interface","type":"object","properties":{"fieldSelector":{"description":"fieldSelector describes the limitation on access based on field.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the\n`AuthorizeWithSelectors` feature gate (disabled by default).","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter.\nWebhook implementations are encouraged to ignore rawSelector.\nThe kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a field selector.\nAll requirements must be met for a resource instance to match the selector.\nWebhook implementations should handle requirements, but how to handle them is up to the webhook.\nSince requirements can only limit the request, it is safe to authorize as unlimited request if the requirements\nare not understood.","type":"array","items":{"description":"FieldSelectorRequirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the field selector key that the requirement applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist.\nThe list of operators may grow in the future.","type":"string"},"values":{"description":"values is an array of string values.\nIf the operator is In or NotIn, the values array must be non-empty.\nIf the operator is Exists or DoesNotExist, the values array must be empty.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"group":{"description":"Group is the API Group of the Resource.  \"*\" means all.","type":"string"},"labelSelector":{"description":"labelSelector describes the limitation on access based on labels.  It can only limit access, not broaden it.\n\nThis field  is alpha-level. To use this field, you must enable the\n`AuthorizeWithSelectors` feature gate (disabled by default).","type":"object","properties":{"rawSelector":{"description":"rawSelector is the serialization of a field selector that would be included in a query parameter.\nWebhook implementations are encouraged to ignore rawSelector.\nThe kube-apiserver's *SubjectAccessReview will parse the rawSelector as long as the requirements are not present.","type":"string"},"requirements":{"description":"requirements is the parsed interpretation of a label selector.\nAll requirements must be met for a resource instance to match the selector.\nWebhook implementations should handle requirements, but how to handle them is up to the webhook.\nSince requirements can only limit the request, it is safe to authorize as unlimited request if the requirements\nare not understood.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"name":{"description":"Name is the name of the resource being requested for a \"get\" or deleted for a \"delete\". \"\" (empty) means all.","type":"string"},"namespace":{"description":"Namespace is the namespace of the action being requested.  Currently, there is no distinction between no namespace and all namespaces\n\"\" (empty) is defaulted for LocalSubjectAccessReviews\n\"\" (empty) is empty for cluster-scoped resources\n\"\" (empty) means \"all\" for namespace scoped resources from a SubjectAccessReview or SelfSubjectAccessReview","type":"string"},"resource":{"description":"Resource is one of the existing resource types.  \"*\" means all.","type":"string"},"subresource":{"description":"Subresource is one of the existing resource types.  \"\" means none.","type":"string"},"verb":{"description":"Verb is a kubernetes resource API verb, like: get, list, watch, create, update, delete, proxy.  \"*\" means all.","type":"string"},"version":{"description":"Version is the API Version of the Resource.  \"*\" means all.","type":"string"}}}}}},"state":{"description":"state defines the perspective is enabled or disabled or access review check is required.","type":"string","enum":["Enabled","Disabled","AccessReview"]}},"x-kubernetes-validations":[{"message":"accessReview configuration is required when state is AccessReview, and forbidden otherwise","rule":"self.state == 'AccessReview' ?  has(self.accessReview) : !has(self.accessReview)"}]}},"x-kubernetes-validations":[{"message":"pinnedResources is allowed only for dev and forbidden for other perspectives","rule":"has(self.id) && self.id != 'dev'? !has(self.pinnedResources) : true"}]},"x-kubernetes-list-map-keys":["id"],"x-kubernetes-list-type":"map"},"projectAccess":{"description":"projectAccess allows customizing the available list of ClusterRoles in the Developer perspective\nProject access page which can be used by a project admin to specify roles to other users and\nrestrict access within the project. If set, the list will replace the default ClusterRole options.","type":"object","properties":{"availableClusterRoles":{"description":"availableClusterRoles is the list of ClusterRole names that are assignable to users\nthrough the project access tab.","type":"array","items":{"type":"string"}}}},"quickStarts":{"description":"quickStarts allows customization of available ConsoleQuickStart resources in console.","type":"object","properties":{"disabled":{"description":"disabled is a list of ConsoleQuickStart resource names that are not shown to users.","type":"array","items":{"type":"string"}}}}}},"ingress":{"description":"ingress allows to configure the alternative ingress for the console.\nThis field is intended for clusters without ingress capability,\nwhere access to routes is not possible.","type":"object","properties":{"clientDownloadsURL":{"description":"clientDownloadsURL is a URL to be used as the address to download client binaries.\nIf not specified, the downloads route hostname will be used.\nThis field is required for clusters without ingress capability,\nwhere access to routes is not possible.\nThe console operator will monitor the URL and may go degraded\nif it's unreachable for an extended period.\nMust use the HTTPS scheme.","type":"string","maxLength":1024,"x-kubernetes-validations":[{"message":"client downloads url must be a valid absolute URL","rule":"size(self) == 0 || isURL(self)"},{"message":"client downloads url scheme must be https","rule":"size(self) == 0 || url(self).getScheme() == 'https'"}]},"consoleURL":{"description":"consoleURL is a URL to be used as the base console address.\nIf not specified, the console route hostname will be used.\nThis field is required for clusters without ingress capability,\nwhere access to routes is not possible.\nMake sure that appropriate ingress is set up at this URL.\nThe console operator will monitor the URL and may go degraded\nif it's unreachable for an extended period.\nMust use the HTTPS scheme.","type":"string","maxLength":1024,"x-kubernetes-validations":[{"message":"console url must be a valid absolute URL","rule":"size(self) == 0 || isURL(self)"},{"message":"console url scheme must be https","rule":"size(self) == 0 || url(self).getScheme() == 'https'"}]}}},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"plugins":{"description":"plugins defines a list of enabled console plugin names.","type":"array","items":{"type":"string"}},"providers":{"description":"providers contains configuration for using specific service providers.","type":"object","properties":{"statuspage":{"description":"statuspage contains ID for statuspage.io page that provides status info about.","type":"object","properties":{"pageID":{"description":"pageID is the unique ID assigned by Statuspage for your page. This must be a public page.","type":"string"}}}}},"route":{"description":"route contains hostname and secret reference that contains the serving certificate.\nIf a custom route is specified, a new route will be created with the\nprovided hostname, under which console will be available.\nIn case of custom hostname uses the default routing suffix of the cluster,\nthe Secret specification for a serving certificate will not be needed.\nIn case of custom hostname points to an arbitrary domain, manual DNS configurations steps are necessary.\nThe default console route will be maintained to reserve the default hostname\nfor console if the custom route is removed.\nIf not specified, default route will be used.\nDEPRECATED","type":"object","properties":{"hostname":{"description":"hostname is the desired custom domain under which console will be available.","type":"string"},"secret":{"description":"secret points to secret in the openshift-config namespace that contains custom\ncertificate and key and needs to be created manually by the cluster admin.\nReferenced Secret is required to contain following key value pairs:\n- \"tls.crt\" - to specifies custom certificate\n- \"tls.key\" - to specifies private key of the custom certificate\nIf the custom hostname uses the default routing suffix of the cluster,\nthe Secret specification for a serving certificate will not be needed.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced secret","type":"string"}}}}},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"ConsoleStatus defines the observed status of the Console.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"Console","version":"v1"}]},"io.openshift.operator.v1.ConsoleList":{"description":"ConsoleList is a list of Console","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of consoles. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.Console"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ConsoleList","version":"v1"}]},"io.openshift.operator.v1.DNS":{"description":"DNS manages the CoreDNS component to provide a name resolution service for pods and services in the cluster. \n This supports the DNS-based service discovery specification: https://github.com/kubernetes/dns/blob/master/docs/specification.md \n More details: https://kubernetes.io/docs/tasks/administer-cluster/coredns \n Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the DNS.","type":"object","properties":{"cache":{"description":"cache describes the caching configuration that applies to all server blocks listed in the Corefile. This field allows a cluster admin to optionally configure: * positiveTTL which is a duration for which positive responses should be cached. * negativeTTL which is a duration for which negative responses should be cached. If this is not configured, OpenShift will configure positive and negative caching with a default value that is subject to change. At the time of writing, the default positiveTTL is 900 seconds and the default negativeTTL is 30 seconds or as noted in the respective Corefile for your version of OpenShift.","type":"object","properties":{"negativeTTL":{"description":"negativeTTL is optional and specifies the amount of time that a negative response should be cached. \n If configured, it must be a value of 1s (1 second) or greater up to a theoretical maximum of several years. This field expects an unsigned duration string of decimal numbers, each with optional fraction and a unit suffix, e.g. \"100s\", \"1m30s\", \"12h30m10s\". Values that are fractions of a second are rounded down to the nearest second. If the configured value is less than 1s, the default value will be used. If not configured, the value will be 0s and OpenShift will use a default value of 30 seconds unless noted otherwise in the respective Corefile for your version of OpenShift. The default value of 30 seconds is subject to change.","type":"string","pattern":"^(0|([0-9]+(\\.[0-9]+)?(ns|us|µs|μs|ms|s|m|h))+)$"},"positiveTTL":{"description":"positiveTTL is optional and specifies the amount of time that a positive response should be cached. \n If configured, it must be a value of 1s (1 second) or greater up to a theoretical maximum of several years. This field expects an unsigned duration string of decimal numbers, each with optional fraction and a unit suffix, e.g. \"100s\", \"1m30s\", \"12h30m10s\". Values that are fractions of a second are rounded down to the nearest second. If the configured value is less than 1s, the default value will be used. If not configured, the value will be 0s and OpenShift will use a default value of 900 seconds unless noted otherwise in the respective Corefile for your version of OpenShift. The default value of 900 seconds is subject to change.","type":"string","pattern":"^(0|([0-9]+(\\.[0-9]+)?(ns|us|µs|μs|ms|s|m|h))+)$"}}},"logLevel":{"description":"logLevel describes the desired logging verbosity for CoreDNS. Any one of the following values may be specified: * Normal logs errors from upstream resolvers. * Debug logs errors, NXDOMAIN responses, and NODATA responses. * Trace logs errors and all responses. Setting logLevel: Trace will produce extremely verbose logs. Valid values are: \"Normal\", \"Debug\", \"Trace\". Defaults to \"Normal\".","type":"string","enum":["Normal","Debug","Trace"]},"managementState":{"description":"managementState indicates whether the DNS operator should manage cluster DNS","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"nodePlacement":{"description":"nodePlacement provides explicit control over the scheduling of DNS pods. \n Generally, it is useful to run a DNS pod on every node so that DNS queries are always handled by a local DNS pod instead of going over the network to a DNS pod on another node.  However, security policies may require restricting the placement of DNS pods to specific nodes. For example, if a security policy prohibits pods on arbitrary nodes from communicating with the API, a node selector can be specified to restrict DNS pods to nodes that are permitted to communicate with the API.  Conversely, if running DNS pods on nodes with a particular taint is desired, a toleration can be specified for that taint. \n If unset, defaults are used. See nodePlacement for more details.","type":"object","properties":{"nodeSelector":{"description":"nodeSelector is the node selector applied to DNS pods. \n If empty, the default is used, which is currently the following: \n kubernetes.io/os: linux \n This default is subject to change. \n If set, the specified selector is used and replaces the default.","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"tolerations is a list of tolerations applied to DNS pods. \n If empty, the DNS operator sets a toleration for the \"node-role.kubernetes.io/master\" taint.  This default is subject to change.  Specifying tolerations without including a toleration for the \"node-role.kubernetes.io/master\" taint may be risky as it could lead to an outage if all worker nodes become unavailable. \n Note that the daemon controller adds some tolerations as well.  See https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches the triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"operatorLogLevel":{"description":"operatorLogLevel controls the logging level of the DNS Operator. Valid values are: \"Normal\", \"Debug\", \"Trace\". Defaults to \"Normal\". setting operatorLogLevel: Trace will produce extremely verbose logs.","type":"string","enum":["Normal","Debug","Trace"]},"servers":{"description":"servers is a list of DNS resolvers that provide name query delegation for one or more subdomains outside the scope of the cluster domain. If servers consists of more than one Server, longest suffix match will be used to determine the Server. \n For example, if there are two Servers, one for \"foo.com\" and another for \"a.foo.com\", and the name query is for \"www.a.foo.com\", it will be routed to the Server with Zone \"a.foo.com\". \n If this field is nil, no servers are created.","type":"array","items":{"description":"Server defines the schema for a server that runs per instance of CoreDNS.","type":"object","properties":{"forwardPlugin":{"description":"forwardPlugin defines a schema for configuring CoreDNS to proxy DNS messages to upstream resolvers.","type":"object","properties":{"policy":{"description":"policy is used to determine the order in which upstream servers are selected for querying. Any one of the following values may be specified: \n * \"Random\" picks a random upstream server for each query. * \"RoundRobin\" picks upstream servers in a round-robin order, moving to the next server for each new query. * \"Sequential\" tries querying upstream servers in a sequential order until one responds, starting with the first server for each new query. \n The default value is \"Random\"","type":"string","enum":["Random","RoundRobin","Sequential"]},"protocolStrategy":{"description":"protocolStrategy specifies the protocol to use for upstream DNS requests. Valid values for protocolStrategy are \"TCP\" and omitted. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time. The current default is to use the protocol of the original client request. \"TCP\" specifies that the platform should use TCP for all upstream DNS requests, even if the client request uses UDP. \"TCP\" is useful for UDP-specific issues such as those created by non-compliant upstream resolvers, but may consume more bandwidth or increase DNS response time. Note that protocolStrategy only affects the protocol of DNS requests that CoreDNS makes to upstream resolvers. It does not affect the protocol of DNS requests between clients and CoreDNS.","type":"string","enum":["TCP",""]},"transportConfig":{"description":"transportConfig is used to configure the transport type, server name, and optional custom CA or CA bundle to use when forwarding DNS requests to an upstream resolver. \n The default value is \"\" (empty) which results in a standard cleartext connection being used when forwarding DNS requests to an upstream resolver.","type":"object","properties":{"tls":{"description":"tls contains the additional configuration options to use when Transport is set to \"TLS\".","type":"object","required":["serverName"],"properties":{"caBundle":{"description":"caBundle references a ConfigMap that must contain either a single CA Certificate or a CA Bundle. This allows cluster administrators to provide their own CA or CA bundle for validating the certificate of upstream resolvers. \n 1. The configmap must contain a `ca-bundle.crt` key. 2. The value must be a PEM encoded CA certificate or CA bundle. 3. The administrator must create this configmap in the openshift-config namespace. 4. The upstream server certificate must contain a Subject Alternative Name (SAN) that matches ServerName.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"serverName":{"description":"serverName is the upstream server to connect to when forwarding DNS queries. This is required when Transport is set to \"TLS\". ServerName will be validated against the DNS naming conventions in RFC 1123 and should match the TLS certificate installed in the upstream resolver(s).","type":"string","maxLength":253,"pattern":"^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]{0,61}[a-zA-Z0-9])(\\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]{0,61}[a-zA-Z0-9]))*$"}}},"transport":{"description":"transport allows cluster administrators to opt-in to using a DNS-over-TLS connection between cluster DNS and an upstream resolver(s). Configuring TLS as the transport at this level without configuring a CABundle will result in the system certificates being used to verify the serving certificate of the upstream resolver(s). \n Possible values: \"\" (empty) - This means no explicit choice has been made and the platform chooses the default which is subject to change over time. The current default is \"Cleartext\". \"Cleartext\" - Cluster admin specified cleartext option. This results in the same functionality as an empty value but may be useful when a cluster admin wants to be more explicit about the transport, or wants to switch from \"TLS\" to \"Cleartext\" explicitly. \"TLS\" - This indicates that DNS queries should be sent over a TLS connection. If Transport is set to TLS, you MUST also set ServerName. If a port is not included with the upstream IP, port 853 will be tried by default per RFC 7858 section 3.1; https://datatracker.ietf.org/doc/html/rfc7858#section-3.1.","type":"string","enum":["TLS","Cleartext",""]}}},"upstreams":{"description":"upstreams is a list of resolvers to forward name queries for subdomains of Zones. Each instance of CoreDNS performs health checking of Upstreams. When a healthy upstream returns an error during the exchange, another resolver is tried from Upstreams. The Upstreams are selected in the order specified in Policy. Each upstream is represented by an IP address or IP:port if the upstream listens on a port other than 53. \n A maximum of 15 upstreams is allowed per ForwardPlugin.","type":"array","maxItems":15,"items":{"type":"string"}}}},"name":{"description":"name is required and specifies a unique name for the server. Name must comply with the Service Name Syntax of rfc6335.","type":"string"},"zones":{"description":"zones is required and specifies the subdomains that Server is authoritative for. Zones must conform to the rfc1123 definition of a subdomain. Specifying the cluster domain (i.e., \"cluster.local\") is invalid.","type":"array","items":{"type":"string"}}}}},"upstreamResolvers":{"description":"upstreamResolvers defines a schema for configuring CoreDNS to proxy DNS messages to upstream resolvers for the case of the default (\".\") server \n If this field is not specified, the upstream used will default to /etc/resolv.conf, with policy \"sequential\"","type":"object","properties":{"policy":{"description":"Policy is used to determine the order in which upstream servers are selected for querying. Any one of the following values may be specified: \n * \"Random\" picks a random upstream server for each query. * \"RoundRobin\" picks upstream servers in a round-robin order, moving to the next server for each new query. * \"Sequential\" tries querying upstream servers in a sequential order until one responds, starting with the first server for each new query. \n The default value is \"Sequential\"","type":"string","enum":["Random","RoundRobin","Sequential"]},"protocolStrategy":{"description":"protocolStrategy specifies the protocol to use for upstream DNS requests. Valid values for protocolStrategy are \"TCP\" and omitted. When omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time. The current default is to use the protocol of the original client request. \"TCP\" specifies that the platform should use TCP for all upstream DNS requests, even if the client request uses UDP. \"TCP\" is useful for UDP-specific issues such as those created by non-compliant upstream resolvers, but may consume more bandwidth or increase DNS response time. Note that protocolStrategy only affects the protocol of DNS requests that CoreDNS makes to upstream resolvers. It does not affect the protocol of DNS requests between clients and CoreDNS.","type":"string","enum":["TCP",""]},"transportConfig":{"description":"transportConfig is used to configure the transport type, server name, and optional custom CA or CA bundle to use when forwarding DNS requests to an upstream resolver. \n The default value is \"\" (empty) which results in a standard cleartext connection being used when forwarding DNS requests to an upstream resolver.","type":"object","properties":{"tls":{"description":"tls contains the additional configuration options to use when Transport is set to \"TLS\".","type":"object","required":["serverName"],"properties":{"caBundle":{"description":"caBundle references a ConfigMap that must contain either a single CA Certificate or a CA Bundle. This allows cluster administrators to provide their own CA or CA bundle for validating the certificate of upstream resolvers. \n 1. The configmap must contain a `ca-bundle.crt` key. 2. The value must be a PEM encoded CA certificate or CA bundle. 3. The administrator must create this configmap in the openshift-config namespace. 4. The upstream server certificate must contain a Subject Alternative Name (SAN) that matches ServerName.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"serverName":{"description":"serverName is the upstream server to connect to when forwarding DNS queries. This is required when Transport is set to \"TLS\". ServerName will be validated against the DNS naming conventions in RFC 1123 and should match the TLS certificate installed in the upstream resolver(s).","type":"string","maxLength":253,"pattern":"^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]{0,61}[a-zA-Z0-9])(\\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]{0,61}[a-zA-Z0-9]))*$"}}},"transport":{"description":"transport allows cluster administrators to opt-in to using a DNS-over-TLS connection between cluster DNS and an upstream resolver(s). Configuring TLS as the transport at this level without configuring a CABundle will result in the system certificates being used to verify the serving certificate of the upstream resolver(s). \n Possible values: \"\" (empty) - This means no explicit choice has been made and the platform chooses the default which is subject to change over time. The current default is \"Cleartext\". \"Cleartext\" - Cluster admin specified cleartext option. This results in the same functionality as an empty value but may be useful when a cluster admin wants to be more explicit about the transport, or wants to switch from \"TLS\" to \"Cleartext\" explicitly. \"TLS\" - This indicates that DNS queries should be sent over a TLS connection. If Transport is set to TLS, you MUST also set ServerName. If a port is not included with the upstream IP, port 853 will be tried by default per RFC 7858 section 3.1; https://datatracker.ietf.org/doc/html/rfc7858#section-3.1.","type":"string","enum":["TLS","Cleartext",""]}}},"upstreams":{"description":"Upstreams is a list of resolvers to forward name queries for the \".\" domain. Each instance of CoreDNS performs health checking of Upstreams. When a healthy upstream returns an error during the exchange, another resolver is tried from Upstreams. The Upstreams are selected in the order specified in Policy. \n A maximum of 15 upstreams is allowed per ForwardPlugin. If no Upstreams are specified, /etc/resolv.conf is used by default","type":"array","maxItems":15,"items":{"description":"Upstream can either be of type SystemResolvConf, or of type Network. \n - For an Upstream of type SystemResolvConf, no further fields are necessary: The upstream will be configured to use /etc/resolv.conf. - For an Upstream of type Network, a NetworkResolver field needs to be defined with an IP address or IP:port if the upstream listens on a port other than 53.","type":"object","required":["type"],"properties":{"address":{"description":"Address must be defined when Type is set to Network. It will be ignored otherwise. It must be a valid ipv4 or ipv6 address.","type":"string"},"port":{"description":"Port may be defined when Type is set to Network. It will be ignored otherwise. Port must be between 65535","type":"integer","format":"int32","maximum":65535,"minimum":1},"type":{"description":"Type defines whether this upstream contains an IP/IP:port resolver or the local /etc/resolv.conf. Type accepts 2 possible values: SystemResolvConf or Network. \n * When SystemResolvConf is used, the Upstream structure does not require any further fields to be defined: /etc/resolv.conf will be used * When Network is used, the Upstream structure must contain at least an Address","type":"string","enum":["SystemResolvConf","Network",""]}}}}}}}},"status":{"description":"status is the most recently observed status of the DNS.","type":"object","required":["clusterDomain","clusterIP"],"properties":{"clusterDomain":{"description":"clusterDomain is the local cluster DNS domain suffix for DNS services. This will be a subdomain as defined in RFC 1034, section 3.5: https://tools.ietf.org/html/rfc1034#section-3.5 Example: \"cluster.local\" \n More info: https://kubernetes.io/docs/concepts/services-networking/dns-pod-service","type":"string"},"clusterIP":{"description":"clusterIP is the service IP through which this DNS is made available. \n In the case of the default DNS, this will be a well known IP that is used as the default nameserver for pods that are using the default ClusterFirst DNS policy. \n In general, this IP can be specified in a pod's spec.dnsConfig.nameservers list or used explicitly when performing name resolution from within the cluster. Example: dig foo.com @<service IP> \n More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies","type":"string"},"conditions":{"description":"conditions provide information about the state of the DNS on the cluster. \n These are the supported DNS conditions: \n * Available - True if the following conditions are met: * DNS controller daemonset is available. - False if any of those conditions are unsatisfied.","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"DNS","version":"v1"}]},"io.openshift.operator.v1.DNSList":{"description":"DNSList is a list of DNS","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of dnses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.DNS"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"DNSList","version":"v1"}]},"io.openshift.operator.v1.Etcd":{"description":"Etcd provides information to configure an operator to manage etcd.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"controlPlaneHardwareSpeed":{"description":"HardwareSpeed allows user to change the etcd tuning profile which configures\nthe latency parameters for heartbeat interval and leader election timeouts\nallowing the cluster to tolerate longer round-trip-times between etcd members.\nValid values are \"\", \"Standard\" and \"Slower\".\n\t\"\" means no opinion and the platform is left to choose a reasonable default\n\twhich is subject to change without notice.","type":"string","enum":["","Standard","Slower"]},"failedRevisionLimit":{"description":"failedRevisionLimit is the number of failed static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"forceRedeploymentReason":{"description":"forceRedeploymentReason can be used to force the redeployment of the operand by providing a unique string.\nThis provides a mechanism to kick a previously failed deployment and provide a reason why you think it will work\nthis time instead of failing again on the same config.","type":"string"},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"succeededRevisionLimit":{"description":"succeededRevisionLimit is the number of successful static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"controlPlaneHardwareSpeed":{"description":"ControlPlaneHardwareSpeed declares valid hardware speed tolerance levels","type":"string","enum":["","Standard","Slower"]},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"latestAvailableRevisionReason":{"description":"latestAvailableRevisionReason describe the detailed reason for the most recent deployment","type":"string"},"nodeStatuses":{"description":"nodeStatuses track the deployment values and errors across individual nodes","type":"array","items":{"description":"NodeStatus provides information about the current state of a particular node managed by this operator.","type":"object","required":["nodeName"],"properties":{"currentRevision":{"description":"currentRevision is the generation of the most recently successful deployment.\nCan not be set on creation of a nodeStatus. Updates must only increase the value.","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"lastFailedCount":{"description":"lastFailedCount is how often the installer pod of the last failed revision failed.","type":"integer"},"lastFailedReason":{"description":"lastFailedReason is a machine readable failure reason string.","type":"string"},"lastFailedRevision":{"description":"lastFailedRevision is the generation of the deployment we tried and failed to deploy.","type":"integer","format":"int32"},"lastFailedRevisionErrors":{"description":"lastFailedRevisionErrors is a list of human readable errors during the failed deployment referenced in lastFailedRevision.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"lastFailedTime":{"description":"lastFailedTime is the time the last failed revision failed the last time.","type":"string","format":"date-time"},"lastFallbackCount":{"description":"lastFallbackCount is how often a fallback to a previous revision happened.","type":"integer"},"nodeName":{"description":"nodeName is the name of the node","type":"string"},"targetRevision":{"description":"targetRevision is the generation of the deployment we're trying to apply.\nCan not be set on creation of a nodeStatus.","type":"integer","format":"int32"}},"x-kubernetes-validations":[{"fieldPath":".currentRevision","message":"cannot be unset once set","rule":"has(self.currentRevision) || !has(oldSelf.currentRevision)"},{"fieldPath":".currentRevision","message":"currentRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.currentRevision)"},{"fieldPath":".targetRevision","message":"targetRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.targetRevision)"}]},"x-kubernetes-list-map-keys":["nodeName"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"no more than 1 node status may have a nonzero targetRevision","rule":"size(self.filter(status, status.?targetRevision.orValue(0) != 0)) <= 1"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"Etcd","version":"v1"}]},"io.openshift.operator.v1.EtcdList":{"description":"EtcdList is a list of Etcd","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of etcds. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.Etcd"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"EtcdList","version":"v1"}]},"io.openshift.operator.v1.IngressController":{"description":"IngressController describes a managed ingress controller for the cluster. The\ncontroller can service OpenShift Route and Kubernetes Ingress resources.\n\nWhen an IngressController is created, a new ingress controller deployment is\ncreated to allow external traffic to reach the services that expose Ingress\nor Route resources. Updating this resource may lead to disruption for public\nfacing network connections as a new ingress controller revision may be rolled\nout.\n\nhttps://kubernetes.io/docs/concepts/services-networking/ingress-controllers\n\nWhenever possible, sensible defaults for the platform are used. See each\nfield for more details.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the IngressController.","type":"object","properties":{"clientTLS":{"description":"clientTLS specifies settings for requesting and verifying client\ncertificates, which can be used to enable mutual TLS for\nedge-terminated and reencrypt routes.","type":"object","required":["clientCA","clientCertificatePolicy"],"properties":{"allowedSubjectPatterns":{"description":"allowedSubjectPatterns specifies a list of regular expressions that\nshould be matched against the distinguished name on a valid client\ncertificate to filter requests.  The regular expressions must use\nPCRE syntax.  If this list is empty, no filtering is performed.  If\nthe list is nonempty, then at least one pattern must match a client\ncertificate's distinguished name or else the ingress controller\nrejects the certificate and denies the connection.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"clientCA":{"description":"clientCA specifies a configmap containing the PEM-encoded CA\ncertificate bundle that should be used to verify a client's\ncertificate.  The administrator must create this configmap in the\nopenshift-config namespace.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"clientCertificatePolicy":{"description":"clientCertificatePolicy specifies whether the ingress controller\nrequires clients to provide certificates.  This field accepts the\nvalues \"Required\" or \"Optional\".\n\nNote that the ingress controller only checks client certificates for\nedge-terminated and reencrypt TLS routes; it cannot check\ncertificates for cleartext HTTP or passthrough TLS routes.","type":"string","enum":["","Required","Optional"]}}},"defaultCertificate":{"description":"defaultCertificate is a reference to a secret containing the default\ncertificate served by the ingress controller. When Routes don't specify\ntheir own certificate, defaultCertificate is used.\n\nThe secret must contain the following keys and data:\n\n  tls.crt: certificate file contents\n  tls.key: key file contents\n\nIf unset, a wildcard certificate is automatically generated and used. The\ncertificate is valid for the ingress controller domain (and subdomains) and\nthe generated certificate's CA will be automatically integrated with the\ncluster's trust store.\n\nIf a wildcard certificate is used and shared by multiple\nHTTP/2 enabled routes (which implies ALPN) then clients\n(i.e., notably browsers) are at liberty to reuse open\nconnections. This means a client can reuse a connection to\nanother route and that is likely to fail. This behaviour is\ngenerally known as connection coalescing.\n\nThe in-use certificate (whether generated or user-specified) will be\nautomatically integrated with OpenShift's built-in OAuth server.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"domain":{"description":"domain is a DNS name serviced by the ingress controller and is used to\nconfigure multiple features:\n\n* For the LoadBalancerService endpoint publishing strategy, domain is\n  used to configure DNS records. See endpointPublishingStrategy.\n\n* When using a generated default certificate, the certificate will be valid\n  for domain and its subdomains. See defaultCertificate.\n\n* The value is published to individual Route statuses so that end-users\n  know where to target external DNS records.\n\ndomain must be unique among all IngressControllers, and cannot be\nupdated.\n\nIf empty, defaults to ingress.config.openshift.io/cluster .spec.domain.","type":"string"},"endpointPublishingStrategy":{"description":"endpointPublishingStrategy is used to publish the ingress controller\nendpoints to other networks, enable load balancer integrations, etc.\n\nIf unset, the default is based on\ninfrastructure.config.openshift.io/cluster .status.platform:\n\n  AWS:          LoadBalancerService (with External scope)\n  Azure:        LoadBalancerService (with External scope)\n  GCP:          LoadBalancerService (with External scope)\n  IBMCloud:     LoadBalancerService (with External scope)\n  AlibabaCloud: LoadBalancerService (with External scope)\n  Libvirt:      HostNetwork\n\nAny other platform types (including None) default to HostNetwork.\n\nendpointPublishingStrategy cannot be updated.","type":"object","required":["type"],"properties":{"hostNetwork":{"description":"hostNetwork holds parameters for the HostNetwork endpoint publishing\nstrategy. Present only if type is HostNetwork.","type":"object","properties":{"httpPort":{"description":"httpPort is the port on the host which should be used to listen for\nHTTP requests. This field should be set when port 80 is already in use.\nThe value should not coincide with the NodePort range of the cluster.\nWhen the value is 0 or is not specified it defaults to 80.","type":"integer","format":"int32","maximum":65535,"minimum":0},"httpsPort":{"description":"httpsPort is the port on the host which should be used to listen for\nHTTPS requests. This field should be set when port 443 is already in use.\nThe value should not coincide with the NodePort range of the cluster.\nWhen the value is 0 or is not specified it defaults to 443.","type":"integer","format":"int32","maximum":65535,"minimum":0},"protocol":{"description":"protocol specifies whether the IngressController expects incoming\nconnections to use plain TCP or whether the IngressController expects\nPROXY protocol.\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nThe following values are valid for this field:\n\n* The empty string.\n* \"TCP\".\n* \"PROXY\".\n\nThe empty string specifies the default, which is TCP without PROXY\nprotocol.  Note that the default is subject to change.","type":"string","enum":["","TCP","PROXY"]},"statsPort":{"description":"statsPort is the port on the host where the stats from the router are\npublished. The value should not coincide with the NodePort range of the\ncluster. If an external load balancer is configured to forward connections\nto this IngressController, the load balancer should use this port for\nhealth checks. The load balancer can send HTTP probes on this port on a\ngiven node, with the path /healthz/ready to determine if the ingress\ncontroller is ready to receive traffic on the node. For proper operation\nthe load balancer must not forward traffic to a node until the health\ncheck reports ready. The load balancer should also stop forwarding requests\nwithin a maximum of 45 seconds after /healthz/ready starts reporting\nnot-ready. Probing every 5 to 10 seconds, with a 5-second timeout and with\na threshold of two successful or failed requests to become healthy or\nunhealthy respectively, are well-tested values. When the value is 0 or\nis not specified it defaults to 1936.","type":"integer","format":"int32","maximum":65535,"minimum":0}}},"loadBalancer":{"description":"loadBalancer holds parameters for the load balancer. Present only if\ntype is LoadBalancerService.","type":"object","required":["dnsManagementPolicy","scope"],"properties":{"allowedSourceRanges":{"description":"allowedSourceRanges specifies an allowlist of IP address ranges to which\naccess to the load balancer should be restricted.  Each range must be\nspecified using CIDR notation (e.g. \"10.0.0.0/8\" or \"fd00::/8\"). If no range is\nspecified, \"0.0.0.0/0\" for IPv4 and \"::/0\" for IPv6 are used by default,\nwhich allows all source addresses.\n\nTo facilitate migration from earlier versions of OpenShift that did\nnot have the allowedSourceRanges field, you may set the\nservice.beta.kubernetes.io/load-balancer-source-ranges annotation on\nthe \"router-<ingresscontroller name>\" service in the\n\"openshift-ingress\" namespace, and this annotation will take\neffect if allowedSourceRanges is empty on OpenShift 4.12.","x-kubernetes-list-type":"atomic"},"dnsManagementPolicy":{"description":"dnsManagementPolicy indicates if the lifecycle of the wildcard DNS record\nassociated with the load balancer service will be managed by\nthe ingress operator. It defaults to Managed.\nValid values are: Managed and Unmanaged.","type":"string","enum":["Managed","Unmanaged"]},"providerParameters":{"description":"providerParameters holds desired load balancer information specific to\nthe underlying infrastructure provider.\n\nIf empty, defaults will be applied. See specific providerParameters\nfields for details about their defaults.","type":"object","required":["type"],"properties":{"aws":{"description":"aws provides configuration settings that are specific to AWS\nload balancers.\n\nIf empty, defaults will be applied. See specific aws fields for\ndetails about their defaults.","type":"object","required":["type"],"properties":{"classicLoadBalancer":{"description":"classicLoadBalancerParameters holds configuration parameters for an AWS\nclassic load balancer. Present only if type is Classic.","type":"object","properties":{"connectionIdleTimeout":{"description":"connectionIdleTimeout specifies the maximum time period that a\nconnection may be idle before the load balancer closes the\nconnection.  The value must be parseable as a time duration value;\nsee <https://pkg.go.dev/time#ParseDuration>.  A nil or zero value\nmeans no opinion, in which case a default value is used.  The default\nvalue for this field is 60s.  This default is subject to change.","type":"string","format":"duration"},"subnets":{"description":"subnets specifies the subnets to which the load balancer will\nattach. The subnets may be specified by either their\nID or name. The total number of subnets is limited to 10.\n\nIn order for the load balancer to be provisioned with subnets,\neach subnet must exist, each subnet must be from a different\navailability zone, and the load balancer service must be\nrecreated to pick up new values.\n\nWhen omitted from the spec, the subnets will be auto-discovered\nfor each availability zone. Auto-discovered subnets are not reported\nin the status of the IngressController object.","type":"object","properties":{"ids":{"description":"ids specifies a list of AWS subnets by subnet ID.\nSubnet IDs must start with \"subnet-\", consist only\nof alphanumeric characters, must be exactly 24\ncharacters long, must be unique, and the total\nnumber of subnets specified by ids and names\nmust not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetID is a reference to an AWS subnet ID.","type":"string","maxLength":24,"minLength":24,"pattern":"^subnet-[0-9A-Za-z]+$"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet ids cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]},"names":{"description":"names specifies a list of AWS subnets by subnet name.\nSubnet names must not start with \"subnet-\", must not\ninclude commas, must be under 256 characters in length,\nmust be unique, and the total number of subnets\nspecified by ids and names must not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetName is a reference to an AWS subnet name.","type":"string","maxLength":256,"minLength":1,"x-kubernetes-validations":[{"message":"subnet name cannot contain a comma","rule":"!self.contains(',')"},{"message":"subnet name cannot start with 'subnet-'","rule":"!self.startsWith('subnet-')"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet names cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]}},"x-kubernetes-validations":[{"message":"the total number of subnets cannot exceed 10","rule":"has(self.ids) && has(self.names) ? size(self.ids + self.names) <= 10 : true"},{"message":"must specify at least 1 subnet name or id","rule":"has(self.ids) && self.ids.size() > 0 || has(self.names) && self.names.size() > 0"}]}}},"networkLoadBalancer":{"description":"networkLoadBalancerParameters holds configuration parameters for an AWS\nnetwork load balancer. Present only if type is NLB.","type":"object","properties":{"eipAllocations":{"description":"eipAllocations is a list of IDs for Elastic IP (EIP) addresses that\nare assigned to the Network Load Balancer.\nThe following restrictions apply:\n\neipAllocations can only be used with external scope, not internal.\nAn EIP can be allocated to only a single IngressController.\nThe number of EIP allocations must match the number of subnets that are used for the load balancer.\nEach EIP allocation must be unique.\nA maximum of 10 EIP allocations are permitted.\n\nSee https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/elastic-ip-addresses-eip.html for general\ninformation about configuration, characteristics, and limitations of Elastic IP addresses.","type":"array","maxItems":10,"items":{"description":"EIPAllocation is an ID for an Elastic IP (EIP) address that can be allocated to an ELB in the AWS environment.\nValues must begin with `eipalloc-` followed by exactly 17 hexadecimal (`[0-9a-fA-F]`) characters.","type":"string","maxLength":26,"minLength":26,"x-kubernetes-validations":[{"message":"eipAllocations should start with 'eipalloc-'","rule":"self.startsWith('eipalloc-')"},{"message":"eipAllocations must be 'eipalloc-' followed by exactly 17 hexadecimal characters (0-9, a-f, A-F)","rule":"self.split(\"-\", 2)[1].matches('[0-9a-fA-F]{17}$')"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"eipAllocations cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]},"subnets":{"description":"subnets specifies the subnets to which the load balancer will\nattach. The subnets may be specified by either their\nID or name. The total number of subnets is limited to 10.\n\nIn order for the load balancer to be provisioned with subnets,\neach subnet must exist, each subnet must be from a different\navailability zone, and the load balancer service must be\nrecreated to pick up new values.\n\nWhen omitted from the spec, the subnets will be auto-discovered\nfor each availability zone. Auto-discovered subnets are not reported\nin the status of the IngressController object.","type":"object","properties":{"ids":{"description":"ids specifies a list of AWS subnets by subnet ID.\nSubnet IDs must start with \"subnet-\", consist only\nof alphanumeric characters, must be exactly 24\ncharacters long, must be unique, and the total\nnumber of subnets specified by ids and names\nmust not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetID is a reference to an AWS subnet ID.","type":"string","maxLength":24,"minLength":24,"pattern":"^subnet-[0-9A-Za-z]+$"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet ids cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]},"names":{"description":"names specifies a list of AWS subnets by subnet name.\nSubnet names must not start with \"subnet-\", must not\ninclude commas, must be under 256 characters in length,\nmust be unique, and the total number of subnets\nspecified by ids and names must not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetName is a reference to an AWS subnet name.","type":"string","maxLength":256,"minLength":1,"x-kubernetes-validations":[{"message":"subnet name cannot contain a comma","rule":"!self.contains(',')"},{"message":"subnet name cannot start with 'subnet-'","rule":"!self.startsWith('subnet-')"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet names cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]}},"x-kubernetes-validations":[{"message":"the total number of subnets cannot exceed 10","rule":"has(self.ids) && has(self.names) ? size(self.ids + self.names) <= 10 : true"},{"message":"must specify at least 1 subnet name or id","rule":"has(self.ids) && self.ids.size() > 0 || has(self.names) && self.names.size() > 0"}]}},"x-kubernetes-validations":[{"message":"number of subnets must be equal to number of eipAllocations","rule":"has(self.subnets) && has(self.subnets.ids) && has(self.subnets.names) && has(self.eipAllocations) ? size(self.subnets.ids + self.subnets.names) == size(self.eipAllocations) : true"},{"message":"number of subnets must be equal to number of eipAllocations","rule":"has(self.subnets) && has(self.subnets.ids) && !has(self.subnets.names) && has(self.eipAllocations) ? size(self.subnets.ids) == size(self.eipAllocations) : true"},{"message":"number of subnets must be equal to number of eipAllocations","rule":"has(self.subnets) && has(self.subnets.names) && !has(self.subnets.ids) && has(self.eipAllocations) ? size(self.subnets.names) == size(self.eipAllocations) : true"}]},"type":{"description":"type is the type of AWS load balancer to instantiate for an ingresscontroller.\n\nValid values are:\n\n* \"Classic\": A Classic Load Balancer that makes routing decisions at either\n  the transport layer (TCP/SSL) or the application layer (HTTP/HTTPS). See\n  the following for additional details:\n\n    https://docs.aws.amazon.com/AmazonECS/latest/developerguide/load-balancer-types.html#clb\n\n* \"NLB\": A Network Load Balancer that makes routing decisions at the\n  transport layer (TCP/SSL). See the following for additional details:\n\n    https://docs.aws.amazon.com/AmazonECS/latest/developerguide/load-balancer-types.html#nlb","type":"string","enum":["Classic","NLB"]}}},"gcp":{"description":"gcp provides configuration settings that are specific to GCP\nload balancers.\n\nIf empty, defaults will be applied. See specific gcp fields for\ndetails about their defaults.","type":"object","properties":{"clientAccess":{"description":"clientAccess describes how client access is restricted for internal\nload balancers.\n\nValid values are:\n* \"Global\": Specifying an internal load balancer with Global client access\n  allows clients from any region within the VPC to communicate with the load\n  balancer.\n\n    https://cloud.google.com/kubernetes-engine/docs/how-to/internal-load-balancing#global_access\n\n* \"Local\": Specifying an internal load balancer with Local client access\n  means only clients within the same region (and VPC) as the GCP load balancer\n  can communicate with the load balancer. Note that this is the default behavior.\n\n    https://cloud.google.com/load-balancing/docs/internal#client_access","type":"string","enum":["Global","Local"]}}},"ibm":{"description":"ibm provides configuration settings that are specific to IBM Cloud\nload balancers.\n\nIf empty, defaults will be applied. See specific ibm fields for\ndetails about their defaults.","type":"object","properties":{"protocol":{"description":"protocol specifies whether the load balancer uses PROXY protocol to forward connections to\nthe IngressController. See \"service.kubernetes.io/ibm-load-balancer-cloud-provider-enable-features:\n\"proxy-protocol\"\" at https://cloud.ibm.com/docs/containers?topic=containers-vpc-lbaas\"\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nValid values for protocol are TCP, PROXY and omitted.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.\nThe current default is TCP, without the proxy protocol enabled.","type":"string","enum":["","TCP","PROXY"]}}},"openstack":{"description":"openstack provides configuration settings that are specific to OpenStack\nload balancers.\n\nIf empty, defaults will be applied. See specific openstack fields for\ndetails about their defaults.","type":"object","properties":{"floatingIP":{"description":"floatingIP specifies the IP address that the load balancer will use.\nWhen not specified, an IP address will be assigned randomly by the OpenStack cloud provider.\nWhen specified, the floating IP has to be pre-created.  If the\nspecified value is not a floating IP or is already claimed, the\nOpenStack cloud provider won't be able to provision the load\nbalancer.\nThis field may only be used if the IngressController has External scope.\nThis value must be a valid IPv4 or IPv6 address.","type":"string","x-kubernetes-validations":[{"message":"floatingIP must be a valid IPv4 or IPv6 address","rule":"isIP(self)"}]}}},"type":{"description":"type is the underlying infrastructure provider for the load balancer.\nAllowed values are \"AWS\", \"Azure\", \"BareMetal\", \"GCP\", \"IBM\", \"Nutanix\",\n\"OpenStack\", and \"VSphere\".","type":"string","enum":["AWS","Azure","BareMetal","GCP","Nutanix","OpenStack","VSphere","IBM"]}},"x-kubernetes-validations":[{"message":"openstack is not permitted when type is not OpenStack","rule":"has(self.type) && self.type == 'OpenStack' ? true : !has(self.openstack)"}]},"scope":{"description":"scope indicates the scope at which the load balancer is exposed.\nPossible values are \"External\" and \"Internal\".","type":"string","enum":["Internal","External"]}},"x-kubernetes-validations":[{"message":"eipAllocations are forbidden when the scope is Internal.","rule":"!has(self.scope) || self.scope != 'Internal' || !has(self.providerParameters) || !has(self.providerParameters.aws) || !has(self.providerParameters.aws.networkLoadBalancer) || !has(self.providerParameters.aws.networkLoadBalancer.eipAllocations)"},{"message":"cannot specify a floating ip when scope is internal","rule":"!has(self.scope) || self.scope != 'Internal' || !has(self.providerParameters) || !has(self.providerParameters.openstack) || !has(self.providerParameters.openstack.floatingIP) || self.providerParameters.openstack.floatingIP == \"\""}]},"nodePort":{"description":"nodePort holds parameters for the NodePortService endpoint publishing strategy.\nPresent only if type is NodePortService.","type":"object","properties":{"protocol":{"description":"protocol specifies whether the IngressController expects incoming\nconnections to use plain TCP or whether the IngressController expects\nPROXY protocol.\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nThe following values are valid for this field:\n\n* The empty string.\n* \"TCP\".\n* \"PROXY\".\n\nThe empty string specifies the default, which is TCP without PROXY\nprotocol.  Note that the default is subject to change.","type":"string","enum":["","TCP","PROXY"]}}},"private":{"description":"private holds parameters for the Private endpoint publishing\nstrategy. Present only if type is Private.","type":"object","properties":{"protocol":{"description":"protocol specifies whether the IngressController expects incoming\nconnections to use plain TCP or whether the IngressController expects\nPROXY protocol.\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nThe following values are valid for this field:\n\n* The empty string.\n* \"TCP\".\n* \"PROXY\".\n\nThe empty string specifies the default, which is TCP without PROXY\nprotocol.  Note that the default is subject to change.","type":"string","enum":["","TCP","PROXY"]}}},"type":{"description":"type is the publishing strategy to use. Valid values are:\n\n* LoadBalancerService\n\nPublishes the ingress controller using a Kubernetes LoadBalancer Service.\n\nIn this configuration, the ingress controller deployment uses container\nnetworking. A LoadBalancer Service is created to publish the deployment.\n\nSee: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer\n\nIf domain is set, a wildcard DNS record will be managed to point at the\nLoadBalancer Service's external name. DNS records are managed only in DNS\nzones defined by dns.config.openshift.io/cluster .spec.publicZone and\n.spec.privateZone.\n\nWildcard DNS management is currently supported only on the AWS, Azure,\nand GCP platforms.\n\n* HostNetwork\n\nPublishes the ingress controller on node ports where the ingress controller\nis deployed.\n\nIn this configuration, the ingress controller deployment uses host\nnetworking, bound to node ports 80 and 443. The user is responsible for\nconfiguring an external load balancer to publish the ingress controller via\nthe node ports.\n\n* Private\n\nDoes not publish the ingress controller.\n\nIn this configuration, the ingress controller deployment uses container\nnetworking, and is not explicitly published. The user must manually publish\nthe ingress controller.\n\n* NodePortService\n\nPublishes the ingress controller using a Kubernetes NodePort Service.\n\nIn this configuration, the ingress controller deployment uses container\nnetworking. A NodePort Service is created to publish the deployment. The\nspecific node ports are dynamically allocated by OpenShift; however, to\nsupport static port allocations, user changes to the node port\nfield of the managed NodePort Service will preserved.","type":"string","enum":["LoadBalancerService","HostNetwork","Private","NodePortService"]}}},"httpCompression":{"description":"httpCompression defines a policy for HTTP traffic compression.\nBy default, there is no HTTP compression.","type":"object","properties":{"mimeTypes":{"description":"mimeTypes is a list of MIME types that should have compression applied.\nThis list can be empty, in which case the ingress controller does not apply compression.\n\nNote: Not all MIME types benefit from compression, but HAProxy will still use resources\nto try to compress if instructed to.  Generally speaking, text (html, css, js, etc.)\nformats benefit from compression, but formats that are already compressed (image,\naudio, video, etc.) benefit little in exchange for the time and cpu spent on compressing\nagain. See https://joehonton.medium.com/the-gzip-penalty-d31bd697f1a2","type":"array","items":{"description":"CompressionMIMEType defines the format of a single MIME type.\nE.g. \"text/css; charset=utf-8\", \"text/html\", \"text/*\", \"image/svg+xml\",\n\"application/octet-stream\", \"X-custom/customsub\", etc.\n\nThe format should follow the Content-Type definition in RFC 1341:\nContent-Type := type \"/\" subtype *[\";\" parameter]\n  - The type in Content-Type can be one of:\n    application, audio, image, message, multipart, text, video, or a custom\n    type preceded by \"X-\" and followed by a token as defined below.\n  - The token is a string of at least one character, and not containing white\n    space, control characters, or any of the characters in the tspecials set.\n  - The tspecials set contains the characters ()<>@,;:\\\"/[]?.=\n  - The subtype in Content-Type is also a token.\n  - The optional parameter/s following the subtype are defined as:\n    token \"=\" (token / quoted-string)\n  - The quoted-string, as defined in RFC 822, is surrounded by double quotes\n    and can contain white space plus any character EXCEPT \\, \", and CR.\n    It can also contain any single ASCII character as long as it is escaped by \\.","type":"string","pattern":"^(?i)(x-[^][ ()\\\\<>@,;:\"/?.=\\x00-\\x1F\\x7F]+|application|audio|image|message|multipart|text|video)/[^][ ()\\\\<>@,;:\"/?.=\\x00-\\x1F\\x7F]+(; *[^][ ()\\\\<>@,;:\"/?.=\\x00-\\x1F\\x7F]+=([^][ ()\\\\<>@,;:\"/?.=\\x00-\\x1F\\x7F]+|\"(\\\\[\\x00-\\x7F]|[^\\x0D\"\\\\])*\"))*$"},"x-kubernetes-list-type":"set"}}},"httpEmptyRequestsPolicy":{"description":"httpEmptyRequestsPolicy describes how HTTP connections should be\nhandled if the connection times out before a request is received.\nAllowed values for this field are \"Respond\" and \"Ignore\".  If the\nfield is set to \"Respond\", the ingress controller sends an HTTP 400\nor 408 response, logs the connection (if access logging is enabled),\nand counts the connection in the appropriate metrics.  If the field\nis set to \"Ignore\", the ingress controller closes the connection\nwithout sending a response, logging the connection, or incrementing\nmetrics.  The default value is \"Respond\".\n\nTypically, these connections come from load balancers' health probes\nor Web browsers' speculative connections (\"preconnect\") and can be\nsafely ignored.  However, these requests may also be caused by\nnetwork errors, and so setting this field to \"Ignore\" may impede\ndetection and diagnosis of problems.  In addition, these requests may\nbe caused by port scans, in which case logging empty requests may aid\nin detecting intrusion attempts.","type":"string","enum":["Respond","Ignore"]},"httpErrorCodePages":{"description":"httpErrorCodePages specifies a configmap with custom error pages.\nThe administrator must create this configmap in the openshift-config namespace.\nThis configmap should have keys in the format \"error-page-<error code>.http\",\nwhere <error code> is an HTTP error code.\nFor example, \"error-page-503.http\" defines an error page for HTTP 503 responses.\nCurrently only error pages for 503 and 404 responses can be customized.\nEach value in the configmap should be the full response, including HTTP headers.\nEg- https://raw.githubusercontent.com/openshift/router/fadab45747a9b30cc3f0a4b41ad2871f95827a93/images/router/haproxy/conf/error-page-503.http\nIf this field is empty, the ingress controller uses the default error pages.","type":"object","required":["name"],"properties":{"name":{"description":"name is the metadata.name of the referenced config map","type":"string"}}},"httpHeaders":{"description":"httpHeaders defines policy for HTTP headers.\n\nIf this field is empty, the default values are used.","type":"object","properties":{"actions":{"description":"actions specifies options for modifying headers and their values.\nNote that this option only applies to cleartext HTTP connections\nand to secure HTTP connections for which the ingress controller\nterminates encryption (that is, edge-terminated or reencrypt\nconnections).  Headers cannot be modified for TLS passthrough\nconnections.\nSetting the HSTS (`Strict-Transport-Security`) header is not supported via actions. `Strict-Transport-Security`\nmay only be configured using the \"haproxy.router.openshift.io/hsts_header\" route annotation, and only in\naccordance with the policy specified in Ingress.Spec.RequiredHSTSPolicies.\nAny actions defined here are applied after any actions related to the following other fields:\ncache-control, spec.clientTLS,\nspec.httpHeaders.forwardedHeaderPolicy, spec.httpHeaders.uniqueId,\nand spec.httpHeaders.headerNameCaseAdjustments.\nIn case of HTTP request headers, the actions specified in spec.httpHeaders.actions on the Route will be executed after\nthe actions specified in the IngressController's spec.httpHeaders.actions field.\nIn case of HTTP response headers, the actions specified in spec.httpHeaders.actions on the IngressController will be\nexecuted after the actions specified in the Route's spec.httpHeaders.actions field.\nHeaders set using this API cannot be captured for use in access logs.\nThe following header names are reserved and may not be modified via this API:\nStrict-Transport-Security, Proxy, Host, Cookie, Set-Cookie.\nNote that the total size of all net added headers *after* interpolating dynamic values\nmust not exceed the value of spec.tuningOptions.headerBufferMaxRewriteBytes on the\nIngressController. Please refer to the documentation\nfor that API field for more details.","type":"object","properties":{"request":{"description":"request is a list of HTTP request headers to modify.\nActions defined here will modify the request headers of all requests passing through an ingress controller.\nThese actions are applied to all Routes i.e. for all connections handled by the ingress controller defined within a cluster.\nIngressController actions for request headers will be executed before Route actions.\nCurrently, actions may define to either `Set` or `Delete` headers values.\nActions are applied in sequence as defined in this list.\nA maximum of 20 request header actions may be configured.\nSample fetchers allowed are \"req.hdr\" and \"ssl_c_der\".\nConverters allowed are \"lower\" and \"base64\".\nExample header values: \"%[req.hdr(X-target),lower]\", \"%{+Q}[ssl_c_der,base64]\".","type":"array","maxItems":20,"items":{"description":"IngressControllerHTTPHeader specifies configuration for setting or deleting an HTTP header.","type":"object","required":["action","name"],"properties":{"action":{"description":"action specifies actions to perform on headers, such as setting or deleting headers.","type":"object","required":["type"],"properties":{"set":{"description":"set specifies how the HTTP header should be set.\nThis field is required when type is Set and forbidden otherwise.","type":"object","required":["value"],"properties":{"value":{"description":"value specifies a header value.\nDynamic values can be added. The value will be interpreted as an HAProxy format string as defined in\nhttp://cbonte.github.io/haproxy-dconv/2.6/configuration.html#8.2.6  and may use HAProxy's %[] syntax and\notherwise must be a valid HTTP header value as defined in https://datatracker.ietf.org/doc/html/rfc7230#section-3.2.\nThe value of this field must be no more than 16384 characters in length.\nNote that the total size of all net added headers *after* interpolating dynamic values\nmust not exceed the value of spec.tuningOptions.headerBufferMaxRewriteBytes on the\nIngressController.","type":"string","maxLength":16384,"minLength":1}}},"type":{"description":"type defines the type of the action to be applied on the header.\nPossible values are Set or Delete.\nSet allows you to set HTTP request and response headers.\nDelete allows you to delete HTTP request and response headers.","type":"string","enum":["Set","Delete"]}},"x-kubernetes-validations":[{"message":"set is required when type is Set, and forbidden otherwise","rule":"has(self.type) && self.type == 'Set' ?  has(self.set) : !has(self.set)"}]},"name":{"description":"name specifies the name of a header on which to perform an action. Its value must be a valid HTTP header\nname as defined in RFC 2616 section 4.2.\nThe name must consist only of alphanumeric and the following special characters, \"-!#$%&'*+.^_`\".\nThe following header names are reserved and may not be modified via this API:\nStrict-Transport-Security, Proxy, Host, Cookie, Set-Cookie.\nIt must be no more than 255 characters in length.\nHeader name must be unique.","type":"string","maxLength":255,"minLength":1,"pattern":"^[-!#$%&'*+.0-9A-Z^_`a-z|~]+$","x-kubernetes-validations":[{"message":"strict-transport-security header may not be modified via header actions","rule":"self.lowerAscii() != 'strict-transport-security'"},{"message":"proxy header may not be modified via header actions","rule":"self.lowerAscii() != 'proxy'"},{"message":"host header may not be modified via header actions","rule":"self.lowerAscii() != 'host'"},{"message":"cookie header may not be modified via header actions","rule":"self.lowerAscii() != 'cookie'"},{"message":"set-cookie header may not be modified via header actions","rule":"self.lowerAscii() != 'set-cookie'"}]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"Either the header value provided is not in correct format or the sample fetcher/converter specified is not allowed. The dynamic header value will be interpreted as an HAProxy format string as defined in http://cbonte.github.io/haproxy-dconv/2.6/configuration.html#8.2.6 and may use HAProxy's %[] syntax and otherwise must be a valid HTTP header value as defined in https://datatracker.ietf.org/doc/html/rfc7230#section-3.2. Sample fetchers allowed are req.hdr, ssl_c_der. Converters allowed are lower, base64.","rule":"self.all(key, key.action.type == \"Delete\" || (has(key.action.set) && key.action.set.value.matches('^(?:%(?:%|(?:\\\\{[-+]?[QXE](?:,[-+]?[QXE])*\\\\})?\\\\[(?:req\\\\.hdr\\\\([0-9A-Za-z-]+\\\\)|ssl_c_der)(?:,(?:lower|base64))*\\\\])|[^%[:cntrl:]])+$')))"}]},"response":{"description":"response is a list of HTTP response headers to modify.\nActions defined here will modify the response headers of all requests passing through an ingress controller.\nThese actions are applied to all Routes i.e. for all connections handled by the ingress controller defined within a cluster.\nIngressController actions for response headers will be executed after Route actions.\nCurrently, actions may define to either `Set` or `Delete` headers values.\nActions are applied in sequence as defined in this list.\nA maximum of 20 response header actions may be configured.\nSample fetchers allowed are \"res.hdr\" and \"ssl_c_der\".\nConverters allowed are \"lower\" and \"base64\".\nExample header values: \"%[res.hdr(X-target),lower]\", \"%{+Q}[ssl_c_der,base64]\".","type":"array","maxItems":20,"items":{"description":"IngressControllerHTTPHeader specifies configuration for setting or deleting an HTTP header.","type":"object","required":["action","name"],"properties":{"action":{"description":"action specifies actions to perform on headers, such as setting or deleting headers.","type":"object","required":["type"],"properties":{"set":{"description":"set specifies how the HTTP header should be set.\nThis field is required when type is Set and forbidden otherwise.","type":"object","required":["value"],"properties":{"value":{"description":"value specifies a header value.\nDynamic values can be added. The value will be interpreted as an HAProxy format string as defined in\nhttp://cbonte.github.io/haproxy-dconv/2.6/configuration.html#8.2.6  and may use HAProxy's %[] syntax and\notherwise must be a valid HTTP header value as defined in https://datatracker.ietf.org/doc/html/rfc7230#section-3.2.\nThe value of this field must be no more than 16384 characters in length.\nNote that the total size of all net added headers *after* interpolating dynamic values\nmust not exceed the value of spec.tuningOptions.headerBufferMaxRewriteBytes on the\nIngressController.","type":"string","maxLength":16384,"minLength":1}}},"type":{"description":"type defines the type of the action to be applied on the header.\nPossible values are Set or Delete.\nSet allows you to set HTTP request and response headers.\nDelete allows you to delete HTTP request and response headers.","type":"string","enum":["Set","Delete"]}},"x-kubernetes-validations":[{"message":"set is required when type is Set, and forbidden otherwise","rule":"has(self.type) && self.type == 'Set' ?  has(self.set) : !has(self.set)"}]},"name":{"description":"name specifies the name of a header on which to perform an action. Its value must be a valid HTTP header\nname as defined in RFC 2616 section 4.2.\nThe name must consist only of alphanumeric and the following special characters, \"-!#$%&'*+.^_`\".\nThe following header names are reserved and may not be modified via this API:\nStrict-Transport-Security, Proxy, Host, Cookie, Set-Cookie.\nIt must be no more than 255 characters in length.\nHeader name must be unique.","type":"string","maxLength":255,"minLength":1,"pattern":"^[-!#$%&'*+.0-9A-Z^_`a-z|~]+$","x-kubernetes-validations":[{"message":"strict-transport-security header may not be modified via header actions","rule":"self.lowerAscii() != 'strict-transport-security'"},{"message":"proxy header may not be modified via header actions","rule":"self.lowerAscii() != 'proxy'"},{"message":"host header may not be modified via header actions","rule":"self.lowerAscii() != 'host'"},{"message":"cookie header may not be modified via header actions","rule":"self.lowerAscii() != 'cookie'"},{"message":"set-cookie header may not be modified via header actions","rule":"self.lowerAscii() != 'set-cookie'"}]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"Either the header value provided is not in correct format or the sample fetcher/converter specified is not allowed. The dynamic header value will be interpreted as an HAProxy format string as defined in http://cbonte.github.io/haproxy-dconv/2.6/configuration.html#8.2.6 and may use HAProxy's %[] syntax and otherwise must be a valid HTTP header value as defined in https://datatracker.ietf.org/doc/html/rfc7230#section-3.2. Sample fetchers allowed are res.hdr, ssl_c_der. Converters allowed are lower, base64.","rule":"self.all(key, key.action.type == \"Delete\" || (has(key.action.set) && key.action.set.value.matches('^(?:%(?:%|(?:\\\\{[-+]?[QXE](?:,[-+]?[QXE])*\\\\})?\\\\[(?:res\\\\.hdr\\\\([0-9A-Za-z-]+\\\\)|ssl_c_der)(?:,(?:lower|base64))*\\\\])|[^%[:cntrl:]])+$')))"}]}}},"forwardedHeaderPolicy":{"description":"forwardedHeaderPolicy specifies when and how the IngressController\nsets the Forwarded, X-Forwarded-For, X-Forwarded-Host,\nX-Forwarded-Port, X-Forwarded-Proto, and X-Forwarded-Proto-Version\nHTTP headers.  The value may be one of the following:\n\n* \"Append\", which specifies that the IngressController appends the\n  headers, preserving existing headers.\n\n* \"Replace\", which specifies that the IngressController sets the\n  headers, replacing any existing Forwarded or X-Forwarded-* headers.\n\n* \"IfNone\", which specifies that the IngressController sets the\n  headers if they are not already set.\n\n* \"Never\", which specifies that the IngressController never sets the\n  headers, preserving any existing headers.\n\nBy default, the policy is \"Append\".","type":"string","enum":["Append","Replace","IfNone","Never"]},"headerNameCaseAdjustments":{"description":"headerNameCaseAdjustments specifies case adjustments that can be\napplied to HTTP header names.  Each adjustment is specified as an\nHTTP header name with the desired capitalization.  For example,\nspecifying \"X-Forwarded-For\" indicates that the \"x-forwarded-for\"\nHTTP header should be adjusted to have the specified capitalization.\n\nThese adjustments are only applied to cleartext, edge-terminated, and\nre-encrypt routes, and only when using HTTP/1.\n\nFor request headers, these adjustments are applied only for routes\nthat have the haproxy.router.openshift.io/h1-adjust-case=true\nannotation.  For response headers, these adjustments are applied to\nall HTTP responses.\n\nIf this field is empty, no request headers are adjusted.","x-kubernetes-list-type":"atomic"},"uniqueId":{"description":"uniqueId describes configuration for a custom HTTP header that the\ningress controller should inject into incoming HTTP requests.\nTypically, this header is configured to have a value that is unique\nto the HTTP request.  The header can be used by applications or\nincluded in access logs to facilitate tracing individual HTTP\nrequests.\n\nIf this field is empty, no such header is injected into requests.","type":"object","properties":{"format":{"description":"format specifies the format for the injected HTTP header's value.\nThis field has no effect unless name is specified.  For the\nHAProxy-based ingress controller implementation, this format uses the\nsame syntax as the HTTP log format.  If the field is empty, the\ndefault value is \"%{+X}o\\\\ %ci:%cp_%fi:%fp_%Ts_%rt:%pid\"; see the\ncorresponding HAProxy documentation:\nhttp://cbonte.github.io/haproxy-dconv/2.0/configuration.html#8.2.3","type":"string","maxLength":1024,"minLength":0,"pattern":"^(%(%|(\\{[-+]?[QXE](,[-+]?[QXE])*\\})?([A-Za-z]+|\\[[.0-9A-Z_a-z]+(\\([^)]+\\))?(,[.0-9A-Z_a-z]+(\\([^)]+\\))?)*\\]))|[^%[:cntrl:]])*$"},"name":{"description":"name specifies the name of the HTTP header (for example, \"unique-id\")\nthat the ingress controller should inject into HTTP requests.  The\nfield's value must be a valid HTTP header name as defined in RFC 2616\nsection 4.2.  If the field is empty, no header is injected.","type":"string","maxLength":1024,"minLength":0,"pattern":"^$|^[-!#$%&'*+.0-9A-Z^_`a-z|~]+$"}}}}},"idleConnectionTerminationPolicy":{"description":"idleConnectionTerminationPolicy maps directly to HAProxy's\nidle-close-on-response option and controls whether HAProxy\nkeeps idle frontend connections open during a soft stop\n(router reload).\n\nAllowed values for this field are \"Immediate\" and\n\"Deferred\". The default value is \"Deferred\".\n\nWhen set to \"Immediate\", idle connections are closed\nimmediately during router reloads. This ensures immediate\npropagation of route changes but may impact clients\nsensitive to connection resets.\n\nWhen set to \"Deferred\", HAProxy will maintain idle\nconnections during a soft reload instead of closing them\nimmediately. These connections remain open until any of the\nfollowing occurs:\n\n  - A new request is received on the connection, in which\n    case HAProxy handles it in the old process and closes\n    the connection after sending the response.\n\n  - HAProxy's `timeout http-keep-alive` duration expires\n    (300 seconds in OpenShift's configuration, not\n    configurable).\n\n  - The client's keep-alive timeout expires, causing the\n    client to close the connection.\n\nSetting Deferred can help prevent errors in clients or load\nbalancers that do not properly handle connection resets.\nAdditionally, this option allows you to retain the pre-2.4\nHAProxy behaviour: in HAProxy version 2.2 (OpenShift\nversions < 4.14), maintaining idle connections during a\nsoft reload was the default behaviour, but starting with\nHAProxy 2.4, the default changed to closing idle\nconnections immediately.\n\nImportant Consideration:\n\n  - Using Deferred will result in temporary inconsistencies\n    for the first request on each persistent connection\n    after a route update and router reload. This request\n    will be processed by the old HAProxy process using its\n    old configuration. Subsequent requests will use the\n    updated configuration.\n\nOperational Considerations:\n\n  - Keeping idle connections open during reloads may lead\n    to an accumulation of old HAProxy processes if\n    connections remain idle for extended periods,\n    especially in environments where frequent reloads\n    occur.\n\n  - Consider monitoring the number of HAProxy processes in\n    the router pods when Deferred is set.\n\n  - You may need to enable or adjust the\n    `ingress.operator.openshift.io/hard-stop-after`\n    duration (configured via an annotation on the\n    IngressController resource) in environments with\n    frequent reloads to prevent resource exhaustion.","type":"string","enum":["Immediate","Deferred"]},"logging":{"description":"logging defines parameters for what should be logged where.  If this\nfield is empty, operational logs are enabled but access logs are\ndisabled.","type":"object","properties":{"access":{"description":"access describes how the client requests should be logged.\n\nIf this field is empty, access logging is disabled.","type":"object","required":["destination"],"properties":{"destination":{"description":"destination is where access logs go.","type":"object","required":["type"],"properties":{"container":{"description":"container holds parameters for the Container logging destination.\nPresent only if type is Container.","type":"object","properties":{"maxLength":{"description":"maxLength is the maximum length of the log message.\n\nValid values are integers in the range 480 to 8192, inclusive.\n\nWhen omitted, the default value is 1024.","type":"integer","format":"int32","maximum":8192,"minimum":480}}},"syslog":{"description":"syslog holds parameters for a syslog endpoint.  Present only if\ntype is Syslog.","type":"object","required":["address","port"],"properties":{"address":{"description":"address is the IP address of the syslog endpoint that receives log\nmessages.","type":"string"},"facility":{"description":"facility specifies the syslog facility of log messages.\n\nIf this field is empty, the facility is \"local1\".","type":"string","enum":["kern","user","mail","daemon","auth","syslog","lpr","news","uucp","cron","auth2","ftp","ntp","audit","alert","cron2","local0","local1","local2","local3","local4","local5","local6","local7"]},"maxLength":{"description":"maxLength is the maximum length of the log message.\n\nValid values are integers in the range 480 to 4096, inclusive.\n\nWhen omitted, the default value is 1024.","type":"integer","format":"int32","maximum":4096,"minimum":480},"port":{"description":"port is the UDP port number of the syslog endpoint that receives log\nmessages.","type":"integer","format":"int32","maximum":65535,"minimum":1}}},"type":{"description":"type is the type of destination for logs.  It must be one of the\nfollowing:\n\n* Container\n\nThe ingress operator configures the sidecar container named \"logs\" on\nthe ingress controller pod and configures the ingress controller to\nwrite logs to the sidecar.  The logs are then available as container\nlogs.  The expectation is that the administrator configures a custom\nlogging solution that reads logs from this sidecar.  Note that using\ncontainer logs means that logs may be dropped if the rate of logs\nexceeds the container runtime's or the custom logging solution's\ncapacity.\n\n* Syslog\n\nLogs are sent to a syslog endpoint.  The administrator must specify\nan endpoint that can receive syslog messages.  The expectation is\nthat the administrator has configured a custom syslog instance.","type":"string","enum":["Container","Syslog"]}}},"httpCaptureCookies":{"description":"httpCaptureCookies specifies HTTP cookies that should be captured in\naccess logs.  If this field is empty, no cookies are captured.","maxItems":1,"x-kubernetes-list-type":"atomic"},"httpCaptureHeaders":{"description":"httpCaptureHeaders defines HTTP headers that should be captured in\naccess logs.  If this field is empty, no headers are captured.\n\nNote that this option only applies to cleartext HTTP connections\nand to secure HTTP connections for which the ingress controller\nterminates encryption (that is, edge-terminated or reencrypt\nconnections).  Headers cannot be captured for TLS passthrough\nconnections.","type":"object","properties":{"request":{"description":"request specifies which HTTP request headers to capture.\n\nIf this field is empty, no request headers are captured.","x-kubernetes-list-type":"atomic"},"response":{"description":"response specifies which HTTP response headers to capture.\n\nIf this field is empty, no response headers are captured.","x-kubernetes-list-type":"atomic"}}},"httpLogFormat":{"description":"httpLogFormat specifies the format of the log message for an HTTP\nrequest.\n\nIf this field is empty, log messages use the implementation's default\nHTTP log format.  For HAProxy's default HTTP log format, see the\nHAProxy documentation:\nhttp://cbonte.github.io/haproxy-dconv/2.0/configuration.html#8.2.3\n\nNote that this format only applies to cleartext HTTP connections\nand to secure HTTP connections for which the ingress controller\nterminates encryption (that is, edge-terminated or reencrypt\nconnections).  It does not affect the log format for TLS passthrough\nconnections.","type":"string"},"logEmptyRequests":{"description":"logEmptyRequests specifies how connections on which no request is\nreceived should be logged.  Typically, these empty requests come from\nload balancers' health probes or Web browsers' speculative\nconnections (\"preconnect\"), in which case logging these requests may\nbe undesirable.  However, these requests may also be caused by\nnetwork errors, in which case logging empty requests may be useful\nfor diagnosing the errors.  In addition, these requests may be caused\nby port scans, in which case logging empty requests may aid in\ndetecting intrusion attempts.  Allowed values for this field are\n\"Log\" and \"Ignore\".  The default value is \"Log\".","type":"string","enum":["Log","Ignore"]}}}}},"namespaceSelector":{"description":"namespaceSelector is used to filter the set of namespaces serviced by the\ningress controller. This is useful for implementing shards.\n\nIf unset, the default is no filtering.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"nodePlacement":{"description":"nodePlacement enables explicit control over the scheduling of the ingress\ncontroller.\n\nIf unset, defaults are used. See NodePlacement for more details.","type":"object","properties":{"nodeSelector":{"description":"nodeSelector is the node selector applied to ingress controller\ndeployments.\n\nIf set, the specified selector is used and replaces the default.\n\nIf unset, the default depends on the value of the defaultPlacement\nfield in the cluster config.openshift.io/v1/ingresses status.\n\nWhen defaultPlacement is Workers, the default is:\n\n  kubernetes.io/os: linux\n  node-role.kubernetes.io/worker: ''\n\nWhen defaultPlacement is ControlPlane, the default is:\n\n  kubernetes.io/os: linux\n  node-role.kubernetes.io/master: ''\n\nThese defaults are subject to change.\n\nNote that using nodeSelector.matchExpressions is not supported.  Only\nnodeSelector.matchLabels may be used.  This is a limitation of the\nKubernetes API: the pod spec does not allow complex expressions for\nnode selectors.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"tolerations":{"description":"tolerations is a list of tolerations applied to ingress controller\ndeployments.\n\nThe default is an empty list.\n\nSee https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"replicas":{"description":"replicas is the desired number of ingress controller replicas. If unset,\nthe default depends on the value of the defaultPlacement field in the\ncluster config.openshift.io/v1/ingresses status.\n\nThe value of replicas is set based on the value of a chosen field in the\nInfrastructure CR. If defaultPlacement is set to ControlPlane, the\nchosen field will be controlPlaneTopology. If it is set to Workers the\nchosen field will be infrastructureTopology. Replicas will then be set to 1\nor 2 based whether the chosen field's value is SingleReplica or\nHighlyAvailable, respectively.\n\nThese defaults are subject to change.","type":"integer","format":"int32"},"routeAdmission":{"description":"routeAdmission defines a policy for handling new route claims (for example,\nto allow or deny claims across namespaces).\n\nIf empty, defaults will be applied. See specific routeAdmission fields\nfor details about their defaults.","type":"object","properties":{"namespaceOwnership":{"description":"namespaceOwnership describes how host name claims across namespaces should\nbe handled.\n\nValue must be one of:\n\n- Strict: Do not allow routes in different namespaces to claim the same host.\n\n- InterNamespaceAllowed: Allow routes to claim different paths of the same\n  host name across namespaces.\n\nIf empty, the default is Strict.","type":"string","enum":["InterNamespaceAllowed","Strict"]},"wildcardPolicy":{"description":"wildcardPolicy describes how routes with wildcard policies should\nbe handled for the ingress controller. WildcardPolicy controls use\nof routes [1] exposed by the ingress controller based on the route's\nwildcard policy.\n\n[1] https://github.com/openshift/api/blob/master/route/v1/types.go\n\nNote: Updating WildcardPolicy from WildcardsAllowed to WildcardsDisallowed\nwill cause admitted routes with a wildcard policy of Subdomain to stop\nworking. These routes must be updated to a wildcard policy of None to be\nreadmitted by the ingress controller.\n\nWildcardPolicy supports WildcardsAllowed and WildcardsDisallowed values.\n\nIf empty, defaults to \"WildcardsDisallowed\".","type":"string","enum":["WildcardsAllowed","WildcardsDisallowed"]}}},"routeSelector":{"description":"routeSelector is used to filter the set of Routes serviced by the ingress\ncontroller. This is useful for implementing shards.\n\nIf unset, the default is no filtering.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"tlsSecurityProfile":{"description":"tlsSecurityProfile specifies settings for TLS connections for ingresscontrollers.\n\nIf unset, the default is based on the apiservers.config.openshift.io/cluster resource.\n\nNote that when using the Old, Intermediate, and Modern profile types, the effective\nprofile configuration is subject to change between releases. For example, given\na specification to use the Intermediate profile deployed on release X.Y.Z, an upgrade\nto release X.Y.Z+1 may cause a new profile configuration to be applied to the ingress\ncontroller, resulting in a rollout.","type":"object","properties":{"custom":{"description":"custom is a user-defined TLS security profile. Be extremely careful using a custom\nprofile as invalid configurations can be catastrophic. An example custom profile\nlooks like this:\n\n  ciphers:\n\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-AES128-GCM-SHA256\n\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n\n  minTLSVersion: VersionTLS11"},"intermediate":{"description":"intermediate is a TLS security profile based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29\n\nand looks like this (yaml):\n\n  ciphers:\n\n    - TLS_AES_128_GCM_SHA256\n\n    - TLS_AES_256_GCM_SHA384\n\n    - TLS_CHACHA20_POLY1305_SHA256\n\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n\n    - ECDHE-RSA-AES128-GCM-SHA256\n\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n\n    - ECDHE-RSA-AES256-GCM-SHA384\n\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-CHACHA20-POLY1305\n\n    - DHE-RSA-AES128-GCM-SHA256\n\n    - DHE-RSA-AES256-GCM-SHA384\n\n  minTLSVersion: VersionTLS12"},"modern":{"description":"modern is a TLS security profile based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility\n\nand looks like this (yaml):\n\n  ciphers:\n\n    - TLS_AES_128_GCM_SHA256\n\n    - TLS_AES_256_GCM_SHA384\n\n    - TLS_CHACHA20_POLY1305_SHA256\n\n  minTLSVersion: VersionTLS13"},"old":{"description":"old is a TLS security profile based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility\n\nand looks like this (yaml):\n\n  ciphers:\n\n    - TLS_AES_128_GCM_SHA256\n\n    - TLS_AES_256_GCM_SHA384\n\n    - TLS_CHACHA20_POLY1305_SHA256\n\n    - ECDHE-ECDSA-AES128-GCM-SHA256\n\n    - ECDHE-RSA-AES128-GCM-SHA256\n\n    - ECDHE-ECDSA-AES256-GCM-SHA384\n\n    - ECDHE-RSA-AES256-GCM-SHA384\n\n    - ECDHE-ECDSA-CHACHA20-POLY1305\n\n    - ECDHE-RSA-CHACHA20-POLY1305\n\n    - DHE-RSA-AES128-GCM-SHA256\n\n    - DHE-RSA-AES256-GCM-SHA384\n\n    - DHE-RSA-CHACHA20-POLY1305\n\n    - ECDHE-ECDSA-AES128-SHA256\n\n    - ECDHE-RSA-AES128-SHA256\n\n    - ECDHE-ECDSA-AES128-SHA\n\n    - ECDHE-RSA-AES128-SHA\n\n    - ECDHE-ECDSA-AES256-SHA384\n\n    - ECDHE-RSA-AES256-SHA384\n\n    - ECDHE-ECDSA-AES256-SHA\n\n    - ECDHE-RSA-AES256-SHA\n\n    - DHE-RSA-AES128-SHA256\n\n    - DHE-RSA-AES256-SHA256\n\n    - AES128-GCM-SHA256\n\n    - AES256-GCM-SHA384\n\n    - AES128-SHA256\n\n    - AES256-SHA256\n\n    - AES128-SHA\n\n    - AES256-SHA\n\n    - DES-CBC3-SHA\n\n  minTLSVersion: VersionTLS10"},"type":{"description":"type is one of Old, Intermediate, Modern or Custom. Custom provides\nthe ability to specify individual TLS security profile parameters.\nOld, Intermediate and Modern are TLS security profiles based on:\n\nhttps://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations\n\nThe profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers\nare found to be insecure.  Depending on precisely which ciphers are available to a process, the list may be\nreduced.\n\nNote that the Modern profile is currently not supported because it is not\nyet well adopted by common software libraries.","type":"string","enum":["Old","Intermediate","Modern","Custom"]}}},"tuningOptions":{"description":"tuningOptions defines parameters for adjusting the performance of\ningress controller pods. All fields are optional and will use their\nrespective defaults if not set. See specific tuningOptions fields for\nmore details.\n\nSetting fields within tuningOptions is generally not recommended. The\ndefault values are suitable for most configurations.","type":"object","properties":{"clientFinTimeout":{"description":"clientFinTimeout defines how long a connection will be held open while\nwaiting for the client response to the server/backend closing the\nconnection.\n\nIf unset, the default timeout is 1s","type":"string","format":"duration"},"clientTimeout":{"description":"clientTimeout defines how long a connection will be held open while\nwaiting for a client response.\n\nIf unset, the default timeout is 30s","type":"string","format":"duration"},"connectTimeout":{"description":"ConnectTimeout defines the maximum time to wait for\na connection attempt to a server/backend to succeed.\n\nThis field expects an unsigned duration string of decimal numbers, each with optional\nfraction and a unit suffix, e.g. \"300ms\", \"1.5h\" or \"2h45m\".\nValid time units are \"ns\", \"us\" (or \"µs\" U+00B5 or \"μs\" U+03BC), \"ms\", \"s\", \"m\", \"h\".\n\nWhen omitted, this means the user has no opinion and the platform is left\nto choose a reasonable default. This default is subject to change over time.\nThe current default is 5s.","type":"string","pattern":"^(0|([0-9]+(\\.[0-9]+)?(ns|us|µs|μs|ms|s|m|h))+)$"},"headerBufferBytes":{"description":"headerBufferBytes describes how much memory should be reserved\n(in bytes) for IngressController connection sessions.\nNote that this value must be at least 16384 if HTTP/2 is\nenabled for the IngressController (https://tools.ietf.org/html/rfc7540).\nIf this field is empty, the IngressController will use a default value\nof 32768 bytes.\n\nSetting this field is generally not recommended as headerBufferBytes\nvalues that are too small may break the IngressController and\nheaderBufferBytes values that are too large could cause the\nIngressController to use significantly more memory than necessary.","type":"integer","format":"int32","minimum":16384},"headerBufferMaxRewriteBytes":{"description":"headerBufferMaxRewriteBytes describes how much memory should be reserved\n(in bytes) from headerBufferBytes for HTTP header rewriting\nand appending for IngressController connection sessions.\nNote that incoming HTTP requests will be limited to\n(headerBufferBytes - headerBufferMaxRewriteBytes) bytes, meaning\nheaderBufferBytes must be greater than headerBufferMaxRewriteBytes.\nIf this field is empty, the IngressController will use a default value\nof 8192 bytes.\n\nSetting this field is generally not recommended as\nheaderBufferMaxRewriteBytes values that are too small may break the\nIngressController and headerBufferMaxRewriteBytes values that are too\nlarge could cause the IngressController to use significantly more memory\nthan necessary.","type":"integer","format":"int32","minimum":4096},"healthCheckInterval":{"description":"healthCheckInterval defines how long the router waits between two consecutive\nhealth checks on its configured backends.  This value is applied globally as\na default for all routes, but may be overridden per-route by the route annotation\n\"router.openshift.io/haproxy.health.check.interval\".\n\nExpects an unsigned duration string of decimal numbers, each with optional\nfraction and a unit suffix, eg \"300ms\", \"1.5h\" or \"2h45m\".\nValid time units are \"ns\", \"us\" (or \"µs\" U+00B5 or \"μs\" U+03BC), \"ms\", \"s\", \"m\", \"h\".\n\nSetting this to less than 5s can cause excess traffic due to too frequent\nTCP health checks and accompanying SYN packet storms.  Alternatively, setting\nthis too high can result in increased latency, due to backend servers that are no\nlonger available, but haven't yet been detected as such.\n\nAn empty or zero healthCheckInterval means no opinion and IngressController chooses\na default, which is subject to change over time.\nCurrently the default healthCheckInterval value is 5s.\n\nCurrently the minimum allowed value is 1s and the maximum allowed value is\n2147483647ms (24.85 days).  Both are subject to change over time.","type":"string","pattern":"^(0|([0-9]+(\\.[0-9]+)?(ns|us|µs|μs|ms|s|m|h))+)$"},"maxConnections":{"description":"maxConnections defines the maximum number of simultaneous\nconnections that can be established per HAProxy process.\nIncreasing this value allows each ingress controller pod to\nhandle more connections but at the cost of additional\nsystem resources being consumed.\n\nPermitted values are: empty, 0, -1, and the range\n2000-2000000.\n\nIf this field is empty or 0, the IngressController will use\nthe default value of 50000, but the default is subject to\nchange in future releases.\n\nIf the value is -1 then HAProxy will dynamically compute a\nmaximum value based on the available ulimits in the running\ncontainer. Selecting -1 (i.e., auto) will result in a large\nvalue being computed (~520000 on OpenShift >=4.10 clusters)\nand therefore each HAProxy process will incur significant\nmemory usage compared to the current default of 50000.\n\nSetting a value that is greater than the current operating\nsystem limit will prevent the HAProxy process from\nstarting.\n\nIf you choose a discrete value (e.g., 750000) and the\nrouter pod is migrated to a new node, there's no guarantee\nthat that new node has identical ulimits configured. In\nsuch a scenario the pod would fail to start. If you have\nnodes with different ulimits configured (e.g., different\ntuned profiles) and you choose a discrete value then the\nguidance is to use -1 and let the value be computed\ndynamically at runtime.\n\nYou can monitor memory usage for router containers with the\nfollowing metric:\n'container_memory_working_set_bytes{container=\"router\",namespace=\"openshift-ingress\"}'.\n\nYou can monitor memory usage of individual HAProxy\nprocesses in router containers with the following metric:\n'container_memory_working_set_bytes{container=\"router\",namespace=\"openshift-ingress\"}/container_processes{container=\"router\",namespace=\"openshift-ingress\"}'.","type":"integer","format":"int32"},"reloadInterval":{"description":"reloadInterval defines the minimum interval at which the router is allowed to reload\nto accept new changes. Increasing this value can prevent the accumulation of\nHAProxy processes, depending on the scenario. Increasing this interval can\nalso lessen load imbalance on a backend's servers when using the roundrobin\nbalancing algorithm. Alternatively, decreasing this value may decrease latency\nsince updates to HAProxy's configuration can take effect more quickly.\n\nThe value must be a time duration value; see <https://pkg.go.dev/time#ParseDuration>.\nCurrently, the minimum value allowed is 1s, and the maximum allowed value is\n120s. Minimum and maximum allowed values may change in future versions of OpenShift.\nNote that if a duration outside of these bounds is provided, the value of reloadInterval\nwill be capped/floored and not rejected (e.g. a duration of over 120s will be capped to\n120s; the IngressController will not reject and replace this disallowed value with\nthe default).\n\nA zero value for reloadInterval tells the IngressController to choose the default,\nwhich is currently 5s and subject to change without notice.\n\nThis field expects an unsigned duration string of decimal numbers, each with optional\nfraction and a unit suffix, e.g. \"300ms\", \"1.5h\" or \"2h45m\".\nValid time units are \"ns\", \"us\" (or \"µs\" U+00B5 or \"μs\" U+03BC), \"ms\", \"s\", \"m\", \"h\".\n\nNote: Setting a value significantly larger than the default of 5s can cause latency\nin observing updates to routes and their endpoints. HAProxy's configuration will\nbe reloaded less frequently, and newly created routes will not be served until the\nsubsequent reload.","type":"string","pattern":"^(0|([0-9]+(\\.[0-9]+)?(ns|us|µs|μs|ms|s|m|h))+)$"},"serverFinTimeout":{"description":"serverFinTimeout defines how long a connection will be held open while\nwaiting for the server/backend response to the client closing the\nconnection.\n\nIf unset, the default timeout is 1s","type":"string","format":"duration"},"serverTimeout":{"description":"serverTimeout defines how long a connection will be held open while\nwaiting for a server/backend response.\n\nIf unset, the default timeout is 30s","type":"string","format":"duration"},"threadCount":{"description":"threadCount defines the number of threads created per HAProxy process.\nCreating more threads allows each ingress controller pod to handle more\nconnections, at the cost of more system resources being used. HAProxy\ncurrently supports up to 64 threads. If this field is empty, the\nIngressController will use the default value.  The current default is 4\nthreads, but this may change in future releases.\n\nSetting this field is generally not recommended. Increasing the number\nof HAProxy threads allows ingress controller pods to utilize more CPU\ntime under load, potentially starving other pods if set too high.\nReducing the number of threads may cause the ingress controller to\nperform poorly.","type":"integer","format":"int32","maximum":64,"minimum":1},"tlsInspectDelay":{"description":"tlsInspectDelay defines how long the router can hold data to find a\nmatching route.\n\nSetting this too short can cause the router to fall back to the default\ncertificate for edge-terminated or reencrypt routes even when a better\nmatching certificate could be used.\n\nIf unset, the default inspect delay is 5s","type":"string","format":"duration"},"tunnelTimeout":{"description":"tunnelTimeout defines how long a tunnel connection (including\nwebsockets) will be held open while the tunnel is idle.\n\nIf unset, the default timeout is 1h","type":"string","format":"duration"}}},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides allows specifying unsupported\nconfiguration options.  Its use is unsupported.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status is the most recently observed status of the IngressController.","type":"object","properties":{"availableReplicas":{"description":"availableReplicas is number of observed available replicas according to the\ningress controller deployment.","type":"integer","format":"int32"},"conditions":{"description":"conditions is a list of conditions and their status.\n\nAvailable means the ingress controller deployment is available and\nservicing route and ingress resources (i.e, .status.availableReplicas\nequals .spec.replicas)\n\nThere are additional conditions which indicate the status of other\ningress controller features and capabilities.\n\n  * LoadBalancerManaged\n  - True if the following conditions are met:\n    * The endpoint publishing strategy requires a service load balancer.\n  - False if any of those conditions are unsatisfied.\n\n  * LoadBalancerReady\n  - True if the following conditions are met:\n    * A load balancer is managed.\n    * The load balancer is ready.\n  - False if any of those conditions are unsatisfied.\n\n  * DNSManaged\n  - True if the following conditions are met:\n    * The endpoint publishing strategy and platform support DNS.\n    * The ingress controller domain is set.\n    * dns.config.openshift.io/cluster configures DNS zones.\n  - False if any of those conditions are unsatisfied.\n\n  * DNSReady\n  - True if the following conditions are met:\n    * DNS is managed.\n    * DNS records have been successfully created.\n  - False if any of those conditions are unsatisfied.","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"domain":{"description":"domain is the actual domain in use.","type":"string"},"endpointPublishingStrategy":{"description":"endpointPublishingStrategy is the actual strategy in use.","type":"object","required":["type"],"properties":{"hostNetwork":{"description":"hostNetwork holds parameters for the HostNetwork endpoint publishing\nstrategy. Present only if type is HostNetwork.","type":"object","properties":{"httpPort":{"description":"httpPort is the port on the host which should be used to listen for\nHTTP requests. This field should be set when port 80 is already in use.\nThe value should not coincide with the NodePort range of the cluster.\nWhen the value is 0 or is not specified it defaults to 80.","type":"integer","format":"int32","maximum":65535,"minimum":0},"httpsPort":{"description":"httpsPort is the port on the host which should be used to listen for\nHTTPS requests. This field should be set when port 443 is already in use.\nThe value should not coincide with the NodePort range of the cluster.\nWhen the value is 0 or is not specified it defaults to 443.","type":"integer","format":"int32","maximum":65535,"minimum":0},"protocol":{"description":"protocol specifies whether the IngressController expects incoming\nconnections to use plain TCP or whether the IngressController expects\nPROXY protocol.\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nThe following values are valid for this field:\n\n* The empty string.\n* \"TCP\".\n* \"PROXY\".\n\nThe empty string specifies the default, which is TCP without PROXY\nprotocol.  Note that the default is subject to change.","type":"string","enum":["","TCP","PROXY"]},"statsPort":{"description":"statsPort is the port on the host where the stats from the router are\npublished. The value should not coincide with the NodePort range of the\ncluster. If an external load balancer is configured to forward connections\nto this IngressController, the load balancer should use this port for\nhealth checks. The load balancer can send HTTP probes on this port on a\ngiven node, with the path /healthz/ready to determine if the ingress\ncontroller is ready to receive traffic on the node. For proper operation\nthe load balancer must not forward traffic to a node until the health\ncheck reports ready. The load balancer should also stop forwarding requests\nwithin a maximum of 45 seconds after /healthz/ready starts reporting\nnot-ready. Probing every 5 to 10 seconds, with a 5-second timeout and with\na threshold of two successful or failed requests to become healthy or\nunhealthy respectively, are well-tested values. When the value is 0 or\nis not specified it defaults to 1936.","type":"integer","format":"int32","maximum":65535,"minimum":0}}},"loadBalancer":{"description":"loadBalancer holds parameters for the load balancer. Present only if\ntype is LoadBalancerService.","type":"object","required":["dnsManagementPolicy","scope"],"properties":{"allowedSourceRanges":{"description":"allowedSourceRanges specifies an allowlist of IP address ranges to which\naccess to the load balancer should be restricted.  Each range must be\nspecified using CIDR notation (e.g. \"10.0.0.0/8\" or \"fd00::/8\"). If no range is\nspecified, \"0.0.0.0/0\" for IPv4 and \"::/0\" for IPv6 are used by default,\nwhich allows all source addresses.\n\nTo facilitate migration from earlier versions of OpenShift that did\nnot have the allowedSourceRanges field, you may set the\nservice.beta.kubernetes.io/load-balancer-source-ranges annotation on\nthe \"router-<ingresscontroller name>\" service in the\n\"openshift-ingress\" namespace, and this annotation will take\neffect if allowedSourceRanges is empty on OpenShift 4.12.","x-kubernetes-list-type":"atomic"},"dnsManagementPolicy":{"description":"dnsManagementPolicy indicates if the lifecycle of the wildcard DNS record\nassociated with the load balancer service will be managed by\nthe ingress operator. It defaults to Managed.\nValid values are: Managed and Unmanaged.","type":"string","enum":["Managed","Unmanaged"]},"providerParameters":{"description":"providerParameters holds desired load balancer information specific to\nthe underlying infrastructure provider.\n\nIf empty, defaults will be applied. See specific providerParameters\nfields for details about their defaults.","type":"object","required":["type"],"properties":{"aws":{"description":"aws provides configuration settings that are specific to AWS\nload balancers.\n\nIf empty, defaults will be applied. See specific aws fields for\ndetails about their defaults.","type":"object","required":["type"],"properties":{"classicLoadBalancer":{"description":"classicLoadBalancerParameters holds configuration parameters for an AWS\nclassic load balancer. Present only if type is Classic.","type":"object","properties":{"connectionIdleTimeout":{"description":"connectionIdleTimeout specifies the maximum time period that a\nconnection may be idle before the load balancer closes the\nconnection.  The value must be parseable as a time duration value;\nsee <https://pkg.go.dev/time#ParseDuration>.  A nil or zero value\nmeans no opinion, in which case a default value is used.  The default\nvalue for this field is 60s.  This default is subject to change.","type":"string","format":"duration"},"subnets":{"description":"subnets specifies the subnets to which the load balancer will\nattach. The subnets may be specified by either their\nID or name. The total number of subnets is limited to 10.\n\nIn order for the load balancer to be provisioned with subnets,\neach subnet must exist, each subnet must be from a different\navailability zone, and the load balancer service must be\nrecreated to pick up new values.\n\nWhen omitted from the spec, the subnets will be auto-discovered\nfor each availability zone. Auto-discovered subnets are not reported\nin the status of the IngressController object.","type":"object","properties":{"ids":{"description":"ids specifies a list of AWS subnets by subnet ID.\nSubnet IDs must start with \"subnet-\", consist only\nof alphanumeric characters, must be exactly 24\ncharacters long, must be unique, and the total\nnumber of subnets specified by ids and names\nmust not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetID is a reference to an AWS subnet ID.","type":"string","maxLength":24,"minLength":24,"pattern":"^subnet-[0-9A-Za-z]+$"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet ids cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]},"names":{"description":"names specifies a list of AWS subnets by subnet name.\nSubnet names must not start with \"subnet-\", must not\ninclude commas, must be under 256 characters in length,\nmust be unique, and the total number of subnets\nspecified by ids and names must not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetName is a reference to an AWS subnet name.","type":"string","maxLength":256,"minLength":1,"x-kubernetes-validations":[{"message":"subnet name cannot contain a comma","rule":"!self.contains(',')"},{"message":"subnet name cannot start with 'subnet-'","rule":"!self.startsWith('subnet-')"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet names cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]}},"x-kubernetes-validations":[{"message":"the total number of subnets cannot exceed 10","rule":"has(self.ids) && has(self.names) ? size(self.ids + self.names) <= 10 : true"},{"message":"must specify at least 1 subnet name or id","rule":"has(self.ids) && self.ids.size() > 0 || has(self.names) && self.names.size() > 0"}]}}},"networkLoadBalancer":{"description":"networkLoadBalancerParameters holds configuration parameters for an AWS\nnetwork load balancer. Present only if type is NLB.","type":"object","properties":{"eipAllocations":{"description":"eipAllocations is a list of IDs for Elastic IP (EIP) addresses that\nare assigned to the Network Load Balancer.\nThe following restrictions apply:\n\neipAllocations can only be used with external scope, not internal.\nAn EIP can be allocated to only a single IngressController.\nThe number of EIP allocations must match the number of subnets that are used for the load balancer.\nEach EIP allocation must be unique.\nA maximum of 10 EIP allocations are permitted.\n\nSee https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/elastic-ip-addresses-eip.html for general\ninformation about configuration, characteristics, and limitations of Elastic IP addresses.","type":"array","maxItems":10,"items":{"description":"EIPAllocation is an ID for an Elastic IP (EIP) address that can be allocated to an ELB in the AWS environment.\nValues must begin with `eipalloc-` followed by exactly 17 hexadecimal (`[0-9a-fA-F]`) characters.","type":"string","maxLength":26,"minLength":26,"x-kubernetes-validations":[{"message":"eipAllocations should start with 'eipalloc-'","rule":"self.startsWith('eipalloc-')"},{"message":"eipAllocations must be 'eipalloc-' followed by exactly 17 hexadecimal characters (0-9, a-f, A-F)","rule":"self.split(\"-\", 2)[1].matches('[0-9a-fA-F]{17}$')"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"eipAllocations cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]},"subnets":{"description":"subnets specifies the subnets to which the load balancer will\nattach. The subnets may be specified by either their\nID or name. The total number of subnets is limited to 10.\n\nIn order for the load balancer to be provisioned with subnets,\neach subnet must exist, each subnet must be from a different\navailability zone, and the load balancer service must be\nrecreated to pick up new values.\n\nWhen omitted from the spec, the subnets will be auto-discovered\nfor each availability zone. Auto-discovered subnets are not reported\nin the status of the IngressController object.","type":"object","properties":{"ids":{"description":"ids specifies a list of AWS subnets by subnet ID.\nSubnet IDs must start with \"subnet-\", consist only\nof alphanumeric characters, must be exactly 24\ncharacters long, must be unique, and the total\nnumber of subnets specified by ids and names\nmust not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetID is a reference to an AWS subnet ID.","type":"string","maxLength":24,"minLength":24,"pattern":"^subnet-[0-9A-Za-z]+$"},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet ids cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]},"names":{"description":"names specifies a list of AWS subnets by subnet name.\nSubnet names must not start with \"subnet-\", must not\ninclude commas, must be under 256 characters in length,\nmust be unique, and the total number of subnets\nspecified by ids and names must not exceed 10.","type":"array","maxItems":10,"items":{"description":"AWSSubnetName is a reference to an AWS subnet name.","type":"string","maxLength":256,"minLength":1,"x-kubernetes-validations":[{"message":"subnet name cannot contain a comma","rule":"!self.contains(',')"},{"message":"subnet name cannot start with 'subnet-'","rule":"!self.startsWith('subnet-')"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"subnet names cannot contain duplicates","rule":"self.all(x, self.exists_one(y, x == y))"}]}},"x-kubernetes-validations":[{"message":"the total number of subnets cannot exceed 10","rule":"has(self.ids) && has(self.names) ? size(self.ids + self.names) <= 10 : true"},{"message":"must specify at least 1 subnet name or id","rule":"has(self.ids) && self.ids.size() > 0 || has(self.names) && self.names.size() > 0"}]}},"x-kubernetes-validations":[{"message":"number of subnets must be equal to number of eipAllocations","rule":"has(self.subnets) && has(self.subnets.ids) && has(self.subnets.names) && has(self.eipAllocations) ? size(self.subnets.ids + self.subnets.names) == size(self.eipAllocations) : true"},{"message":"number of subnets must be equal to number of eipAllocations","rule":"has(self.subnets) && has(self.subnets.ids) && !has(self.subnets.names) && has(self.eipAllocations) ? size(self.subnets.ids) == size(self.eipAllocations) : true"},{"message":"number of subnets must be equal to number of eipAllocations","rule":"has(self.subnets) && has(self.subnets.names) && !has(self.subnets.ids) && has(self.eipAllocations) ? size(self.subnets.names) == size(self.eipAllocations) : true"}]},"type":{"description":"type is the type of AWS load balancer to instantiate for an ingresscontroller.\n\nValid values are:\n\n* \"Classic\": A Classic Load Balancer that makes routing decisions at either\n  the transport layer (TCP/SSL) or the application layer (HTTP/HTTPS). See\n  the following for additional details:\n\n    https://docs.aws.amazon.com/AmazonECS/latest/developerguide/load-balancer-types.html#clb\n\n* \"NLB\": A Network Load Balancer that makes routing decisions at the\n  transport layer (TCP/SSL). See the following for additional details:\n\n    https://docs.aws.amazon.com/AmazonECS/latest/developerguide/load-balancer-types.html#nlb","type":"string","enum":["Classic","NLB"]}}},"gcp":{"description":"gcp provides configuration settings that are specific to GCP\nload balancers.\n\nIf empty, defaults will be applied. See specific gcp fields for\ndetails about their defaults.","type":"object","properties":{"clientAccess":{"description":"clientAccess describes how client access is restricted for internal\nload balancers.\n\nValid values are:\n* \"Global\": Specifying an internal load balancer with Global client access\n  allows clients from any region within the VPC to communicate with the load\n  balancer.\n\n    https://cloud.google.com/kubernetes-engine/docs/how-to/internal-load-balancing#global_access\n\n* \"Local\": Specifying an internal load balancer with Local client access\n  means only clients within the same region (and VPC) as the GCP load balancer\n  can communicate with the load balancer. Note that this is the default behavior.\n\n    https://cloud.google.com/load-balancing/docs/internal#client_access","type":"string","enum":["Global","Local"]}}},"ibm":{"description":"ibm provides configuration settings that are specific to IBM Cloud\nload balancers.\n\nIf empty, defaults will be applied. See specific ibm fields for\ndetails about their defaults.","type":"object","properties":{"protocol":{"description":"protocol specifies whether the load balancer uses PROXY protocol to forward connections to\nthe IngressController. See \"service.kubernetes.io/ibm-load-balancer-cloud-provider-enable-features:\n\"proxy-protocol\"\" at https://cloud.ibm.com/docs/containers?topic=containers-vpc-lbaas\"\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nValid values for protocol are TCP, PROXY and omitted.\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default, which is subject to change over time.\nThe current default is TCP, without the proxy protocol enabled.","type":"string","enum":["","TCP","PROXY"]}}},"openstack":{"description":"openstack provides configuration settings that are specific to OpenStack\nload balancers.\n\nIf empty, defaults will be applied. See specific openstack fields for\ndetails about their defaults.","type":"object","properties":{"floatingIP":{"description":"floatingIP specifies the IP address that the load balancer will use.\nWhen not specified, an IP address will be assigned randomly by the OpenStack cloud provider.\nWhen specified, the floating IP has to be pre-created.  If the\nspecified value is not a floating IP or is already claimed, the\nOpenStack cloud provider won't be able to provision the load\nbalancer.\nThis field may only be used if the IngressController has External scope.\nThis value must be a valid IPv4 or IPv6 address.","type":"string","x-kubernetes-validations":[{"message":"floatingIP must be a valid IPv4 or IPv6 address","rule":"isIP(self)"}]}}},"type":{"description":"type is the underlying infrastructure provider for the load balancer.\nAllowed values are \"AWS\", \"Azure\", \"BareMetal\", \"GCP\", \"IBM\", \"Nutanix\",\n\"OpenStack\", and \"VSphere\".","type":"string","enum":["AWS","Azure","BareMetal","GCP","Nutanix","OpenStack","VSphere","IBM"]}},"x-kubernetes-validations":[{"message":"openstack is not permitted when type is not OpenStack","rule":"has(self.type) && self.type == 'OpenStack' ? true : !has(self.openstack)"}]},"scope":{"description":"scope indicates the scope at which the load balancer is exposed.\nPossible values are \"External\" and \"Internal\".","type":"string","enum":["Internal","External"]}},"x-kubernetes-validations":[{"message":"eipAllocations are forbidden when the scope is Internal.","rule":"!has(self.scope) || self.scope != 'Internal' || !has(self.providerParameters) || !has(self.providerParameters.aws) || !has(self.providerParameters.aws.networkLoadBalancer) || !has(self.providerParameters.aws.networkLoadBalancer.eipAllocations)"},{"message":"cannot specify a floating ip when scope is internal","rule":"!has(self.scope) || self.scope != 'Internal' || !has(self.providerParameters) || !has(self.providerParameters.openstack) || !has(self.providerParameters.openstack.floatingIP) || self.providerParameters.openstack.floatingIP == \"\""}]},"nodePort":{"description":"nodePort holds parameters for the NodePortService endpoint publishing strategy.\nPresent only if type is NodePortService.","type":"object","properties":{"protocol":{"description":"protocol specifies whether the IngressController expects incoming\nconnections to use plain TCP or whether the IngressController expects\nPROXY protocol.\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nThe following values are valid for this field:\n\n* The empty string.\n* \"TCP\".\n* \"PROXY\".\n\nThe empty string specifies the default, which is TCP without PROXY\nprotocol.  Note that the default is subject to change.","type":"string","enum":["","TCP","PROXY"]}}},"private":{"description":"private holds parameters for the Private endpoint publishing\nstrategy. Present only if type is Private.","type":"object","properties":{"protocol":{"description":"protocol specifies whether the IngressController expects incoming\nconnections to use plain TCP or whether the IngressController expects\nPROXY protocol.\n\nPROXY protocol can be used with load balancers that support it to\ncommunicate the source addresses of client connections when\nforwarding those connections to the IngressController.  Using PROXY\nprotocol enables the IngressController to report those source\naddresses instead of reporting the load balancer's address in HTTP\nheaders and logs.  Note that enabling PROXY protocol on the\nIngressController will cause connections to fail if you are not using\na load balancer that uses PROXY protocol to forward connections to\nthe IngressController.  See\nhttp://www.haproxy.org/download/2.2/doc/proxy-protocol.txt for\ninformation about PROXY protocol.\n\nThe following values are valid for this field:\n\n* The empty string.\n* \"TCP\".\n* \"PROXY\".\n\nThe empty string specifies the default, which is TCP without PROXY\nprotocol.  Note that the default is subject to change.","type":"string","enum":["","TCP","PROXY"]}}},"type":{"description":"type is the publishing strategy to use. Valid values are:\n\n* LoadBalancerService\n\nPublishes the ingress controller using a Kubernetes LoadBalancer Service.\n\nIn this configuration, the ingress controller deployment uses container\nnetworking. A LoadBalancer Service is created to publish the deployment.\n\nSee: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer\n\nIf domain is set, a wildcard DNS record will be managed to point at the\nLoadBalancer Service's external name. DNS records are managed only in DNS\nzones defined by dns.config.openshift.io/cluster .spec.publicZone and\n.spec.privateZone.\n\nWildcard DNS management is currently supported only on the AWS, Azure,\nand GCP platforms.\n\n* HostNetwork\n\nPublishes the ingress controller on node ports where the ingress controller\nis deployed.\n\nIn this configuration, the ingress controller deployment uses host\nnetworking, bound to node ports 80 and 443. The user is responsible for\nconfiguring an external load balancer to publish the ingress controller via\nthe node ports.\n\n* Private\n\nDoes not publish the ingress controller.\n\nIn this configuration, the ingress controller deployment uses container\nnetworking, and is not explicitly published. The user must manually publish\nthe ingress controller.\n\n* NodePortService\n\nPublishes the ingress controller using a Kubernetes NodePort Service.\n\nIn this configuration, the ingress controller deployment uses container\nnetworking. A NodePort Service is created to publish the deployment. The\nspecific node ports are dynamically allocated by OpenShift; however, to\nsupport static port allocations, user changes to the node port\nfield of the managed NodePort Service will preserved.","type":"string","enum":["LoadBalancerService","HostNetwork","Private","NodePortService"]}}},"namespaceSelector":{"description":"namespaceSelector is the actual namespaceSelector in use.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"observedGeneration":{"description":"observedGeneration is the most recent generation observed.","type":"integer","format":"int64"},"routeSelector":{"description":"routeSelector is the actual routeSelector in use.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"selector":{"description":"selector is a label selector, in string format, for ingress controller pods\ncorresponding to the IngressController. The number of matching pods should\nequal the value of availableReplicas.","type":"string"},"tlsProfile":{"description":"tlsProfile is the TLS connection configuration that is in effect.","type":"object","properties":{"ciphers":{"description":"ciphers is used to specify the cipher algorithms that are negotiated\nduring the TLS handshake.  Operators may remove entries their operands\ndo not support.  For example, to use DES-CBC3-SHA  (yaml):\n\n  ciphers:\n    - DES-CBC3-SHA","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"minTLSVersion":{"description":"minTLSVersion is used to specify the minimal version of the TLS protocol\nthat is negotiated during the TLS handshake. For example, to use TLS\nversions 1.1, 1.2 and 1.3 (yaml):\n\n  minTLSVersion: VersionTLS11\n\nNOTE: currently the highest minTLSVersion allowed is VersionTLS12","type":"string","enum":["VersionTLS10","VersionTLS11","VersionTLS12","VersionTLS13"]}}}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"IngressController","version":"v1"}]},"io.openshift.operator.v1.IngressControllerList":{"description":"IngressControllerList is a list of IngressController","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of ingresscontrollers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.IngressController"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"IngressControllerList","version":"v1"}]},"io.openshift.operator.v1.InsightsOperator":{"description":"InsightsOperator holds cluster-wide information about the Insights Operator. \n Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the Insights.","type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a simple way to manage coarse grained logging choices that operators have to interpret for their operands. \n Valid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\". Defaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because it is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a simple way to manage coarse grained logging choices that operators have to interpret for themselves. \n Valid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\". Defaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides holds a sparse config that will override any previously set options.  It only needs to be the fields to override it will end up overlaying in the following order: 1. hardcoded defaults 2. observedConfig 3. unsupportedConfigOverrides","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status is the most recently observed status of the Insights operator.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}}},"gatherStatus":{"description":"gatherStatus provides basic information about the last Insights data gathering. When omitted, this means no data gathering has taken place yet.","type":"object","properties":{"gatherers":{"description":"gatherers is a list of active gatherers (and their statuses) in the last gathering.","type":"array","items":{"description":"gathererStatus represents information about a particular data gatherer.","type":"object","required":["conditions","lastGatherDuration","name"],"properties":{"conditions":{"description":"conditions provide details on the status of each gatherer.","type":"array","minItems":1,"items":{"description":"Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions.  For example, type FooStatus struct{     // Represents the observations of a foo's current state.     // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\"     // +patchMergeKey=type     // +patchStrategy=merge     // +listType=map     // +listMapKey=type     Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n     // other fields }","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition. This may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-type":"atomic"},"lastGatherDuration":{"description":"lastGatherDuration represents the time spent gathering.","type":"string","pattern":"^([1-9][0-9]*(\\.[0-9]+)?(ns|us|µs|ms|s|m|h))+$"},"name":{"description":"name is the name of the gatherer.","type":"string","maxLength":256,"minLength":5}}},"x-kubernetes-list-type":"atomic"},"lastGatherDuration":{"description":"lastGatherDuration is the total time taken to process all gatherers during the last gather event.","type":"string","pattern":"^0|([1-9][0-9]*(\\.[0-9]+)?(ns|us|µs|ms|s|m|h))+$"},"lastGatherTime":{"description":"lastGatherTime is the last time when Insights data gathering finished. An empty value means that no data has been gathered yet.","type":"string","format":"date-time"}}},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}}},"insightsReport":{"description":"insightsReport provides general Insights analysis results. When omitted, this means no data gathering has taken place yet.","type":"object","properties":{"downloadedAt":{"description":"downloadedAt is the time when the last Insights report was downloaded. An empty value means that there has not been any Insights report downloaded yet and it usually appears in disconnected clusters (or clusters when the Insights data gathering is disabled).","type":"string","format":"date-time"},"healthChecks":{"description":"healthChecks provides basic information about active Insights health checks in a cluster.","type":"array","items":{"description":"healthCheck represents an Insights health check attributes.","type":"object","required":["advisorURI","description","state","totalRisk"],"properties":{"advisorURI":{"description":"advisorURI provides the URL link to the Insights Advisor.","type":"string","pattern":"^https:\\/\\/\\S+"},"description":{"description":"description provides basic description of the healtcheck.","type":"string","maxLength":2048,"minLength":10},"state":{"description":"state determines what the current state of the health check is. Health check is enabled by default and can be disabled by the user in the Insights advisor user interface.","type":"string","enum":["Enabled","Disabled"]},"totalRisk":{"description":"totalRisk of the healthcheck. Indicator of the total risk posed by the detected issue; combination of impact and likelihood. The values can be from 1 to 4, and the higher the number, the more important the issue.","type":"integer","format":"int32","maximum":4,"minimum":1}}},"x-kubernetes-list-type":"atomic"}}},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"InsightsOperator","version":"v1"}]},"io.openshift.operator.v1.InsightsOperatorList":{"description":"InsightsOperatorList is a list of InsightsOperator","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of insightsoperators. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.InsightsOperator"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"InsightsOperatorList","version":"v1"}]},"io.openshift.operator.v1.KubeAPIServer":{"description":"KubeAPIServer provides information to configure an operator to manage kube-apiserver.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the Kubernetes API Server","type":"object","properties":{"failedRevisionLimit":{"description":"failedRevisionLimit is the number of failed static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"forceRedeploymentReason":{"description":"forceRedeploymentReason can be used to force the redeployment of the operand by providing a unique string.\nThis provides a mechanism to kick a previously failed deployment and provide a reason why you think it will work\nthis time instead of failing again on the same config.","type":"string"},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Force)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"succeededRevisionLimit":{"description":"succeededRevisionLimit is the number of successful static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status is the most recently observed status of the Kubernetes API Server","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"latestAvailableRevisionReason":{"description":"latestAvailableRevisionReason describe the detailed reason for the most recent deployment","type":"string"},"nodeStatuses":{"description":"nodeStatuses track the deployment values and errors across individual nodes","type":"array","items":{"description":"NodeStatus provides information about the current state of a particular node managed by this operator.","type":"object","required":["nodeName"],"properties":{"currentRevision":{"description":"currentRevision is the generation of the most recently successful deployment.\nCan not be set on creation of a nodeStatus. Updates must only increase the value.","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"lastFailedCount":{"description":"lastFailedCount is how often the installer pod of the last failed revision failed.","type":"integer"},"lastFailedReason":{"description":"lastFailedReason is a machine readable failure reason string.","type":"string"},"lastFailedRevision":{"description":"lastFailedRevision is the generation of the deployment we tried and failed to deploy.","type":"integer","format":"int32"},"lastFailedRevisionErrors":{"description":"lastFailedRevisionErrors is a list of human readable errors during the failed deployment referenced in lastFailedRevision.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"lastFailedTime":{"description":"lastFailedTime is the time the last failed revision failed the last time.","type":"string","format":"date-time"},"lastFallbackCount":{"description":"lastFallbackCount is how often a fallback to a previous revision happened.","type":"integer"},"nodeName":{"description":"nodeName is the name of the node","type":"string"},"targetRevision":{"description":"targetRevision is the generation of the deployment we're trying to apply.\nCan not be set on creation of a nodeStatus.","type":"integer","format":"int32"}},"x-kubernetes-validations":[{"fieldPath":".currentRevision","message":"cannot be unset once set","rule":"has(self.currentRevision) || !has(oldSelf.currentRevision)"},{"fieldPath":".currentRevision","message":"currentRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.currentRevision)"},{"fieldPath":".targetRevision","message":"targetRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.targetRevision)"}]},"x-kubernetes-list-map-keys":["nodeName"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"no more than 1 node status may have a nonzero targetRevision","rule":"size(self.filter(status, status.?targetRevision.orValue(0) != 0)) <= 1"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"serviceAccountIssuers":{"description":"serviceAccountIssuers tracks history of used service account issuers.\nThe item without expiration time represents the currently used service account issuer.\nThe other items represents service account issuers that were used previously and are still being trusted.\nThe default expiration for the items is set by the platform and it defaults to 24h.\nsee: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection","type":"array","items":{"type":"object","properties":{"expirationTime":{"description":"expirationTime is the time after which this service account issuer will be pruned and removed from the trusted list\nof service account issuers.","type":"string","format":"date-time"},"name":{"description":"name is the name of the service account issuer","type":"string"}}}},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeAPIServer","version":"v1"}]},"io.openshift.operator.v1.KubeAPIServerList":{"description":"KubeAPIServerList is a list of KubeAPIServer","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of kubeapiservers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.KubeAPIServer"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeAPIServerList","version":"v1"}]},"io.openshift.operator.v1.KubeControllerManager":{"description":"KubeControllerManager provides information to configure an operator to manage kube-controller-manager.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the Kubernetes Controller Manager","type":"object","properties":{"failedRevisionLimit":{"description":"failedRevisionLimit is the number of failed static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"forceRedeploymentReason":{"description":"forceRedeploymentReason can be used to force the redeployment of the operand by providing a unique string.\nThis provides a mechanism to kick a previously failed deployment and provide a reason why you think it will work\nthis time instead of failing again on the same config.","type":"string"},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Force)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"succeededRevisionLimit":{"description":"succeededRevisionLimit is the number of successful static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true},"useMoreSecureServiceCA":{"description":"useMoreSecureServiceCA indicates that the service-ca.crt provided in SA token volumes should include only\nenough certificates to validate service serving certificates.\nOnce set to true, it cannot be set to false.\nEven if someone finds a way to set it back to false, the service-ca.crt files that previously existed will\nonly have the more secure content.","type":"boolean"}}},"status":{"description":"status is the most recently observed status of the Kubernetes Controller Manager","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"latestAvailableRevisionReason":{"description":"latestAvailableRevisionReason describe the detailed reason for the most recent deployment","type":"string"},"nodeStatuses":{"description":"nodeStatuses track the deployment values and errors across individual nodes","type":"array","items":{"description":"NodeStatus provides information about the current state of a particular node managed by this operator.","type":"object","required":["nodeName"],"properties":{"currentRevision":{"description":"currentRevision is the generation of the most recently successful deployment.\nCan not be set on creation of a nodeStatus. Updates must only increase the value.","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"lastFailedCount":{"description":"lastFailedCount is how often the installer pod of the last failed revision failed.","type":"integer"},"lastFailedReason":{"description":"lastFailedReason is a machine readable failure reason string.","type":"string"},"lastFailedRevision":{"description":"lastFailedRevision is the generation of the deployment we tried and failed to deploy.","type":"integer","format":"int32"},"lastFailedRevisionErrors":{"description":"lastFailedRevisionErrors is a list of human readable errors during the failed deployment referenced in lastFailedRevision.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"lastFailedTime":{"description":"lastFailedTime is the time the last failed revision failed the last time.","type":"string","format":"date-time"},"lastFallbackCount":{"description":"lastFallbackCount is how often a fallback to a previous revision happened.","type":"integer"},"nodeName":{"description":"nodeName is the name of the node","type":"string"},"targetRevision":{"description":"targetRevision is the generation of the deployment we're trying to apply.\nCan not be set on creation of a nodeStatus.","type":"integer","format":"int32"}},"x-kubernetes-validations":[{"fieldPath":".currentRevision","message":"cannot be unset once set","rule":"has(self.currentRevision) || !has(oldSelf.currentRevision)"},{"fieldPath":".currentRevision","message":"currentRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.currentRevision)"},{"fieldPath":".targetRevision","message":"targetRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.targetRevision)"}]},"x-kubernetes-list-map-keys":["nodeName"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"no more than 1 node status may have a nonzero targetRevision","rule":"size(self.filter(status, status.?targetRevision.orValue(0) != 0)) <= 1"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeControllerManager","version":"v1"}]},"io.openshift.operator.v1.KubeControllerManagerList":{"description":"KubeControllerManagerList is a list of KubeControllerManager","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of kubecontrollermanagers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.KubeControllerManager"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeControllerManagerList","version":"v1"}]},"io.openshift.operator.v1.KubeScheduler":{"description":"KubeScheduler provides information to configure an operator to manage scheduler.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the Kubernetes Scheduler","type":"object","properties":{"failedRevisionLimit":{"description":"failedRevisionLimit is the number of failed static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"forceRedeploymentReason":{"description":"forceRedeploymentReason can be used to force the redeployment of the operand by providing a unique string.\nThis provides a mechanism to kick a previously failed deployment and provide a reason why you think it will work\nthis time instead of failing again on the same config.","type":"string"},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Force)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"succeededRevisionLimit":{"description":"succeededRevisionLimit is the number of successful static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status is the most recently observed status of the Kubernetes Scheduler","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"latestAvailableRevisionReason":{"description":"latestAvailableRevisionReason describe the detailed reason for the most recent deployment","type":"string"},"nodeStatuses":{"description":"nodeStatuses track the deployment values and errors across individual nodes","type":"array","items":{"description":"NodeStatus provides information about the current state of a particular node managed by this operator.","type":"object","required":["nodeName"],"properties":{"currentRevision":{"description":"currentRevision is the generation of the most recently successful deployment.\nCan not be set on creation of a nodeStatus. Updates must only increase the value.","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"lastFailedCount":{"description":"lastFailedCount is how often the installer pod of the last failed revision failed.","type":"integer"},"lastFailedReason":{"description":"lastFailedReason is a machine readable failure reason string.","type":"string"},"lastFailedRevision":{"description":"lastFailedRevision is the generation of the deployment we tried and failed to deploy.","type":"integer","format":"int32"},"lastFailedRevisionErrors":{"description":"lastFailedRevisionErrors is a list of human readable errors during the failed deployment referenced in lastFailedRevision.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"lastFailedTime":{"description":"lastFailedTime is the time the last failed revision failed the last time.","type":"string","format":"date-time"},"lastFallbackCount":{"description":"lastFallbackCount is how often a fallback to a previous revision happened.","type":"integer"},"nodeName":{"description":"nodeName is the name of the node","type":"string"},"targetRevision":{"description":"targetRevision is the generation of the deployment we're trying to apply.\nCan not be set on creation of a nodeStatus.","type":"integer","format":"int32"}},"x-kubernetes-validations":[{"fieldPath":".currentRevision","message":"cannot be unset once set","rule":"has(self.currentRevision) || !has(oldSelf.currentRevision)"},{"fieldPath":".currentRevision","message":"currentRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.currentRevision)"},{"fieldPath":".targetRevision","message":"targetRevision can not be set on creation of a nodeStatus","optionalOldSelf":true,"rule":"oldSelf.hasValue() || !has(self.targetRevision)"}]},"x-kubernetes-list-map-keys":["nodeName"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"no more than 1 node status may have a nonzero targetRevision","rule":"size(self.filter(status, status.?targetRevision.orValue(0) != 0)) <= 1"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeScheduler","version":"v1"}]},"io.openshift.operator.v1.KubeSchedulerList":{"description":"KubeSchedulerList is a list of KubeScheduler","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of kubeschedulers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.KubeScheduler"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeSchedulerList","version":"v1"}]},"io.openshift.operator.v1.KubeStorageVersionMigrator":{"description":"KubeStorageVersionMigrator provides information to configure an operator to manage kube-storage-version-migrator.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeStorageVersionMigrator","version":"v1"}]},"io.openshift.operator.v1.KubeStorageVersionMigratorList":{"description":"KubeStorageVersionMigratorList is a list of KubeStorageVersionMigrator","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of kubestorageversionmigrators. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.KubeStorageVersionMigrator"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"KubeStorageVersionMigratorList","version":"v1"}]},"io.openshift.operator.v1.MachineConfiguration":{"description":"MachineConfiguration provides information to configure an operator to manage Machine Configuration.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the Machine Config Operator","type":"object","properties":{"failedRevisionLimit":{"description":"failedRevisionLimit is the number of failed static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"forceRedeploymentReason":{"description":"forceRedeploymentReason can be used to force the redeployment of the operand by providing a unique string.\nThis provides a mechanism to kick a previously failed deployment and provide a reason why you think it will work\nthis time instead of failing again on the same config.","type":"string"},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managedBootImages":{"description":"managedBootImages allows configuration for the management of boot images for machine\nresources within the cluster. This configuration allows users to select resources that should\nbe updated to the latest boot images during cluster upgrades, ensuring that new machines\nalways boot with the current cluster version's boot image. When omitted, no boot images\nwill be updated.","type":"object","properties":{"machineManagers":{"description":"machineManagers can be used to register machine management resources for boot image updates. The Machine Config Operator\nwill watch for changes to this list. Only one entry is permitted per type of machine management resource.","type":"array","items":{"description":"MachineManager describes a target machine resource that is registered for boot image updates. It stores identifying information\nsuch as the resource type and the API Group of the resource. It also provides granular control via the selection field.","type":"object","required":["apiGroup","resource","selection"],"properties":{"apiGroup":{"description":"apiGroup is name of the APIGroup that the machine management resource belongs to.\nThe only current valid value is machine.openshift.io.\nmachine.openshift.io means that the machine manager will only register resources that belong to OpenShift machine API group.","type":"string","enum":["machine.openshift.io"]},"resource":{"description":"resource is the machine management resource's type.\nThe only current valid value is machinesets.\nmachinesets means that the machine manager will only register resources of the kind MachineSet.","type":"string","enum":["machinesets"]},"selection":{"description":"selection allows granular control of the machine management resources that will be registered for boot image updates.","type":"object","required":["mode"],"properties":{"mode":{"description":"mode determines how machine managers will be selected for updates.\nValid values are All and Partial.\nAll means that every resource matched by the machine manager will be updated.\nPartial requires specified selector(s) and allows customisation of which resources matched by the machine manager will be updated.","type":"string","enum":["All","Partial"]},"partial":{"description":"partial provides label selector(s) that can be used to match machine management resources.\nOnly permitted when mode is set to \"Partial\".","type":"object","required":["machineResourceSelector"],"properties":{"machineResourceSelector":{"description":"machineResourceSelector is a label selector that can be used to select machine resources like MachineSets.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}},"x-kubernetes-validations":[{"message":"Partial is required when type is partial, and forbidden otherwise","rule":"has(self.mode) && self.mode == 'Partial' ?  has(self.partial) : !has(self.partial)"}]}}},"x-kubernetes-list-map-keys":["resource","apiGroup"],"x-kubernetes-list-type":"map"}}},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"nodeDisruptionPolicy":{"description":"nodeDisruptionPolicy allows an admin to set granular node disruption actions for\nMachineConfig-based updates, such as drains, service reloads, etc. Specifying this will allow\nfor less downtime when doing small configuration updates to the cluster. This configuration\nhas no effect on cluster upgrades which will still incur node disruption where required.","type":"object","properties":{"files":{"description":"files is a list of MachineConfig file definitions and actions to take to changes on those paths\nThis list supports a maximum of 50 entries.","type":"array","maxItems":50,"items":{"description":"NodeDisruptionPolicySpecFile is a file entry and corresponding actions to take and is used in the NodeDisruptionPolicyConfig object","type":"object","required":["actions","path"],"properties":{"actions":{"description":"actions represents the series of commands to be executed on changes to the file at\nthe corresponding file path. Actions will be applied in the order that\nthey are set in this list. If there are other incoming changes to other MachineConfig\nentries in the same update that require a reboot, the reboot will supercede these actions.\nValid actions are Reboot, Drain, Reload, DaemonReload and None.\nThe Reboot action and the None action cannot be used in conjunction with any of the other actions.\nThis list supports a maximum of 10 entries.","type":"array","maxItems":10,"items":{"type":"object","required":["type"],"properties":{"reload":{"description":"reload specifies the service to reload, only valid if type is reload","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be reloaded\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"restart":{"description":"restart specifies the service to restart, only valid if type is restart","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be restarted\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"type":{"description":"type represents the commands that will be carried out if this NodeDisruptionPolicySpecActionType is executed\nValid values are Reboot, Drain, Reload, Restart, DaemonReload and None.\nreload/restart requires a corresponding service target specified in the reload/restart field.\nOther values require no further configuration","type":"string","enum":["Reboot","Drain","Reload","Restart","DaemonReload","None"]}},"x-kubernetes-validations":[{"message":"reload is required when type is Reload, and forbidden otherwise","rule":"has(self.type) && self.type == 'Reload' ? has(self.reload) : !has(self.reload)"},{"message":"restart is required when type is Restart, and forbidden otherwise","rule":"has(self.type) && self.type == 'Restart' ? has(self.restart) : !has(self.restart)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"Reboot action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='Reboot') ? size(self) == 1 : true"},{"message":"None action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='None') ? size(self) == 1 : true"}]},"path":{"description":"path is the location of a file being managed through a MachineConfig.\nThe Actions in the policy will apply to changes to the file at this path.","type":"string"}}},"x-kubernetes-list-map-keys":["path"],"x-kubernetes-list-type":"map"},"sshkey":{"description":"sshkey maps to the ignition.sshkeys field in the MachineConfig object, definition an action for this\nwill apply to all sshkey changes in the cluster","type":"object","required":["actions"],"properties":{"actions":{"description":"actions represents the series of commands to be executed on changes to the file at\nthe corresponding file path. Actions will be applied in the order that\nthey are set in this list. If there are other incoming changes to other MachineConfig\nentries in the same update that require a reboot, the reboot will supercede these actions.\nValid actions are Reboot, Drain, Reload, DaemonReload and None.\nThe Reboot action and the None action cannot be used in conjunction with any of the other actions.\nThis list supports a maximum of 10 entries.","type":"array","maxItems":10,"items":{"type":"object","required":["type"],"properties":{"reload":{"description":"reload specifies the service to reload, only valid if type is reload","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be reloaded\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"restart":{"description":"restart specifies the service to restart, only valid if type is restart","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be restarted\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"type":{"description":"type represents the commands that will be carried out if this NodeDisruptionPolicySpecActionType is executed\nValid values are Reboot, Drain, Reload, Restart, DaemonReload and None.\nreload/restart requires a corresponding service target specified in the reload/restart field.\nOther values require no further configuration","type":"string","enum":["Reboot","Drain","Reload","Restart","DaemonReload","None"]}},"x-kubernetes-validations":[{"message":"reload is required when type is Reload, and forbidden otherwise","rule":"has(self.type) && self.type == 'Reload' ? has(self.reload) : !has(self.reload)"},{"message":"restart is required when type is Restart, and forbidden otherwise","rule":"has(self.type) && self.type == 'Restart' ? has(self.restart) : !has(self.restart)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"Reboot action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='Reboot') ? size(self) == 1 : true"},{"message":"None action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='None') ? size(self) == 1 : true"}]}}},"units":{"description":"units is a list MachineConfig unit definitions and actions to take on changes to those services\nThis list supports a maximum of 50 entries.","type":"array","maxItems":50,"items":{"description":"NodeDisruptionPolicySpecUnit is a systemd unit name and corresponding actions to take and is used in the NodeDisruptionPolicyConfig object","type":"object","required":["actions","name"],"properties":{"actions":{"description":"actions represents the series of commands to be executed on changes to the file at\nthe corresponding file path. Actions will be applied in the order that\nthey are set in this list. If there are other incoming changes to other MachineConfig\nentries in the same update that require a reboot, the reboot will supercede these actions.\nValid actions are Reboot, Drain, Reload, DaemonReload and None.\nThe Reboot action and the None action cannot be used in conjunction with any of the other actions.\nThis list supports a maximum of 10 entries.","type":"array","maxItems":10,"items":{"type":"object","required":["type"],"properties":{"reload":{"description":"reload specifies the service to reload, only valid if type is reload","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be reloaded\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"restart":{"description":"restart specifies the service to restart, only valid if type is restart","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be restarted\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"type":{"description":"type represents the commands that will be carried out if this NodeDisruptionPolicySpecActionType is executed\nValid values are Reboot, Drain, Reload, Restart, DaemonReload and None.\nreload/restart requires a corresponding service target specified in the reload/restart field.\nOther values require no further configuration","type":"string","enum":["Reboot","Drain","Reload","Restart","DaemonReload","None"]}},"x-kubernetes-validations":[{"message":"reload is required when type is Reload, and forbidden otherwise","rule":"has(self.type) && self.type == 'Reload' ? has(self.reload) : !has(self.reload)"},{"message":"restart is required when type is Restart, and forbidden otherwise","rule":"has(self.type) && self.type == 'Restart' ? has(self.restart) : !has(self.restart)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"Reboot action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='Reboot') ? size(self) == 1 : true"},{"message":"None action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='None') ? size(self) == 1 : true"}]},"name":{"description":"name represents the service name of a systemd service managed through a MachineConfig\nActions specified will be applied for changes to the named service.\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"succeededRevisionLimit":{"description":"succeededRevisionLimit is the number of successful static pod installer revisions to keep on disk and in the api\n-1 = unlimited, 0 or unset = 5 (default)","type":"integer","format":"int32"},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status is the most recently observed status of the Machine Config Operator","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"nodeDisruptionPolicyStatus":{"description":"nodeDisruptionPolicyStatus status reflects what the latest cluster-validated policies are,\nand will be used by the Machine Config Daemon during future node updates.","type":"object","properties":{"clusterPolicies":{"description":"clusterPolicies is a merge of cluster default and user provided node disruption policies.","type":"object","properties":{"files":{"description":"files is a list of MachineConfig file definitions and actions to take to changes on those paths","type":"array","maxItems":100,"items":{"description":"NodeDisruptionPolicyStatusFile is a file entry and corresponding actions to take and is used in the NodeDisruptionPolicyClusterStatus object","type":"object","required":["actions","path"],"properties":{"actions":{"description":"actions represents the series of commands to be executed on changes to the file at\nthe corresponding file path. Actions will be applied in the order that\nthey are set in this list. If there are other incoming changes to other MachineConfig\nentries in the same update that require a reboot, the reboot will supercede these actions.\nValid actions are Reboot, Drain, Reload, DaemonReload and None.\nThe Reboot action and the None action cannot be used in conjunction with any of the other actions.\nThis list supports a maximum of 10 entries.","type":"array","maxItems":10,"items":{"type":"object","required":["type"],"properties":{"reload":{"description":"reload specifies the service to reload, only valid if type is reload","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be reloaded\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"restart":{"description":"restart specifies the service to restart, only valid if type is restart","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be restarted\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"type":{"description":"type represents the commands that will be carried out if this NodeDisruptionPolicyStatusActionType is executed\nValid values are Reboot, Drain, Reload, Restart, DaemonReload, None and Special.\nreload/restart requires a corresponding service target specified in the reload/restart field.\nOther values require no further configuration","type":"string","enum":["Reboot","Drain","Reload","Restart","DaemonReload","None","Special"]}},"x-kubernetes-validations":[{"message":"reload is required when type is Reload, and forbidden otherwise","rule":"has(self.type) && self.type == 'Reload' ? has(self.reload) : !has(self.reload)"},{"message":"restart is required when type is Restart, and forbidden otherwise","rule":"has(self.type) && self.type == 'Restart' ? has(self.restart) : !has(self.restart)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"Reboot action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='Reboot') ? size(self) == 1 : true"},{"message":"None action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='None') ? size(self) == 1 : true"}]},"path":{"description":"path is the location of a file being managed through a MachineConfig.\nThe Actions in the policy will apply to changes to the file at this path.","type":"string"}}},"x-kubernetes-list-map-keys":["path"],"x-kubernetes-list-type":"map"},"sshkey":{"description":"sshkey is the overall sshkey MachineConfig definition","type":"object","required":["actions"],"properties":{"actions":{"description":"actions represents the series of commands to be executed on changes to the file at\nthe corresponding file path. Actions will be applied in the order that\nthey are set in this list. If there are other incoming changes to other MachineConfig\nentries in the same update that require a reboot, the reboot will supercede these actions.\nValid actions are Reboot, Drain, Reload, DaemonReload and None.\nThe Reboot action and the None action cannot be used in conjunction with any of the other actions.\nThis list supports a maximum of 10 entries.","type":"array","maxItems":10,"items":{"type":"object","required":["type"],"properties":{"reload":{"description":"reload specifies the service to reload, only valid if type is reload","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be reloaded\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"restart":{"description":"restart specifies the service to restart, only valid if type is restart","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be restarted\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"type":{"description":"type represents the commands that will be carried out if this NodeDisruptionPolicyStatusActionType is executed\nValid values are Reboot, Drain, Reload, Restart, DaemonReload, None and Special.\nreload/restart requires a corresponding service target specified in the reload/restart field.\nOther values require no further configuration","type":"string","enum":["Reboot","Drain","Reload","Restart","DaemonReload","None","Special"]}},"x-kubernetes-validations":[{"message":"reload is required when type is Reload, and forbidden otherwise","rule":"has(self.type) && self.type == 'Reload' ? has(self.reload) : !has(self.reload)"},{"message":"restart is required when type is Restart, and forbidden otherwise","rule":"has(self.type) && self.type == 'Restart' ? has(self.restart) : !has(self.restart)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"Reboot action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='Reboot') ? size(self) == 1 : true"},{"message":"None action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='None') ? size(self) == 1 : true"}]}}},"units":{"description":"units is a list MachineConfig unit definitions and actions to take on changes to those services","type":"array","maxItems":100,"items":{"description":"NodeDisruptionPolicyStatusUnit is a systemd unit name and corresponding actions to take and is used in the NodeDisruptionPolicyClusterStatus object","type":"object","required":["actions","name"],"properties":{"actions":{"description":"actions represents the series of commands to be executed on changes to the file at\nthe corresponding file path. Actions will be applied in the order that\nthey are set in this list. If there are other incoming changes to other MachineConfig\nentries in the same update that require a reboot, the reboot will supercede these actions.\nValid actions are Reboot, Drain, Reload, DaemonReload and None.\nThe Reboot action and the None action cannot be used in conjunction with any of the other actions.\nThis list supports a maximum of 10 entries.","type":"array","maxItems":10,"items":{"type":"object","required":["type"],"properties":{"reload":{"description":"reload specifies the service to reload, only valid if type is reload","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be reloaded\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"restart":{"description":"restart specifies the service to restart, only valid if type is restart","type":"object","required":["serviceName"],"properties":{"serviceName":{"description":"serviceName is the full name (e.g. crio.service) of the service to be restarted\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"type":{"description":"type represents the commands that will be carried out if this NodeDisruptionPolicyStatusActionType is executed\nValid values are Reboot, Drain, Reload, Restart, DaemonReload, None and Special.\nreload/restart requires a corresponding service target specified in the reload/restart field.\nOther values require no further configuration","type":"string","enum":["Reboot","Drain","Reload","Restart","DaemonReload","None","Special"]}},"x-kubernetes-validations":[{"message":"reload is required when type is Reload, and forbidden otherwise","rule":"has(self.type) && self.type == 'Reload' ? has(self.reload) : !has(self.reload)"},{"message":"restart is required when type is Restart, and forbidden otherwise","rule":"has(self.type) && self.type == 'Restart' ? has(self.restart) : !has(self.restart)"}]},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"Reboot action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='Reboot') ? size(self) == 1 : true"},{"message":"None action can only be specified standalone, as it will override any other actions","rule":"self.exists(x, x.type=='None') ? size(self) == 1 : true"}]},"name":{"description":"name represents the service name of a systemd service managed through a MachineConfig\nActions specified will be applied for changes to the named service.\nService names should be of the format ${NAME}${SERVICETYPE} and can up to 255 characters long.\n${NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\".\n${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\", \".snapshot\", \".slice\" or \".scope\".","type":"string","maxLength":255,"x-kubernetes-validations":[{"message":"Invalid ${SERVICETYPE} in service name. Expected format is ${NAME}${SERVICETYPE}, where ${SERVICETYPE} must be one of \".service\", \".socket\", \".device\", \".mount\", \".automount\", \".swap\", \".target\", \".path\", \".timer\",\".snapshot\", \".slice\" or \".scope\".","rule":"self.matches('\\\\.(service|socket|device|mount|automount|swap|target|path|timer|snapshot|slice|scope)$')"},{"message":"Invalid ${NAME} in service name. Expected format is ${NAME}${SERVICETYPE}, where {NAME} must be atleast 1 character long and can only consist of alphabets, digits, \":\", \"-\", \"_\", \".\", and \"\\\"","rule":"self.matches('^[a-zA-Z0-9:._\\\\\\\\-]+\\\\..')"}]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}}}},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"MachineConfiguration","version":"v1"}]},"io.openshift.operator.v1.MachineConfigurationList":{"description":"MachineConfigurationList is a list of MachineConfiguration","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of machineconfigurations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.MachineConfiguration"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"MachineConfigurationList","version":"v1"}]},"io.openshift.operator.v1.Network":{"description":"Network describes the cluster's desired network configuration. It is\nconsumed by the cluster-network-operator.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"NetworkSpec is the top-level network configuration object.","type":"object","properties":{"additionalNetworks":{"description":"additionalNetworks is a list of extra networks to make available to pods\nwhen multiple networks are enabled.","type":"array","items":{"description":"AdditionalNetworkDefinition configures an extra network that is available but not\ncreated by default. Instead, pods must request them by name.\ntype must be specified, along with exactly one \"Config\" that matches the type.","type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the network. This will be populated in the resulting CRD\nThis must be unique.","type":"string"},"namespace":{"description":"namespace is the namespace of the network. This will be populated in the resulting CRD\nIf not given the network will be created in the default namespace.","type":"string"},"rawCNIConfig":{"description":"rawCNIConfig is the raw CNI configuration json to create in the\nNetworkAttachmentDefinition CRD","type":"string"},"simpleMacvlanConfig":{"description":"SimpleMacvlanConfig configures the macvlan interface in case of type:NetworkTypeSimpleMacvlan","type":"object","properties":{"ipamConfig":{"description":"IPAMConfig configures IPAM module will be used for IP Address Management (IPAM).","type":"object","properties":{"staticIPAMConfig":{"description":"StaticIPAMConfig configures the static IP address in case of type:IPAMTypeStatic","type":"object","properties":{"addresses":{"description":"Addresses configures IP address for the interface","type":"array","items":{"description":"StaticIPAMAddresses provides IP address and Gateway for static IPAM addresses","type":"object","properties":{"address":{"description":"Address is the IP address in CIDR format","type":"string"},"gateway":{"description":"Gateway is IP inside of subnet to designate as the gateway","type":"string"}}},"x-kubernetes-list-type":"atomic"},"dns":{"description":"DNS configures DNS for the interface","type":"object","properties":{"domain":{"description":"Domain configures the domainname the local domain used for short hostname lookups","type":"string"},"nameservers":{"description":"Nameservers points DNS servers for IP lookup","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"search":{"description":"Search configures priority ordered search domains for short hostname lookups","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"routes":{"description":"Routes configures IP routes for the interface","type":"array","items":{"description":"StaticIPAMRoutes provides Destination/Gateway pairs for static IPAM routes","type":"object","properties":{"destination":{"description":"Destination points the IP route destination","type":"string"},"gateway":{"description":"Gateway is the route's next-hop IP address\nIf unset, a default gateway is assumed (as determined by the CNI plugin).","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"type":{"description":"Type is the type of IPAM module will be used for IP Address Management(IPAM).\nThe supported values are IPAMTypeDHCP, IPAMTypeStatic","type":"string"}}},"master":{"description":"master is the host interface to create the macvlan interface from.\nIf not specified, it will be default route interface","type":"string"},"mode":{"description":"mode is the macvlan mode: bridge, private, vepa, passthru. The default is bridge","type":"string"},"mtu":{"description":"mtu is the mtu to use for the macvlan interface. if unset, host's\nkernel will select the value.","type":"integer","format":"int32","minimum":0}}},"type":{"description":"type is the type of network\nThe supported values are NetworkTypeRaw, NetworkTypeSimpleMacvlan","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"clusterNetwork":{"description":"clusterNetwork is the IP address pool to use for pod IPs.\nSome network providers support multiple ClusterNetworks.\nOthers only support one. This is equivalent to the cluster-cidr.","type":"array","items":{"description":"ClusterNetworkEntry is a subnet from which to allocate PodIPs. A network of size\nHostPrefix (in CIDR notation) will be allocated when nodes join the cluster. If\nthe HostPrefix field is not used by the plugin, it can be left unset.\nNot all network providers support multiple ClusterNetworks","type":"object","properties":{"cidr":{"type":"string"},"hostPrefix":{"type":"integer","format":"int32","minimum":0}}},"x-kubernetes-list-type":"atomic"},"defaultNetwork":{"description":"defaultNetwork is the \"default\" network that all pods will receive","type":"object","properties":{"openshiftSDNConfig":{"description":"openShiftSDNConfig was previously used to configure the openshift-sdn plugin.\nDEPRECATED: OpenShift SDN is no longer supported.","type":"object","properties":{"enableUnidling":{"description":"enableUnidling controls whether or not the service proxy will support idling\nand unidling of services. By default, unidling is enabled.","type":"boolean"},"mode":{"description":"mode is one of \"Multitenant\", \"Subnet\", or \"NetworkPolicy\"","type":"string"},"mtu":{"description":"mtu is the mtu to use for the tunnel interface. Defaults to 1450 if unset.\nThis must be 50 bytes smaller than the machine's uplink.","type":"integer","format":"int32","minimum":0},"useExternalOpenvswitch":{"description":"useExternalOpenvswitch used to control whether the operator would deploy an OVS\nDaemonSet itself or expect someone else to start OVS. As of 4.6, OVS is always\nrun as a system service, and this flag is ignored.","type":"boolean"},"vxlanPort":{"description":"vxlanPort is the port to use for all vxlan packets. The default is 4789.","type":"integer","format":"int32","minimum":0}}},"ovnKubernetesConfig":{"description":"ovnKubernetesConfig configures the ovn-kubernetes plugin.","type":"object","properties":{"egressIPConfig":{"description":"egressIPConfig holds the configuration for EgressIP options.","type":"object","properties":{"reachabilityTotalTimeoutSeconds":{"description":"reachabilityTotalTimeout configures the EgressIP node reachability check total timeout in seconds.\nIf the EgressIP node cannot be reached within this timeout, the node is declared down.\nSetting a large value may cause the EgressIP feature to react slowly to node changes.\nIn particular, it may react slowly for EgressIP nodes that really have a genuine problem and are unreachable.\nWhen omitted, this means the user has no opinion and the platform is left to choose a reasonable default, which is subject to change over time.\nThe current default is 1 second.\nA value of 0 disables the EgressIP node's reachability check.","type":"integer","format":"int32","maximum":60,"minimum":0}}},"gatewayConfig":{"description":"gatewayConfig holds the configuration for node gateway options.","type":"object","properties":{"ipForwarding":{"description":"IPForwarding controls IP forwarding for all traffic on OVN-Kubernetes managed interfaces (such as br-ex).\nBy default this is set to Restricted, and Kubernetes related traffic is still forwarded appropriately, but other\nIP traffic will not be routed by the OCP node. If there is a desire to allow the host to forward traffic across\nOVN-Kubernetes managed interfaces, then set this field to \"Global\".\nThe supported values are \"Restricted\" and \"Global\".","type":"string"},"ipv4":{"description":"ipv4 allows users to configure IP settings for IPv4 connections. When omitted, this means no opinion and the default\nconfiguration is used. Check individual members fields within ipv4 for details of default values.","type":"object","properties":{"internalMasqueradeSubnet":{"description":"internalMasqueradeSubnet contains the masquerade addresses in IPV4 CIDR format used internally by\novn-kubernetes to enable host to service traffic. Each host in the cluster is configured with these\naddresses, as well as the shared gateway bridge interface. The values can be changed after\ninstallation. The subnet chosen should not overlap with other networks specified for\nOVN-Kubernetes as well as other networks used on the host. Additionally the subnet must\nbe large enough to accommodate 6 IPs (maximum prefix length /29).\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default which is subject to change over time.\nThe current default subnet is 169.254.169.0/29\nThe value must be in proper IPV4 CIDR format","type":"string","maxLength":18,"x-kubernetes-validations":[{"message":"Subnet must be in valid IPV4 CIDR format","rule":"isCIDR(self) && cidr(self).ip().family() == 4"},{"message":"subnet must be in the range /0 to /29 inclusive","rule":"isCIDR(self) && cidr(self).prefixLength() <= 29"},{"message":"first IP address octet must not be 0","rule":"isCIDR(self) && int(self.split('.')[0]) > 0"}]}}},"ipv6":{"description":"ipv6 allows users to configure IP settings for IPv6 connections. When omitted, this means no opinion and the default\nconfiguration is used. Check individual members fields within ipv6 for details of default values.","type":"object","properties":{"internalMasqueradeSubnet":{"description":"internalMasqueradeSubnet contains the masquerade addresses in IPV6 CIDR format used internally by\novn-kubernetes to enable host to service traffic. Each host in the cluster is configured with these\naddresses, as well as the shared gateway bridge interface. The values can be changed after\ninstallation. The subnet chosen should not overlap with other networks specified for\nOVN-Kubernetes as well as other networks used on the host. Additionally the subnet must\nbe large enough to accommodate 6 IPs (maximum prefix length /125).\nWhen omitted, this means no opinion and the platform is left to choose a reasonable default which is subject to change over time.\nThe current default subnet is fd69::/125\nNote that IPV6 dual addresses are not permitted","type":"string","x-kubernetes-validations":[{"message":"Subnet must be in valid IPV6 CIDR format","rule":"isCIDR(self) && cidr(self).ip().family() == 6"},{"message":"subnet must be in the range /0 to /125 inclusive","rule":"isCIDR(self) && cidr(self).prefixLength() <= 125"}]}}},"routingViaHost":{"description":"RoutingViaHost allows pod egress traffic to exit via the ovn-k8s-mp0 management port\ninto the host before sending it out. If this is not set, traffic will always egress directly\nfrom OVN to outside without touching the host stack. Setting this to true means hardware\noffload will not be supported. Default is false if GatewayConfig is specified.","type":"boolean"}}},"genevePort":{"description":"geneve port is the UDP port to be used by geneve encapulation.\nDefault is 6081","type":"integer","format":"int32","minimum":1},"hybridOverlayConfig":{"description":"HybridOverlayConfig configures an additional overlay network for peers that are\nnot using OVN.","type":"object","properties":{"hybridClusterNetwork":{"description":"HybridClusterNetwork defines a network space given to nodes on an additional overlay network.","type":"array","items":{"description":"ClusterNetworkEntry is a subnet from which to allocate PodIPs. A network of size\nHostPrefix (in CIDR notation) will be allocated when nodes join the cluster. If\nthe HostPrefix field is not used by the plugin, it can be left unset.\nNot all network providers support multiple ClusterNetworks","type":"object","properties":{"cidr":{"type":"string"},"hostPrefix":{"type":"integer","format":"int32","minimum":0}}},"x-kubernetes-list-type":"atomic"},"hybridOverlayVXLANPort":{"description":"HybridOverlayVXLANPort defines the VXLAN port number to be used by the additional overlay network.\nDefault is 4789","type":"integer","format":"int32"}}},"ipsecConfig":{"description":"ipsecConfig enables and configures IPsec for pods on the pod network within the\ncluster.","type":"object","properties":{"mode":{"description":"mode defines the behaviour of the ipsec configuration within the platform.\nValid values are `Disabled`, `External` and `Full`.\nWhen 'Disabled', ipsec will not be enabled at the node level.\nWhen 'External', ipsec is enabled on the node level but requires the user to configure the secure communication parameters.\nThis mode is for external secure communications and the configuration can be done using the k8s-nmstate operator.\nWhen 'Full', ipsec is configured on the node level and inter-pod secure communication within the cluster is configured.\nNote with `Full`, if ipsec is desired for communication with external (to the cluster) entities (such as storage arrays),\nthis is left to the user to configure.","type":"string","enum":["Disabled","External","Full"]}},"x-kubernetes-validations":[{"message":"ipsecConfig.mode is required","rule":"self == oldSelf || has(self.mode)"}]},"ipv4":{"description":"ipv4 allows users to configure IP settings for IPv4 connections. When ommitted,\nthis means no opinions and the default configuration is used. Check individual\nfields within ipv4 for details of default values.","type":"object","properties":{"internalJoinSubnet":{"description":"internalJoinSubnet is a v4 subnet used internally by ovn-kubernetes in case the\ndefault one is being already used by something else. It must not overlap with\nany other subnet being used by OpenShift or by the node network. The size of the\nsubnet must be larger than the number of nodes. The value cannot be changed\nafter installation.\nThe current default value is 100.64.0.0/16\nThe subnet must be large enough to accomadate one IP per node in your cluster\nThe value must be in proper IPV4 CIDR format","type":"string","maxLength":18,"x-kubernetes-validations":[{"message":"Subnet must be in valid IPV4 CIDR format","rule":"isCIDR(self) && cidr(self).ip().family() == 4"},{"message":"subnet must be in the range /0 to /30 inclusive","rule":"isCIDR(self) && cidr(self).prefixLength() <= 30"},{"message":"first IP address octet must not be 0","rule":"isCIDR(self) && int(self.split('.')[0]) > 0"}]},"internalTransitSwitchSubnet":{"description":"internalTransitSwitchSubnet is a v4 subnet in IPV4 CIDR format used internally\nby OVN-Kubernetes for the distributed transit switch in the OVN Interconnect\narchitecture that connects the cluster routers on each node together to enable\neast west traffic. The subnet chosen should not overlap with other networks\nspecified for OVN-Kubernetes as well as other networks used on the host.\nThe value cannot be changed after installation.\nWhen ommitted, this means no opinion and the platform is left to choose a reasonable\ndefault which is subject to change over time.\nThe current default subnet is 100.88.0.0/16\nThe subnet must be large enough to accomadate one IP per node in your cluster\nThe value must be in proper IPV4 CIDR format","type":"string","maxLength":18,"x-kubernetes-validations":[{"message":"Subnet must be in valid IPV4 CIDR format","rule":"isCIDR(self) && cidr(self).ip().family() == 4"},{"message":"subnet must be in the range /0 to /30 inclusive","rule":"isCIDR(self) && cidr(self).prefixLength() <= 30"},{"message":"first IP address octet must not be 0","rule":"isCIDR(self) && int(self.split('.')[0]) > 0"}]}}},"ipv6":{"description":"ipv6 allows users to configure IP settings for IPv6 connections. When ommitted,\nthis means no opinions and the default configuration is used. Check individual\nfields within ipv4 for details of default values.","type":"object","properties":{"internalJoinSubnet":{"description":"internalJoinSubnet is a v6 subnet used internally by ovn-kubernetes in case the\ndefault one is being already used by something else. It must not overlap with\nany other subnet being used by OpenShift or by the node network. The size of the\nsubnet must be larger than the number of nodes. The value cannot be changed\nafter installation.\nThe subnet must be large enough to accomadate one IP per node in your cluster\nThe current default value is fd98::/48\nThe value must be in proper IPV6 CIDR format\nNote that IPV6 dual addresses are not permitted","type":"string","maxLength":48,"x-kubernetes-validations":[{"message":"Subnet must be in valid IPV6 CIDR format","rule":"isCIDR(self) && cidr(self).ip().family() == 6"},{"message":"subnet must be in the range /0 to /125 inclusive","rule":"isCIDR(self) && cidr(self).prefixLength() <= 125"}]},"internalTransitSwitchSubnet":{"description":"internalTransitSwitchSubnet is a v4 subnet in IPV4 CIDR format used internally\nby OVN-Kubernetes for the distributed transit switch in the OVN Interconnect\narchitecture that connects the cluster routers on each node together to enable\neast west traffic. The subnet chosen should not overlap with other networks\nspecified for OVN-Kubernetes as well as other networks used on the host.\nThe value cannot be changed after installation.\nWhen ommitted, this means no opinion and the platform is left to choose a reasonable\ndefault which is subject to change over time.\nThe subnet must be large enough to accomadate one IP per node in your cluster\nThe current default subnet is fd97::/64\nThe value must be in proper IPV6 CIDR format\nNote that IPV6 dual addresses are not permitted","type":"string","maxLength":48,"x-kubernetes-validations":[{"message":"Subnet must be in valid IPV6 CIDR format","rule":"isCIDR(self) && cidr(self).ip().family() == 6"},{"message":"subnet must be in the range /0 to /125 inclusive","rule":"isCIDR(self) && cidr(self).prefixLength() <= 125"}]}}},"mtu":{"description":"mtu is the MTU to use for the tunnel interface. This must be 100\nbytes smaller than the uplink mtu.\nDefault is 1400","type":"integer","format":"int32","minimum":0},"policyAuditConfig":{"description":"policyAuditConfig is the configuration for network policy audit events. If unset,\nreported defaults are used.","type":"object","properties":{"destination":{"description":"destination is the location for policy log messages.\nRegardless of this config, persistent logs will always be dumped to the host\nat /var/log/ovn/ however\nAdditionally syslog output may be configured as follows.\nValid values are:\n- \"libc\" -> to use the libc syslog() function of the host node's journdald process\n- \"udp:host:port\" -> for sending syslog over UDP\n- \"unix:file\" -> for using the UNIX domain socket directly\n- \"null\" -> to discard all messages logged to syslog\nThe default is \"null\"","type":"string"},"maxFileSize":{"description":"maxFilesSize is the max size an ACL_audit log file is allowed to reach before rotation occurs\nUnits are in MB and the Default is 50MB","type":"integer","format":"int32","minimum":1},"maxLogFiles":{"description":"maxLogFiles specifies the maximum number of ACL_audit log files that can be present.","type":"integer","format":"int32","minimum":1},"rateLimit":{"description":"rateLimit is the approximate maximum number of messages to generate per-second per-node. If\nunset the default of 20 msg/sec is used.","type":"integer","format":"int32","minimum":1},"syslogFacility":{"description":"syslogFacility the RFC5424 facility for generated messages, e.g. \"kern\". Default is \"local0\"","type":"string"}}},"v4InternalSubnet":{"description":"v4InternalSubnet is a v4 subnet used internally by ovn-kubernetes in case the\ndefault one is being already used by something else. It must not overlap with\nany other subnet being used by OpenShift or by the node network. The size of the\nsubnet must be larger than the number of nodes. The value cannot be changed\nafter installation.\nDefault is 100.64.0.0/16","type":"string"},"v6InternalSubnet":{"description":"v6InternalSubnet is a v6 subnet used internally by ovn-kubernetes in case the\ndefault one is being already used by something else. It must not overlap with\nany other subnet being used by OpenShift or by the node network. The size of the\nsubnet must be larger than the number of nodes. The value cannot be changed\nafter installation.\nDefault is fd98::/48","type":"string"}}},"type":{"description":"type is the type of network\nAll NetworkTypes are supported except for NetworkTypeRaw","type":"string"}}},"deployKubeProxy":{"description":"deployKubeProxy specifies whether or not a standalone kube-proxy should\nbe deployed by the operator. Some network providers include kube-proxy\nor similar functionality. If unset, the plugin will attempt to select\nthe correct value, which is false when ovn-kubernetes is used and true\notherwise.","type":"boolean"},"disableMultiNetwork":{"description":"disableMultiNetwork specifies whether or not multiple pod network\nsupport should be disabled. If unset, this property defaults to\n'false' and multiple network support is enabled.","type":"boolean"},"disableNetworkDiagnostics":{"description":"disableNetworkDiagnostics specifies whether or not PodNetworkConnectivityCheck\nCRs from a test pod to every node, apiserver and LB should be disabled or not.\nIf unset, this property defaults to 'false' and network diagnostics is enabled.\nSetting this to 'true' would reduce the additional load of the pods performing the checks.","type":"boolean"},"exportNetworkFlows":{"description":"exportNetworkFlows enables and configures the export of network flow metadata from the pod network\nby using protocols NetFlow, SFlow or IPFIX. Currently only supported on OVN-Kubernetes plugin.\nIf unset, flows will not be exported to any collector.","type":"object","properties":{"ipfix":{"description":"ipfix defines IPFIX configuration.","type":"object","properties":{"collectors":{"description":"ipfixCollectors is list of strings formatted as ip:port with a maximum of ten items","type":"array","maxItems":10,"minItems":1,"items":{"type":"string","pattern":"^(([0-9]|[0-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\\.){3}([0-9]|[0-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5]):([1-9][0-9]{0,3}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"},"x-kubernetes-list-type":"atomic"}}},"netFlow":{"description":"netFlow defines the NetFlow configuration.","type":"object","properties":{"collectors":{"description":"netFlow defines the NetFlow collectors that will consume the flow data exported from OVS.\nIt is a list of strings formatted as ip:port with a maximum of ten items","type":"array","maxItems":10,"minItems":1,"items":{"type":"string","pattern":"^(([0-9]|[0-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\\.){3}([0-9]|[0-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5]):([1-9][0-9]{0,3}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"},"x-kubernetes-list-type":"atomic"}}},"sFlow":{"description":"sFlow defines the SFlow configuration.","type":"object","properties":{"collectors":{"description":"sFlowCollectors is list of strings formatted as ip:port with a maximum of ten items","type":"array","maxItems":10,"minItems":1,"items":{"type":"string","pattern":"^(([0-9]|[0-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5])\\.){3}([0-9]|[0-9][0-9]|1[0-9][0-9]|2[0-4][0-9]|25[0-5]):([1-9][0-9]{0,3}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$"},"x-kubernetes-list-type":"atomic"}}}}},"kubeProxyConfig":{"description":"kubeProxyConfig lets us configure desired proxy configuration, if\ndeployKubeProxy is true. If not specified, sensible defaults will be chosen by\nOpenShift directly.","type":"object","properties":{"bindAddress":{"description":"The address to \"bind\" on\nDefaults to 0.0.0.0","type":"string"},"iptablesSyncPeriod":{"description":"An internal kube-proxy parameter. In older releases of OCP, this sometimes needed to be adjusted\nin large clusters for performance reasons, but this is no longer necessary, and there is no reason\nto change this from the default value.\nDefault: 30s","type":"string"},"proxyArguments":{"description":"Any additional arguments to pass to the kubeproxy process","type":"object","additionalProperties":{"description":"ProxyArgumentList is a list of arguments to pass to the kubeproxy process","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"migration":{"description":"migration enables and configures cluster network migration, for network changes\nthat cannot be made instantly.","type":"object","properties":{"features":{"description":"features was previously used to configure which network plugin features\nwould be migrated in a network type migration.\nDEPRECATED: network type migration is no longer supported, and setting\nthis to a non-empty value will result in the network operator rejecting\nthe configuration.","type":"object","properties":{"egressFirewall":{"description":"egressFirewall specified whether or not the Egress Firewall configuration was migrated.\nDEPRECATED: network type migration is no longer supported.","type":"boolean"},"egressIP":{"description":"egressIP specified whether or not the Egress IP configuration was migrated.\nDEPRECATED: network type migration is no longer supported.","type":"boolean"},"multicast":{"description":"multicast specified whether or not the multicast configuration was migrated.\nDEPRECATED: network type migration is no longer supported.","type":"boolean"}}},"mode":{"description":"mode indicates the mode of network type migration.\nDEPRECATED: network type migration is no longer supported, and setting\nthis to a non-empty value will result in the network operator rejecting\nthe configuration.","type":"string","enum":["Live","Offline",""]},"mtu":{"description":"mtu contains the MTU migration configuration. Set this to allow changing\nthe MTU values for the default network. If unset, the operation of\nchanging the MTU for the default network will be rejected.","type":"object","properties":{"machine":{"description":"machine contains MTU migration configuration for the machine's uplink.\nNeeds to be migrated along with the default network MTU unless the\ncurrent uplink MTU already accommodates the default network MTU.","type":"object","properties":{"from":{"description":"from is the MTU to migrate from.","type":"integer","format":"int32","minimum":0},"to":{"description":"to is the MTU to migrate to.","type":"integer","format":"int32","minimum":0}}},"network":{"description":"network contains information about MTU migration for the default network.\nMigrations are only allowed to MTU values lower than the machine's uplink\nMTU by the minimum appropriate offset.","type":"object","properties":{"from":{"description":"from is the MTU to migrate from.","type":"integer","format":"int32","minimum":0},"to":{"description":"to is the MTU to migrate to.","type":"integer","format":"int32","minimum":0}}}}},"networkType":{"description":"networkType was previously used when changing the default network type.\nDEPRECATED: network type migration is no longer supported, and setting\nthis to a non-empty value will result in the network operator rejecting\nthe configuration.","type":"string"}},"x-kubernetes-validations":[{"message":"networkType migration in mode other than 'Live' may not be configured at the same time as mtu migration","rule":"!has(self.mtu) || !has(self.networkType) || self.networkType == \"\" || has(self.mode) && self.mode == 'Live'"}]},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"serviceNetwork":{"description":"serviceNetwork is the ip address pool to use for Service IPs\nCurrently, all existing network providers only support a single value\nhere, but this is an array to allow for growth.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true},"useMultiNetworkPolicy":{"description":"useMultiNetworkPolicy enables a controller which allows for\nMultiNetworkPolicy objects to be used on additional networks as\ncreated by Multus CNI. MultiNetworkPolicy are similar to NetworkPolicy\nobjects, but NetworkPolicy objects only apply to the primary interface.\nWith MultiNetworkPolicy, you can control the traffic that a pod can receive\nover the secondary interfaces. If unset, this property defaults to 'false'\nand MultiNetworkPolicy objects are ignored. If 'disableMultiNetwork' is\n'true' then the value of this field is ignored.","type":"boolean"}},"x-kubernetes-validations":[{"message":"invalid value for IPForwarding, valid values are 'Restricted' or 'Global'","rule":"!has(self.defaultNetwork) || !has(self.defaultNetwork.ovnKubernetesConfig) || !has(self.defaultNetwork.ovnKubernetesConfig.gatewayConfig) || !has(self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding) || self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding == oldSelf.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding || self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding == 'Restricted' || self.defaultNetwork.ovnKubernetesConfig.gatewayConfig.ipForwarding == 'Global'"}]},"status":{"description":"NetworkStatus is detailed operator status, which is distilled\nup to the Network clusteroperator object.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"Network","version":"v1"}]},"io.openshift.operator.v1.NetworkList":{"description":"NetworkList is a list of Network","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of networks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.Network"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"NetworkList","version":"v1"}]},"io.openshift.operator.v1.OpenShiftAPIServer":{"description":"OpenShiftAPIServer provides information to configure an operator to manage openshift-apiserver.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the OpenShift API Server.","type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status defines the observed status of the OpenShift API Server.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"OpenShiftAPIServer","version":"v1"}]},"io.openshift.operator.v1.OpenShiftAPIServerList":{"description":"OpenShiftAPIServerList is a list of OpenShiftAPIServer","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of openshiftapiservers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftAPIServer"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"OpenShiftAPIServerList","version":"v1"}]},"io.openshift.operator.v1.OpenShiftControllerManager":{"description":"OpenShiftControllerManager provides information to configure an operator to manage openshift-controller-manager.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"OpenShiftControllerManager","version":"v1"}]},"io.openshift.operator.v1.OpenShiftControllerManagerList":{"description":"OpenShiftControllerManagerList is a list of OpenShiftControllerManager","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of openshiftcontrollermanagers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.OpenShiftControllerManager"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"OpenShiftControllerManagerList","version":"v1"}]},"io.openshift.operator.v1.ServiceCA":{"description":"ServiceCA provides information to configure an operator to manage the service cert controllers\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ServiceCA","version":"v1"}]},"io.openshift.operator.v1.ServiceCAList":{"description":"ServiceCAList is a list of ServiceCA","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of servicecas. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.ServiceCA"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ServiceCAList","version":"v1"}]},"io.openshift.operator.v1.Storage":{"description":"Storage provides a means to configure an operator to manage the cluster storage operator. `cluster` is the canonical name.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true},"vsphereStorageDriver":{"description":"VSphereStorageDriver indicates the storage driver to use on VSphere clusters.\nOnce this field is set to CSIWithMigrationDriver, it can not be changed.\nIf this is empty, the platform will choose a good default,\nwhich may change over time without notice.\nThe current default is CSIWithMigrationDriver and may not be changed.\nDEPRECATED: This field will be removed in a future release.","type":"string","enum":["","LegacyDeprecatedInTreeDriver","CSIWithMigrationDriver"],"x-kubernetes-validations":[{"message":"VSphereStorageDriver can not be set to LegacyDeprecatedInTreeDriver","rule":"self != \"LegacyDeprecatedInTreeDriver\""}]}}},"status":{"description":"status holds observed values from the cluster. They may not be overridden.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"Storage","version":"v1"}]},"io.openshift.operator.v1.StorageList":{"description":"StorageList is a list of Storage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of storages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1.Storage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"StorageList","version":"v1"}]},"io.openshift.operator.v1alpha1.CertManager":{"description":"CertManager is the Schema for the certmanagers API","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"CertManagerSpec defines the desired state of CertManager.","type":"object","properties":{"cainjectorConfig":{"description":"CAInjectorConfig specifies further customization options for the cainjector's deployment spec.\n\nPossible customizations include the following,\n\nFor OverrideArgs,\n--namespace string                          If set, this limits the scope of cainjector to a single namespace. If set, cainjector\n                                            will not update resources with certificates outside of the configured namespace.\n--v Level                                   number for the log level verbosity","type":"object","properties":{"overrideArgs":{"type":"array","items":{"type":"string"}},"overrideEnv":{"type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"overrideLabels":{"type":"object","additionalProperties":{"type":"string"}},"overrideReplicas":{"description":"OverrideReplicas defines the number of replicas for the operand deployment.\nIf not specified, the default replicas from the deployment manifest will be used.","type":"integer","format":"int32","minimum":1},"overrideResources":{"description":"CertManagerResourceRequirements describes the compute resource requirements for the cert-manager operands,\nnamely the controller, webhook and cainjector.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"overrideScheduling":{"description":"CertManagerScheduling describes the scheduling configurations for the cert-manager operands,\nnamely the controller, webhook and cainjector.","type":"object","properties":{"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"tolerations":{"description":"Tolerations are attached to the pod to tolerate any taint that matches the\ntaint's key, value and effect using the toleration's matching operator.\nMore info: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"controllerConfig":{"description":"ControllerConfig specifies further customization options for the controller's deployment spec.\n\nPossible customizations include the following,\n\nFor OverrideArgs,\nThis field appends values to .spec.template.spec.containers[...].args. The container\nthat will be selected will be based on image present on the spec. Possible values are,\nEg:\n  - \"--acme-http01-solver-nameservers=\"8.8.8.8:53,1.1.1.1:53\"\n  - \"--dns01-recursive-nameservers=8.8.8.8:53,1.1.1.1:53\"\n  - \"--dns01-recursive-nameservers-only\"\n\nFor OverrideEnvs,\nThis field appends values to .spec.template.spec.containers[...].env. The container\nthat will be selected will be based on image present on the spec. Possible values are,\nEg:\n  - \"HTTP_PROXY\": \"http://proxy:8080\"","type":"object","properties":{"overrideArgs":{"type":"array","items":{"type":"string"}},"overrideEnv":{"type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"overrideLabels":{"type":"object","additionalProperties":{"type":"string"}},"overrideReplicas":{"description":"OverrideReplicas defines the number of replicas for the operand deployment.\nIf not specified, the default replicas from the deployment manifest will be used.","type":"integer","format":"int32","minimum":1},"overrideResources":{"description":"CertManagerResourceRequirements describes the compute resource requirements for the cert-manager operands,\nnamely the controller, webhook and cainjector.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"overrideScheduling":{"description":"CertManagerScheduling describes the scheduling configurations for the cert-manager operands,\nnamely the controller, webhook and cainjector.","type":"object","properties":{"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"tolerations":{"description":"Tolerations are attached to the pod to tolerate any taint that matches the\ntaint's key, value and effect using the toleration's matching operator.\nMore info: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"defaultNetworkPolicy":{"description":"DefaultNetworkPolicy enables the default network policy for cert-manager components.\nWhen set to \"true\", the operator will create default network policies to secure\ncommunication between cert-manager controller, webhook, and cainjector components.\nWhen set to \"false\" or empty, no default network policies are created.\nValid values are: \"true\", \"false\", or empty (default: false).\n\nThis field is immutable once set to \"true\" for security reasons. Network policies\ncannot be disabled once enabled to prevent accidental security degradation.\nUsers should carefully plan their network policy requirements before enabling this field.","type":"string","enum":["true","false",""],"x-kubernetes-validations":[{"message":"defaultNetworkPolicy cannot be changed from 'true' to 'false' once set","rule":"oldSelf != 'true' || self == 'true'"}]},"logLevel":{"description":"logLevel is an intent based logging for an overall component.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for their operands.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"managementState":{"description":"managementState indicates whether and how the operator should manage the component","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"networkPolicies":{"description":"NetworkPolicies specifies the egress network policy configuration to be applied to cert-manager\npods/operands when DefaultNetworkPolicy is \"true\". By default, enabling network policies\ncreates a deny-all policy that blocks all outgoing traffic from cert-manager components.\nIngress rules are automatically handled by the operator based on the current running ports.\nUse this field to provide the necessary egress policy rules that allow required outbound traffic\nfor cert-manager to function properly (e.g., API server communication, external issuer access, etc.).\n\nEach NetworkPolicy in this slice will be created as a separate Kubernetes NetworkPolicy\nresource. Multiple policies can be defined to organize egress rules logically (e.g., separate\npolicies for different types of outbound traffic or different security zones).\n\nThis field is only effective when DefaultNetworkPolicy is set to \"true\".\nIf DefaultNetworkPolicy is \"true\" but this field is not provided, cert-manager\ncomponents will be isolated with deny-all egress policies.\n\nThis field is immutable once DefaultNetworkPolicy is set to \"true\" for security reasons.","type":"array","maxItems":50,"minItems":0,"items":{"description":"NetworkPolicy represents a custom network policy configuration for operator-managed components.\nIt includes a name for identification and the network policy rules to be enforced.","type":"object","required":["componentName","name"],"properties":{"componentName":{"description":"ComponentName represents the different cert-manager components that can have network policies applied.","type":"string","enum":["CoreController"]},"egress":{"description":"egress is a list of egress rules to be applied to the selected pods. Outgoing traffic\nis allowed if there are no NetworkPolicies selecting the pod (and cluster policy\notherwise allows the traffic), OR if the traffic matches at least one egress rule\nacross all of the NetworkPolicy objects whose podSelector matches the pod. If\nthis field is empty then this NetworkPolicy limits all outgoing traffic (and serves\nsolely to ensure that the pods it selects are isolated by default).\nThe operator will automatically handle ingress rules based on the current running ports.","type":"array","items":{"description":"NetworkPolicyEgressRule describes a particular set of traffic that is allowed out of pods\nmatched by a NetworkPolicySpec's podSelector. The traffic must match both ports and to.\nThis type is beta-level in 1.8","type":"object","properties":{"ports":{"description":"ports is a list of destination ports for outgoing traffic.\nEach item in this list is combined using a logical OR. If this field is\nempty or missing, this rule matches all ports (traffic not restricted by port).\nIf this field is present and contains at least one item, then this rule allows\ntraffic only if the traffic matches at least one port in the list.","type":"array","items":{"description":"NetworkPolicyPort describes a port to allow traffic on","type":"object","properties":{"endPort":{"description":"endPort indicates that the range of ports from port to endPort if set, inclusive,\nshould be allowed by the policy. This field cannot be defined if the port field\nis not defined or if the port field is defined as a named (string) port.\nThe endPort must be equal or greater than port.","type":"integer","format":"int32"},"port":{"description":"port represents the port on the given protocol. This can either be a numerical or named\nport on a pod. If this field is not provided, this matches all port names and\nnumbers.\nIf present, only traffic on the specified protocol AND port will be matched.","x-kubernetes-int-or-string":true},"protocol":{"description":"protocol represents the protocol (TCP, UDP, or SCTP) which traffic must match.\nIf not specified, this field defaults to TCP.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"to":{"description":"to is a list of destinations for outgoing traffic of pods selected for this rule.\nItems in this list are combined using a logical OR operation. If this field is\nempty or missing, this rule matches all destinations (traffic not restricted by\ndestination). If this field is present and contains at least one item, this rule\nallows traffic only if the traffic matches at least one item in the to list.","type":"array","items":{"description":"NetworkPolicyPeer describes a peer to allow traffic to/from. Only certain combinations of\nfields are allowed","type":"object","properties":{"ipBlock":{"description":"ipBlock defines policy on a particular IPBlock. If this field is set then\nneither of the other fields can be.","type":"object","required":["cidr"],"properties":{"cidr":{"description":"cidr is a string representing the IPBlock\nValid examples are \"192.168.1.0/24\" or \"2001:db8::/64\"","type":"string"},"except":{"description":"except is a slice of CIDRs that should not be included within an IPBlock\nValid examples are \"192.168.1.0/24\" or \"2001:db8::/64\"\nExcept values will be rejected if they are outside the cidr range","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"namespaceSelector":{"description":"namespaceSelector selects namespaces using cluster-scoped labels. This field follows\nstandard label selector semantics; if present but empty, it selects all namespaces.\n\nIf podSelector is also set, then the NetworkPolicyPeer as a whole selects\nthe pods matching podSelector in the namespaces selected by namespaceSelector.\nOtherwise it selects all pods in the namespaces selected by namespaceSelector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"podSelector":{"description":"podSelector is a label selector which selects pods. This field follows standard label\nselector semantics; if present but empty, it selects all pods.\n\nIf namespaceSelector is also set, then the NetworkPolicyPeer as a whole selects\nthe pods matching podSelector in the Namespaces selected by NamespaceSelector.\nOtherwise it selects the pods matching podSelector in the policy's own namespace.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name is a unique identifier for this network policy configuration.\nThis name will be used as part of the generated NetworkPolicy resource name.","type":"string","maxLength":253,"minLength":1}}},"x-kubernetes-list-map-keys":["name","componentName"],"x-kubernetes-list-type":"map","x-kubernetes-validations":[{"message":"name and componentName fields in networkPolicies are immutable","rule":"oldSelf.all(op, self.exists(p, p.name == op.name && p.componentName == op.componentName))"}]},"observedConfig":{"description":"observedConfig holds a sparse config that controller has observed from the cluster state.  It exists in spec because\nit is an input to the level for the operator","x-kubernetes-preserve-unknown-fields":true},"operatorLogLevel":{"description":"operatorLogLevel is an intent based logging for the operator itself.  It does not give fine grained control, but it is a\nsimple way to manage coarse grained logging choices that operators have to interpret for themselves.\n\nValid values are: \"Normal\", \"Debug\", \"Trace\", \"TraceAll\".\nDefaults to \"Normal\".","type":"string","enum":["","Normal","Debug","Trace","TraceAll"]},"unsupportedConfigOverrides":{"description":"unsupportedConfigOverrides overrides the final configuration that was computed by the operator.\nRed Hat does not support the use of this field.\nMisuse of this field could lead to unexpected behavior or conflict with other configuration options.\nSeek guidance from the Red Hat support before using this field.\nUse of this property blocks cluster upgrades, it must be removed before upgrading your cluster.","x-kubernetes-preserve-unknown-fields":true},"webhookConfig":{"description":"WebhookConfig specifies further customization options for the webhook's deployment spec.\n\nPossible customizations include the following,\n\nFor OverrideArgs,\n--config string                                Path to a file containing a WebhookConfiguration object used to configure the webhook\n--dynamic-serving-ca-secret-name string        name of the secret used to store the CA that signs serving certificates\n--dynamic-serving-ca-secret-namespace string   namespace of the secret used to store the CA that signs serving certificates\n--dynamic-serving-dns-names strings            DNS names that should be present on certificates generated by the dynamic serving CA\n--v Level                                      number for the log level verbosity","type":"object","properties":{"overrideArgs":{"type":"array","items":{"type":"string"}},"overrideEnv":{"type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}}},"overrideLabels":{"type":"object","additionalProperties":{"type":"string"}},"overrideReplicas":{"description":"OverrideReplicas defines the number of replicas for the operand deployment.\nIf not specified, the default replicas from the deployment manifest will be used.","type":"integer","format":"int32","minimum":1},"overrideResources":{"description":"CertManagerResourceRequirements describes the compute resource requirements for the cert-manager operands,\nnamely the controller, webhook and cainjector.","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"overrideScheduling":{"description":"CertManagerScheduling describes the scheduling configurations for the cert-manager operands,\nnamely the controller, webhook and cainjector.","type":"object","properties":{"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"tolerations":{"description":"Tolerations are attached to the pod to tolerate any taint that matches the\ntaint's key, value and effect using the toleration's matching operator.\nMore info: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}}}},"status":{"description":"CertManagerStatus defines the observed state of CertManager.","type":"object","properties":{"conditions":{"description":"conditions is a list of conditions and their status","type":"array","items":{"description":"OperatorCondition is just the standard condition fields.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"type":"string"},"reason":{"type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"generations":{"description":"generations are used to determine when an item needs to be reconciled or has changed in a way that needs a reaction.","type":"array","items":{"description":"GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.","type":"object","required":["group","name","namespace","resource"],"properties":{"group":{"description":"group is the group of the thing you're tracking","type":"string"},"hash":{"description":"hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps","type":"string"},"lastGeneration":{"description":"lastGeneration is the last generation of the workload controller involved","type":"integer","format":"int64"},"name":{"description":"name is the name of the thing you're tracking","type":"string"},"namespace":{"description":"namespace is where the thing you're tracking is","type":"string"},"resource":{"description":"resource is the resource type of the thing you're tracking","type":"string"}}},"x-kubernetes-list-map-keys":["group","resource","namespace","name"],"x-kubernetes-list-type":"map"},"latestAvailableRevision":{"description":"latestAvailableRevision is the deploymentID of the most recent deployment","type":"integer","format":"int32","x-kubernetes-validations":[{"message":"must only increase","rule":"self >= oldSelf"}]},"observedGeneration":{"description":"observedGeneration is the last generation change you've dealt with","type":"integer","format":"int64"},"readyReplicas":{"description":"readyReplicas indicates how many replicas are ready and at the desired state","type":"integer","format":"int32"},"version":{"description":"version is the level this availability applies to","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"CertManager","version":"v1alpha1"}]},"io.openshift.operator.v1alpha1.CertManagerList":{"description":"CertManagerList is a list of CertManager","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of certmanagers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.CertManager"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"CertManagerList","version":"v1alpha1"}]},"io.openshift.operator.v1alpha1.ImageContentSourcePolicy":{"description":"ImageContentSourcePolicy holds cluster-wide information about how to handle registry mirror rules.\nWhen multiple policies are defined, the outcome of the behavior is defined on each field.\n\nCompatibility level 4: No compatibility is provided, the API can change at any point for any reason. These capabilities should not be used by applications needing long term support.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec holds user settable values for configuration","type":"object","properties":{"repositoryDigestMirrors":{"description":"repositoryDigestMirrors allows images referenced by image digests in pods to be\npulled from alternative mirrored repository locations. The image pull specification\nprovided to the pod will be compared to the source locations described in RepositoryDigestMirrors\nand the image may be pulled down from any of the mirrors in the list instead of the\nspecified repository allowing administrators to choose a potentially faster mirror.\nOnly image pull specifications that have an image digest will have this behavior applied\nto them - tags will continue to be pulled from the specified repository in the pull spec.\n\nEach “source” repository is treated independently; configurations for different “source”\nrepositories don’t interact.\n\nWhen multiple policies are defined for the same “source” repository, the sets of defined\nmirrors will be merged together, preserving the relative order of the mirrors, if possible.\nFor example, if policy A has mirrors `a, b, c` and policy B has mirrors `c, d, e`, the\nmirrors will be used in the order `a, b, c, d, e`.  If the orders of mirror entries conflict\n(e.g. `a, b` vs. `b, a`) the configuration is not rejected but the resulting order is unspecified.","type":"array","items":{"description":"RepositoryDigestMirrors holds cluster-wide information about how to handle mirros in the registries config.\nNote: the mirrors only work when pulling the images that are referenced by their digests.","type":"object","required":["source"],"properties":{"mirrors":{"description":"mirrors is one or more repositories that may also contain the same images.\nThe order of mirrors in this list is treated as the user's desired priority, while source\nis by default considered lower priority than all mirrors. Other cluster configuration,\nincluding (but not limited to) other repositoryDigestMirrors objects,\nmay impact the exact order mirrors are contacted in, or some mirrors may be contacted\nin parallel, so this should be considered a preference rather than a guarantee of ordering.","type":"array","items":{"type":"string"}},"source":{"description":"source is the repository that users refer to, e.g. in image pull specifications.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ImageContentSourcePolicy","version":"v1alpha1"}]},"io.openshift.operator.v1alpha1.ImageContentSourcePolicyList":{"description":"ImageContentSourcePolicyList is a list of ImageContentSourcePolicy","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of imagecontentsourcepolicies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.ImageContentSourcePolicy"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"ImageContentSourcePolicyList","version":"v1alpha1"}]},"io.openshift.operator.v1alpha1.IstioCSR":{"description":"IstioCSR describes the configuration and information about the managed istio-csr agent.\nThe name must be `default` to make IstioCSR a singleton that is, to allow only one instance of IstioCSR per namespace.\n\nWhen an IstioCSR is created, istio-csr agent is deployed in the IstioCSR-created namespace.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the IstioCSR.","type":"object","required":["istioCSRConfig"],"properties":{"controllerConfig":{"description":"controllerConfig configures the controller for setting up defaults to enable the istio-csr agent.","type":"object","properties":{"labels":{"description":"labels to apply to all resources created for the istio-csr agent deployment.\nThis field can have a maximum of 20 entries.","type":"object","maxProperties":20,"minProperties":0,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"granular"}}},"istioCSRConfig":{"description":"istioCSRConfig configures the istio-csr agent's behavior.","type":"object","required":["certManager","istio","istiodTLSConfig"],"properties":{"affinity":{"description":"affinity is for setting scheduling affinity rules.\nref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"certManager":{"description":"certManager is for configuring cert-manager specifics.","type":"object","required":["issuerRef"],"properties":{"issuerRef":{"description":"issuerRef contains details of the referenced object used for obtaining certificates.\nWhen `issuerRef.Kind` is `Issuer`, it must exist in the `.spec.istioCSRConfig.istio.namespace`.\nThis field is immutable once set.","type":"object","required":["name"],"properties":{"group":{"description":"Group of the issuer being referred to.\nDefaults to 'cert-manager.io'.","type":"string"},"kind":{"description":"Kind of the issuer being referred to.\nDefaults to 'Issuer'.","type":"string"},"name":{"description":"Name of the issuer being referred to.","type":"string"}},"x-kubernetes-validations":[{"message":"issuerRef is immutable once set","rule":"self == oldSelf"},{"message":"kind must be either 'Issuer' or 'ClusterIssuer'","rule":"self.kind.lowerAscii() == 'issuer' || self.kind.lowerAscii() == 'clusterissuer'"},{"message":"group must be 'cert-manager.io'","rule":"self.group.lowerAscii() == 'cert-manager.io'"}]},"istioCACertificate":{"description":"istioCACertificate when provided, the operator will use the CA certificate from the specified ConfigMap.\nIf empty, the operator will automatically extract the CA certificate from the Secret containing the istiod certificate obtained from cert-manager.","type":"object","required":["key","name"],"properties":{"key":{"description":"key name holding the required data.","type":"string","maxLength":253,"minLength":1,"pattern":"^[-._a-zA-Z0-9]+$"},"name":{"description":"name of the ConfigMap.","type":"string","maxLength":253,"minLength":1},"namespace":{"description":"namespace in which the ConfigMap exists. If empty, ConfigMap will be looked up in IstioCSR created namespace.","type":"string","maxLength":63,"minLength":0}}}},"x-kubernetes-validations":[{"message":"issuerRef may only be configured during creation","rule":"!has(oldSelf.issuerRef) && !has(self.issuerRef) || has(oldSelf.issuerRef) && has(self.issuerRef)"}]},"istio":{"description":"istio is for configuring the istio specifics.","type":"object","required":["namespace"],"properties":{"namespace":{"description":"namespace of the Istio control plane.\nThis field can have a maximum of 63 characters.","type":"string","maxLength":63,"minLength":1,"x-kubernetes-validations":[{"message":"namespace is immutable once set","rule":"self == oldSelf"}]},"revisions":{"description":"revisions are the Istio revisions that are currently installed in the cluster.\nChanging this field will modify the DNS names that will be requested for the istiod certificate.\nThis field can have a maximum of 25 entries.","type":"array","maxItems":25,"minItems":0,"items":{"type":"string","maxLength":63,"minLength":1},"x-kubernetes-list-type":"set"}}},"istioDataPlaneNamespaceSelector":{"description":"Istio-csr creates a ConfigMap named `istio-ca-root-cert` containing the root CA certificate, which the Istio data plane uses to verify server certificates. Its default behavior is to create and monitor ConfigMaps in all namespaces.\nThe istioDataPlaneNamespaceSelector restricts the namespaces where the ConfigMap is created by using label selectors, such as maistra.io/member-of=istio-system. This selector is also attached to all desired namespaces that are part of the data plane.\nThis field can have a maximum of 4096 characters.","type":"string","maxLength":4096,"minLength":0},"istiodTLSConfig":{"description":"istiodTLSConfig is for configuring istiod certificate specifics.","type":"object","required":["trustDomain"],"properties":{"certificateDNSNames":{"description":"certificateDNSNames contains the additional DNS names to be added to the istiod certificate SAN.\nThis field can have a maximum of 25 entries.","type":"array","maxItems":25,"minItems":0,"items":{"type":"string","maxLength":253,"minLength":1},"x-kubernetes-list-type":"set"},"certificateDuration":{"description":"certificateDuration is the validity period for the istio-csr and istiod certificates.","type":"string"},"certificateRenewBefore":{"description":"certificateRenewBefore is the time before expiry to renew the istio-csr and istiod certificates.","type":"string"},"commonName":{"description":"commonName is the common name to be set in the cert-manager.io Certificate created for istiod.\nThe commonName will be of the form istiod.<istio_namespace>.svc when not set.\nThis field can have a maximum of 64 characters.","type":"string","maxLength":64,"minLength":0},"maxCertificateDuration":{"description":"MaxCertificateDuration is the maximum validity duration that can be requested for a certificate.","type":"string"},"privateKeyAlgorithm":{"description":"privateKeyAlgorithm is the algorithm to use when generating private keys. Allowed values are RSA, and ECDSA.\nThis field is immutable once set.","type":"string","enum":["RSA","ECDSA"],"x-kubernetes-validations":[{"message":"privateKeyAlgorithm is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]},"privateKeySize":{"description":"privateKeySize is the key size for the istio-csr and istiod certificates. Allowed values when privateKeyAlgorithm is RSA are 2048, 4096, 8192; and for ECDSA, they are 256, 384.\nThis field is immutable once set.","type":"integer","format":"int32","enum":[256,384,2048,4096,8192],"x-kubernetes-validations":[{"message":"privateKeySize is immutable once set","rule":"oldSelf == 0 || self == oldSelf"}]},"trustDomain":{"description":"trustDomain is the Istio cluster's trust domain, which will also be used for deriving the SPIFFE URI.\nThis field can have a maximum of 63 characters.","type":"string","maxLength":63,"minLength":1}},"x-kubernetes-validations":[{"message":"privateKeyAlgorithm may only be configured during creation","rule":"!has(oldSelf.privateKeyAlgorithm) && !has(self.privateKeyAlgorithm) || has(oldSelf.privateKeyAlgorithm) && has(self.privateKeyAlgorithm)"},{"message":"privateKeySize may only be configured during creation","rule":"!has(oldSelf.privateKeySize) && !has(self.privateKeySize) || has(oldSelf.privateKeySize) && has(self.privateKeySize)"},{"message":"privateKeySize must match with configured privateKeyAlgorithm","rule":"(!has(self.privateKeyAlgorithm) || self.privateKeyAlgorithm == 'RSA') ? (self.privateKeySize in [2048,4096,8192]) : (self.privateKeySize in [256,384])"}]},"logFormat":{"description":"logFormat specifies the output format for istio-csr agent logging.\nSupported log formats are text and json.","type":"string","enum":["text","json"]},"logLevel":{"description":"logLevel supports a value range as per [Kubernetes logging guidelines](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md#what-method-to-use).","type":"integer","format":"int32","maximum":5,"minimum":1},"nodeSelector":{"description":"nodeSelector is for defining the scheduling criteria using node labels.\nThis field can have a maximum of 50 entries.\nref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","maxProperties":50,"minProperties":0,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"resources":{"description":"resources is for defining the resource requirements.\nCannot be updated.\nref: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"server":{"description":"server is for configuring the server endpoint used by istio for obtaining the certificates.","type":"object","properties":{"clusterID":{"description":"clusterID is the Istio cluster ID used to verify incoming CSRs.\nThis field can have a maximum of 253 characters.","type":"string","maxLength":253,"minLength":0},"port":{"description":"port to serve the istio-csr gRPC service.","type":"integer","format":"int32","maximum":65535,"minimum":1,"x-kubernetes-validations":[{"message":"port is immutable once set","rule":"oldSelf == 0 || self == oldSelf"}]}}},"tolerations":{"description":"tolerations is for setting the pod tolerations.\nThis field can have a maximum of 50 entries.\nref: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/","type":"array","maxItems":50,"minItems":0,"items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"status":{"description":"status is the most recently observed status of the IstioCSR.","type":"object","properties":{"clusterRole":{"description":"clusterRole created by the controller for the istio-csr agent.","type":"string"},"clusterRoleBinding":{"description":"clusterRoleBinding created by the controller for the istio-csr agent.","type":"string"},"conditions":{"description":"conditions holds information about the current state of the operand deployment.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"istioCSRGRPCEndpoint":{"description":"istioCSRGRPCEndpoint is the service endpoint of istio-csr, made available for users to configure in the istiod config to enable Istio to use istio-csr for certificate requests.","type":"string"},"istioCSRImage":{"description":"istioCSRImage is the name of the image and the tag used for deploying istio-csr.","type":"string"},"serviceAccount":{"description":"serviceAccount created by the controller for the istio-csr agent.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"IstioCSR","version":"v1alpha1"}],"x-kubernetes-validations":[{"message":"istiocsr is a singleton, .metadata.name must be 'default'","rule":"self.metadata.name == 'default'"}]},"io.openshift.operator.v1alpha1.IstioCSRList":{"description":"IstioCSRList is a list of IstioCSR","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of istiocsrs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.IstioCSR"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"IstioCSRList","version":"v1alpha1"}]},"io.openshift.operator.v1alpha1.TrustManager":{"description":"TrustManager describes the configuration and information about the managed trust-manager deployment.\nThe name must be `cluster` to make TrustManager a singleton, allowing only one instance per cluster.\nWhen a TrustManager CR is created, trust-manager operand is deployed in the cert-manager namespace.","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of the TrustManager.","type":"object","required":["trustManagerConfig"],"properties":{"controllerConfig":{"description":"controllerConfig configures the operator's behavior for resource creation.","type":"object","properties":{"annotations":{"description":"annotations to apply to all resources created for the trust-manager deployment.","type":"object","maxProperties":25,"minProperties":0,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"granular"},"labels":{"description":"labels to apply to all resources created for the trust-manager deployment.","type":"object","maxProperties":25,"minProperties":0,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"granular"}}},"trustManagerConfig":{"description":"trustManagerConfig configures the trust-manager operand's behavior.","type":"object","properties":{"affinity":{"description":"affinity defines scheduling constraints for the trust-manager pod.\nref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"defaultCAPackage":{"description":"defaultCAPackage configures the default CA package for trust-manager.\nWhen enabled, the operator will use OpenShift's trusted CA bundle injection mechanism.","type":"object","properties":{"policy":{"description":"policy controls whether the default CA package feature is enabled.\nWhen set to \"Enabled\", the operator will inject OpenShift's trusted CA bundle\ninto trust-manager, enabling the \"useDefaultCAs: true\" source in Bundle resources.\nWhen set to \"Disabled\", no default CA package is configured and Bundles cannot use useDefaultCAs (default behavior).","type":"string","enum":["Enabled","Disabled"]}}},"filterExpiredCertificates":{"description":"filterExpiredCertificates controls whether trust-manager filters out\nexpired certificates from trust bundles before distributing them.\nWhen set to \"Enabled\", expired certificates are removed from bundles.\nWhen set to \"Disabled\", expired certificates are included (default behavior).","type":"string","enum":["Enabled","Disabled"]},"logFormat":{"description":"logFormat specifies the output format for trust-manager logging.\nSupported formats are \"text\" and \"json\".","type":"string","enum":["text","json"]},"logLevel":{"description":"logLevel configures the verbosity of trust-manager logging.\nFollows [Kubernetes logging guidelines](https://github.com/kubernetes/community/blob/master/contributors/devel/sig-instrumentation/logging.md#what-method-to-use).","type":"integer","format":"int32","maximum":5,"minimum":1},"nodeSelector":{"description":"nodeSelector restricts which nodes the trust-manager pod can be scheduled on.\nref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","maxProperties":50,"minProperties":0,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"resources":{"description":"resources defines the compute resource requirements for the trust-manager pod.\nref: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"secretTargets":{"description":"secretTargets configures whether trust-manager can write trust bundles to Secrets.","type":"object","properties":{"authorizedSecrets":{"description":"authorizedSecrets is a list of specific secret names that trust-manager\nis authorized to create and update. This field is only valid when policy is \"Custom\".","type":"array","minItems":0,"items":{"type":"string","minLength":1},"x-kubernetes-list-type":"set"},"policy":{"description":"policy controls whether and how trust-manager can write trust bundles to Secrets.\nAllowed values are \"Disabled\" or \"Custom\".\n\"Disabled\" means trust-manager cannot write trust bundles to Secrets (default behavior).\n\"Custom\" grants trust-manager read access  to all secrets cluster-wide,\nand write access only to the secrets listed in authorizedSecrets.","type":"string","enum":["Disabled","Custom"]}},"x-kubernetes-validations":[{"message":"authorizedSecrets must not be empty when policy is Custom","rule":"self.policy != 'Custom' || (has(self.authorizedSecrets) && size(self.authorizedSecrets) > 0)"},{"message":"authorizedSecrets must be empty when policy is not Custom","rule":"self.policy == 'Custom' || !has(self.authorizedSecrets) || size(self.authorizedSecrets) == 0"}]},"tolerations":{"description":"tolerations allows the trust-manager pod to be scheduled on tainted nodes.\nref: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/","type":"array","maxItems":50,"minItems":0,"items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"trustNamespace":{"description":"trustNamespace is the namespace where trust-manager looks for trust sources\n(ConfigMaps and Secrets containing CA certificates).\nDefaults to \"cert-manager\" if not specified.\nThis field is immutable once set.\nThis field can have a maximum of 63 characters.","type":"string","maxLength":63,"minLength":1,"x-kubernetes-validations":[{"message":"trustNamespace is immutable once set","rule":"oldSelf == '' || self == oldSelf"}]}}}}},"status":{"description":"status is the most recently observed status of the TrustManager.","type":"object","properties":{"conditions":{"description":"conditions holds information about the current state of the operand deployment.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"defaultCAPackagePolicy":{"description":"defaultCAPackagePolicy indicates the current default CA package policy.","type":"string","enum":["Enabled","Disabled"]},"filterExpiredCertificatesPolicy":{"description":"filterExpiredCertificatesPolicy indicates the current policy for filtering expired certificates.","type":"string","enum":["Enabled","Disabled"]},"secretTargetsPolicy":{"description":"secretTargetsPolicy indicates the current secret targets policy.","type":"string","enum":["Disabled","Custom"]},"trustManagerImage":{"description":"trustManagerImage is the container image (name:tag) used for trust-manager.","type":"string"},"trustNamespace":{"description":"trustNamespace is the namespace where trust-manager looks for trust sources.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"TrustManager","version":"v1alpha1"}],"x-kubernetes-validations":[{"message":"TrustManager is a singleton, .metadata.name must be 'cluster'","rule":"self.metadata.name == 'cluster'"}]},"io.openshift.operator.v1alpha1.TrustManagerList":{"description":"TrustManagerList is a list of TrustManager","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of trustmanagers. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.operator.v1alpha1.TrustManager"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"operator.openshift.io","kind":"TrustManagerList","version":"v1alpha1"}]},"io.openshift.pipelines.v1alpha1.GitopsService":{"description":"GitopsService is the Schema for the gitopsservices API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"GitopsServiceSpec defines the desired state of GitopsService","type":"object","properties":{"nodeSelector":{"description":"NodeSelector is a map of key value pairs used for node selection in the default workloads","type":"object","additionalProperties":{"type":"string"}},"runOnInfra":{"description":"InfraNodeEnabled will add infra NodeSelector to all the default workloads of gitops operator","type":"boolean"},"tolerations":{"description":"Tolerations allow the default workloads to schedule onto nodes with matching taints","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists and Equal. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}}}}},"status":{"description":"GitopsServiceStatus defines the observed state of GitopsService","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"pipelines.openshift.io","kind":"GitopsService","version":"v1alpha1"}]},"io.openshift.pipelines.v1alpha1.GitopsServiceList":{"description":"GitopsServiceList is a list of GitopsService","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of gitopsservices. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.pipelines.v1alpha1.GitopsService"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"pipelines.openshift.io","kind":"GitopsServiceList","version":"v1alpha1"}]},"io.openshift.quota.v1.ClusterResourceQuota":{"description":"ClusterResourceQuota mirrors ResourceQuota at a cluster scope.  This object is easily convertible to\nsynthetic ResourceQuota object to allow quota evaluation re-use.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["metadata","spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Spec defines the desired quota","type":"object","required":["quota","selector"],"properties":{"quota":{"description":"Quota defines the desired quota","type":"object","properties":{"hard":{"description":"hard is the set of desired hard limits for each named resource.\nMore info: https://kubernetes.io/docs/concepts/policy/resource-quotas/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"scopeSelector":{"description":"scopeSelector is also a collection of filters like scopes that must match each object tracked by a quota\nbut expressed using ScopeSelectorOperator in combination with possible values.\nFor a resource to match, both scopes AND scopeSelector (if specified in spec), must be matched.","type":"object","properties":{"matchExpressions":{"description":"A list of scope selector requirements by scope of the resources.","type":"array","items":{"description":"A scoped-resource selector requirement is a selector that contains values, a scope name, and an operator\nthat relates the scope name and values.","type":"object","required":["operator","scopeName"],"properties":{"operator":{"description":"Represents a scope's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist.","type":"string"},"scopeName":{"description":"The name of the scope that the selector applies to.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"scopes":{"description":"A collection of filters that must match each object tracked by a quota.\nIf not specified, the quota matches all objects.","type":"array","items":{"description":"A ResourceQuotaScope defines a filter that must match each object tracked by a quota","type":"string"},"x-kubernetes-list-type":"atomic"}}},"selector":{"description":"Selector is the selector used to match projects.\nIt should only select active projects on the scale of dozens (though it can select\nmany more less active projects).  These projects will contend on object creation through\nthis resource.","type":"object","properties":{"annotations":{"description":"AnnotationSelector is used to select projects by annotation.","additionalProperties":{"type":"string"}},"labels":{"description":"LabelSelector is used to select projects by label.","x-kubernetes-map-type":"atomic"}}}}},"status":{"description":"Status defines the actual enforced quota and its current usage","type":"object","required":["total"],"properties":{"namespaces":{"description":"Namespaces slices the usage by project.  This division allows for quick resolution of\ndeletion reconciliation inside of a single project without requiring a recalculation\nacross all projects.  This can be used to pull the deltas for a given project."},"total":{"description":"Total defines the actual enforced quota and its current usage across all projects","type":"object","properties":{"hard":{"description":"Hard is the set of enforced hard limits for each named resource.\nMore info: https://kubernetes.io/docs/concepts/policy/resource-quotas/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"used":{"description":"Used is the current observed total usage of the resource in the namespace.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}}}}},"x-kubernetes-group-version-kind":[{"group":"quota.openshift.io","kind":"ClusterResourceQuota","version":"v1"}]},"io.openshift.quota.v1.ClusterResourceQuotaList":{"description":"ClusterResourceQuotaList is a list of ClusterResourceQuota","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterresourcequotas. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.quota.v1.ClusterResourceQuota"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"quota.openshift.io","kind":"ClusterResourceQuotaList","version":"v1"}]},"io.openshift.security.v1.SecurityContextConstraints":{"description":"SecurityContextConstraints governs the ability to make requests that affect the SecurityContext\nthat will be applied to a container.\nFor historical reasons SCC was exposed under the core Kubernetes API group.\nThat exposure is deprecated and will be removed in a future release - users\nshould instead use the security.openshift.io group to manage\nSecurityContextConstraints.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).","type":"object","required":["allowHostDirVolumePlugin","allowHostIPC","allowHostNetwork","allowHostPID","allowHostPorts","allowPrivilegedContainer","readOnlyRootFilesystem"],"properties":{"allowHostDirVolumePlugin":{"description":"AllowHostDirVolumePlugin determines if the policy allow containers to use the HostDir volume plugin","type":"boolean"},"allowHostIPC":{"description":"AllowHostIPC determines if the policy allows host ipc in the containers.","type":"boolean"},"allowHostNetwork":{"description":"AllowHostNetwork determines if the policy allows the use of HostNetwork in the pod spec.","type":"boolean"},"allowHostPID":{"description":"AllowHostPID determines if the policy allows host pid in the containers.","type":"boolean"},"allowHostPorts":{"description":"AllowHostPorts determines if the policy allows host ports in the containers.","type":"boolean"},"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation determines if a pod can request to allow\nprivilege escalation. If unspecified, defaults to true."},"allowPrivilegedContainer":{"description":"AllowPrivilegedContainer determines if a container can request to be run as privileged.","type":"boolean"},"allowedCapabilities":{"description":"AllowedCapabilities is a list of capabilities that can be requested to add to the container.\nCapabilities in this field maybe added at the pod author's discretion.\nYou must not list a capability in both AllowedCapabilities and RequiredDropCapabilities.\nTo allow all capabilities you may use '*'.","x-kubernetes-list-type":"atomic"},"allowedFlexVolumes":{"description":"AllowedFlexVolumes is a whitelist of allowed Flexvolumes.  Empty or nil indicates that all\nFlexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes\nis allowed in the \"Volumes\" field.","x-kubernetes-list-type":"atomic"},"allowedUnsafeSysctls":{"description":"AllowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none.\nEach entry is either a plain sysctl name or ends in \"*\" in which case it is considered\nas a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed.\nKubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.\n\nExamples:\ne.g. \"foo/*\" allows \"foo/bar\", \"foo/baz\", etc.\ne.g. \"foo.*\" allows \"foo.bar\", \"foo.baz\", etc.","x-kubernetes-list-type":"atomic"},"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"defaultAddCapabilities":{"description":"DefaultAddCapabilities is the default set of capabilities that will be added to the container\nunless the pod spec specifically drops the capability.  You may not list a capabiility in both\nDefaultAddCapabilities and RequiredDropCapabilities.","x-kubernetes-list-type":"atomic"},"defaultAllowPrivilegeEscalation":{"description":"DefaultAllowPrivilegeEscalation controls the default setting for whether a\nprocess can gain more privileges than its parent process."},"forbiddenSysctls":{"description":"ForbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none.\nEach entry is either a plain sysctl name or ends in \"*\" in which case it is considered\nas a prefix of forbidden sysctls. Single * means all sysctls are forbidden.\n\nExamples:\ne.g. \"foo/*\" forbids \"foo/bar\", \"foo/baz\", etc.\ne.g. \"foo.*\" forbids \"foo.bar\", \"foo.baz\", etc.","x-kubernetes-list-type":"atomic"},"fsGroup":{"description":"FSGroup is the strategy that will dictate what fs group is used by the SecurityContext."},"groups":{"description":"The groups that have permission to use this security context constraints","x-kubernetes-list-type":"atomic"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"priority":{"description":"Priority influences the sort order of SCCs when evaluating which SCCs to try first for\na given pod request based on access in the Users and Groups fields.  The higher the int, the\nhigher priority. An unset value is considered a 0 priority. If scores\nfor multiple SCCs are equal they will be sorted from most restrictive to\nleast restrictive. If both priorities and restrictions are equal the\nSCCs will be sorted by name.","format":"int32"},"readOnlyRootFilesystem":{"description":"ReadOnlyRootFilesystem when set to true will force containers to run with a read only root file\nsystem.  If the container specifically requests to run with a non-read only root file system\nthe SCC should deny the pod.\nIf set to false the container may run with a read only root file system if it wishes but it\nwill not be forced to.","type":"boolean"},"requiredDropCapabilities":{"description":"RequiredDropCapabilities are the capabilities that will be dropped from the container.  These\nare required to be dropped and cannot be added.","x-kubernetes-list-type":"atomic"},"runAsUser":{"description":"RunAsUser is the strategy that will dictate what RunAsUser is used in the SecurityContext."},"seLinuxContext":{"description":"SELinuxContext is the strategy that will dictate what labels will be set in the SecurityContext."},"seccompProfiles":{"description":"SeccompProfiles lists the allowed profiles that may be set for the pod or\ncontainer's seccomp annotations.  An unset (nil) or empty value means that no profiles may\nbe specifid by the pod or container.\tThe wildcard '*' may be used to allow all profiles.  When\nused to generate a value for a pod the first non-wildcard profile will be used as\nthe default.","x-kubernetes-list-type":"atomic"},"supplementalGroups":{"description":"SupplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext."},"users":{"description":"The users who have permissions to use this security context constraints","x-kubernetes-list-type":"atomic"},"volumes":{"description":"Volumes is a white list of allowed volume plugins.  FSType corresponds directly with the field names\nof a VolumeSource (azureFile, configMap, emptyDir).  To allow all volumes you may use \"*\".\nTo allow no volumes, set to [\"none\"].","x-kubernetes-list-type":"atomic"}},"x-kubernetes-group-version-kind":[{"group":"security.openshift.io","kind":"SecurityContextConstraints","version":"v1"}]},"io.openshift.security.v1.SecurityContextConstraintsList":{"description":"SecurityContextConstraintsList is a list of SecurityContextConstraints","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of securitycontextconstraints. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.security.v1.SecurityContextConstraints"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"security.openshift.io","kind":"SecurityContextConstraintsList","version":"v1"}]},"io.openshift.tuned.v1.Profile":{"description":"Profile is a specification for a Profile resource.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["config"],"properties":{"config":{"type":"object","required":["tunedProfile"],"properties":{"debug":{"description":"option to debug TuneD daemon execution","type":"boolean"},"providerName":{"description":"Name of the cloud provider as taken from the Node providerID: <ProviderName>://<ProviderSpecificNodeID>","type":"string"},"tunedConfig":{"description":"Global configuration for the TuneD daemon as defined in tuned-main.conf","type":"object","properties":{"reapply_sysctl":{"description":"turn reapply_sysctl functionality on/off for the TuneD daemon: true/false","type":"boolean"}}},"tunedProfile":{"description":"TuneD profile to apply","type":"string"},"verbosity":{"description":"klog logging verbosity","type":"integer"}}},"profile":{"description":"Tuned profiles.","type":"array","items":{"description":"A Tuned profile.","type":"object","required":["data","name"],"properties":{"data":{"description":"Specification of the Tuned profile to be consumed by the Tuned daemon.","type":"string"},"name":{"description":"Name of the Tuned profile to be used in the recommend section.","type":"string","minLength":1}}}}}},"status":{"description":"ProfileStatus is the status for a Profile resource; the status is for internal use only\nand its fields may be changed/removed in the future.","type":"object","required":["tunedProfile"],"properties":{"conditions":{"description":"conditions represents the state of the per-node Profile application","type":"array","items":{"description":"ProfileStatusCondition represents a partial state of the per-node Profile application.","type":"object","required":["lastTransitionTime","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the time of the last update to the current status property.","type":"string","format":"date-time"},"message":{"description":"message provides additional information about the current condition.\nThis is only to be consumed by humans.","type":"string"},"reason":{"description":"reason is the CamelCase reason for the condition's current status.","type":"string"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string"},"type":{"description":"type specifies the aspect reported by this condition.","type":"string"}}}},"tunedProfile":{"description":"the current profile in use by the Tuned daemon","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"tuned.openshift.io","kind":"Profile","version":"v1"}]},"io.openshift.tuned.v1.ProfileList":{"description":"ProfileList is a list of Profile","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of profiles. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.tuned.v1.Profile"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tuned.openshift.io","kind":"ProfileList","version":"v1"}]},"io.openshift.tuned.v1.Tuned":{"description":"Tuned is a collection of rules that allows cluster-wide deployment\nof node-level sysctls and more flexibility to add custom tuning\nspecified by user needs.  These rules are translated and passed to all\ncontainerized Tuned daemons running in the cluster in the format that\nthe daemons understand. The responsibility for applying the node-level\ntuning then lies with the containerized Tuned daemons. More info:\nhttps://github.com/openshift/cluster-node-tuning-operator","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the desired behavior of Tuned. More info:\nhttps://git.k8s.io/community/contributors/devel/api-conventions.md#spec-and-status","type":"object","properties":{"managementState":{"description":"managementState indicates whether the registry instance represented\nby this config instance is under operator management or not.  Valid\nvalues are Force, Managed, Unmanaged, and Removed.","type":"string","pattern":"^(Managed|Unmanaged|Force|Removed)$"},"profile":{"description":"Tuned profiles.","type":"array","items":{"description":"A Tuned profile.","type":"object","required":["data","name"],"properties":{"data":{"description":"Specification of the Tuned profile to be consumed by the Tuned daemon.","type":"string"},"name":{"description":"Name of the Tuned profile to be used in the recommend section.","type":"string","minLength":1}}}},"recommend":{"description":"Selection logic for all Tuned profiles.","type":"array","items":{"description":"Selection logic for a single Tuned profile.","type":"object","required":["priority","profile"],"properties":{"machineConfigLabels":{"description":"MachineConfigLabels specifies the labels for a MachineConfig. The MachineConfig is created\nautomatically to apply additional host settings (e.g. kernel boot parameters) profile 'Profile'\nneeds and can only be applied by creating a MachineConfig. This involves finding all\nMachineConfigPools with machineConfigSelector matching the MachineConfigLabels and setting the\nprofile 'Profile' on all nodes that match the MachineConfigPools' nodeSelectors.","type":"object","additionalProperties":{"type":"string"}},"match":{"description":"Rules governing application of a Tuned profile connected by logical OR operator.","type":"array","items":{"description":"Rules governing application of a Tuned profile.","type":"object","required":["label"],"properties":{"label":{"description":"Node or Pod label name.","type":"string"},"match":{"description":"Additional rules governing application of the tuned profile connected by logical AND operator.","type":"array","items":{"x-kubernetes-preserve-unknown-fields":true}},"type":{"description":"Match type: [node/pod]. If omitted, \"node\" is assumed.","type":"string","enum":["node","pod"]},"value":{"description":"Node or Pod label value. If omitted, the presence of label name is enough to match.","type":"string"}}}},"operand":{"description":"Optional operand configuration.","type":"object","properties":{"debug":{"description":"turn debugging on/off for the TuneD daemon: true/false (default is false)","type":"boolean"},"tunedConfig":{"description":"Global configuration for the TuneD daemon as defined in tuned-main.conf","type":"object","properties":{"reapply_sysctl":{"description":"turn reapply_sysctl functionality on/off for the TuneD daemon: true/false","type":"boolean"}}},"verbosity":{"description":"klog logging verbosity","type":"integer"}}},"priority":{"description":"Tuned profile priority. Highest priority is 0.","type":"integer","format":"int64","minimum":0},"profile":{"description":"Name of the Tuned profile to recommend.","type":"string","minLength":1}}}}}},"status":{"description":"TunedStatus is the status for a Tuned resource.","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"tuned.openshift.io","kind":"Tuned","version":"v1"}]},"io.openshift.tuned.v1.TunedList":{"description":"TunedList is a list of Tuned","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of tuneds. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.openshift.tuned.v1.Tuned"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"tuned.openshift.io","kind":"TunedList","version":"v1"}]},"io.velero.v1.Backup":{"description":"Backup is a Velero resource that represents the capture of Kubernetes\ncluster state at a point in time (API objects and associated volume state).","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"BackupSpec defines the specification for a Velero backup.","type":"object","properties":{"csiSnapshotTimeout":{"description":"CSISnapshotTimeout specifies the time used to wait for CSI VolumeSnapshot status turns to\nReadyToUse during creation, before returning error as timeout.\nThe default value is 10 minute.","type":"string"},"datamover":{"description":"DataMover specifies the data mover to be used by the backup.\nIf DataMover is \"\" or \"velero\", the built-in data mover will be used.","type":"string"},"defaultVolumesToFsBackup":{"description":"DefaultVolumesToFsBackup specifies whether pod volume file system backup should be used\nfor all volumes by default."},"defaultVolumesToRestic":{"description":"DefaultVolumesToRestic specifies whether restic should be used to take a\nbackup of all pod volumes by default.\n\nDeprecated: this field is no longer used and will be removed entirely in future. Use DefaultVolumesToFsBackup instead."},"excludedClusterScopedResources":{"description":"ExcludedClusterScopedResources is a slice of cluster-scoped\nresource type names to exclude from the backup.\nIf set to \"*\", all cluster-scoped resource types are excluded.\nThe default value is empty."},"excludedNamespaceScopedResources":{"description":"ExcludedNamespaceScopedResources is a slice of namespace-scoped\nresource type names to exclude from the backup.\nIf set to \"*\", all namespace-scoped resource types are excluded.\nThe default value is empty."},"excludedNamespaces":{"description":"ExcludedNamespaces contains a list of namespaces that are not\nincluded in the backup."},"excludedResources":{"description":"ExcludedResources is a slice of resource names that are not\nincluded in the backup."},"hooks":{"description":"Hooks represent custom behaviors that should be executed at different phases of the backup.","type":"object","properties":{"resources":{"description":"Resources are hooks that should be executed when backing up individual instances of a resource."}}},"includeClusterResources":{"description":"IncludeClusterResources specifies whether cluster-scoped resources\nshould be included for consideration in the backup."},"includedClusterScopedResources":{"description":"IncludedClusterScopedResources is a slice of cluster-scoped\nresource type names to include in the backup.\nIf set to \"*\", all cluster-scoped resource types are included.\nThe default value is empty, which means only related\ncluster-scoped resources are included."},"includedNamespaceScopedResources":{"description":"IncludedNamespaceScopedResources is a slice of namespace-scoped\nresource type names to include in the backup.\nThe default value is \"*\"."},"includedNamespaces":{"description":"IncludedNamespaces is a slice of namespace names to include objects\nfrom. If empty, all namespaces are included."},"includedResources":{"description":"IncludedResources is a slice of resource names to include\nin the backup. If empty, all resources are included."},"itemOperationTimeout":{"description":"ItemOperationTimeout specifies the time used to wait for asynchronous BackupItemAction operations\nThe default value is 4 hour.","type":"string"},"labelSelector":{"description":"LabelSelector is a metav1.LabelSelector to filter with\nwhen adding individual objects to the backup. If empty\nor nil, all objects are included. Optional.","x-kubernetes-map-type":"atomic"},"metadata":{"type":"object","properties":{"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"orLabelSelectors":{"description":"OrLabelSelectors is list of metav1.LabelSelector to filter with\nwhen adding individual objects to the backup. If multiple provided\nthey will be joined by the OR operator. LabelSelector as well as\nOrLabelSelectors cannot co-exist in backup request, only one of them\ncan be used."},"orderedResources":{"description":"OrderedResources specifies the backup order of resources of specific Kind.\nThe map key is the resource name and value is a list of object names separated by commas.\nEach resource name has format \"namespace/objectname\".  For cluster resources, simply use \"objectname\".","additionalProperties":{"type":"string"}},"resourcePolicy":{"description":"ResourcePolicy specifies the referenced resource policies that backup should follow","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"snapshotMoveData":{"description":"SnapshotMoveData specifies whether snapshot data should be moved"},"snapshotVolumes":{"description":"SnapshotVolumes specifies whether to take snapshots\nof any PV's referenced in the set of objects included\nin the Backup."},"storageLocation":{"description":"StorageLocation is a string containing the name of a BackupStorageLocation where the backup should be stored.","type":"string"},"ttl":{"description":"TTL is a time.Duration-parseable string describing how long\nthe Backup should be retained for.","type":"string"},"uploaderConfig":{"description":"UploaderConfig specifies the configuration for the uploader."},"volumeSnapshotLocations":{"description":"VolumeSnapshotLocations is a list containing names of VolumeSnapshotLocations associated with this backup.","type":"array","items":{"type":"string"}}}},"status":{"description":"BackupStatus captures the current status of a Velero backup.","type":"object","properties":{"backupItemOperationsAttempted":{"description":"BackupItemOperationsAttempted is the total number of attempted\nasync BackupItemAction operations for this backup.","type":"integer"},"backupItemOperationsCompleted":{"description":"BackupItemOperationsCompleted is the total number of successfully completed\nasync BackupItemAction operations for this backup.","type":"integer"},"backupItemOperationsFailed":{"description":"BackupItemOperationsFailed is the total number of async\nBackupItemAction operations for this backup which ended with an error.","type":"integer"},"completionTimestamp":{"description":"CompletionTimestamp records the time a backup was completed.\nCompletion time is recorded even on failed backups.\nCompletion time is recorded before uploading the backup object.\nThe server's time is used for CompletionTimestamps","format":"date-time"},"csiVolumeSnapshotsAttempted":{"description":"CSIVolumeSnapshotsAttempted is the total number of attempted\nCSI VolumeSnapshots for this backup.","type":"integer"},"csiVolumeSnapshotsCompleted":{"description":"CSIVolumeSnapshotsCompleted is the total number of successfully\ncompleted CSI VolumeSnapshots for this backup.","type":"integer"},"errors":{"description":"Errors is a count of all error messages that were generated during\nexecution of the backup.  The actual errors are in the backup's log\nfile in object storage.","type":"integer"},"expiration":{"description":"Expiration is when this Backup is eligible for garbage-collection.","format":"date-time"},"failureReason":{"description":"FailureReason is an error that caused the entire backup to fail.","type":"string"},"formatVersion":{"description":"FormatVersion is the backup format version, including major, minor, and patch version.","type":"string"},"hookStatus":{"description":"HookStatus contains information about the status of the hooks."},"phase":{"description":"Phase is the current state of the Backup.","type":"string","enum":["New","FailedValidation","InProgress","WaitingForPluginOperations","WaitingForPluginOperationsPartiallyFailed","Finalizing","FinalizingPartiallyFailed","Completed","PartiallyFailed","Failed","Deleting"]},"progress":{"description":"Progress contains information about the backup's execution progress. Note\nthat this information is best-effort only -- if Velero fails to update it\nduring a backup for any reason, it may be inaccurate/stale."},"startTimestamp":{"description":"StartTimestamp records the time a backup was started.\nSeparate from CreationTimestamp, since that value changes\non restores.\nThe server's time is used for StartTimestamps","format":"date-time"},"validationErrors":{"description":"ValidationErrors is a slice of all validation errors (if\napplicable)."},"version":{"description":"Version is the backup format major version.\nDeprecated: Please see FormatVersion","type":"integer"},"volumeSnapshotsAttempted":{"description":"VolumeSnapshotsAttempted is the total number of attempted\nvolume snapshots for this backup.","type":"integer"},"volumeSnapshotsCompleted":{"description":"VolumeSnapshotsCompleted is the total number of successfully\ncompleted volume snapshots for this backup.","type":"integer"},"warnings":{"description":"Warnings is a count of all warning messages that were generated during\nexecution of the backup. The actual warnings are in the backup's log\nfile in object storage.","type":"integer"}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"Backup","version":"v1"}]},"io.velero.v1.BackupList":{"description":"BackupList is a list of Backup","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of backups. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.Backup"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"BackupList","version":"v1"}]},"io.velero.v1.BackupRepository":{"type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"BackupRepositorySpec is the specification for a BackupRepository.","type":"object","required":["backupStorageLocation","maintenanceFrequency","resticIdentifier","volumeNamespace"],"properties":{"backupStorageLocation":{"description":"BackupStorageLocation is the name of the BackupStorageLocation\nthat should contain this repository.","type":"string"},"maintenanceFrequency":{"description":"MaintenanceFrequency is how often maintenance should be run.","type":"string"},"repositoryConfig":{"description":"RepositoryConfig is for repository-specific configuration fields.","additionalProperties":{"type":"string"}},"repositoryType":{"description":"RepositoryType indicates the type of the backend repository","type":"string","enum":["kopia","restic",""]},"resticIdentifier":{"description":"ResticIdentifier is the full restic-compatible string for identifying\nthis repository.","type":"string"},"volumeNamespace":{"description":"VolumeNamespace is the namespace this backup repository contains\npod volume backups for.","type":"string"}}},"status":{"description":"BackupRepositoryStatus is the current status of a BackupRepository.","type":"object","properties":{"lastMaintenanceTime":{"description":"LastMaintenanceTime is the last time repo maintenance succeeded.","format":"date-time"},"message":{"description":"Message is a message about the current status of the BackupRepository.","type":"string"},"phase":{"description":"Phase is the current state of the BackupRepository.","type":"string","enum":["New","Ready","NotReady"]},"recentMaintenance":{"description":"RecentMaintenance is status of the recent repo maintenance.","type":"array","items":{"type":"object","properties":{"completeTimestamp":{"description":"CompleteTimestamp is the completion time of the repo maintenance.","format":"date-time"},"message":{"description":"Message is a message about the current status of the repo maintenance.","type":"string"},"result":{"description":"Result is the result of the repo maintenance.","type":"string","enum":["Succeeded","Failed"]},"startTimestamp":{"description":"StartTimestamp is the start time of the repo maintenance.","format":"date-time"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"BackupRepository","version":"v1"}]},"io.velero.v1.BackupRepositoryList":{"description":"BackupRepositoryList is a list of BackupRepository","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of backuprepositories. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.BackupRepository"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"BackupRepositoryList","version":"v1"}]},"io.velero.v1.BackupStorageLocation":{"description":"BackupStorageLocation is a location where Velero stores backup objects","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"BackupStorageLocationSpec defines the desired state of a Velero BackupStorageLocation","type":"object","required":["objectStorage","provider"],"properties":{"accessMode":{"description":"AccessMode defines the permissions for the backup storage location.","type":"string","enum":["ReadOnly","ReadWrite"]},"backupSyncPeriod":{"description":"BackupSyncPeriod defines how frequently to sync backup API objects from object storage. A value of 0 disables sync."},"config":{"description":"Config is for provider-specific configuration fields.","type":"object","additionalProperties":{"type":"string"}},"credential":{"description":"Credential contains the credential information intended to be used with this location","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"default":{"description":"Default indicates this location is the default backup storage location.","type":"boolean"},"objectStorage":{"description":"ObjectStorageLocation specifies the settings necessary to connect to a provider's object storage.","type":"object","required":["bucket"],"properties":{"bucket":{"description":"Bucket is the bucket to use for object storage.","type":"string"},"caCert":{"description":"CACert defines a CA bundle to use when verifying TLS connections to the provider.","type":"string","format":"byte"},"prefix":{"description":"Prefix is the path inside a bucket to use for Velero storage. Optional.","type":"string"}}},"provider":{"description":"Provider is the provider of the backup storage.","type":"string"},"validationFrequency":{"description":"ValidationFrequency defines how frequently to validate the corresponding object storage. A value of 0 disables validation."}}},"status":{"description":"BackupStorageLocationStatus defines the observed state of BackupStorageLocation","type":"object","properties":{"accessMode":{"description":"AccessMode is an unused field.\n\nDeprecated: there is now an AccessMode field on the Spec and this field\nwill be removed entirely as of v2.0.","type":"string","enum":["ReadOnly","ReadWrite"]},"lastSyncedRevision":{"description":"LastSyncedRevision is the value of the `metadata/revision` file in the backup\nstorage location the last time the BSL's contents were synced into the cluster.\n\nDeprecated: this field is no longer updated or used for detecting changes to\nthe location's contents and will be removed entirely in v2.0.","type":"string"},"lastSyncedTime":{"description":"LastSyncedTime is the last time the contents of the location were synced into\nthe cluster.","format":"date-time"},"lastValidationTime":{"description":"LastValidationTime is the last time the backup store location was validated\nthe cluster.","format":"date-time"},"message":{"description":"Message is a message about the backup storage location's status.","type":"string"},"phase":{"description":"Phase is the current state of the BackupStorageLocation.","type":"string","enum":["Available","Unavailable"]}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"BackupStorageLocation","version":"v1"}]},"io.velero.v1.BackupStorageLocationList":{"description":"BackupStorageLocationList is a list of BackupStorageLocation","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of backupstoragelocations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.BackupStorageLocation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"BackupStorageLocationList","version":"v1"}]},"io.velero.v1.DeleteBackupRequest":{"description":"DeleteBackupRequest is a request to delete one or more backups.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DeleteBackupRequestSpec is the specification for which backups to delete.","type":"object","required":["backupName"],"properties":{"backupName":{"type":"string"}}},"status":{"description":"DeleteBackupRequestStatus is the current status of a DeleteBackupRequest.","type":"object","properties":{"errors":{"description":"Errors contains any errors that were encountered during the deletion process."},"phase":{"description":"Phase is the current state of the DeleteBackupRequest.","type":"string","enum":["New","InProgress","Processed"]}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DeleteBackupRequest","version":"v1"}]},"io.velero.v1.DeleteBackupRequestList":{"description":"DeleteBackupRequestList is a list of DeleteBackupRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of deletebackuprequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.DeleteBackupRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DeleteBackupRequestList","version":"v1"}]},"io.velero.v1.DownloadRequest":{"description":"DownloadRequest is a request to download an artifact from backup object storage, such as a backup\nlog file.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DownloadRequestSpec is the specification for a download request.","type":"object","required":["target"],"properties":{"target":{"description":"Target is what to download (e.g. logs for a backup).","type":"object","required":["kind","name"],"properties":{"kind":{"description":"Kind is the type of file to download.","type":"string","enum":["BackupLog","BackupContents","BackupVolumeSnapshots","BackupItemOperations","BackupResourceList","BackupResults","RestoreLog","RestoreResults","RestoreResourceList","RestoreItemOperations","CSIBackupVolumeSnapshots","CSIBackupVolumeSnapshotContents","BackupVolumeInfos","RestoreVolumeInfo"]},"name":{"description":"Name is the name of the Kubernetes resource with which the file is associated.","type":"string"}}}}},"status":{"description":"DownloadRequestStatus is the current status of a DownloadRequest.","type":"object","properties":{"downloadURL":{"description":"DownloadURL contains the pre-signed URL for the target file.","type":"string"},"expiration":{"description":"Expiration is when this DownloadRequest expires and can be deleted by the system.","format":"date-time"},"phase":{"description":"Phase is the current state of the DownloadRequest.","type":"string","enum":["New","Processed"]}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DownloadRequest","version":"v1"}]},"io.velero.v1.DownloadRequestList":{"description":"DownloadRequestList is a list of DownloadRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of downloadrequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.DownloadRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DownloadRequestList","version":"v1"}]},"io.velero.v1.PodVolumeBackup":{"type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PodVolumeBackupSpec is the specification for a PodVolumeBackup.","type":"object","required":["backupStorageLocation","node","pod","repoIdentifier","volume"],"properties":{"backupStorageLocation":{"description":"BackupStorageLocation is the name of the backup storage location\nwhere the backup repository is stored.","type":"string"},"node":{"description":"Node is the name of the node that the Pod is running on.","type":"string"},"pod":{"description":"Pod is a reference to the pod containing the volume to be backed up.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"repoIdentifier":{"description":"RepoIdentifier is the backup repository identifier.","type":"string"},"tags":{"description":"Tags are a map of key-value pairs that should be applied to the\nvolume backup as tags.","type":"object","additionalProperties":{"type":"string"}},"uploaderSettings":{"description":"UploaderSettings are a map of key-value pairs that should be applied to the\nuploader configuration.","additionalProperties":{"type":"string"}},"uploaderType":{"description":"UploaderType is the type of the uploader to handle the data transfer.","type":"string","enum":["kopia","restic",""]},"volume":{"description":"Volume is the name of the volume within the Pod to be backed\nup.","type":"string"}}},"status":{"description":"PodVolumeBackupStatus is the current status of a PodVolumeBackup.","type":"object","properties":{"completionTimestamp":{"description":"CompletionTimestamp records the time a backup was completed.\nCompletion time is recorded even on failed backups.\nCompletion time is recorded before uploading the backup object.\nThe server's time is used for CompletionTimestamps","format":"date-time"},"message":{"description":"Message is a message about the pod volume backup's status.","type":"string"},"path":{"description":"Path is the full path within the controller pod being backed up.","type":"string"},"phase":{"description":"Phase is the current state of the PodVolumeBackup.","type":"string","enum":["New","InProgress","Completed","Failed"]},"progress":{"description":"Progress holds the total number of bytes of the volume and the current\nnumber of backed up bytes. This can be used to display progress information\nabout the backup operation.","type":"object","properties":{"bytesDone":{"type":"integer","format":"int64"},"totalBytes":{"type":"integer","format":"int64"}}},"snapshotID":{"description":"SnapshotID is the identifier for the snapshot of the pod volume.","type":"string"},"startTimestamp":{"description":"StartTimestamp records the time a backup was started.\nSeparate from CreationTimestamp, since that value changes\non restores.\nThe server's time is used for StartTimestamps","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"PodVolumeBackup","version":"v1"}]},"io.velero.v1.PodVolumeBackupList":{"description":"PodVolumeBackupList is a list of PodVolumeBackup","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of podvolumebackups. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.PodVolumeBackup"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"PodVolumeBackupList","version":"v1"}]},"io.velero.v1.PodVolumeRestore":{"type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PodVolumeRestoreSpec is the specification for a PodVolumeRestore.","type":"object","required":["backupStorageLocation","pod","repoIdentifier","snapshotID","sourceNamespace","volume"],"properties":{"backupStorageLocation":{"description":"BackupStorageLocation is the name of the backup storage location\nwhere the backup repository is stored.","type":"string"},"pod":{"description":"Pod is a reference to the pod containing the volume to be restored.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"repoIdentifier":{"description":"RepoIdentifier is the backup repository identifier.","type":"string"},"snapshotID":{"description":"SnapshotID is the ID of the volume snapshot to be restored.","type":"string"},"sourceNamespace":{"description":"SourceNamespace is the original namespace for namaspace mapping.","type":"string"},"uploaderSettings":{"description":"UploaderSettings are a map of key-value pairs that should be applied to the\nuploader configuration.","additionalProperties":{"type":"string"}},"uploaderType":{"description":"UploaderType is the type of the uploader to handle the data transfer.","type":"string","enum":["kopia","restic",""]},"volume":{"description":"Volume is the name of the volume within the Pod to be restored.","type":"string"}}},"status":{"description":"PodVolumeRestoreStatus is the current status of a PodVolumeRestore.","type":"object","properties":{"completionTimestamp":{"description":"CompletionTimestamp records the time a restore was completed.\nCompletion time is recorded even on failed restores.\nThe server's time is used for CompletionTimestamps","format":"date-time"},"message":{"description":"Message is a message about the pod volume restore's status.","type":"string"},"phase":{"description":"Phase is the current state of the PodVolumeRestore.","type":"string","enum":["New","InProgress","Completed","Failed"]},"progress":{"description":"Progress holds the total number of bytes of the snapshot and the current\nnumber of restored bytes. This can be used to display progress information\nabout the restore operation.","type":"object","properties":{"bytesDone":{"type":"integer","format":"int64"},"totalBytes":{"type":"integer","format":"int64"}}},"startTimestamp":{"description":"StartTimestamp records the time a restore was started.\nThe server's time is used for StartTimestamps","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"PodVolumeRestore","version":"v1"}]},"io.velero.v1.PodVolumeRestoreList":{"description":"PodVolumeRestoreList is a list of PodVolumeRestore","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of podvolumerestores. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.PodVolumeRestore"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"PodVolumeRestoreList","version":"v1"}]},"io.velero.v1.Restore":{"description":"Restore is a Velero resource that represents the application of\nresources from a Velero backup to a target Kubernetes cluster.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"RestoreSpec defines the specification for a Velero restore.","type":"object","properties":{"backupName":{"description":"BackupName is the unique name of the Velero backup to restore\nfrom.","type":"string"},"excludedNamespaces":{"description":"ExcludedNamespaces contains a list of namespaces that are not\nincluded in the restore."},"excludedResources":{"description":"ExcludedResources is a slice of resource names that are not\nincluded in the restore."},"existingResourcePolicy":{"description":"ExistingResourcePolicy specifies the restore behavior for the Kubernetes resource to be restored"},"hooks":{"description":"Hooks represent custom behaviors that should be executed during or post restore.","type":"object","properties":{"resources":{"type":"array","items":{"description":"RestoreResourceHookSpec defines one or more RestoreResrouceHooks that should be executed based on\nthe rules defined for namespaces, resources, and label selector.","type":"object","required":["name"],"properties":{"excludedNamespaces":{"description":"ExcludedNamespaces specifies the namespaces to which this hook spec does not apply."},"excludedResources":{"description":"ExcludedResources specifies the resources to which this hook spec does not apply."},"includedNamespaces":{"description":"IncludedNamespaces specifies the namespaces to which this hook spec applies. If empty, it applies\nto all namespaces."},"includedResources":{"description":"IncludedResources specifies the resources to which this hook spec applies. If empty, it applies\nto all resources."},"labelSelector":{"description":"LabelSelector, if specified, filters the resources to which this hook spec applies.","x-kubernetes-map-type":"atomic"},"name":{"description":"Name is the name of this hook.","type":"string"},"postHooks":{"description":"PostHooks is a list of RestoreResourceHooks to execute during and after restoring a resource.","type":"array","items":{"description":"RestoreResourceHook defines a restore hook for a resource.","type":"object","properties":{"exec":{"description":"Exec defines an exec restore hook.","type":"object","required":["command"],"properties":{"command":{"description":"Command is the command and arguments to execute from within a container after a pod has been restored.","type":"array","minItems":1,"items":{"type":"string"}},"container":{"description":"Container is the container in the pod where the command should be executed. If not specified,\nthe pod's first container is used.","type":"string"},"execTimeout":{"description":"ExecTimeout defines the maximum amount of time Velero should wait for the hook to complete before\nconsidering the execution a failure.","type":"string"},"onError":{"description":"OnError specifies how Velero should behave if it encounters an error executing this hook.","type":"string","enum":["Continue","Fail"]},"waitForReady":{"description":"WaitForReady ensures command will be launched when container is Ready instead of Running."},"waitTimeout":{"description":"WaitTimeout defines the maximum amount of time Velero should wait for the container to be Ready\nbefore attempting to run the command.","type":"string"}}},"init":{"description":"Init defines an init restore hook.","type":"object","properties":{"initContainers":{"description":"InitContainers is list of init containers to be added to a pod during its restore.","x-kubernetes-preserve-unknown-fields":true},"timeout":{"description":"Timeout defines the maximum amount of time Velero should wait for the initContainers to complete.","type":"string"}}}}}}}}}}},"includeClusterResources":{"description":"IncludeClusterResources specifies whether cluster-scoped resources\nshould be included for consideration in the restore. If null, defaults\nto true."},"includedNamespaces":{"description":"IncludedNamespaces is a slice of namespace names to include objects\nfrom. If empty, all namespaces are included."},"includedResources":{"description":"IncludedResources is a slice of resource names to include\nin the restore. If empty, all resources in the backup are included."},"itemOperationTimeout":{"description":"ItemOperationTimeout specifies the time used to wait for RestoreItemAction operations\nThe default value is 4 hour.","type":"string"},"labelSelector":{"description":"LabelSelector is a metav1.LabelSelector to filter with\nwhen restoring individual objects from the backup. If empty\nor nil, all objects are included. Optional.","x-kubernetes-map-type":"atomic"},"namespaceMapping":{"description":"NamespaceMapping is a map of source namespace names\nto target namespace names to restore into. Any source\nnamespaces not included in the map will be restored into\nnamespaces of the same name.","type":"object","additionalProperties":{"type":"string"}},"orLabelSelectors":{"description":"OrLabelSelectors is list of metav1.LabelSelector to filter with\nwhen restoring individual objects from the backup. If multiple provided\nthey will be joined by the OR operator. LabelSelector as well as\nOrLabelSelectors cannot co-exist in restore request, only one of them\ncan be used"},"preserveNodePorts":{"description":"PreserveNodePorts specifies whether to restore old nodePorts from backup."},"resourceModifier":{"description":"ResourceModifier specifies the reference to JSON resource patches that should be applied to resources before restoration.","required":["kind","name"],"x-kubernetes-map-type":"atomic"},"restorePVs":{"description":"RestorePVs specifies whether to restore all included\nPVs from snapshot"},"restoreStatus":{"description":"RestoreStatus specifies which resources we should restore the status\nfield. If nil, no objects are included. Optional."},"scheduleName":{"description":"ScheduleName is the unique name of the Velero schedule to restore\nfrom. If specified, and BackupName is empty, Velero will restore\nfrom the most recent successful backup created from this schedule.","type":"string"},"uploaderConfig":{"description":"UploaderConfig specifies the configuration for the restore."}}},"status":{"description":"RestoreStatus captures the current status of a Velero restore","type":"object","properties":{"completionTimestamp":{"description":"CompletionTimestamp records the time the restore operation was completed.\nCompletion time is recorded even on failed restore.\nThe server's time is used for StartTimestamps","format":"date-time"},"errors":{"description":"Errors is a count of all error messages that were generated during\nexecution of the restore. The actual errors are stored in object storage.","type":"integer"},"failureReason":{"description":"FailureReason is an error that caused the entire restore to fail.","type":"string"},"hookStatus":{"description":"HookStatus contains information about the status of the hooks."},"phase":{"description":"Phase is the current state of the Restore","type":"string","enum":["New","FailedValidation","InProgress","WaitingForPluginOperations","WaitingForPluginOperationsPartiallyFailed","Completed","PartiallyFailed","Failed","Finalizing","FinalizingPartiallyFailed"]},"progress":{"description":"Progress contains information about the restore's execution progress. Note\nthat this information is best-effort only -- if Velero fails to update it\nduring a restore for any reason, it may be inaccurate/stale."},"restoreItemOperationsAttempted":{"description":"RestoreItemOperationsAttempted is the total number of attempted\nasync RestoreItemAction operations for this restore.","type":"integer"},"restoreItemOperationsCompleted":{"description":"RestoreItemOperationsCompleted is the total number of successfully completed\nasync RestoreItemAction operations for this restore.","type":"integer"},"restoreItemOperationsFailed":{"description":"RestoreItemOperationsFailed is the total number of async\nRestoreItemAction operations for this restore which ended with an error.","type":"integer"},"startTimestamp":{"description":"StartTimestamp records the time the restore operation was started.\nThe server's time is used for StartTimestamps","format":"date-time"},"validationErrors":{"description":"ValidationErrors is a slice of all validation errors (if\napplicable)"},"warnings":{"description":"Warnings is a count of all warning messages that were generated during\nexecution of the restore. The actual warnings are stored in object storage.","type":"integer"}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"Restore","version":"v1"}]},"io.velero.v1.RestoreList":{"description":"RestoreList is a list of Restore","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of restores. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.Restore"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"RestoreList","version":"v1"}]},"io.velero.v1.Schedule":{"description":"Schedule is a Velero resource that represents a pre-scheduled or\nperiodic Backup that should be run.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ScheduleSpec defines the specification for a Velero schedule","type":"object","required":["schedule","template"],"properties":{"paused":{"description":"Paused specifies whether the schedule is paused or not","type":"boolean"},"schedule":{"description":"Schedule is a Cron expression defining when to run\nthe Backup.","type":"string"},"skipImmediately":{"description":"SkipImmediately specifies whether to skip backup if schedule is due immediately from `schedule.status.lastBackup` timestamp when schedule is unpaused or if schedule is new.\nIf true, backup will be skipped immediately when schedule is unpaused if it is due based on .Status.LastBackupTimestamp or schedule is new, and will run at next schedule time.\nIf false, backup will not be skipped immediately when schedule is unpaused, but will run at next schedule time.\nIf empty, will follow server configuration (default: false).","type":"boolean"},"template":{"description":"Template is the definition of the Backup to be run\non the provided schedule","type":"object","properties":{"csiSnapshotTimeout":{"description":"CSISnapshotTimeout specifies the time used to wait for CSI VolumeSnapshot status turns to\nReadyToUse during creation, before returning error as timeout.\nThe default value is 10 minute.","type":"string"},"datamover":{"description":"DataMover specifies the data mover to be used by the backup.\nIf DataMover is \"\" or \"velero\", the built-in data mover will be used.","type":"string"},"defaultVolumesToFsBackup":{"description":"DefaultVolumesToFsBackup specifies whether pod volume file system backup should be used\nfor all volumes by default."},"defaultVolumesToRestic":{"description":"DefaultVolumesToRestic specifies whether restic should be used to take a\nbackup of all pod volumes by default.\n\nDeprecated: this field is no longer used and will be removed entirely in future. Use DefaultVolumesToFsBackup instead."},"excludedClusterScopedResources":{"description":"ExcludedClusterScopedResources is a slice of cluster-scoped\nresource type names to exclude from the backup.\nIf set to \"*\", all cluster-scoped resource types are excluded.\nThe default value is empty."},"excludedNamespaceScopedResources":{"description":"ExcludedNamespaceScopedResources is a slice of namespace-scoped\nresource type names to exclude from the backup.\nIf set to \"*\", all namespace-scoped resource types are excluded.\nThe default value is empty."},"excludedNamespaces":{"description":"ExcludedNamespaces contains a list of namespaces that are not\nincluded in the backup."},"excludedResources":{"description":"ExcludedResources is a slice of resource names that are not\nincluded in the backup."},"hooks":{"description":"Hooks represent custom behaviors that should be executed at different phases of the backup.","type":"object","properties":{"resources":{"description":"Resources are hooks that should be executed when backing up individual instances of a resource."}}},"includeClusterResources":{"description":"IncludeClusterResources specifies whether cluster-scoped resources\nshould be included for consideration in the backup."},"includedClusterScopedResources":{"description":"IncludedClusterScopedResources is a slice of cluster-scoped\nresource type names to include in the backup.\nIf set to \"*\", all cluster-scoped resource types are included.\nThe default value is empty, which means only related\ncluster-scoped resources are included."},"includedNamespaceScopedResources":{"description":"IncludedNamespaceScopedResources is a slice of namespace-scoped\nresource type names to include in the backup.\nThe default value is \"*\"."},"includedNamespaces":{"description":"IncludedNamespaces is a slice of namespace names to include objects\nfrom. If empty, all namespaces are included."},"includedResources":{"description":"IncludedResources is a slice of resource names to include\nin the backup. If empty, all resources are included."},"itemOperationTimeout":{"description":"ItemOperationTimeout specifies the time used to wait for asynchronous BackupItemAction operations\nThe default value is 4 hour.","type":"string"},"labelSelector":{"description":"LabelSelector is a metav1.LabelSelector to filter with\nwhen adding individual objects to the backup. If empty\nor nil, all objects are included. Optional.","x-kubernetes-map-type":"atomic"},"metadata":{"type":"object","properties":{"labels":{"type":"object","additionalProperties":{"type":"string"}}}},"orLabelSelectors":{"description":"OrLabelSelectors is list of metav1.LabelSelector to filter with\nwhen adding individual objects to the backup. If multiple provided\nthey will be joined by the OR operator. LabelSelector as well as\nOrLabelSelectors cannot co-exist in backup request, only one of them\ncan be used."},"orderedResources":{"description":"OrderedResources specifies the backup order of resources of specific Kind.\nThe map key is the resource name and value is a list of object names separated by commas.\nEach resource name has format \"namespace/objectname\".  For cluster resources, simply use \"objectname\".","additionalProperties":{"type":"string"}},"resourcePolicy":{"description":"ResourcePolicy specifies the referenced resource policies that backup should follow","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"snapshotMoveData":{"description":"SnapshotMoveData specifies whether snapshot data should be moved"},"snapshotVolumes":{"description":"SnapshotVolumes specifies whether to take snapshots\nof any PV's referenced in the set of objects included\nin the Backup."},"storageLocation":{"description":"StorageLocation is a string containing the name of a BackupStorageLocation where the backup should be stored.","type":"string"},"ttl":{"description":"TTL is a time.Duration-parseable string describing how long\nthe Backup should be retained for.","type":"string"},"uploaderConfig":{"description":"UploaderConfig specifies the configuration for the uploader."},"volumeSnapshotLocations":{"description":"VolumeSnapshotLocations is a list containing names of VolumeSnapshotLocations associated with this backup.","type":"array","items":{"type":"string"}}}},"useOwnerReferencesInBackup":{"description":"UseOwnerReferencesBackup specifies whether to use\nOwnerReferences on backups created by this Schedule."}}},"status":{"description":"ScheduleStatus captures the current state of a Velero schedule","type":"object","properties":{"lastBackup":{"description":"LastBackup is the last time a Backup was run for this\nSchedule schedule","format":"date-time"},"lastSkipped":{"description":"LastSkipped is the last time a Schedule was skipped","format":"date-time"},"phase":{"description":"Phase is the current phase of the Schedule","type":"string","enum":["New","Enabled","FailedValidation"]},"validationErrors":{"description":"ValidationErrors is a slice of all validation errors (if\napplicable)","type":"array","items":{"type":"string"}}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"Schedule","version":"v1"}]},"io.velero.v1.ScheduleList":{"description":"ScheduleList is a list of Schedule","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of schedules. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.Schedule"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"ScheduleList","version":"v1"}]},"io.velero.v1.ServerStatusRequest":{"description":"ServerStatusRequest is a request to access current status information about\nthe Velero server.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ServerStatusRequestSpec is the specification for a ServerStatusRequest.","type":"object"},"status":{"description":"ServerStatusRequestStatus is the current status of a ServerStatusRequest.","type":"object","properties":{"phase":{"description":"Phase is the current lifecycle phase of the ServerStatusRequest.","type":"string","enum":["New","Processed"]},"plugins":{"description":"Plugins list information about the plugins running on the Velero server"},"processedTimestamp":{"description":"ProcessedTimestamp is when the ServerStatusRequest was processed\nby the ServerStatusRequestController.","format":"date-time"},"serverVersion":{"description":"ServerVersion is the Velero server version.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"ServerStatusRequest","version":"v1"}]},"io.velero.v1.ServerStatusRequestList":{"description":"ServerStatusRequestList is a list of ServerStatusRequest","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of serverstatusrequests. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.ServerStatusRequest"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"ServerStatusRequestList","version":"v1"}]},"io.velero.v1.VolumeSnapshotLocation":{"description":"VolumeSnapshotLocation is a location where Velero stores volume snapshots.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"VolumeSnapshotLocationSpec defines the specification for a Velero VolumeSnapshotLocation.","type":"object","required":["provider"],"properties":{"config":{"description":"Config is for provider-specific configuration fields.","type":"object","additionalProperties":{"type":"string"}},"credential":{"description":"Credential contains the credential information intended to be used with this location","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"provider":{"description":"Provider is the provider of the volume storage.","type":"string"}}},"status":{"description":"VolumeSnapshotLocationStatus describes the current status of a Velero VolumeSnapshotLocation.","type":"object","properties":{"phase":{"description":"VolumeSnapshotLocationPhase is the lifecycle phase of a Velero VolumeSnapshotLocation.","type":"string","enum":["Available","Unavailable"]}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"VolumeSnapshotLocation","version":"v1"}]},"io.velero.v1.VolumeSnapshotLocationList":{"description":"VolumeSnapshotLocationList is a list of VolumeSnapshotLocation","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of volumesnapshotlocations. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v1.VolumeSnapshotLocation"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"VolumeSnapshotLocationList","version":"v1"}]},"io.velero.v2alpha1.DataDownload":{"description":"DataDownload acts as the protocol between data mover plugins and data mover controller for the datamover restore operation","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DataDownloadSpec is the specification for a DataDownload.","type":"object","required":["backupStorageLocation","operationTimeout","snapshotID","sourceNamespace","targetVolume"],"properties":{"backupStorageLocation":{"description":"BackupStorageLocation is the name of the backup storage location\nwhere the backup repository is stored.","type":"string"},"cancel":{"description":"Cancel indicates request to cancel the ongoing DataDownload. It can be set\nwhen the DataDownload is in InProgress phase","type":"boolean"},"dataMoverConfig":{"description":"DataMoverConfig is for data-mover-specific configuration fields.","type":"object","additionalProperties":{"type":"string"}},"datamover":{"description":"DataMover specifies the data mover to be used by the backup.\nIf DataMover is \"\" or \"velero\", the built-in data mover will be used.","type":"string"},"nodeOS":{"description":"NodeOS is OS of the node where the DataDownload is processed.","type":"string","enum":["auto","linux","windows"]},"operationTimeout":{"description":"OperationTimeout specifies the time used to wait internal operations,\nbefore returning error as timeout.","type":"string"},"snapshotID":{"description":"SnapshotID is the ID of the Velero backup snapshot to be restored from.","type":"string"},"sourceNamespace":{"description":"SourceNamespace is the original namespace where the volume is backed up from.\nIt may be different from SourcePVC's namespace if namespace is remapped during restore.","type":"string"},"targetVolume":{"description":"TargetVolume is the information of the target PVC and PV.","type":"object","required":["namespace","pv","pvc"],"properties":{"namespace":{"description":"Namespace is the target namespace","type":"string"},"pv":{"description":"PV is the name of the target PV that is created by Velero restore","type":"string"},"pvc":{"description":"PVC is the name of the target PVC that is created by Velero restore","type":"string"}}}}},"status":{"description":"DataDownloadStatus is the current status of a DataDownload.","type":"object","properties":{"acceptedByNode":{"description":"Node is name of the node where the DataUpload is prepared.","type":"string"},"acceptedTimestamp":{"description":"AcceptedTimestamp records the time the DataUpload is to be prepared.\nThe server's time is used for AcceptedTimestamp","format":"date-time"},"completionTimestamp":{"description":"CompletionTimestamp records the time a restore was completed.\nCompletion time is recorded even on failed restores.\nThe server's time is used for CompletionTimestamps","format":"date-time"},"message":{"description":"Message is a message about the DataDownload's status.","type":"string"},"node":{"description":"Node is name of the node where the DataDownload is processed.","type":"string"},"phase":{"description":"Phase is the current state of the DataDownload.","type":"string","enum":["New","Accepted","Prepared","InProgress","Canceling","Canceled","Completed","Failed"]},"progress":{"description":"Progress holds the total number of bytes of the snapshot and the current\nnumber of restored bytes. This can be used to display progress information\nabout the restore operation.","type":"object","properties":{"bytesDone":{"type":"integer","format":"int64"},"totalBytes":{"type":"integer","format":"int64"}}},"startTimestamp":{"description":"StartTimestamp records the time a restore was started.\nThe server's time is used for StartTimestamps","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DataDownload","version":"v2alpha1"}]},"io.velero.v2alpha1.DataDownloadList":{"description":"DataDownloadList is a list of DataDownload","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of datadownloads. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v2alpha1.DataDownload"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DataDownloadList","version":"v2alpha1"}]},"io.velero.v2alpha1.DataUpload":{"description":"DataUpload acts as the protocol between data mover plugins and data mover controller for the datamover backup operation","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"DataUploadSpec is the specification for a DataUpload.","type":"object","required":["backupStorageLocation","operationTimeout","snapshotType","sourceNamespace","sourcePVC"],"properties":{"backupStorageLocation":{"description":"BackupStorageLocation is the name of the backup storage location\nwhere the backup repository is stored.","type":"string"},"cancel":{"description":"Cancel indicates request to cancel the ongoing DataUpload. It can be set\nwhen the DataUpload is in InProgress phase","type":"boolean"},"csiSnapshot":{"description":"If SnapshotType is CSI, CSISnapshot provides the information of the CSI snapshot.","required":["storageClass","volumeSnapshot"]},"dataMoverConfig":{"description":"DataMoverConfig is for data-mover-specific configuration fields.","additionalProperties":{"type":"string"}},"datamover":{"description":"DataMover specifies the data mover to be used by the backup.\nIf DataMover is \"\" or \"velero\", the built-in data mover will be used.","type":"string"},"operationTimeout":{"description":"OperationTimeout specifies the time used to wait internal operations,\nbefore returning error as timeout.","type":"string"},"snapshotType":{"description":"SnapshotType is the type of the snapshot to be backed up.","type":"string"},"sourceNamespace":{"description":"SourceNamespace is the original namespace where the volume is backed up from.\nIt is the same namespace for SourcePVC and CSI namespaced objects.","type":"string"},"sourcePVC":{"description":"SourcePVC is the name of the PVC which the snapshot is taken for.","type":"string"}}},"status":{"description":"DataUploadStatus is the current status of a DataUpload.","type":"object","properties":{"acceptedByNode":{"description":"AcceptedByNode is name of the node where the DataUpload is prepared.","type":"string"},"acceptedTimestamp":{"description":"AcceptedTimestamp records the time the DataUpload is to be prepared.\nThe server's time is used for AcceptedTimestamp","format":"date-time"},"completionTimestamp":{"description":"CompletionTimestamp records the time a backup was completed.\nCompletion time is recorded even on failed backups.\nCompletion time is recorded before uploading the backup object.\nThe server's time is used for CompletionTimestamps","format":"date-time"},"dataMoverResult":{"description":"DataMoverResult stores data-mover-specific information as a result of the DataUpload.","additionalProperties":{"type":"string"}},"message":{"description":"Message is a message about the DataUpload's status.","type":"string"},"node":{"description":"Node is name of the node where the DataUpload is processed.","type":"string"},"nodeOS":{"description":"NodeOS is OS of the node where the DataUpload is processed.","type":"string","enum":["auto","linux","windows"]},"path":{"description":"Path is the full path of the snapshot volume being backed up.","type":"string"},"phase":{"description":"Phase is the current state of the DataUpload.","type":"string","enum":["New","Accepted","Prepared","InProgress","Canceling","Canceled","Completed","Failed"]},"progress":{"description":"Progress holds the total number of bytes of the volume and the current\nnumber of backed up bytes. This can be used to display progress information\nabout the backup operation.","type":"object","properties":{"bytesDone":{"type":"integer","format":"int64"},"totalBytes":{"type":"integer","format":"int64"}}},"snapshotID":{"description":"SnapshotID is the identifier for the snapshot in the backup repository.","type":"string"},"startTimestamp":{"description":"StartTimestamp records the time a backup was started.\nSeparate from CreationTimestamp, since that value changes\non restores.\nThe server's time is used for StartTimestamps","format":"date-time"}}}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DataUpload","version":"v2alpha1"}]},"io.velero.v2alpha1.DataUploadList":{"description":"DataUploadList is a list of DataUpload","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of datauploads. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.velero.v2alpha1.DataUpload"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"velero.io","kind":"DataUploadList","version":"v2alpha1"}]},"io.wgpolicyk8s.v1alpha2.ClusterPolicyReport":{"description":"ClusterPolicyReport is the Schema for the clusterpolicyreports API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"results":{"description":"PolicyReportResult provides result details","type":"array","items":{"description":"PolicyReportResult provides the result for an individual policy","type":"object","required":["policy"],"properties":{"category":{"description":"Category indicates policy category","type":"string"},"message":{"description":"Description is a short user friendly message for the policy rule","type":"string"},"policy":{"description":"Policy is the name or identifier of the policy","type":"string"},"properties":{"description":"Properties provides additional information for the policy rule","type":"object","additionalProperties":{"type":"string"}},"resourceSelector":{"description":"SubjectSelector is an optional label selector for checked Kubernetes resources.\nFor example, a policy result may apply to all pods that match a label.\nEither a Subject or a SubjectSelector can be specified.\nIf neither are provided, the result is assumed to be for the policy report scope.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resources":{"description":"Subjects is an optional reference to the checked Kubernetes resources","type":"array","items":{"description":"ObjectReference contains enough information to let you inspect or modify the referred object.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}},"result":{"description":"Result indicates the outcome of the policy rule execution","type":"string","enum":["pass","fail","warn","error","skip"]},"rule":{"description":"Rule is the name or identifier of the rule within the policy","type":"string"},"scored":{"description":"Scored indicates if this result is scored","type":"boolean"},"severity":{"description":"Severity indicates policy check result criticality","type":"string","enum":["critical","high","low","medium","info"]},"source":{"description":"Source is an identifier for the policy engine that manages this report","type":"string"},"timestamp":{"description":"Timestamp indicates the time the result was found","type":"object","required":["nanos","seconds"],"properties":{"nanos":{"description":"Non-negative fractions of a second at nanosecond resolution. Negative\nsecond values with fractions must still have non-negative nanos values\nthat count forward in time. Must be from 0 to 999,999,999\ninclusive. This field may be limited in precision depending on context.","type":"integer","format":"int32"},"seconds":{"description":"Represents seconds of UTC time since Unix epoch\n1970-01-01T00:00:00Z. Must be from 0001-01-01T00:00:00Z to\n9999-12-31T23:59:59Z inclusive.","type":"integer","format":"int64"}}}}}},"scope":{"description":"Scope is an optional reference to the report scope (e.g. a Deployment, Namespace, or Node)","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"scopeSelector":{"description":"ScopeSelector is an optional selector for multiple scopes (e.g. Pods).\nEither one of, or none of, but not both of, Scope or ScopeSelector should be specified.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"summary":{"description":"PolicyReportSummary provides a summary of results","type":"object","properties":{"error":{"description":"Error provides the count of policies that could not be evaluated","type":"integer"},"fail":{"description":"Fail provides the count of policies whose requirements were not met","type":"integer"},"pass":{"description":"Pass provides the count of policies whose requirements were met","type":"integer"},"skip":{"description":"Skip indicates the count of policies that were not selected for evaluation","type":"integer"},"warn":{"description":"Warn provides the count of non-scored policies whose requirements were not met","type":"integer"}}}},"x-kubernetes-group-version-kind":[{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReport","version":"v1alpha2"}]},"io.wgpolicyk8s.v1alpha2.ClusterPolicyReportList":{"description":"ClusterPolicyReportList is a list of ClusterPolicyReport","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterpolicyreports. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.ClusterPolicyReport"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"wgpolicyk8s.io","kind":"ClusterPolicyReportList","version":"v1alpha2"}]},"io.wgpolicyk8s.v1alpha2.PolicyReport":{"description":"PolicyReport is the Schema for the policyreports API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"results":{"description":"PolicyReportResult provides result details","type":"array","items":{"description":"PolicyReportResult provides the result for an individual policy","type":"object","required":["policy"],"properties":{"category":{"description":"Category indicates policy category","type":"string"},"message":{"description":"Description is a short user friendly message for the policy rule","type":"string"},"policy":{"description":"Policy is the name or identifier of the policy","type":"string"},"properties":{"description":"Properties provides additional information for the policy rule","type":"object","additionalProperties":{"type":"string"}},"resourceSelector":{"description":"SubjectSelector is an optional label selector for checked Kubernetes resources.\nFor example, a policy result may apply to all pods that match a label.\nEither a Subject or a SubjectSelector can be specified.\nIf neither are provided, the result is assumed to be for the policy report scope.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"resources":{"description":"Subjects is an optional reference to the checked Kubernetes resources","type":"array","items":{"description":"ObjectReference contains enough information to let you inspect or modify the referred object.","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"}},"result":{"description":"Result indicates the outcome of the policy rule execution","type":"string","enum":["pass","fail","warn","error","skip"]},"rule":{"description":"Rule is the name or identifier of the rule within the policy","type":"string"},"scored":{"description":"Scored indicates if this result is scored","type":"boolean"},"severity":{"description":"Severity indicates policy check result criticality","type":"string","enum":["critical","high","low","medium","info"]},"source":{"description":"Source is an identifier for the policy engine that manages this report","type":"string"},"timestamp":{"description":"Timestamp indicates the time the result was found","type":"object","required":["nanos","seconds"],"properties":{"nanos":{"description":"Non-negative fractions of a second at nanosecond resolution. Negative\nsecond values with fractions must still have non-negative nanos values\nthat count forward in time. Must be from 0 to 999,999,999\ninclusive. This field may be limited in precision depending on context.","type":"integer","format":"int32"},"seconds":{"description":"Represents seconds of UTC time since Unix epoch\n1970-01-01T00:00:00Z. Must be from 0001-01-01T00:00:00Z to\n9999-12-31T23:59:59Z inclusive.","type":"integer","format":"int64"}}}}}},"scope":{"description":"Scope is an optional reference to the report scope (e.g. a Deployment, Namespace, or Node)","type":"object","properties":{"apiVersion":{"description":"API version of the referent.","type":"string"},"fieldPath":{"description":"If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.","type":"string"},"kind":{"description":"Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"name":{"description":"Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"namespace":{"description":"Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/","type":"string"},"resourceVersion":{"description":"Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency","type":"string"},"uid":{"description":"UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids","type":"string"}},"x-kubernetes-map-type":"atomic"},"scopeSelector":{"description":"ScopeSelector is an optional selector for multiple scopes (e.g. Pods).\nEither one of, or none of, but not both of, Scope or ScopeSelector should be specified.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"summary":{"description":"PolicyReportSummary provides a summary of results","type":"object","properties":{"error":{"description":"Error provides the count of policies that could not be evaluated","type":"integer"},"fail":{"description":"Fail provides the count of policies whose requirements were not met","type":"integer"},"pass":{"description":"Pass provides the count of policies whose requirements were met","type":"integer"},"skip":{"description":"Skip indicates the count of policies that were not selected for evaluation","type":"integer"},"warn":{"description":"Warn provides the count of non-scored policies whose requirements were not met","type":"integer"}}}},"x-kubernetes-group-version-kind":[{"group":"wgpolicyk8s.io","kind":"PolicyReport","version":"v1alpha2"}]},"io.wgpolicyk8s.v1alpha2.PolicyReportList":{"description":"PolicyReportList is a list of PolicyReport","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of policyreports. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.wgpolicyk8s.v1alpha2.PolicyReport"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"wgpolicyk8s.io","kind":"PolicyReportList","version":"v1alpha2"}]},"io.x-k8s.kueue.v1beta1.AdmissionCheck":{"description":"AdmissionCheck is the Schema for the admissionchecks API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the AdmissionCheck.","type":"object","required":["controllerName"],"properties":{"controllerName":{"description":"controllerName identifies the controller that processes the AdmissionCheck,\nnot necessarily a Kubernetes Pod or Deployment name. Cannot be empty.","type":"string","x-kubernetes-validations":[{"message":"field is immutable","rule":"self == oldSelf"}]},"parameters":{"description":"parameters identifies a configuration with additional parameters for the\ncheck.","type":"object","required":["apiGroup","kind","name"],"properties":{"apiGroup":{"description":"apiGroup is the group for the resource being referenced.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"kind":{"description":"kind is the type of the resource being referenced.","type":"string","maxLength":63,"pattern":"^(?i)[a-z]([-a-z0-9]*[a-z0-9])?$"},"name":{"description":"name is the name of the resource being referenced.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"retryDelayMinutes":{"description":"retryDelayMinutes specifies how long to keep the workload suspended after\na failed check (after it transitioned to False). When the delay period has passed, the check\nstate goes to \"Unknown\". The default is 15 min.\n\nDeprecated: retryDelayMinutes has already been deprecated since v0.8 and will be removed in v1beta2.","type":"integer","format":"int64"}}},"status":{"description":"status is the status of the AdmissionCheck.","type":"object","properties":{"conditions":{"description":"conditions hold the latest available observations of the AdmissionCheck\ncurrent state.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.AdmissionCheckList":{"description":"AdmissionCheckList is a list of AdmissionCheck","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of admissionchecks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.AdmissionCheck"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"AdmissionCheckList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.ClusterQueue":{"description":"ClusterQueue is the Schema for the clusterQueue API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the ClusterQueue.","type":"object","properties":{"admissionChecks":{"description":"admissionChecks lists the AdmissionChecks required by this ClusterQueue.\nCannot be used along with AdmissionCheckStrategy.","type":"array","items":{"description":"AdmissionCheckReference is the name of an AdmissionCheck.","type":"string","maxLength":316}},"admissionChecksStrategy":{"description":"admissionChecksStrategy defines a list of strategies to determine which ResourceFlavors require AdmissionChecks.\nThis property cannot be used in conjunction with the 'admissionChecks' property.","type":"object","properties":{"admissionChecks":{"description":"admissionChecks is a list of strategies for AdmissionChecks","type":"array","items":{"description":"AdmissionCheckStrategyRule defines rules for a single AdmissionCheck","type":"object","required":["name"],"properties":{"name":{"description":"name is an AdmissionCheck's name.","type":"string","maxLength":316},"onFlavors":{"description":"onFlavors is a list of ResourceFlavors' names that this AdmissionCheck should run for.\nIf empty, the AdmissionCheck will run for all workloads submitted to the ClusterQueue.","type":"array","items":{"description":"ResourceFlavorReference is the name of the ResourceFlavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}}}}}}},"admissionScope":{"description":"admissionScope indicates whether ClusterQueue uses the Admission Fair Sharing","type":"object","required":["admissionMode"],"properties":{"admissionMode":{"description":"admissionMode indicates which mode for AdmissionFairSharing should be used\nin the AdmissionScope. Possible values are:\n- UsageBasedAdmissionFairSharing\n- NoAdmissionFairSharing","type":"string"}}},"cohort":{"description":"cohort that this ClusterQueue belongs to. CQs that belong to the\nsame cohort can borrow unused resources from each other.\n\nA CQ can be a member of a single borrowing cohort. A workload submitted\nto a queue referencing this CQ can borrow quota from any CQ in the cohort.\nOnly quota for the [resource, flavor] pairs listed in the CQ can be\nborrowed.\nIf empty, this ClusterQueue cannot borrow from any other ClusterQueue and\nvice versa.\n\nA cohort is a name that links CQs together, but it doesn't reference any\nobject.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"fairSharing":{"description":"fairSharing defines the properties of the ClusterQueue when\nparticipating in FairSharing.  The values are only relevant\nif FairSharing is enabled in the Kueue configuration.","type":"object","properties":{"weight":{"description":"weight gives a comparative advantage to this ClusterQueue\nor Cohort when competing for unused resources in the\nCohort.  The share is based on the dominant resource usage\nabove nominal quotas for each resource, divided by the\nweight.  Admission prioritizes scheduling workloads from\nClusterQueues and Cohorts with the lowest share and\npreempting workloads from the ClusterQueues and Cohorts\nwith the highest share.  A zero weight implies infinite\nshare value, meaning that this Node will always be at\ndisadvantage against other ClusterQueues and Cohorts.\nWhen not 0, Weight must be greater than 10^-9.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"flavorFungibility":{"description":"flavorFungibility defines whether a workload should try the next flavor\nbefore borrowing or preempting in the flavor being evaluated.","type":"object","properties":{"preference":{"description":"preference guides the choosing of the flavor for admission in case all candidate flavors\nrequire either preemption, borrowing, or both. The possible values are:\n- `BorrowingOverPreemption` (default): prefer to use borrowing rather than preemption\nwhen such a choice is possible. More technically it minimizes the borrowing distance\nin the cohort tree, and solves tie-breaks by preferring better preemption mode\n(reclaim over preemption within ClusterQueue).\n- `PreemptionOverBorrowing`: prefer to use preemption rather than borrowing\nwhen such a choice is possible.  More technically it optimizes the preemption mode\n(reclaim over preemption within ClusterQueue), and solves tie-breaks by minimizing\nthe borrowing distance in the cohort tree.","type":"string","enum":["BorrowingOverPreemption","PreemptionOverBorrowing"]},"whenCanBorrow":{"description":"whenCanBorrow determines whether a workload should try the next flavor\nbefore borrowing in current flavor. The possible values are:\n\n- `MayStopSearch` (default): stop the search for candidate flavors if workload\n  fits or requires borrowing to fit.\n- `TryNextFlavor`: try next flavor if workload requires borrowing to fit.\n- `Borrow` (deprecated): old name for `MayStopSearch`; please use new name.","type":"string","enum":["MayStopSearch","TryNextFlavor","Borrow"]},"whenCanPreempt":{"description":"whenCanPreempt determines whether a workload should try the next flavor\nbefore preempting in current flavor. The possible values are:\n\n- `MayStopSearch`: stop the search for candidate flavors if workload fits or requires\n  preemption to fit.\n- `TryNextFlavor` (default): try next flavor if workload requires preemption\n  to fit in current flavor.\n- `Preempt` (deprecated): old name for `MayStopSearch`; please use new name.","type":"string","enum":["MayStopSearch","TryNextFlavor","Preempt"]}},"x-kubernetes-validations":[{"message":"preference can only be set when both whenCanBorrow and whenCanPreempt are TryNextFlavor","rule":"!has(self.preference) || (self.whenCanBorrow == 'TryNextFlavor' && self.whenCanPreempt == 'TryNextFlavor')"}]},"namespaceSelector":{"description":"namespaceSelector defines which namespaces are allowed to submit workloads to\nthis clusterQueue. Beyond this basic support for policy, a policy agent like\nGatekeeper should be used to enforce more advanced policies.\nDefaults to null which is a nothing selector (no namespaces eligible).\nIf set to an empty selector `{}`, then all namespaces are eligible.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"preemption":{"description":"preemption defines the preemption policies.","type":"object","properties":{"borrowWithinCohort":{"description":"borrowWithinCohort determines whether a pending Workload can preempt\nWorkloads from other ClusterQueues in the cohort if the workload requires borrowing.\nMay only be configured with Classical Preemption, and __not__ with Fair Sharing.","type":"object","properties":{"maxPriorityThreshold":{"description":"maxPriorityThreshold allows to restrict the set of workloads which\nmight be preempted by a borrowing workload, to only workloads with\npriority less than or equal to the specified threshold priority.\nWhen the threshold is not specified, then any workload satisfying the\npolicy can be preempted by the borrowing workload.","type":"integer","format":"int32"},"policy":{"description":"policy determines the policy for preemption to reclaim quota within cohort while borrowing.\nPossible values are:\n- `Never` (default): do not allow for preemption, in other\n   ClusterQueues within the cohort, for a borrowing workload.\n- `LowerPriority`: allow preemption, in other ClusterQueues\n   within the cohort, for a borrowing workload, but only if\n   the preempted workloads are of lower priority.","type":"string","enum":["Never","LowerPriority"]}}},"reclaimWithinCohort":{"description":"reclaimWithinCohort determines whether a pending Workload can preempt\nWorkloads from other ClusterQueues in the cohort that are using more than\ntheir nominal quota. The possible values are:\n\n- `Never` (default): do not preempt Workloads in the cohort.\n- `LowerPriority`: **Classic Preemption** if the pending Workload\n  fits within the nominal quota of its ClusterQueue, only preempt\n  Workloads in the cohort that have lower priority than the pending\n  Workload. **Fair Sharing** only preempt Workloads in the cohort that\n  have lower priority than the pending Workload and that satisfy the\n  Fair Sharing preemptionStategies.\n- `Any`: **Classic Preemption** if the pending Workload fits within\n   the nominal quota of its ClusterQueue, preempt any Workload in the\n   cohort, irrespective of priority. **Fair Sharing** preempt Workloads\n   in the cohort that satisfy the Fair Sharing preemptionStrategies.","type":"string","enum":["Never","LowerPriority","Any"]},"withinClusterQueue":{"description":"withinClusterQueue determines whether a pending Workload that doesn't fit\nwithin the nominal quota for its ClusterQueue, can preempt active Workloads in\nthe ClusterQueue. The possible values are:\n\n- `Never` (default): do not preempt Workloads in the ClusterQueue.\n- `LowerPriority`: only preempt Workloads in the ClusterQueue that have\n  lower priority than the pending Workload.\n- `LowerOrNewerEqualPriority`: only preempt Workloads in the ClusterQueue that\n  either have a lower priority than the pending workload or equal priority\n  and are newer than the pending workload.","type":"string","enum":["Never","LowerPriority","LowerOrNewerEqualPriority"]}},"x-kubernetes-validations":[{"message":"reclaimWithinCohort=Never and borrowWithinCohort.Policy!=Never","rule":"!(self.reclaimWithinCohort == 'Never' && has(self.borrowWithinCohort) &&  self.borrowWithinCohort.policy != 'Never')"}]},"queueingStrategy":{"description":"queueingStrategy indicates the queueing strategy of the workloads\nacross the queues in this ClusterQueue.\nCurrent Supported Strategies:\n\n- StrictFIFO: workloads are ordered strictly by creation time.\nOlder workloads that can't be admitted will block admitting newer\nworkloads even if they fit available quota.\n- BestEffortFIFO: workloads are ordered by creation time,\nhowever older workloads that can't be admitted will not block\nadmitting newer workloads that fit existing quota.","type":"string","enum":["StrictFIFO","BestEffortFIFO"]},"resourceGroups":{"description":"resourceGroups describes groups of resources.\nEach resource group defines the list of resources and a list of flavors\nthat provide quotas for these resources.\nEach resource and each flavor can only form part of one resource group.\nresourceGroups can be up to 16, with a max of 256 total flavors across all groups.","type":"array","maxItems":16,"items":{"type":"object","required":["coveredResources","flavors"],"properties":{"coveredResources":{"description":"coveredResources is the list of resources covered by the flavors in this\ngroup.\nExamples: cpu, memory, vendor.com/gpu.\nThe list cannot be empty and it can contain up to 64 resources. With a total\nof up to 256 covered resources across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"description":"ResourceName is the name identifying various resources in a ResourceList.","type":"string"}},"flavors":{"description":"flavors is the list of flavors that provide the resources of this group.\nTypically, different flavors represent different hardware models\n(e.g., gpu models, cpu architectures) or pricing models (on-demand vs spot\ncpus).\nEach flavor MUST list all the resources listed for this group in the same\norder as the .resources field.\nThe list cannot be empty and it can contain up to 64 flavors, with a max of\n256 total flavors across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of this flavor. The name should match the .metadata.name of a\nResourceFlavor. If a matching ResourceFlavor does not exist, the\nClusterQueue will have an Active condition set to False.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources is the list of quotas for this flavor per resource.\nThere could be up to 64 resources.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","nominalQuota"],"properties":{"borrowingLimit":{"description":"borrowingLimit is the maximum amount of quota for the [flavor, resource]\ncombination that this ClusterQueue is allowed to borrow from the unused\nquota of other ClusterQueues in the same cohort.\nIn total, at a given time, Workloads in a ClusterQueue can consume a\nquantity of quota equal to nominalQuota+borrowingLimit, assuming the other\nClusterQueues in the cohort have enough unused quota.\nIf null, it means that there is no borrowing limit.\nIf not null, it must be non-negative.\nborrowingLimit must be null if spec.cohort is empty.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"lendingLimit":{"description":"lendingLimit is the maximum amount of unused quota for the [flavor, resource]\ncombination that this ClusterQueue can lend to other ClusterQueues in the same cohort.\nIn total, at a given time, ClusterQueue reserves for its exclusive use\na quantity of quota equals to nominalQuota - lendingLimit.\nIf null, it means that there is no lending limit, meaning that\nall the nominalQuota can be borrowed by other clusterQueues in the cohort.\nIf not null, it must be non-negative.\nlendingLimit must be null if spec.cohort is empty.\nThis field is in beta stage and is enabled by default.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of this resource.","type":"string"},"nominalQuota":{"description":"nominalQuota is the quantity of this resource that is available for\nWorkloads admitted by this ClusterQueue at a point in time.\nThe nominalQuota must be non-negative.\nnominalQuota should represent the resources in the cluster available for\nrunning jobs (after discounting resources consumed by system components\nand pods not managed by kueue). In an autoscaled cluster, nominalQuota\nshould account for resources that can be provided by a component such as\nKubernetes cluster-autoscaler.\n\nIf the ClusterQueue belongs to a cohort, the sum of the quotas for each\n(flavor, resource) combination defines the maximum quantity that can be\nallocated by a ClusterQueue in the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}},"x-kubernetes-validations":[{"message":"flavors must have the same number of resources as the coveredResources","rule":"self.flavors.all(x, size(x.resources) == size(self.coveredResources))"}]},"x-kubernetes-list-type":"atomic"},"stopPolicy":{"description":"stopPolicy - if set to a value different from None, the ClusterQueue is considered Inactive, no new reservation being\nmade.\n\nDepending on its value, its associated workloads will:\n\n- None - Workloads are admitted\n- HoldAndDrain - Admitted workloads are evicted and Reserving workloads will cancel the reservation.\n- Hold - Admitted workloads will run to completion and Reserving workloads will cancel the reservation.","type":"string","enum":["None","Hold","HoldAndDrain"]}},"x-kubernetes-validations":[{"message":"borrowingLimit must be nil when cohort is empty","rule":"!has(self.cohort) && has(self.resourceGroups) ? self.resourceGroups.all(rg, rg.flavors.all(f, f.resources.all(r, !has(r.borrowingLimit)))) : true"}]},"status":{"description":"status is the status of the ClusterQueue.","type":"object","properties":{"admittedWorkloads":{"description":"admittedWorkloads is the number of workloads currently admitted to this\nclusterQueue and haven't finished yet.","type":"integer","format":"int32"},"conditions":{"description":"conditions hold the latest available observations of the ClusterQueue\ncurrent state.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"fairSharing":{"description":"fairSharing contains the current state for this ClusterQueue\nwhen participating in Fair Sharing.\nThis is recorded only when Fair Sharing is enabled in the Kueue configuration.","type":"object","required":["weightedShare"],"properties":{"admissionFairSharingStatus":{"description":"admissionFairSharingStatus represents information relevant to the Admission Fair Sharing","type":"object","required":["consumedResources","lastUpdate"],"properties":{"consumedResources":{"description":"consumedResources represents the aggregated usage of resources over time,\nwith decaying function applied.\nThe value is populated if usage consumption functionality is enabled in Kueue config.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"lastUpdate":{"description":"lastUpdate is the time when share and consumed resources were updated.","type":"string","format":"date-time"}}},"weightedShare":{"description":"weightedShare represents the maximum of the ratios of usage\nabove nominal quota to the lendable resources in the\nCohort, among all the resources provided by the Node, and\ndivided by the weight.  If zero, it means that the usage of\nthe Node is below the nominal quota.  If the Node has a\nweight of zero and is borrowing, this will return\n9223372036854775807, the maximum possible share value.","type":"integer","format":"int64"}}},"flavorsReservation":{"description":"flavorsReservation are the reserved quotas, by flavor, currently in use by the\nworkloads assigned to this ClusterQueue.","type":"array","maxItems":64,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":64,"items":{"type":"object","required":["name"],"properties":{"borrowed":{"description":"borrowed is quantity of quota that is borrowed from the cohort. In other\nwords, it's the used quota that is over the nominalQuota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of the resource","type":"string"},"total":{"description":"total is the total quantity of used quota, including the amount borrowed\nfrom the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"flavorsUsage":{"description":"flavorsUsage are the used quotas, by flavor, currently in use by the\nworkloads admitted in this ClusterQueue.","type":"array","maxItems":64,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":64,"items":{"type":"object","required":["name"],"properties":{"borrowed":{"description":"borrowed is quantity of quota that is borrowed from the cohort. In other\nwords, it's the used quota that is over the nominalQuota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of the resource","type":"string"},"total":{"description":"total is the total quantity of used quota, including the amount borrowed\nfrom the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"pendingWorkloads":{"description":"pendingWorkloads is the number of workloads currently waiting to be\nadmitted to this clusterQueue.","type":"integer","format":"int32"},"pendingWorkloadsStatus":{"description":"pendingWorkloadsStatus contains the information exposed about the current\nstatus of the pending workloads in the cluster queue.\n\nDeprecated: This field is no longer effective since v0.14.0, which means Kueue no longer stores and updates information.\nYou can migrate to VisibilityOnDemand\n(https://kueue.sigs.k8s.io/docs/tasks/manage/monitor_pending_workloads/pending_workloads_on_demand/)\ninstead.","type":"object","required":["lastChangeTime"],"properties":{"clusterQueuePendingWorkload":{"description":"clusterQueuePendingWorkload contains the list of top pending workloads.","type":"array","items":{"description":"ClusterQueuePendingWorkload contains the information identifying a pending workload\nin the cluster queue.","type":"object","required":["name","namespace"],"properties":{"name":{"description":"name indicates the name of the pending workload.","type":"string"},"namespace":{"description":"namespace indicates the name of the pending workload.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"lastChangeTime":{"description":"lastChangeTime indicates the time of the last change of the structure.","type":"string","format":"date-time"}}},"reservingWorkloads":{"description":"reservingWorkloads is the number of workloads currently reserving quota in this\nclusterQueue.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.ClusterQueueList":{"description":"ClusterQueueList is a list of ClusterQueue","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterqueues. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ClusterQueue"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ClusterQueueList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.Cohort":{"description":"Cohort defines the Cohorts API.\n\nHierarchical Cohorts (any Cohort which has a parent) are compatible\nwith Fair Sharing as of v0.11. Using these features together in\nV0.9 and V0.10 is unsupported, and results in undefined behavior.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the Cohort.","type":"object","properties":{"fairSharing":{"description":"fairSharing defines the properties of the Cohort when\nparticipating in FairSharing. The values are only relevant\nif FairSharing is enabled in the Kueue configuration.","type":"object","properties":{"weight":{"description":"weight gives a comparative advantage to this ClusterQueue\nor Cohort when competing for unused resources in the\nCohort.  The share is based on the dominant resource usage\nabove nominal quotas for each resource, divided by the\nweight.  Admission prioritizes scheduling workloads from\nClusterQueues and Cohorts with the lowest share and\npreempting workloads from the ClusterQueues and Cohorts\nwith the highest share.  A zero weight implies infinite\nshare value, meaning that this Node will always be at\ndisadvantage against other ClusterQueues and Cohorts.\nWhen not 0, Weight must be greater than 10^-9.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"parentName":{"description":"parentName references the name of the Cohort's parent, if\nany. It satisfies one of three cases:\n1) Unset. This Cohort is the root of its Cohort tree.\n2) References a non-existent Cohort. We use default Cohort (no borrowing/lending limits).\n3) References an existent Cohort.\n\nIf a cycle is created, we disable all members of the\nCohort, including ClusterQueues, until the cycle is\nremoved.  We prevent further admission while the cycle\nexists.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resourceGroups":{"description":"resourceGroups describes groupings of Resources and\nFlavors.  Each ResourceGroup defines a list of Resources\nand a list of Flavors which provide quotas for these\nResources. Each Resource and each Flavor may only form part\nof one ResourceGroup.  There may be up to 16 ResourceGroups\nwithin a Cohort.\n\nPlease note that nominalQuota defined at the Cohort level\nrepresents additional resources on top of those defined by\nClusterQueues within the Cohort. The Cohort's nominalQuota\nmay be thought of as a shared pool for the ClusterQueues\nwithin it. Additionally, this quota may also be lent out to\nparent Cohort(s), subject to LendingLimit.\n\nBorrowingLimit limits how much members of this Cohort\nsubtree can borrow from the parent subtree.\n\nLendingLimit limits how much members of this Cohort subtree\ncan lend to the parent subtree.\n\nBorrowing and Lending limits must only be set when the\nCohort has a parent.  Otherwise, the Cohort create/update\nwill be rejected by the webhook.","type":"array","maxItems":16,"items":{"type":"object","required":["coveredResources","flavors"],"properties":{"coveredResources":{"description":"coveredResources is the list of resources covered by the flavors in this\ngroup.\nExamples: cpu, memory, vendor.com/gpu.\nThe list cannot be empty and it can contain up to 64 resources. With a total\nof up to 256 covered resources across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"description":"ResourceName is the name identifying various resources in a ResourceList.","type":"string"}},"flavors":{"description":"flavors is the list of flavors that provide the resources of this group.\nTypically, different flavors represent different hardware models\n(e.g., gpu models, cpu architectures) or pricing models (on-demand vs spot\ncpus).\nEach flavor MUST list all the resources listed for this group in the same\norder as the .resources field.\nThe list cannot be empty and it can contain up to 64 flavors, with a max of\n256 total flavors across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of this flavor. The name should match the .metadata.name of a\nResourceFlavor. If a matching ResourceFlavor does not exist, the\nClusterQueue will have an Active condition set to False.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources is the list of quotas for this flavor per resource.\nThere could be up to 64 resources.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","nominalQuota"],"properties":{"borrowingLimit":{"description":"borrowingLimit is the maximum amount of quota for the [flavor, resource]\ncombination that this ClusterQueue is allowed to borrow from the unused\nquota of other ClusterQueues in the same cohort.\nIn total, at a given time, Workloads in a ClusterQueue can consume a\nquantity of quota equal to nominalQuota+borrowingLimit, assuming the other\nClusterQueues in the cohort have enough unused quota.\nIf null, it means that there is no borrowing limit.\nIf not null, it must be non-negative.\nborrowingLimit must be null if spec.cohort is empty.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"lendingLimit":{"description":"lendingLimit is the maximum amount of unused quota for the [flavor, resource]\ncombination that this ClusterQueue can lend to other ClusterQueues in the same cohort.\nIn total, at a given time, ClusterQueue reserves for its exclusive use\na quantity of quota equals to nominalQuota - lendingLimit.\nIf null, it means that there is no lending limit, meaning that\nall the nominalQuota can be borrowed by other clusterQueues in the cohort.\nIf not null, it must be non-negative.\nlendingLimit must be null if spec.cohort is empty.\nThis field is in beta stage and is enabled by default.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of this resource.","type":"string"},"nominalQuota":{"description":"nominalQuota is the quantity of this resource that is available for\nWorkloads admitted by this ClusterQueue at a point in time.\nThe nominalQuota must be non-negative.\nnominalQuota should represent the resources in the cluster available for\nrunning jobs (after discounting resources consumed by system components\nand pods not managed by kueue). In an autoscaled cluster, nominalQuota\nshould account for resources that can be provided by a component such as\nKubernetes cluster-autoscaler.\n\nIf the ClusterQueue belongs to a cohort, the sum of the quotas for each\n(flavor, resource) combination defines the maximum quantity that can be\nallocated by a ClusterQueue in the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}},"x-kubernetes-validations":[{"message":"flavors must have the same number of resources as the coveredResources","rule":"self.flavors.all(x, size(x.resources) == size(self.coveredResources))"}]},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"status is the status of the Cohort.","type":"object","properties":{"fairSharing":{"description":"fairSharing contains the current state for this Cohort\nwhen participating in Fair Sharing.\nThe is recorded only when Fair Sharing is enabled in the Kueue configuration.","type":"object","required":["weightedShare"],"properties":{"admissionFairSharingStatus":{"description":"admissionFairSharingStatus represents information relevant to the Admission Fair Sharing","type":"object","required":["consumedResources","lastUpdate"],"properties":{"consumedResources":{"description":"consumedResources represents the aggregated usage of resources over time,\nwith decaying function applied.\nThe value is populated if usage consumption functionality is enabled in Kueue config.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"lastUpdate":{"description":"lastUpdate is the time when share and consumed resources were updated.","type":"string","format":"date-time"}}},"weightedShare":{"description":"weightedShare represents the maximum of the ratios of usage\nabove nominal quota to the lendable resources in the\nCohort, among all the resources provided by the Node, and\ndivided by the weight.  If zero, it means that the usage of\nthe Node is below the nominal quota.  If the Node has a\nweight of zero and is borrowing, this will return\n9223372036854775807, the maximum possible share value.","type":"integer","format":"int64"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.CohortList":{"description":"CohortList is a list of Cohort","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cohorts. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Cohort"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"CohortList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.LocalQueue":{"description":"LocalQueue is the Schema for the localQueues API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the LocalQueue.","type":"object","properties":{"clusterQueue":{"description":"clusterQueue is a reference to a clusterQueue that backs this localQueue.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$","x-kubernetes-validations":[{"message":"field is immutable","rule":"self == oldSelf"}]},"fairSharing":{"description":"fairSharing defines the properties of the LocalQueue when\nparticipating in AdmissionFairSharing.  The values are only relevant\nif AdmissionFairSharing is enabled in the Kueue configuration.","type":"object","properties":{"weight":{"description":"weight gives a comparative advantage to this ClusterQueue\nor Cohort when competing for unused resources in the\nCohort.  The share is based on the dominant resource usage\nabove nominal quotas for each resource, divided by the\nweight.  Admission prioritizes scheduling workloads from\nClusterQueues and Cohorts with the lowest share and\npreempting workloads from the ClusterQueues and Cohorts\nwith the highest share.  A zero weight implies infinite\nshare value, meaning that this Node will always be at\ndisadvantage against other ClusterQueues and Cohorts.\nWhen not 0, Weight must be greater than 10^-9.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"stopPolicy":{"description":"stopPolicy - if set to a value different from None, the LocalQueue is considered Inactive,\nno new reservation being made.\n\nDepending on its value, its associated workloads will:\n\n- None - Workloads are admitted\n- HoldAndDrain - Admitted workloads are evicted and Reserving workloads will cancel the reservation.\n- Hold - Admitted workloads will run to completion and Reserving workloads will cancel the reservation.","type":"string","enum":["None","Hold","HoldAndDrain"]}}},"status":{"description":"status is the status of the LocalQueue.","type":"object","properties":{"admittedWorkloads":{"description":"admittedWorkloads is the number of workloads in this LocalQueue\nadmitted to a ClusterQueue and that haven't finished yet.","type":"integer","format":"int32"},"conditions":{"description":"conditions hold the latest available observations of the LocalQueue\ncurrent state.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"fairSharing":{"description":"fairSharing contains the information about the current status of fair sharing.","type":"object","required":["weightedShare"],"properties":{"admissionFairSharingStatus":{"description":"admissionFairSharingStatus represents information relevant to the Admission Fair Sharing","type":"object","required":["consumedResources","lastUpdate"],"properties":{"consumedResources":{"description":"consumedResources represents the aggregated usage of resources over time,\nwith decaying function applied.\nThe value is populated if usage consumption functionality is enabled in Kueue config.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"lastUpdate":{"description":"lastUpdate is the time when share and consumed resources were updated.","type":"string","format":"date-time"}}},"weightedShare":{"description":"weightedShare represents the maximum of the ratios of usage\nabove nominal quota to the lendable resources in the\nCohort, among all the resources provided by the Node, and\ndivided by the weight.  If zero, it means that the usage of\nthe Node is below the nominal quota.  If the Node has a\nweight of zero and is borrowing, this will return\n9223372036854775807, the maximum possible share value.","type":"integer","format":"int64"}}},"flavorUsage":{"description":"flavorUsage are the used quotas, by flavor currently in use by the\nworkloads assigned to this LocalQueue.","type":"array","maxItems":16,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":16,"items":{"type":"object","required":["name"],"properties":{"name":{"description":"name of the resource.","type":"string"},"total":{"description":"total is the total quantity of used quota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"flavors":{"description":"flavors lists all currently available ResourceFlavors in specified ClusterQueue.\n\nDeprecated: Flavors is deprecated and marked for removal in v1beta2.","type":"array","maxItems":16,"items":{"description":"Deprecated: LocalQueueFlavorStatus is deprecated and marked for removal in v1beta2.","type":"object","required":["name"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"nodeLabels":{"description":"nodeLabels are labels that associate the ResourceFlavor with Nodes that\nhave the same labels.","type":"object","maxProperties":8,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"nodeTaints":{"description":"nodeTaints are taints that the nodes associated with this ResourceFlavor\nhave.","type":"array","maxItems":8,"items":{"description":"The node this Taint is attached to has the \"effect\" on\nany pod that does not tolerate the Taint.","type":"object","required":["effect","key"],"properties":{"effect":{"description":"Required. The effect of the taint on pods\nthat do not tolerate the taint.\nValid effects are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Required. The taint key to be applied to a node.","type":"string"},"timeAdded":{"description":"TimeAdded represents the time at which the taint was added.","type":"string","format":"date-time"},"value":{"description":"The taint value corresponding to the taint key.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"resources used in the flavor.","type":"array","maxItems":16,"items":{"description":"ResourceName is the name identifying various resources in a ResourceList.","type":"string"},"x-kubernetes-list-type":"set"},"topology":{"description":"topology is the topology that associated with this ResourceFlavor.\n\nThis is a beta field and requires enabling the TopologyAwareScheduling\nfeature gate.","type":"object","required":["levels","name"],"properties":{"levels":{"description":"levels define the levels of topology.","type":"array","maxItems":16,"minItems":1,"items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"name":{"description":"name is the name of the topology.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"flavorsReservation":{"description":"flavorsReservation are the reserved quotas, by flavor currently in use by the\nworkloads assigned to this LocalQueue.","type":"array","maxItems":16,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":16,"items":{"type":"object","required":["name"],"properties":{"name":{"description":"name of the resource.","type":"string"},"total":{"description":"total is the total quantity of used quota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"pendingWorkloads":{"description":"pendingWorkloads is the number of Workloads in the LocalQueue not yet admitted to a ClusterQueue","type":"integer","format":"int32"},"reservingWorkloads":{"description":"reservingWorkloads is the number of workloads in this LocalQueue\nreserving quota in a ClusterQueue and that haven't finished yet.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.LocalQueueList":{"description":"LocalQueueList is a list of LocalQueue","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of localqueues. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.LocalQueue"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"LocalQueueList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.MultiKueueCluster":{"description":"MultiKueueCluster is the Schema for the multikueue API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the MultiKueueCluster.","type":"object","required":["kubeConfig"],"properties":{"clusterProfileRef":{"description":"clusterProfileRef is the reference to the ClusterProfile object used to connect to the cluster.\n\nThis is only used to prevent data loss when converting between v1beta2 and v1beta1.\nIt has no effect in v1beta1.","type":"object","required":["name"],"properties":{"name":{"description":"name of the ClusterProfile.","type":"string","maxLength":256,"minLength":1}}},"kubeConfig":{"description":"kubeConfig is information on how to connect to the cluster.","type":"object","required":["location","locationType"],"properties":{"location":{"description":"location of the KubeConfig.\n\nIf LocationType is Secret then Location is the name of the secret inside the namespace in\nwhich the kueue controller manager is running. The config should be stored in the \"kubeconfig\" key.","type":"string"},"locationType":{"description":"locationType of the KubeConfig.","type":"string","enum":["Secret","Path"]}}}}},"status":{"description":"status is the status of the MultiKueueCluster.","type":"object","properties":{"conditions":{"description":"conditions hold the latest available observations of the MultiKueueCluster\ncurrent state.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.MultiKueueClusterList":{"description":"MultiKueueClusterList is a list of MultiKueueCluster","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of multikueueclusters. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueCluster"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueClusterList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.MultiKueueConfig":{"description":"MultiKueueConfig is the Schema for the multikueue API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the MultiKueueConfig.","type":"object","required":["clusters"],"properties":{"clusters":{"description":"clusters is a list of MultiKueueClusters names where the workloads from the ClusterQueue should be distributed.","type":"array","maxItems":20,"minItems":1,"items":{"type":"string"},"x-kubernetes-list-type":"set"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.MultiKueueConfigList":{"description":"MultiKueueConfigList is a list of MultiKueueConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of multikueueconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.MultiKueueConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueConfigList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig":{"description":"ProvisioningRequestConfig is the Schema for the provisioningrequestconfig API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the ProvisioningRequestConfig.","type":"object","required":["provisioningClassName"],"properties":{"managedResources":{"description":"managedResources contains the list of resources managed by the autoscaling.\n\nIf empty, all resources are considered managed.\n\nIf not empty, the ProvisioningRequest will contain only the podsets that are\nrequesting at least one of them.\n\nIf none of the workloads podsets is requesting at least a managed resource,\nthe workload is considered ready.","type":"array","maxItems":100,"items":{"description":"ResourceName is the name identifying various resources in a ResourceList.","type":"string"},"x-kubernetes-list-type":"set"},"parameters":{"description":"parameters contains all other parameters classes may require.","type":"object","maxProperties":100,"additionalProperties":{"description":"Parameter is limited to 255 characters.","type":"string","maxLength":255}},"podSetMergePolicy":{"description":"podSetMergePolicy specifies the policy for merging PodSets before being passed\nto the cluster autoscaler.","type":"string","enum":["IdenticalPodTemplates","IdenticalWorkloadSchedulingRequirements"]},"podSetUpdates":{"description":"podSetUpdates specifies the update of the workload's PodSetUpdates which\nare used to target the provisioned nodes.","type":"object","properties":{"nodeSelector":{"description":"nodeSelector specifies the list of updates for the NodeSelector.","type":"array","maxItems":8,"items":{"type":"object","required":["key","valueFromProvisioningClassDetail"],"properties":{"key":{"description":"key specifies the key for the NodeSelector.","type":"string","maxLength":317,"minLength":1,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"},"valueFromProvisioningClassDetail":{"description":"valueFromProvisioningClassDetail specifies the key of the\nProvisioningRequest.status.provisioningClassDetails from which the value\nis used for the update.","type":"string","maxLength":32768,"minLength":1}}}}}},"provisioningClassName":{"description":"provisioningClassName describes the different modes of provisioning the resources.\nCheck autoscaling.x-k8s.io ProvisioningRequestSpec.ProvisioningClassName for details.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"retryStrategy":{"description":"retryStrategy defines strategy for retrying ProvisioningRequest.\nIf null, then the default configuration is applied with the following parameter values:\nbackoffLimitCount:  3\nbackoffBaseSeconds: 60 - 1 min\nbackoffMaxSeconds:  1800 - 30 mins\n\nTo switch off retry mechanism\nset retryStrategy.backoffLimitCount to 0.","type":"object","properties":{"backoffBaseSeconds":{"description":"backoffBaseSeconds defines the base for the exponential backoff for\nre-queuing an evicted workload.\n\nDefaults to 60.","type":"integer","format":"int32"},"backoffLimitCount":{"description":"backoffLimitCount defines the maximum number of re-queuing retries.\nOnce the number is reached, the workload is deactivated (`.spec.activate`=`false`).\n\nEvery backoff duration is about \"b*2^(n-1)+Rand\" where:\n- \"b\" represents the base set by \"BackoffBaseSeconds\" parameter,\n- \"n\" represents the \"workloadStatus.requeueState.count\",\n- \"Rand\" represents the random jitter.\nDuring this time, the workload is taken as an inadmissible and\nother workloads will have a chance to be admitted.\nBy default, the consecutive requeue delays are around: (60s, 120s, 240s, ...).\n\nDefaults to 3.","type":"integer","format":"int32"},"backoffMaxSeconds":{"description":"backoffMaxSeconds defines the maximum backoff time to re-queue an evicted workload.\n\nDefaults to 1800.","type":"integer","format":"int32"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.ProvisioningRequestConfigList":{"description":"ProvisioningRequestConfigList is a list of ProvisioningRequestConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of provisioningrequestconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ProvisioningRequestConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfigList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.ResourceFlavor":{"description":"ResourceFlavor is the Schema for the resourceflavors API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the ResourceFlavor.","type":"object","properties":{"nodeLabels":{"description":"nodeLabels are labels that associate the ResourceFlavor with Nodes that\nhave the same labels.\nWhen a Workload is admitted, its podsets can only get assigned\nResourceFlavors whose nodeLabels match the nodeSelector and nodeAffinity\nfields.\nOnce a ResourceFlavor is assigned to a podSet, the ResourceFlavor's\nnodeLabels should be injected into the pods of the Workload by the\ncontroller that integrates with the Workload object.\n\nnodeLabels can be up to 8 elements.","type":"object","maxProperties":8,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"nodeTaints":{"description":"nodeTaints are taints that the nodes associated with this ResourceFlavor\nhave.\nWorkloads' podsets must have tolerations for these nodeTaints in order to\nget assigned this ResourceFlavor during admission.\nWhen this ResourceFlavor has also set the matching tolerations (in .spec.tolerations),\nthen the nodeTaints are not considered during admission.\nOnly the 'NoSchedule' and 'NoExecute' taint effects are evaluated,\nwhile 'PreferNoSchedule' is ignored.\n\nAn example of a nodeTaint is\ncloud.provider.com/preemptible=\"true\":NoSchedule\n\nnodeTaints can be up to 8 elements.","type":"array","maxItems":8,"items":{"description":"The node this Taint is attached to has the \"effect\" on\nany pod that does not tolerate the Taint.","type":"object","required":["effect","key"],"properties":{"effect":{"description":"Required. The effect of the taint on pods\nthat do not tolerate the taint.\nValid effects are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Required. The taint key to be applied to a node.","type":"string"},"timeAdded":{"description":"TimeAdded represents the time at which the taint was added.","type":"string","format":"date-time"},"value":{"description":"The taint value corresponding to the taint key.","type":"string"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"supported taint effect values: 'NoSchedule', 'PreferNoSchedule', 'NoExecute'","rule":"self.all(x, x.effect in ['NoSchedule', 'PreferNoSchedule', 'NoExecute'])"}]},"tolerations":{"description":"tolerations are extra tolerations that will be added to the pods admitted in\nthe quota associated with this resource flavor.\n\nAn example of a toleration is\ncloud.provider.com/preemptible=\"true\":NoSchedule\n\ntolerations can be up to 8 elements.","type":"array","maxItems":8,"items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"operator must be Exists when 'key' is empty, which means 'match all values and all keys'","rule":"self.all(x, !has(x.key) ? x.operator == 'Exists' : true)"},{"message":"effect must be 'NoExecute' when 'tolerationSeconds' is set","rule":"self.all(x, has(x.tolerationSeconds) ? x.effect == 'NoExecute' : true)"},{"message":"supported toleration values: 'Equal'(default), 'Exists'","rule":"self.all(x, !has(x.operator) || x.operator in ['Equal', 'Exists'])"},{"message":"a value must be empty when 'operator' is 'Exists'","rule":"self.all(x, has(x.operator) && x.operator == 'Exists' ? !has(x.value) : true)"},{"message":"supported taint effect values: 'NoSchedule', 'PreferNoSchedule', 'NoExecute'","rule":"self.all(x, !has(x.effect) || x.effect in ['NoSchedule', 'PreferNoSchedule', 'NoExecute'])"}]},"topologyName":{"description":"topologyName indicates topology for the TAS ResourceFlavor.\nWhen specified, it enables scraping of the topology information from the\nnodes matching to the Resource Flavor node labels.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"x-kubernetes-validations":[{"message":"at least one nodeLabel is required when topology is set","rule":"!has(self.topologyName) || self.nodeLabels.size() >= 1"},{"message":"resourceFlavorSpec are immutable when topologyName is set","rule":"!has(oldSelf.topologyName) || self == oldSelf"}]}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.ResourceFlavorList":{"description":"ResourceFlavorList is a list of ResourceFlavor","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of resourceflavors. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.ResourceFlavor"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ResourceFlavorList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.Topology":{"description":"Topology is the Schema for the topology API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the Topology.","type":"object","required":["levels"],"properties":{"levels":{"description":"levels define the levels of topology.","type":"array","maxItems":16,"minItems":1,"items":{"description":"TopologyLevel defines the desired state of TopologyLevel","type":"object","required":["nodeLabel"],"properties":{"nodeLabel":{"description":"nodeLabel indicates the name of the node label for a specific topology\nlevel.\n\nExamples:\n- cloud.provider.com/topology-block\n- cloud.provider.com/topology-rack","type":"string","maxLength":316,"minLength":1,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"field is immutable","rule":"self == oldSelf"},{"message":"must be unique","rule":"size(self.filter(i, size(self.filter(j, j == i)) > 1)) == 0"},{"message":"the kubernetes.io/hostname label can only be used at the lowest level of topology","rule":"size(self.filter(i, i.nodeLabel == 'kubernetes.io/hostname')) == 0 || self[size(self) - 1].nodeLabel == 'kubernetes.io/hostname'"}]}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.TopologyList":{"description":"TopologyList is a list of Topology","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of topologies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Topology"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"TopologyList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.Workload":{"description":"Workload is the Schema for the workloads API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the Workload.","type":"object","required":["podSets"],"properties":{"active":{"description":"active determines if a workload can be admitted into a queue.\nChanging active from true to false will evict any running workloads.\nPossible values are:\n\n  - false: indicates that a workload should never be admitted and evicts running workloads\n  - true: indicates that a workload can be evaluated for admission into it's respective queue.\n\nDefaults to true","type":"boolean"},"maximumExecutionTimeSeconds":{"description":"maximumExecutionTimeSeconds if provided, determines the maximum time, in seconds,\nthe workload can be admitted before it's automatically deactivated.\n\nIf unspecified, no execution time limit is enforced on the Workload.","type":"integer","format":"int32","minimum":1},"podSets":{"description":"podSets is a list of sets of homogeneous pods, each described by a Pod spec\nand a count.\nThere must be at least one element and at most 8.\npodSets cannot be changed.","type":"array","maxItems":8,"minItems":1,"items":{"type":"object","required":["count","template"],"properties":{"count":{"description":"count is the number of pods for the spec.","type":"integer","format":"int32","minimum":0},"minCount":{"description":"minCount is the minimum number of pods for the spec acceptable\nif the workload supports partial admission.\n\nIf not provided, partial admission for the current PodSet is not\nenabled.\n\nOnly one podSet within the workload can use this.\n\nThis is an alpha field and requires enabling PartialAdmission feature gate.","type":"integer","format":"int32","minimum":1},"name":{"description":"name is the PodSet name.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"template":{"description":"template is the Pod template.\n\nThe only allowed fields in template.metadata are labels and annotations.\n\nIf requests are omitted for a container or initContainer,\nthey default to the limits if they are explicitly specified for the\ncontainer or initContainer.\n\nDuring admission, the rules in nodeSelector and\nnodeAffinity.requiredDuringSchedulingIgnoredDuringExecution that match\nthe keys in the nodeLabels from the ResourceFlavors considered for this\nWorkload are used to filter the ResourceFlavors that can be assigned to\nthis podSet.","type":"object","properties":{"metadata":{"description":"Standard object's metadata.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"Specification of the desired behavior of the pod.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"description":"Optional duration in seconds the pod may be active on the node relative to\nStartTime before the system will actively try to mark it failed and kill associated containers.\nValue must be a positive integer.","type":"integer","format":"int64"},"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.","type":"boolean"},"containers":{"description":"List of containers belonging to the pod.\nContainers cannot currently be added or removed.\nThere must be at least one container in a Pod.\nCannot be updated.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.\nThis field cannot be set on ephemeral containers.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis overrides the pod-level restart policy. When this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nAdditionally, setting the RestartPolicy as \"Always\" for the init container will\nhave the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. The rules are evaluated in\norder. Once a rule matches a container exit condition, the remaining\nrules are ignored. If no rule matches the container exit condition,\nthe Container-level restart policy determines the whether the container\nis restarted or not. Constraints on the rules:\n- At most 20 rules are allowed.\n- Rules can have the same action.\n- Identical rules are not forbidden in validations.\nWhen rules are specified, container MUST set RestartPolicy explicitly\neven it if matches the Pod's RestartPolicy.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod.\nDefaults to \"ClusterFirst\".\nValid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'.\nDNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.\nTo have DNS options set along with hostNetwork, you have to specify DNS policy\nexplicitly to 'ClusterFirstWithHostNet'.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"ephemeralContainers":{"description":"List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing\npod to perform user-initiated actions such as debugging. This list cannot be specified when\ncreating a pod, and it cannot be modified by updating the pod spec. In order to add an\nephemeral container to an existing pod, use the pod's ephemeralcontainers subresource.","type":"array","items":{"description":"An EphemeralContainer is a temporary container that you may add to an existing Pod for\nuser-initiated activities such as debugging. Ephemeral containers have no resource or\nscheduling guarantees, and they will not be restarted when they exit or when a Pod is\nremoved or restarted. The kubelet may evict a Pod if an ephemeral container causes the\nPod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing\nPod. Ephemeral containers may not be removed or restarted.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Lifecycle is not allowed for ephemeral containers.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the ephemeral container specified as a DNS_LABEL.\nThis name must be unique among all containers, init containers and ephemeral containers.","type":"string"},"ports":{"description":"Ports are not allowed for ephemeral containers.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources\nalready allocated to the pod.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"Restart policy for the container to manage the restart behavior of each\ncontainer within a pod.\nYou cannot set this field on ephemeral containers.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. You cannot set this field on\nephemeral containers.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"Optional: SecurityContext defines the security options the ephemeral container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"targetContainerName":{"description":"If set, the name of the container from PodSpec that this ephemeral container targets.\nThe ephemeral container will be run in the namespaces (IPC, PID, etc) of this container.\nIf not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not\nsupport namespace targeting then the result of setting this field is undefined.","type":"string"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map"},"hostIPC":{"description":"Use the host's ipc namespace.\nOptional: Default to false.","type":"boolean"},"hostNetwork":{"description":"Host networking requested for this pod. Use the host's network namespace.\nWhen using HostNetwork you should specify ports so the scheduler is aware.\nWhen `hostNetwork` is true, specified `hostPort` fields in port definitions must match `containerPort`,\nand unspecified `hostPort` fields in port definitions are defaulted to match `containerPort`.\nDefault to false.","type":"boolean"},"hostPID":{"description":"Use the host's pid namespace.\nOptional: Default to false.","type":"boolean"},"hostUsers":{"description":"Use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new userns is created for the pod. Setting false is useful for\nmitigating container breakout vulnerabilities even allowing users to run their\ncontainers as root without actually having root privileges on the host.\nThis field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.","type":"boolean"},"hostname":{"description":"Specifies the hostname of the Pod\nIf not specified, the pod's hostname will be set to a system-defined value.","type":"string"},"hostnameOverride":{"description":"HostnameOverride specifies an explicit override for the pod's hostname as perceived by the pod.\nThis field only specifies the pod's hostname and does not affect its DNS records.\nWhen this field is set to a non-empty string:\n- It takes precedence over the values set in `hostname` and `subdomain`.\n- The Pod's hostname will be set to this value.\n- `setHostnameAsFQDN` must be nil or set to false.\n- `hostNetwork` must be set to false.\n\nThis field must be a valid DNS subdomain as defined in RFC 1123 and contain at most 64 characters.\nRequires the HostnameOverride feature gate to be enabled.","type":"string"},"imagePullSecrets":{"description":"ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec.\nIf specified, these secrets will be passed to individual puller implementations for them to use.\nMore info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"initContainers":{"description":"List of initialization containers belonging to the pod.\nInit containers are executed in order prior to containers being started. If any\ninit container fails, the pod is considered to have failed and is handled according\nto its restartPolicy. The name for an init container or normal container must be\nunique among all containers.\nInit containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes.\nThe resourceRequirements of an init container are taken into account during scheduling\nby finding the highest request/limit for each resource type, and then using the max of\nthat value or the sum of the normal containers. Limits are applied to init containers\nin a similar fashion.\nInit containers cannot currently be added or removed.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.\nThis field cannot be set on ephemeral containers.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis overrides the pod-level restart policy. When this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nAdditionally, setting the RestartPolicy as \"Always\" for the init container will\nhave the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. The rules are evaluated in\norder. Once a rule matches a container exit condition, the remaining\nrules are ignored. If no rule matches the container exit condition,\nthe Container-level restart policy determines the whether the container\nis restarted or not. Constraints on the rules:\n- At most 20 rules are allowed.\n- Rules can have the same action.\n- Identical rules are not forbidden in validations.\nWhen rules are specified, container MUST set RestartPolicy explicitly\neven it if matches the Pod's RestartPolicy.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeName":{"description":"NodeName indicates in which node this pod is scheduled.\nIf empty, this pod is a candidate for scheduling by the scheduler defined in schedulerName.\nOnce this field is set, the kubelet for this node becomes responsible for the lifecycle of this pod.\nThis field should not be used to express a desire for the pod to be scheduled on a specific node.\nhttps://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#nodename","type":"string"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"description":"Specifies the OS of the containers in the pod.\nSome pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset:\n-securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset:\n- spec.hostPID\n- spec.hostIPC\n- spec.hostUsers\n- spec.resources\n- spec.securityContext.appArmorProfile\n- spec.securityContext.seLinuxOptions\n- spec.securityContext.seccompProfile\n- spec.securityContext.fsGroup\n- spec.securityContext.fsGroupChangePolicy\n- spec.securityContext.sysctls\n- spec.shareProcessNamespace\n- spec.securityContext.runAsUser\n- spec.securityContext.runAsGroup\n- spec.securityContext.supplementalGroups\n- spec.securityContext.supplementalGroupsPolicy\n- spec.containers[*].securityContext.appArmorProfile\n- spec.containers[*].securityContext.seLinuxOptions\n- spec.containers[*].securityContext.seccompProfile\n- spec.containers[*].securityContext.capabilities\n- spec.containers[*].securityContext.readOnlyRootFilesystem\n- spec.containers[*].securityContext.privileged\n- spec.containers[*].securityContext.allowPrivilegeEscalation\n- spec.containers[*].securityContext.procMount\n- spec.containers[*].securityContext.runAsUser\n- spec.containers[*].securityContext.runAsGroup","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the operating system. The currently supported values are linux and windows.\nAdditional value may be defined in future and can be one of:\nhttps://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration\nClients should expect to handle additional values and treat unrecognized values in this field as os: null","type":"string"}}},"overhead":{"description":"Overhead represents the resource overhead associated with running a pod for a given RuntimeClass.\nThis field will be autopopulated at admission time by the RuntimeClass admission controller. If\nthe RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests.\nThe RuntimeClass admission controller will reject Pod create requests which have the overhead already\nset. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value\ndefined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"description":"PreemptionPolicy is the Policy for preempting pods with lower priority.\nOne of Never, PreemptLowerPriority.\nDefaults to PreemptLowerPriority if unset.","type":"string"},"priority":{"description":"The priority value. Various system components use this field to find the\npriority of the pod. When Priority Admission Controller is enabled, it\nprevents users from setting this field. The admission controller populates\nthis field from PriorityClassName.\nThe higher the value, the higher the priority.","type":"integer","format":"int32"},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"readinessGates":{"description":"If specified, all readiness gates will be evaluated for pod readiness.\nA pod is ready when all its containers are ready AND\nall conditions specified in the readiness gates have status equal to \"True\"\nMore info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates","type":"array","items":{"description":"PodReadinessGate contains the reference to a pod condition","type":"object","required":["conditionType"],"properties":{"conditionType":{"description":"ConditionType refers to a condition in the pod's condition list with matching type.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resourceClaims":{"description":"ResourceClaims defines which ResourceClaims must be allocated\nand reserved before the Pod is allowed to start. The resources\nwill be made available to those containers which consume them\nby name.\n\nThis is a stable field but requires that the\nDynamicResourceAllocation feature gate is enabled.\n\nThis field is immutable.","type":"array","items":{"description":"PodResourceClaim references exactly one ResourceClaim, either directly\nor by naming a ResourceClaimTemplate which is then turned into a ResourceClaim\nfor the pod.\n\nIt adds a name to it that uniquely identifies the ResourceClaim inside the Pod.\nContainers that need access to the ResourceClaim reference it with this name.","type":"object","required":["name"],"properties":{"name":{"description":"Name uniquely identifies this resource claim inside the pod.\nThis must be a DNS_LABEL.","type":"string"},"resourceClaimName":{"description":"ResourceClaimName is the name of a ResourceClaim object in the same\nnamespace as this pod.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"},"resourceClaimTemplateName":{"description":"ResourceClaimTemplateName is the name of a ResourceClaimTemplate\nobject in the same namespace as this pod.\n\nThe template will be used to create a new ResourceClaim, which will\nbe bound to this pod. When this pod is deleted, the ResourceClaim\nwill also be deleted. The pod name and resource name, along with a\ngenerated component, will be used to form a unique name for the\nResourceClaim, which will be recorded in pod.status.resourceClaimStatuses.\n\nThis field is immutable and no changes will be made to the\ncorresponding ResourceClaim by the control plane after creating the\nResourceClaim.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"resources":{"description":"Resources is the total amount of CPU and Memory resources required by all\ncontainers in the pod. It supports specifying Requests and Limits for\n\"cpu\", \"memory\" and \"hugepages-\" resource names only. ResourceClaims are not supported.\n\nThis field enables fine-grained control over resource allocation for the\nentire pod, allowing resource sharing among containers in a pod.\n\nThis is an alpha field and requires enabling the PodLevelResources feature\ngate.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"Restart policy for all containers within the pod.\nOne of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted.\nDefault to Always.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used\nto run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run.\nIf unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class","type":"string"},"schedulerName":{"description":"If specified, the pod will be dispatched by specified scheduler.\nIf not specified, the pod will be dispatched by default scheduler.","type":"string"},"schedulingGates":{"description":"SchedulingGates is an opaque list of values that if specified will block scheduling the pod.\nIf schedulingGates is not empty, the pod will stay in the SchedulingGated state and the\nscheduler will not attempt to schedule the pod.\n\nSchedulingGates can only be set at pod creation time, and be removed only afterwards.","type":"array","items":{"description":"PodSchedulingGate is associated to a Pod to guard its scheduling.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the scheduling gate.\nEach scheduling gate must have a unique name field.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"serviceAccount":{"description":"DeprecatedServiceAccount is a deprecated alias for ServiceAccountName.\nDeprecated: Use serviceAccountName instead.","type":"string"},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run this pod.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"string"},"setHostnameAsFQDN":{"description":"If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default).\nIn Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname).\nIn Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Services\\\\Tcpip\\\\Parameters to FQDN.\nIf a pod does not have FQDN, this has no effect.\nDefault to false.","type":"boolean"},"shareProcessNamespace":{"description":"Share a single process namespace between all of the containers in a pod.\nWhen this is set containers will be able to view and signal processes from other containers\nin the same pod, and the first process in each container will not be assigned PID 1.\nHostPID and ShareProcessNamespace cannot both be set.\nOptional: Default to false.","type":"boolean"},"subdomain":{"description":"If specified, the fully qualified Pod hostname will be \"<hostname>.<subdomain>.<pod namespace>.svc.<cluster domain>\".\nIf not specified, the pod will not have a domainname at all.","type":"string"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nIf this value is nil, the default grace period will be used instead.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nDefaults to 30 seconds.","type":"integer","format":"int64"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints describes how a group of pods ought to spread across topology\ndomains. Scheduler will schedule pods in a way which abides by the constraints.\nAll topologySpreadConstraints are ANDed.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nDeprecated: AWSElasticBlockStore is deprecated. All operations for the in-tree\nawsElasticBlockStore type are redirected to the ebs.csi.aws.com CSI driver.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.\nDeprecated: AzureDisk is deprecated. All operations for the in-tree azureDisk type\nare redirected to the disk.csi.azure.com CSI driver.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.\nDeprecated: AzureFile is deprecated. All operations for the in-tree azureFile type\nare redirected to the file.csi.azure.com CSI driver.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime.\nDeprecated: CephFS is deprecated and the in-tree cephfs type is no longer supported.","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nDeprecated: Cinder is deprecated. All operations for the in-tree cinder type\nare redirected to the cinder.csi.openstack.org CSI driver.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nUsers are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string or nil value indicates that no\nVolumeAttributesClass will be applied to the claim. If the claim enters an Infeasible error state,\nthis field can be reset to its previous value (including nil) to cancel the modification.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.\nDeprecated: FlexVolume is deprecated. Consider using a CSIDriver instead.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running.\nDeprecated: Flocker is deprecated and the in-tree flocker type is no longer supported.","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nDeprecated: GCEPersistentDisk is deprecated. All operations for the in-tree\ngcePersistentDisk type are redirected to the pd.csi.storage.gke.io CSI driver.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDeprecated: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nDeprecated: Glusterfs is deprecated and the in-tree glusterfs type is no longer supported.","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath) before 1.33.\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes/#iscsi","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine.\nDeprecated: PhotonPersistentDisk is deprecated and the in-tree photonPersistentDisk type is no longer supported.","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine.\nDeprecated: PortworxVolume is deprecated. All operations for the in-tree portworxVolume type\nare redirected to the pxd.portworx.com CSI driver when the CSIMigrationPortworx feature-gate\nis on.","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podCertificate":{"description":"Projects an auto-rotating credential bundle (private key and certificate\nchain) that the pod can use either as a TLS client or server.\n\nKubelet generates a private key and uses it to send a\nPodCertificateRequest to the named signer.  Once the signer approves the\nrequest and issues a certificate chain, Kubelet writes the key and\ncertificate chain to the pod filesystem.  The pod does not start until\ncertificates have been issued for each podCertificate projected volume\nsource in its spec.\n\nKubelet will begin trying to rotate the certificate at the time indicated\nby the signer using the PodCertificateRequest.Status.BeginRefreshAt\ntimestamp.\n\nKubelet can write a single file, indicated by the credentialBundlePath\nfield, or separate files, indicated by the keyPath and\ncertificateChainPath fields.\n\nThe credential bundle is a single file in PEM format.  The first PEM\nentry is the private key (in PKCS#8 format), and the remaining PEM\nentries are the certificate chain issued by the signer (typically,\nsigners will return their certificate chain in leaf-to-root order).\n\nPrefer using the credential bundle format, since your application code\ncan read it atomically.  If you use keyPath and certificateChainPath,\nyour application must make two separate file reads. If these coincide\nwith a certificate rotation, it is possible that the private key and leaf\ncertificate you read may not correspond to each other.  Your application\nwill need to check for this condition, and re-read until they are\nconsistent.\n\nThe named signer controls chooses the format of the certificate it\nissues; consult the signer implementation's documentation to learn how to\nuse the certificates it issues.","type":"object","required":["keyType","signerName"],"properties":{"certificateChainPath":{"description":"Write the certificate chain at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"credentialBundlePath":{"description":"Write the credential bundle at this path in the projected volume.\n\nThe credential bundle is a single file that contains multiple PEM blocks.\nThe first PEM block is a PRIVATE KEY block, containing a PKCS#8 private\nkey.\n\nThe remaining blocks are CERTIFICATE blocks, containing the issued\ncertificate chain from the signer (leaf and any intermediates).\n\nUsing credentialBundlePath lets your Pod's application code make a single\natomic read that retrieves a consistent key and certificate chain.  If you\nproject them to separate files, your application code will need to\nadditionally check that the leaf certificate was issued to the key.","type":"string"},"keyPath":{"description":"Write the key at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"keyType":{"description":"The type of keypair Kubelet will generate for the pod.\n\nValid values are \"RSA3072\", \"RSA4096\", \"ECDSAP256\", \"ECDSAP384\",\n\"ECDSAP521\", and \"ED25519\".","type":"string"},"maxExpirationSeconds":{"description":"maxExpirationSeconds is the maximum lifetime permitted for the\ncertificate.\n\nKubelet copies this value verbatim into the PodCertificateRequests it\ngenerates for this projection.\n\nIf omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver\nwill reject values shorter than 3600 (1 hour).  The maximum allowable\nvalue is 7862400 (91 days).\n\nThe signer implementation is then free to issue a certificate with any\nlifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600\nseconds (1 hour).  This constraint is enforced by kube-apiserver.\n`kubernetes.io` signers will never issue certificates with a lifetime\nlonger than 24 hours.","type":"integer","format":"int32"},"signerName":{"description":"Kubelet's generated CSRs will be addressed to this signer.","type":"string"},"userAnnotations":{"description":"userAnnotations allow pod authors to pass additional information to\nthe signer implementation.  Kubernetes does not restrict or validate this\nmetadata in any way.\n\nThese values are copied verbatim into the `spec.unverifiedUserAnnotations` field of\nthe PodCertificateRequest objects that Kubelet creates.\n\nEntries are subject to the same validation as object metadata annotations,\nwith the addition that all keys must be domain-prefixed. No restrictions\nare placed on values, except an overall size limitation on the entire field.\n\nSigners should document the keys and values they support. Signers should\ndeny requests that contain keys they do not recognize.","type":"object","additionalProperties":{"type":"string"}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime.\nDeprecated: Quobyte is deprecated and the in-tree quobyte type is no longer supported.","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nDeprecated: RBD is deprecated and the in-tree rbd type is no longer supported.","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.\nDeprecated: ScaleIO is deprecated and the in-tree scaleIO type is no longer supported.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.\nDeprecated: StorageOS is deprecated and the in-tree storageos type is no longer supported.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine.\nDeprecated: VsphereVolume is deprecated. All operations for the in-tree vsphereVolume type\nare redirected to the csi.vsphere.vmware.com CSI driver.","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"workloadRef":{"description":"WorkloadRef provides a reference to the Workload object that this Pod belongs to.\nThis field is used by the scheduler to identify the PodGroup and apply the\ncorrect group scheduling policies. The Workload object referenced\nby this field may not exist at the time the Pod is created.\nThis field is immutable, but a Workload object with the same name\nmay be recreated with different policies. Doing this during pod scheduling\nmay result in the placement not conforming to the expected policies.","type":"object","required":["name","podGroup"],"properties":{"name":{"description":"Name defines the name of the Workload object this Pod belongs to.\nWorkload must be in the same namespace as the Pod.\nIf it doesn't match any existing Workload, the Pod will remain unschedulable\nuntil a Workload object is created and observed by the kube-scheduler.\nIt must be a DNS subdomain.","type":"string"},"podGroup":{"description":"PodGroup is the name of the PodGroup within the Workload that this Pod\nbelongs to. If it doesn't match any existing PodGroup within the Workload,\nthe Pod will remain unschedulable until the Workload object is recreated\nand observed by the kube-scheduler. It must be a DNS label.","type":"string"},"podGroupReplicaKey":{"description":"PodGroupReplicaKey specifies the replica key of the PodGroup to which this\nPod belongs. It is used to distinguish pods belonging to different replicas\nof the same pod group. The pod group policy is applied separately to each replica.\nWhen set, it must be a DNS label.","type":"string"}}}}}}},"topologyRequest":{"description":"topologyRequest defines the topology request for the PodSet.","type":"object","properties":{"podIndexLabel":{"description":"podIndexLabel indicates the name of the label indexing the pods.\nFor example, in the context of\n- kubernetes job this is: kubernetes.io/job-completion-index\n- JobSet: kubernetes.io/job-completion-index (inherited from Job)\n- Kubeflow: training.kubeflow.org/replica-index","type":"string"},"podSetGroupName":{"description":"podSetGroupName indicates the name of the group of PodSets to which this PodSet belongs to.\nPodSets with the same `PodSetGroupName` should be assigned the same ResourceFlavor","type":"string"},"podSetSliceRequiredTopology":{"description":"podSetSliceRequiredTopology indicates the topology level required by the PodSet slice, as\nindicated by the `kueue.x-k8s.io/podset-slice-required-topology` annotation.","type":"string"},"podSetSliceSize":{"description":"podSetSliceSize indicates the size of a subgroup of pods in a PodSet for which\nKueue finds a requested topology domain on a level defined\nin `kueue.x-k8s.io/podset-slice-required-topology` annotation.","type":"integer","format":"int32"},"preferred":{"description":"preferred indicates the topology level preferred by the PodSet, as\nindicated by the `kueue.x-k8s.io/podset-preferred-topology` PodSet\nannotation.","type":"string"},"required":{"description":"required indicates the topology level required by the PodSet, as\nindicated by the `kueue.x-k8s.io/podset-required-topology` PodSet\nannotation.","type":"string"},"subGroupCount":{"description":"subGroupCount indicates the count of replicated Jobs (groups) within a PodSet.\nFor example, in the context of JobSet this value is read from jobset.sigs.k8s.io/replicatedjob-replicas.","type":"integer","format":"int32"},"subGroupIndexLabel":{"description":"subGroupIndexLabel indicates the name of the label indexing the instances of replicated Jobs (groups)\nwithin a PodSet. For example, in the context of JobSet this is jobset.sigs.k8s.io/job-index.","type":"string"},"unconstrained":{"description":"unconstrained indicates that Kueue has the freedom to schedule the PodSet within\nthe entire available capacity, without constraints on the compactness of the placement.\nThis is indicated by the `kueue.x-k8s.io/podset-unconstrained-topology` PodSet annotation.","type":"boolean"}}}},"x-kubernetes-validations":[{"message":"minCount should be positive and less or equal to count","rule":"has(self.minCount) ? self.minCount <= self.count : true"}]},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"priority":{"description":"priority determines the order of access to the resources managed by the\nClusterQueue where the workload is queued.\nThe priority value is populated from PriorityClassName.\nThe higher the value, the higher the priority.\nIf priorityClassName is specified, priority must not be null.","type":"integer","format":"int32"},"priorityClassName":{"description":"priorityClassName is the name of the PriorityClass the Workload is associated with.\nIf specified, indicates the workload's priority.\n\"system-node-critical\" and \"system-cluster-critical\" are two special\nkeywords which indicate the highest priorities with the former being\nthe highest priority. Any other name must be defined by creating a\nPriorityClass object with that name. If not specified, the workload\npriority will be default or zero if there is no default.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"priorityClassSource":{"description":"priorityClassSource determines whether the priorityClass field refers to a pod PriorityClass or kueue.x-k8s.io/workloadpriorityclass.\nWorkload's PriorityClass can accept the name of a pod priorityClass or a workloadPriorityClass.\nWhen using pod PriorityClass, a priorityClassSource field has the scheduling.k8s.io/priorityclass value.","type":"string","enum":["kueue.x-k8s.io/workloadpriorityclass","scheduling.k8s.io/priorityclass",""]},"queueName":{"description":"queueName is the name of the LocalQueue the Workload is associated with.\nqueueName cannot be changed while .status.admission is not null.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"x-kubernetes-validations":[{"message":"priority should not be nil when priorityClassName is set","rule":"has(self.priorityClassName) ? has(self.priority) : true"}]},"status":{"description":"status is the status of the Workload.","type":"object","properties":{"accumulatedPastExexcutionTimeSeconds":{"description":"accumulatedPastExexcutionTimeSeconds holds the total time, in seconds, the workload spent\nin Admitted state, in the previous `Admit` - `Evict` cycles.","type":"integer","format":"int32"},"admission":{"description":"admission holds the parameters of the admission of the workload by a\nClusterQueue. admission can be set back to null, but its fields cannot be\nchanged once set.","type":"object","required":["clusterQueue","podSetAssignments"],"properties":{"clusterQueue":{"description":"clusterQueue is the name of the ClusterQueue that admitted this workload.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"podSetAssignments":{"description":"podSetAssignments hold the admission results for each of the .spec.podSets entries.","type":"array","maxItems":8,"items":{"type":"object","required":["name"],"properties":{"count":{"description":"count is the number of pods taken into account at admission time.\nThis field will not change in case of quota reclaim.\nValue could be missing for Workloads created before this field was added,\nin that case spec.podSets[*].count value will be used.","type":"integer","format":"int32","minimum":0},"delayedTopologyRequest":{"description":"delayedTopologyRequest indicates the topology assignment is delayed.\nTopology assignment might be delayed in case there is ProvisioningRequest\nAdmissionCheck used.\nKueue schedules the second pass of scheduling for each workload with at\nleast one PodSet which has delayedTopologyRequest=true and without\ntopologyAssignment.","type":"string"},"flavors":{"description":"flavors are the flavors assigned to the workload for each resource.","type":"object","additionalProperties":{"description":"ResourceFlavorReference is the name of the ResourceFlavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"name":{"description":"name is the name of the podSet. It should match one of the names in .spec.podSets.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"resourceUsage":{"description":"resourceUsage keeps track of the total resources all the pods in the podset need to run.\n\nBeside what is provided in podSet's specs, this calculation takes into account\nthe LimitRange defaults and RuntimeClass overheads at the moment of admission.\nThis field will not change in case of quota reclaim.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"topologyAssignment":{"description":"topologyAssignment indicates the topology assignment divided into\ntopology domains corresponding to the lowest level of the topology.\nThe assignment specifies the number of Pods to be scheduled per topology\ndomain and specifies the node selectors for each topology domain, in the\nfollowing way: the node selector keys are specified by the levels field\n(same for all domains), and the corresponding node selector value is\nspecified by the domains.values subfield. If the TopologySpec.Levels field contains\n\"kubernetes.io/hostname\" label, topologyAssignment will contain data only for\nthis label, and omit higher levels in the topology\n\nExample:\n\ntopologyAssignment:\n  levels:\n  - cloud.provider.com/topology-block\n  - cloud.provider.com/topology-rack\n  domains:\n  - values: [block-1, rack-1]\n    count: 4\n  - values: [block-1, rack-2]\n    count: 2\n\nHere:\n- 4 Pods are to be scheduled on nodes matching the node selector:\n  cloud.provider.com/topology-block: block-1\n  cloud.provider.com/topology-rack: rack-1\n- 2 Pods are to be scheduled on nodes matching the node selector:\n  cloud.provider.com/topology-block: block-1\n  cloud.provider.com/topology-rack: rack-2\n\nExample:\nBelow there is an equivalent of the above example assuming, Topology\nobject defines kubernetes.io/hostname as the lowest level in topology.\nHence we omit higher level of topologies, since the hostname label\nis sufficient to explicitly identify a proper node.\n\ntopologyAssignment:\n  levels:\n  - kubernetes.io/hostname\n  domains:\n  - values: [hostname-1]\n    count: 4\n  - values: [hostname-2]\n    count: 2","type":"object","required":["domains","levels"],"properties":{"domains":{"description":"domains is a list of topology assignments split by topology domains at\nthe lowest level of the topology.","type":"array","items":{"type":"object","required":["count","values"],"properties":{"count":{"description":"count indicates the number of Pods to be scheduled in the topology\ndomain indicated by the values field.","type":"integer","format":"int32","minimum":1},"values":{"description":"values is an ordered list of node selector values describing a topology\ndomain. The values correspond to the consecutive topology levels, from\nthe highest to the lowest.","type":"array","maxItems":16,"minItems":1,"items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}},"levels":{"description":"levels is an ordered list of keys denoting the levels of the assigned\ntopology (i.e. node label keys), from the highest to the lowest level of\nthe topology.","type":"array","maxItems":16,"minItems":1,"items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"admissionChecks":{"description":"admissionChecks list all the admission checks required by the workload and the current status","type":"array","maxItems":8,"items":{"type":"object","required":["lastTransitionTime","message","name","state"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"name":{"description":"name identifies the admission check.","type":"string","maxLength":316},"podSetUpdates":{"description":"podSetUpdates contains a list of pod set modifications suggested by AdmissionChecks.","type":"array","maxItems":8,"items":{"description":"PodSetUpdate contains a list of pod set modifications suggested by AdmissionChecks.\nThe modifications should be additive only - modifications of already existing keys\nor having the same key provided by multiple AdmissionChecks is not allowed and will\nresult in failure during workload admission.","type":"object","required":["name"],"properties":{"annotations":{"description":"annotations of the PodSet to modify.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"labels of the PodSet to modify.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"name of the PodSet to modify. Should match to one of the Workload's PodSets.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"nodeSelector":{"description":"nodeSelector of the PodSet to modify.","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"tolerations of the PodSet to modify.","type":"array","maxItems":8,"items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-validations":[{"message":"operator must be Exists when 'key' is empty, which means 'match all values and all keys'","rule":"self.all(x, !has(x.key) ? x.operator == 'Exists' : true)"},{"message":"effect must be 'NoExecute' when 'tolerationSeconds' is set","rule":"self.all(x, has(x.tolerationSeconds) ? x.effect == 'NoExecute' : true)"},{"message":"supported toleration values: 'Equal'(default), 'Exists'","rule":"self.all(x, !has(x.operator) || x.operator in ['Equal', 'Exists'])"},{"message":"a value must be empty when 'operator' is 'Exists'","rule":"self.all(x, has(x.operator) && x.operator == 'Exists' ? !has(x.value) : true)"},{"message":"supported taint effect values: 'NoSchedule', 'PreferNoSchedule', 'NoExecute'","rule":"self.all(x, !has(x.effect) || x.effect in ['NoSchedule', 'PreferNoSchedule', 'NoExecute'])"}]}}},"x-kubernetes-list-type":"atomic"},"requeueAfterSeconds":{"description":"requeueAfterSeconds indicates how long to wait at least before\nretrying to admit the workload.\nThe admission check controllers can set this field when State=Retry\nto implement delays between retry attempts.\n\nIf nil when State=Retry, Kueue will retry immediately.\nIf set, Kueue will add the workload back to the queue after\n  lastTransitionTime + RequeueAfterSeconds is over.","type":"integer","format":"int32","minimum":0},"retryCount":{"description":"retryCount tracks retry attempts for this admission check.\nKueue automatically increments the counter whenever the\nstate transitions to Retry.","type":"integer","format":"int32","minimum":0},"state":{"description":"state of the admissionCheck, one of Pending, Ready, Retry, Rejected","type":"string","enum":["Pending","Ready","Retry","Rejected"]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"clusterName":{"description":"clusterName is the name of the cluster where the workload is currently assigned.\n\nWith ElasticJobs, this field may also indicate the cluster where the original (old) workload\nwas assigned, providing placement context for new scaled-up workloads. This supports\naffinity or propagation policies across workload slices.\n\nThis field is reset after the Workload is evicted.","type":"string"},"conditions":{"description":"conditions hold the latest available observations of the Workload\ncurrent state.\n\nThe type of the condition could be:\n\n- Admitted: the Workload was admitted through a ClusterQueue.\n- Finished: the associated workload finished running (failed or succeeded).\n- PodsReady: at least `.spec.podSets[*].count` Pods are ready or have\nsucceeded.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"nominatedClusterNames":{"description":"nominatedClusterNames specifies the list of cluster names that have been nominated for scheduling.\nThis field is mutually exclusive with the `.status.clusterName` field, and is reset when\n`status.clusterName` is set.\nThis field is optional.","type":"array","maxItems":20,"items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"reclaimablePods":{"description":"reclaimablePods keeps track of the number pods within a podset for which\nthe resource reservation is no longer needed.","type":"array","maxItems":8,"items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"count is the number of pods for which the requested resources are no longer needed.","type":"integer","format":"int32","minimum":0},"name":{"description":"name is the PodSet name.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"requeueState":{"description":"requeueState holds the re-queue state\nwhen a workload meets Eviction with PodsReadyTimeout reason.","type":"object","properties":{"count":{"description":"count records the number of times a workload has been re-queued\nWhen a deactivated (`.spec.activate`=`false`) workload is reactivated (`.spec.activate`=`true`),\nthis count would be reset to null.","type":"integer","format":"int32","minimum":0},"requeueAt":{"description":"requeueAt records the time when a workload will be re-queued.\nWhen a deactivated (`.spec.activate`=`false`) workload is reactivated (`.spec.activate`=`true`),\nthis time would be reset to null.","type":"string","format":"date-time"}}},"resourceRequests":{"description":"resourceRequests provides a detailed view of the resources that were\nrequested by a non-admitted workload when it was considered for admission.\nIf admission is non-null, resourceRequests will be empty because\nadmission.resourceUsage contains the detailed information.","type":"array","maxItems":8,"items":{"type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the podSet. It should match one of the names in .spec.podSets.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"resources":{"description":"resources is the total resources all the pods in the podset need to run.\n\nBeside what is provided in podSet's specs, this value also takes into account\nthe LimitRange defaults and RuntimeClass overheads at the moment of consideration\nand the application of resource.excludeResourcePrefixes and resource.transformations.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"schedulingStats":{"description":"schedulingStats tracks scheduling statistics","type":"object","properties":{"evictions":{"description":"evictions tracks eviction statistics by reason and underlyingCause.","type":"array","items":{"type":"object","required":["count","reason","underlyingCause"],"properties":{"count":{"description":"count tracks the number of evictions for this reason and detailed reason.","type":"integer","format":"int32","minimum":0},"reason":{"description":"reason specifies the programmatic identifier for the eviction cause.","type":"string","maxLength":316},"underlyingCause":{"description":"underlyingCause specifies a finer-grained explanation that complements the eviction reason.\nThis may be an empty string.","type":"string","maxLength":316}}},"x-kubernetes-list-map-keys":["reason","underlyingCause"],"x-kubernetes-list-type":"map"}}},"unhealthyNodes":{"description":"unhealthyNodes holds the failed nodes running at least one pod of this workload\nwhen Topology-Aware Scheduling is used. This field should not be set by the users.\nIt indicates Kueue's scheduler is searching for replacements of the failed nodes.\nRequires enabling the TASFailedNodeReplacement feature gate.","type":"array","items":{"type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the unhealthy node.","type":"string"}}}}},"x-kubernetes-validations":[{"message":"clusterName is immutable once set","rule":"!has(oldSelf.clusterName) || !has(self.clusterName) || oldSelf.clusterName == self.clusterName"},{"message":"clusterName and nominatedClusterNames are mutually exclusive","rule":"!has(self.clusterName) || (!has(self.nominatedClusterNames) || (has(self.nominatedClusterNames) && size(self.nominatedClusterNames) == 0))"}]}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta1"}],"x-kubernetes-validations":[{"message":"podSetAssignments must have the same number of podSets as the spec","rule":"has(self.status) && has(self.status.conditions) && self.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True') && has(self.status.admission) ? size(self.spec.podSets) == size(self.status.admission.podSetAssignments) : true"},{"message":"priorityClassSource is immutable while workload quota reserved","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True')) ? (oldSelf.spec.priorityClassSource == self.spec.priorityClassSource) : true"},{"message":"priorityClassName is immutable while workload quota reserved and priorityClassSource is not equal to kueue.x-k8s.io/workloadpriorityclass","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True') && (self.spec.priorityClassSource != 'kueue.x-k8s.io/workloadpriorityclass') && has(oldSelf.spec.priorityClassName) && has(self.spec.priorityClassName)) ? (oldSelf.spec.priorityClassName == self.spec.priorityClassName) : true"},{"message":"queueName is immutable while workload quota reserved","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True')) && (has(self.status) && has(self.status.conditions) && self.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True')) && has(oldSelf.spec.queueName) && has(self.spec.queueName) ? oldSelf.spec.queueName == self.spec.queueName : true"},{"message":"maximumExecutionTimeSeconds is immutable while workload quota reserved","rule":"((has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'Admitted' && c.status == 'True')) && (has(self.status) && has(self.status.conditions) && self.status.conditions.exists(c, c.type == 'Admitted' && c.status == 'True')))?((has(oldSelf.spec.maximumExecutionTimeSeconds)?oldSelf.spec.maximumExecutionTimeSeconds:0) ==  (has(self.spec.maximumExecutionTimeSeconds)?self.spec.maximumExecutionTimeSeconds:0)):true"}]},"io.x-k8s.kueue.v1beta1.WorkloadList":{"description":"WorkloadList is a list of Workload","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of workloads. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.Workload"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"WorkloadList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.WorkloadPriorityClass":{"description":"WorkloadPriorityClass is the Schema for the workloadPriorityClass API","type":"object","required":["value"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"description":{"description":"description is an arbitrary string that usually provides guidelines on\nwhen this workloadPriorityClass should be used.","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"value":{"description":"value represents the integer value of this workloadPriorityClass. This is the actual priority that workloads\nreceive when jobs have the name of this class in their workloadPriorityClass label.\nChanging the value of workloadPriorityClass doesn't affect the priority of workloads that were already created.","type":"integer","format":"int32"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta1.WorkloadPriorityClassList":{"description":"WorkloadPriorityClassList is a list of WorkloadPriorityClass","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of workloadpriorityclasses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta1.WorkloadPriorityClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClassList","version":"v1beta1"}]},"io.x-k8s.kueue.v1beta2.AdmissionCheck":{"description":"AdmissionCheck is the Schema for the admissionchecks API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the AdmissionCheck.","type":"object","required":["controllerName"],"properties":{"controllerName":{"description":"controllerName identifies the controller that processes the AdmissionCheck,\nnot necessarily a Kubernetes Pod or Deployment name. Cannot be empty.","type":"string","maxLength":253,"minLength":1,"x-kubernetes-validations":[{"message":"field is immutable","rule":"self == oldSelf"}]},"parameters":{"description":"parameters identifies a configuration with additional parameters for the\ncheck.","type":"object","required":["apiGroup","kind","name"],"properties":{"apiGroup":{"description":"apiGroup is the group for the resource being referenced.","type":"string","maxLength":253,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"kind":{"description":"kind is the type of the resource being referenced.","type":"string","maxLength":63,"minLength":1,"pattern":"^(?i)[a-z]([-a-z0-9]*[a-z0-9])?$"},"name":{"description":"name is the name of the resource being referenced.","type":"string","maxLength":63,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}}}},"status":{"description":"status is the status of the AdmissionCheck.","type":"object","properties":{"conditions":{"description":"conditions hold the latest available observations of the AdmissionCheck\ncurrent state.\nThis is limited to at most 16 separate conditions.","type":"array","maxItems":16,"items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"AdmissionCheck","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.AdmissionCheckList":{"description":"AdmissionCheckList is a list of AdmissionCheck","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of admissionchecks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.AdmissionCheck"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"AdmissionCheckList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.ClusterQueue":{"description":"ClusterQueue is the Schema for the clusterQueue API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the ClusterQueue.","type":"object","properties":{"admissionChecksStrategy":{"description":"admissionChecksStrategy defines a list of strategies to determine which ResourceFlavors require AdmissionChecks.","type":"object","required":["admissionChecks"],"properties":{"admissionChecks":{"description":"admissionChecks is a list of strategies for AdmissionChecks","type":"array","maxItems":64,"minItems":1,"items":{"description":"AdmissionCheckStrategyRule defines rules for a single AdmissionCheck","type":"object","required":["name"],"properties":{"name":{"description":"name is an AdmissionCheck's name.","type":"string","maxLength":316,"minLength":1},"onFlavors":{"description":"onFlavors is a list of ResourceFlavors' names that this AdmissionCheck should run for.\nIf empty, the AdmissionCheck will run for all workloads submitted to the ClusterQueue.","type":"array","maxItems":64,"items":{"description":"ResourceFlavorReference is the name of the ResourceFlavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"x-kubernetes-list-type":"set"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"admissionScope":{"description":"admissionScope indicates whether ClusterQueue uses the Admission Fair Sharing","type":"object","required":["admissionMode"],"properties":{"admissionMode":{"description":"admissionMode indicates which mode for AdmissionFairSharing should be used\nin the AdmissionScope. Possible values are:\n- UsageBasedAdmissionFairSharing\n- NoAdmissionFairSharing","type":"string","enum":["UsageBasedAdmissionFairSharing","NoAdmissionFairSharing"]}}},"cohortName":{"description":"cohortName that this ClusterQueue belongs to. CQs that belong to the\nsame cohort can borrow unused resources from each other.\n\nA CQ can be a member of a single borrowing cohort. A workload submitted\nto a queue referencing this CQ can borrow quota from any CQ in the cohort.\nOnly quota for the [resource, flavor] pairs listed in the CQ can be\nborrowed.\nIf empty, this ClusterQueue cannot borrow from any other ClusterQueue and\nvice versa.\n\nA cohort is a name that links CQs together, but it doesn't reference any\nobject.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"fairSharing":{"description":"fairSharing defines the properties of the ClusterQueue when\nparticipating in FairSharing.  The values are only relevant\nif FairSharing is enabled in the Kueue configuration.","type":"object","properties":{"weight":{"description":"weight gives a comparative advantage to this ClusterQueue\nor Cohort when competing for unused resources in the\nCohort.  The share is based on the dominant resource usage\nabove nominal quotas for each resource, divided by the\nweight.  Admission prioritizes scheduling workloads from\nClusterQueues and Cohorts with the lowest share and\npreempting workloads from the ClusterQueues and Cohorts\nwith the highest share.  A zero weight implies infinite\nshare value, meaning that this Node will always be at\ndisadvantage against other ClusterQueues and Cohorts.\nWhen not 0, Weight must be greater than 10^-9.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"flavorFungibility":{"description":"flavorFungibility defines whether a workload should try the next flavor\nbefore borrowing or preempting in the flavor being evaluated.","type":"object","properties":{"preference":{"description":"preference guides the choosing of the flavor for admission in case all candidate flavors\nrequire either preemption, borrowing, or both. The possible values are:\n- `BorrowingOverPreemption` (default): prefer to use borrowing rather than preemption\nwhen such a choice is possible. More technically it minimizes the borrowing distance\nin the cohort tree, and solves tie-breaks by preferring better preemption mode\n(reclaim over preemption within ClusterQueue).\n- `PreemptionOverBorrowing`: prefer to use preemption rather than borrowing\nwhen such a choice is possible.  More technically it optimizes the preemption mode\n(reclaim over preemption within ClusterQueue), and solves tie-breaks by minimizing\nthe borrowing distance in the cohort tree.","type":"string","enum":["BorrowingOverPreemption","PreemptionOverBorrowing"]},"whenCanBorrow":{"description":"whenCanBorrow determines whether a workload should try the next flavor\nbefore borrowing in current flavor. The possible values are:\n\n- `MayStopSearch` (default): stop the search for candidate flavors if workload\n  fits or requires borrowing to fit.\n- `TryNextFlavor`: try next flavor if workload requires borrowing to fit.","type":"string","enum":["MayStopSearch","TryNextFlavor"]},"whenCanPreempt":{"description":"whenCanPreempt determines whether a workload should try the next flavor\nbefore preempting in current flavor. The possible values are:\n\n- `MayStopSearch`: stop the search for candidate flavors if workload fits or requires\n  preemption to fit.\n- `TryNextFlavor` (default): try next flavor if workload requires preemption\n  to fit in current flavor.","type":"string","enum":["MayStopSearch","TryNextFlavor"]}},"x-kubernetes-validations":[{"message":"preference can only be set when both whenCanBorrow and whenCanPreempt are TryNextFlavor","rule":"!has(self.preference) || (self.whenCanBorrow == 'TryNextFlavor' && self.whenCanPreempt == 'TryNextFlavor')"}]},"namespaceSelector":{"description":"namespaceSelector defines which namespaces are allowed to submit workloads to\nthis clusterQueue. Beyond this basic support for policy, a policy agent like\nGatekeeper should be used to enforce more advanced policies.\nDefaults to null which is a nothing selector (no namespaces eligible).\nIf set to an empty selector `{}`, then all namespaces are eligible.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"preemption":{"description":"preemption defines the preemption policies.","type":"object","properties":{"borrowWithinCohort":{"description":"borrowWithinCohort determines whether a pending Workload can preempt\nWorkloads from other ClusterQueues in the cohort if the workload requires borrowing.\nMay only be configured with Classical Preemption, and __not__ with Fair Sharing.","type":"object","properties":{"maxPriorityThreshold":{"description":"maxPriorityThreshold allows to restrict the set of workloads which\nmight be preempted by a borrowing workload, to only workloads with\npriority less than or equal to the specified threshold priority.\nWhen the threshold is not specified, then any workload satisfying the\npolicy can be preempted by the borrowing workload.","type":"integer","format":"int32"},"policy":{"description":"policy determines the policy for preemption to reclaim quota within cohort while borrowing.\nPossible values are:\n- `Never` (default): do not allow for preemption, in other\n   ClusterQueues within the cohort, for a borrowing workload.\n- `LowerPriority`: allow preemption, in other ClusterQueues\n   within the cohort, for a borrowing workload, but only if\n   the preempted workloads are of lower priority.","type":"string","enum":["Never","LowerPriority"]}}},"reclaimWithinCohort":{"description":"reclaimWithinCohort determines whether a pending Workload can preempt\nWorkloads from other ClusterQueues in the cohort that are using more than\ntheir nominal quota. The possible values are:\n\n- `Never` (default): do not preempt Workloads in the cohort.\n- `LowerPriority`: **Classic Preemption** if the pending Workload\n  fits within the nominal quota of its ClusterQueue, only preempt\n  Workloads in the cohort that have lower priority than the pending\n  Workload. **Fair Sharing** only preempt Workloads in the cohort that\n  have lower priority than the pending Workload and that satisfy the\n  Fair Sharing preemptionStategies.\n- `Any`: **Classic Preemption** if the pending Workload fits within\n   the nominal quota of its ClusterQueue, preempt any Workload in the\n   cohort, irrespective of priority. **Fair Sharing** preempt Workloads\n   in the cohort that satisfy the Fair Sharing preemptionStrategies.","type":"string","enum":["Never","LowerPriority","Any"]},"withinClusterQueue":{"description":"withinClusterQueue determines whether a pending Workload that doesn't fit\nwithin the nominal quota for its ClusterQueue, can preempt active Workloads in\nthe ClusterQueue. The possible values are:\n\n- `Never` (default): do not preempt Workloads in the ClusterQueue.\n- `LowerPriority`: only preempt Workloads in the ClusterQueue that have\n  lower priority than the pending Workload.\n- `LowerOrNewerEqualPriority`: only preempt Workloads in the ClusterQueue that\n  either have a lower priority than the pending workload or equal priority\n  and are newer than the pending workload.","type":"string","enum":["Never","LowerPriority","LowerOrNewerEqualPriority"]}},"x-kubernetes-validations":[{"message":"reclaimWithinCohort=Never and borrowWithinCohort.Policy!=Never","rule":"!(self.reclaimWithinCohort == 'Never' && has(self.borrowWithinCohort) &&  self.borrowWithinCohort.policy != 'Never')"}]},"queueingStrategy":{"description":"queueingStrategy indicates the queueing strategy of the workloads\nacross the queues in this ClusterQueue.\nCurrent Supported Strategies:\n\n- StrictFIFO: workloads are ordered strictly by creation time.\nOlder workloads that can't be admitted will block admitting newer\nworkloads even if they fit available quota.\n- BestEffortFIFO: workloads are ordered by creation time,\nhowever older workloads that can't be admitted will not block\nadmitting newer workloads that fit existing quota.","type":"string","enum":["StrictFIFO","BestEffortFIFO"]},"resourceGroups":{"description":"resourceGroups describes groups of resources.\nEach resource group defines the list of resources and a list of flavors\nthat provide quotas for these resources.\nEach resource and each flavor can only form part of one resource group.\nresourceGroups can be up to 16, with a max of 256 total flavors across all groups.","type":"array","maxItems":16,"items":{"type":"object","required":["coveredResources","flavors"],"properties":{"coveredResources":{"description":"coveredResources is the list of resources covered by the flavors in this\ngroup.\nExamples: cpu, memory, vendor.com/gpu.\nThe list cannot be empty and it can contain up to 64 resources. With a total\nof up to 256 covered resources across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"description":"ResourceName is the name identifying various resources in a ResourceList.","type":"string"},"x-kubernetes-list-type":"atomic"},"flavors":{"description":"flavors is the list of flavors that provide the resources of this group.\nTypically, different flavors represent different hardware models\n(e.g., gpu models, cpu architectures) or pricing models (on-demand vs spot\ncpus).\nEach flavor MUST list all the resources listed for this group in the same\norder as the .resources field.\nThe list cannot be empty and it can contain up to 64 flavors, with a max of\n256 total flavors across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of this flavor. The name should match the .metadata.name of a\nResourceFlavor. If a matching ResourceFlavor does not exist, the\nClusterQueue will have an Active condition set to False.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources is the list of quotas for this flavor per resource.\nThere could be up to 64 resources.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","nominalQuota"],"properties":{"borrowingLimit":{"description":"borrowingLimit is the maximum amount of quota for the [flavor, resource]\ncombination that this ClusterQueue is allowed to borrow from the unused\nquota of other ClusterQueues in the same cohort.\nIn total, at a given time, Workloads in a ClusterQueue can consume a\nquantity of quota equal to nominalQuota+borrowingLimit, assuming the other\nClusterQueues in the cohort have enough unused quota.\nIf null, it means that there is no borrowing limit.\nIf not null, it must be non-negative.\nborrowingLimit must be null if spec.cohortName is empty.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"lendingLimit":{"description":"lendingLimit is the maximum amount of unused quota for the [flavor, resource]\ncombination that this ClusterQueue can lend to other ClusterQueues in the same cohort.\nIn total, at a given time, ClusterQueue reserves for its exclusive use\na quantity of quota equals to nominalQuota - lendingLimit.\nIf null, it means that there is no lending limit, meaning that\nall the nominalQuota can be borrowed by other clusterQueues in the cohort.\nIf not null, it must be non-negative.\nlendingLimit must be null if spec.cohortName is empty.\nThis field is in beta stage and is enabled by default.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of this resource.","type":"string"},"nominalQuota":{"description":"nominalQuota is the quantity of this resource that is available for\nWorkloads admitted by this ClusterQueue at a point in time.\nThe nominalQuota must be non-negative.\nnominalQuota should represent the resources in the cluster available for\nrunning jobs (after discounting resources consumed by system components\nand pods not managed by kueue). In an autoscaled cluster, nominalQuota\nshould account for resources that can be provided by a component such as\nKubernetes cluster-autoscaler.\n\nIf the ClusterQueue belongs to a cohort, the sum of the quotas for each\n(flavor, resource) combination defines the maximum quantity that can be\nallocated by a ClusterQueue in the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}},"x-kubernetes-validations":[{"message":"flavors must have the same number of resources as the coveredResources","rule":"self.flavors.all(x, size(x.resources) == size(self.coveredResources))"}]},"x-kubernetes-list-type":"atomic"},"stopPolicy":{"description":"stopPolicy - if set to a value different from None, the ClusterQueue is considered Inactive, no new reservation being\nmade.\n\nDepending on its value, its associated workloads will:\n\n- None - Workloads are admitted\n- HoldAndDrain - Admitted workloads are evicted and Reserving workloads will cancel the reservation.\n- Hold - Admitted workloads will run to completion and Reserving workloads will cancel the reservation.","type":"string","enum":["None","Hold","HoldAndDrain"]}},"x-kubernetes-validations":[{"message":"borrowingLimit must be nil when cohort is empty","rule":"!has(self.cohortName) && has(self.resourceGroups) ? self.resourceGroups.all(rg, rg.flavors.all(f, f.resources.all(r, !has(r.borrowingLimit)))) : true"}]},"status":{"description":"status is the status of the ClusterQueue.","type":"object","properties":{"admittedWorkloads":{"description":"admittedWorkloads is the number of workloads currently admitted to this\nclusterQueue and haven't finished yet.","type":"integer","format":"int32"},"conditions":{"description":"conditions hold the latest available observations of the ClusterQueue\ncurrent state.\nconditions are limited to 16 elements.","type":"array","maxItems":16,"items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"fairSharing":{"description":"fairSharing contains the current state for this ClusterQueue\nwhen participating in Fair Sharing.\nThis is recorded only when Fair Sharing is enabled in the Kueue configuration.","type":"object","required":["weightedShare"],"properties":{"weightedShare":{"description":"weightedShare represents the maximum of the ratios of usage\nabove nominal quota to the lendable resources in the\nCohort, among all the resources provided by the Node, and\ndivided by the weight.  If zero, it means that the usage of\nthe Node is below the nominal quota.  If the Node has a\nweight of zero and is borrowing, this will return\n9223372036854775807, the maximum possible share value.","type":"integer","format":"int64"}}},"flavorsReservation":{"description":"flavorsReservation are the reserved quotas, by flavor, currently in use by the\nworkloads assigned to this ClusterQueue.\nflavorsReservation are limited to 64 elements.","type":"array","maxItems":64,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":64,"items":{"type":"object","required":["name"],"properties":{"borrowed":{"description":"borrowed is quantity of quota that is borrowed from the cohort. In other\nwords, it's the used quota that is over the nominalQuota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of the resource","type":"string"},"total":{"description":"total is the total quantity of used quota, including the amount borrowed\nfrom the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"flavorsUsage":{"description":"flavorsUsage are the used quotas, by flavor, currently in use by the\nworkloads admitted in this ClusterQueue.","type":"array","maxItems":64,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":64,"items":{"type":"object","required":["name"],"properties":{"borrowed":{"description":"borrowed is quantity of quota that is borrowed from the cohort. In other\nwords, it's the used quota that is over the nominalQuota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of the resource","type":"string"},"total":{"description":"total is the total quantity of used quota, including the amount borrowed\nfrom the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"pendingWorkloads":{"description":"pendingWorkloads is the number of workloads currently waiting to be\nadmitted to this clusterQueue.","type":"integer","format":"int32"},"reservingWorkloads":{"description":"reservingWorkloads is the number of workloads currently reserving quota in this\nclusterQueue.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ClusterQueue","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.ClusterQueueList":{"description":"ClusterQueueList is a list of ClusterQueue","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterqueues. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ClusterQueue"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ClusterQueueList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.Cohort":{"description":"Cohort defines the Cohorts API.\n\nHierarchical Cohorts (any Cohort which has a parent) are compatible\nwith Fair Sharing as of v0.11. Using these features together in\nV0.9 and V0.10 is unsupported, and results in undefined behavior.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the Cohort.","type":"object","properties":{"fairSharing":{"description":"fairSharing defines the properties of the Cohort when\nparticipating in FairSharing. The values are only relevant\nif FairSharing is enabled in the Kueue configuration.","type":"object","properties":{"weight":{"description":"weight gives a comparative advantage to this ClusterQueue\nor Cohort when competing for unused resources in the\nCohort.  The share is based on the dominant resource usage\nabove nominal quotas for each resource, divided by the\nweight.  Admission prioritizes scheduling workloads from\nClusterQueues and Cohorts with the lowest share and\npreempting workloads from the ClusterQueues and Cohorts\nwith the highest share.  A zero weight implies infinite\nshare value, meaning that this Node will always be at\ndisadvantage against other ClusterQueues and Cohorts.\nWhen not 0, Weight must be greater than 10^-9.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"parentName":{"description":"parentName references the name of the Cohort's parent, if\nany. It satisfies one of three cases:\n1) Unset. This Cohort is the root of its Cohort tree.\n2) References a non-existent Cohort. We use default Cohort (no borrowing/lending limits).\n3) References an existent Cohort.\n\nIf a cycle is created, we disable all members of the\nCohort, including ClusterQueues, until the cycle is\nremoved.  We prevent further admission while the cycle\nexists.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resourceGroups":{"description":"resourceGroups describes groupings of Resources and\nFlavors.  Each ResourceGroup defines a list of Resources\nand a list of Flavors which provide quotas for these\nResources. Each Resource and each Flavor may only form part\nof one ResourceGroup.  There may be up to 16 ResourceGroups\nwithin a Cohort.\n\nPlease note that nominalQuota defined at the Cohort level\nrepresents additional resources on top of those defined by\nClusterQueues within the Cohort. The Cohort's nominalQuota\nmay be thought of as a shared pool for the ClusterQueues\nwithin it. Additionally, this quota may also be lent out to\nparent Cohort(s), subject to LendingLimit.\n\nBorrowingLimit limits how much members of this Cohort\nsubtree can borrow from the parent subtree.\n\nLendingLimit limits how much members of this Cohort subtree\ncan lend to the parent subtree.\n\nBorrowing and Lending limits must only be set when the\nCohort has a parent.  Otherwise, the Cohort create/update\nwill be rejected by the webhook.","type":"array","maxItems":16,"items":{"type":"object","required":["coveredResources","flavors"],"properties":{"coveredResources":{"description":"coveredResources is the list of resources covered by the flavors in this\ngroup.\nExamples: cpu, memory, vendor.com/gpu.\nThe list cannot be empty and it can contain up to 64 resources. With a total\nof up to 256 covered resources across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"description":"ResourceName is the name identifying various resources in a ResourceList.","type":"string"},"x-kubernetes-list-type":"atomic"},"flavors":{"description":"flavors is the list of flavors that provide the resources of this group.\nTypically, different flavors represent different hardware models\n(e.g., gpu models, cpu architectures) or pricing models (on-demand vs spot\ncpus).\nEach flavor MUST list all the resources listed for this group in the same\norder as the .resources field.\nThe list cannot be empty and it can contain up to 64 flavors, with a max of\n256 total flavors across all resource groups in the ClusterQueue.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of this flavor. The name should match the .metadata.name of a\nResourceFlavor. If a matching ResourceFlavor does not exist, the\nClusterQueue will have an Active condition set to False.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources is the list of quotas for this flavor per resource.\nThere could be up to 64 resources.","type":"array","maxItems":64,"minItems":1,"items":{"type":"object","required":["name","nominalQuota"],"properties":{"borrowingLimit":{"description":"borrowingLimit is the maximum amount of quota for the [flavor, resource]\ncombination that this ClusterQueue is allowed to borrow from the unused\nquota of other ClusterQueues in the same cohort.\nIn total, at a given time, Workloads in a ClusterQueue can consume a\nquantity of quota equal to nominalQuota+borrowingLimit, assuming the other\nClusterQueues in the cohort have enough unused quota.\nIf null, it means that there is no borrowing limit.\nIf not null, it must be non-negative.\nborrowingLimit must be null if spec.cohortName is empty.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"lendingLimit":{"description":"lendingLimit is the maximum amount of unused quota for the [flavor, resource]\ncombination that this ClusterQueue can lend to other ClusterQueues in the same cohort.\nIn total, at a given time, ClusterQueue reserves for its exclusive use\na quantity of quota equals to nominalQuota - lendingLimit.\nIf null, it means that there is no lending limit, meaning that\nall the nominalQuota can be borrowed by other clusterQueues in the cohort.\nIf not null, it must be non-negative.\nlendingLimit must be null if spec.cohortName is empty.\nThis field is in beta stage and is enabled by default.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"name":{"description":"name of this resource.","type":"string"},"nominalQuota":{"description":"nominalQuota is the quantity of this resource that is available for\nWorkloads admitted by this ClusterQueue at a point in time.\nThe nominalQuota must be non-negative.\nnominalQuota should represent the resources in the cluster available for\nrunning jobs (after discounting resources consumed by system components\nand pods not managed by kueue). In an autoscaled cluster, nominalQuota\nshould account for resources that can be provided by a component such as\nKubernetes cluster-autoscaler.\n\nIf the ClusterQueue belongs to a cohort, the sum of the quotas for each\n(flavor, resource) combination defines the maximum quantity that can be\nallocated by a ClusterQueue in the cohort.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}},"x-kubernetes-validations":[{"message":"flavors must have the same number of resources as the coveredResources","rule":"self.flavors.all(x, size(x.resources) == size(self.coveredResources))"}]},"x-kubernetes-list-type":"atomic"}}},"status":{"description":"status is the status of the Cohort.","type":"object","properties":{"fairSharing":{"description":"fairSharing contains the current state for this Cohort\nwhen participating in Fair Sharing.\nThe is recorded only when Fair Sharing is enabled in the Kueue configuration.","type":"object","required":["weightedShare"],"properties":{"weightedShare":{"description":"weightedShare represents the maximum of the ratios of usage\nabove nominal quota to the lendable resources in the\nCohort, among all the resources provided by the Node, and\ndivided by the weight.  If zero, it means that the usage of\nthe Node is below the nominal quota.  If the Node has a\nweight of zero and is borrowing, this will return\n9223372036854775807, the maximum possible share value.","type":"integer","format":"int64"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"Cohort","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.CohortList":{"description":"CohortList is a list of Cohort","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of cohorts. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Cohort"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"CohortList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.LocalQueue":{"description":"LocalQueue is the Schema for the localQueues API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the LocalQueue.","type":"object","properties":{"clusterQueue":{"description":"clusterQueue is a reference to a clusterQueue that backs this localQueue.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$","x-kubernetes-validations":[{"message":"field is immutable","rule":"self == oldSelf"}]},"fairSharing":{"description":"fairSharing defines the properties of the LocalQueue when\nparticipating in AdmissionFairSharing.  The values are only relevant\nif AdmissionFairSharing is enabled in the Kueue configuration.","type":"object","properties":{"weight":{"description":"weight gives a comparative advantage to this ClusterQueue\nor Cohort when competing for unused resources in the\nCohort.  The share is based on the dominant resource usage\nabove nominal quotas for each resource, divided by the\nweight.  Admission prioritizes scheduling workloads from\nClusterQueues and Cohorts with the lowest share and\npreempting workloads from the ClusterQueues and Cohorts\nwith the highest share.  A zero weight implies infinite\nshare value, meaning that this Node will always be at\ndisadvantage against other ClusterQueues and Cohorts.\nWhen not 0, Weight must be greater than 10^-9.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"stopPolicy":{"description":"stopPolicy - if set to a value different from None, the LocalQueue is considered Inactive,\nno new reservation being made.\n\nDepending on its value, its associated workloads will:\n\n- None - Workloads are admitted\n- HoldAndDrain - Admitted workloads are evicted and Reserving workloads will cancel the reservation.\n- Hold - Admitted workloads will run to completion and Reserving workloads will cancel the reservation.","type":"string","enum":["None","Hold","HoldAndDrain"]}}},"status":{"description":"status is the status of the LocalQueue.","type":"object","properties":{"admittedWorkloads":{"description":"admittedWorkloads is the number of workloads in this LocalQueue\nadmitted to a ClusterQueue and that haven't finished yet.","type":"integer","format":"int32"},"conditions":{"description":"conditions hold the latest available observations of the LocalQueue\ncurrent state.\nconditions are limited to 16 items.","type":"array","maxItems":16,"items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"fairSharing":{"description":"fairSharing contains the information about the current status of fair sharing.","type":"object","required":["weightedShare"],"properties":{"admissionFairSharingStatus":{"description":"admissionFairSharingStatus represents information relevant to the Admission Fair Sharing","type":"object","required":["consumedResources","lastUpdate"],"properties":{"consumedResources":{"description":"consumedResources represents the aggregated usage of resources over time,\nwith decaying function applied.\nThe value is populated if usage consumption functionality is enabled in Kueue config.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"lastUpdate":{"description":"lastUpdate is the time when share and consumed resources were updated.","type":"string","format":"date-time"}}},"weightedShare":{"description":"weightedShare represents the maximum of the ratios of usage\nabove nominal quota to the lendable resources in the\nCohort, among all the resources provided by the Node, and\ndivided by the weight.  If zero, it means that the usage of\nthe Node is below the nominal quota.  If the Node has a\nweight of zero and is borrowing, this will return\n9223372036854775807, the maximum possible share value.","type":"integer","format":"int64"}}},"flavorsReservation":{"description":"flavorsReservation are the reserved quotas, by flavor currently in use by the\nworkloads assigned to this LocalQueue.","type":"array","maxItems":16,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":16,"items":{"type":"object","required":["name"],"properties":{"name":{"description":"name of the resource.","type":"string"},"total":{"description":"total is the total quantity of used quota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"flavorsUsage":{"description":"flavorsUsage are the used quotas, by flavor currently in use by the\nworkloads assigned to this LocalQueue.","type":"array","maxItems":16,"items":{"type":"object","required":["name","resources"],"properties":{"name":{"description":"name of the flavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"resources":{"description":"resources lists the quota usage for the resources in this flavor.","type":"array","maxItems":16,"items":{"type":"object","required":["name"],"properties":{"name":{"description":"name of the resource.","type":"string"},"total":{"description":"total is the total quantity of used quota.","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"pendingWorkloads":{"description":"pendingWorkloads is the number of Workloads in the LocalQueue not yet admitted to a ClusterQueue","type":"integer","format":"int32"},"reservingWorkloads":{"description":"reservingWorkloads is the number of workloads in this LocalQueue\nreserving quota in a ClusterQueue and that haven't finished yet.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"LocalQueue","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.LocalQueueList":{"description":"LocalQueueList is a list of LocalQueue","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of localqueues. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.LocalQueue"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"LocalQueueList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.MultiKueueCluster":{"description":"MultiKueueCluster is the Schema for the multikueue API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the MultiKueueCluster.","type":"object","required":["clusterSource"],"properties":{"clusterSource":{"description":"clusterSource is the source to connect to the cluster.","type":"object","properties":{"clusterProfileRef":{"description":"clusterProfileRef is the reference to the ClusterProfile object used to connect to the cluster.","type":"object","required":["name"],"properties":{"name":{"description":"name of the ClusterProfile.","type":"string","maxLength":256,"minLength":1}}},"kubeConfig":{"description":"kubeConfig is information on how to connect to the cluster.","type":"object","required":["location"],"properties":{"location":{"description":"location of the KubeConfig.\n\nIf LocationType is Secret then Location is the name of the secret inside the namespace in\nwhich the kueue controller manager is running. The config should be stored in the \"kubeconfig\" key.","type":"string","maxLength":256,"minLength":1},"locationType":{"description":"locationType of the KubeConfig.","type":"string","enum":["Secret","Path"]}}}},"x-kubernetes-validations":[{"message":"exactly one of the fields in [kubeConfig clusterProfileRef] must be set","rule":"[has(self.kubeConfig),has(self.clusterProfileRef)].filter(x,x==true).size() == 1"}]}}},"status":{"description":"status is the status of the MultiKueueCluster.","type":"object","properties":{"conditions":{"description":"conditions hold the latest available observations of the MultiKueueCluster\ncurrent state.\nconditions are limited to 16 elements.","type":"array","maxItems":16,"items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueCluster","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.MultiKueueClusterList":{"description":"MultiKueueClusterList is a list of MultiKueueCluster","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of multikueueclusters. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueCluster"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueClusterList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.MultiKueueConfig":{"description":"MultiKueueConfig is the Schema for the multikueue API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the MultiKueueConfig.","type":"object","required":["clusters"],"properties":{"clusters":{"description":"clusters is a list of MultiKueueClusters names where the workloads from the ClusterQueue should be distributed.","type":"array","maxItems":20,"minItems":1,"items":{"type":"string","maxLength":256},"x-kubernetes-list-type":"set"}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueConfig","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.MultiKueueConfigList":{"description":"MultiKueueConfigList is a list of MultiKueueConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of multikueueconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.MultiKueueConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"MultiKueueConfigList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig":{"description":"ProvisioningRequestConfig is the Schema for the provisioningrequestconfig API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the ProvisioningRequestConfig.","type":"object","required":["provisioningClassName"],"properties":{"managedResources":{"description":"managedResources contains the list of resources managed by the autoscaling.\n\nIf empty, all resources are considered managed.\n\nIf not empty, the ProvisioningRequest will contain only the podsets that are\nrequesting at least one of them.\n\nIf none of the workloads podsets is requesting at least a managed resource,\nthe workload is considered ready.","type":"array","maxItems":100,"items":{"description":"ResourceName is the name identifying various resources in a ResourceList.","type":"string"},"x-kubernetes-list-type":"set"},"parameters":{"description":"parameters contains all other parameters classes may require.","type":"object","maxProperties":100,"additionalProperties":{"description":"Parameter is limited to 255 characters.","type":"string","maxLength":255}},"podSetMergePolicy":{"description":"podSetMergePolicy specifies the policy for merging PodSets before being passed\nto the cluster autoscaler.","type":"string","enum":["IdenticalPodTemplates","IdenticalWorkloadSchedulingRequirements"]},"podSetUpdates":{"description":"podSetUpdates specifies the update of the workload's PodSetUpdates which\nare used to target the provisioned nodes.","type":"object","properties":{"nodeSelector":{"description":"nodeSelector specifies the list of updates for the NodeSelector.","type":"array","maxItems":8,"items":{"type":"object","required":["key","valueFromProvisioningClassDetail"],"properties":{"key":{"description":"key specifies the key for the NodeSelector.","type":"string","maxLength":317,"minLength":1,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"},"valueFromProvisioningClassDetail":{"description":"valueFromProvisioningClassDetail specifies the key of the\nProvisioningRequest.status.provisioningClassDetails from which the value\nis used for the update.","type":"string","maxLength":32768,"minLength":1}}},"x-kubernetes-list-map-keys":["key"],"x-kubernetes-list-type":"map"}}},"provisioningClassName":{"description":"provisioningClassName describes the different modes of provisioning the resources.\nCheck autoscaling.x-k8s.io ProvisioningRequestSpec.ProvisioningClassName for details.","type":"string","maxLength":253,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"retryStrategy":{"description":"retryStrategy defines strategy for retrying ProvisioningRequest.\nIf null, then the default configuration is applied with the following parameter values:\nbackoffLimitCount:  3\nbackoffBaseSeconds: 60 - 1 min\nbackoffMaxSeconds:  1800 - 30 mins\n\nTo switch off retry mechanism\nset retryStrategy.backoffLimitCount to 0.","type":"object","properties":{"backoffBaseSeconds":{"description":"backoffBaseSeconds defines the base for the exponential backoff for\nre-queuing an evicted workload.\n\nDefaults to 60.","type":"integer","format":"int32"},"backoffLimitCount":{"description":"backoffLimitCount defines the maximum number of re-queuing retries.\nOnce the number is reached, the workload is deactivated (`.spec.activate`=`false`).\n\nEvery backoff duration is about \"b*2^(n-1)+Rand\" where:\n- \"b\" represents the base set by \"BackoffBaseSeconds\" parameter,\n- \"n\" represents the \"workloadStatus.requeueState.count\",\n- \"Rand\" represents the random jitter.\nDuring this time, the workload is taken as an inadmissible and\nother workloads will have a chance to be admitted.\nBy default, the consecutive requeue delays are around: (60s, 120s, 240s, ...).\n\nDefaults to 3.","type":"integer","format":"int32"},"backoffMaxSeconds":{"description":"backoffMaxSeconds defines the maximum backoff time to re-queue an evicted workload.\n\nDefaults to 1800.","type":"integer","format":"int32"}}}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfig","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.ProvisioningRequestConfigList":{"description":"ProvisioningRequestConfigList is a list of ProvisioningRequestConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of provisioningrequestconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ProvisioningRequestConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ProvisioningRequestConfigList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.ResourceFlavor":{"description":"ResourceFlavor is the Schema for the resourceflavors API.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the ResourceFlavor.","type":"object","properties":{"nodeLabels":{"description":"nodeLabels are labels that associate the ResourceFlavor with Nodes that\nhave the same labels.\nWhen a Workload is admitted, its podsets can only get assigned\nResourceFlavors whose nodeLabels match the nodeSelector and nodeAffinity\nfields.\nOnce a ResourceFlavor is assigned to a podSet, the ResourceFlavor's\nnodeLabels should be injected into the pods of the Workload by the\ncontroller that integrates with the Workload object.\n\nnodeLabels can be up to 8 elements.","type":"object","maxProperties":8,"additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"nodeTaints":{"description":"nodeTaints are taints that the nodes associated with this ResourceFlavor\nhave.\nWorkloads' podsets must have tolerations for these nodeTaints in order to\nget assigned this ResourceFlavor during admission.\nWhen this ResourceFlavor has also set the matching tolerations (in .spec.tolerations),\nthen the nodeTaints are not considered during admission.\nOnly the 'NoSchedule' and 'NoExecute' taint effects are evaluated,\nwhile 'PreferNoSchedule' is ignored.\n\nAn example of a nodeTaint is\ncloud.provider.com/preemptible=\"true\":NoSchedule\n\nnodeTaints can be up to 8 elements.","type":"array","maxItems":8,"items":{"description":"The node this Taint is attached to has the \"effect\" on\nany pod that does not tolerate the Taint.","type":"object","required":["effect","key"],"properties":{"effect":{"description":"Required. The effect of the taint on pods\nthat do not tolerate the taint.\nValid effects are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Required. The taint key to be applied to a node.","type":"string"},"timeAdded":{"description":"TimeAdded represents the time at which the taint was added.","type":"string","format":"date-time"},"value":{"description":"The taint value corresponding to the taint key.","type":"string"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"supported taint effect values: 'NoSchedule', 'PreferNoSchedule', 'NoExecute'","rule":"self.all(x, x.effect in ['NoSchedule', 'PreferNoSchedule', 'NoExecute'])"}]},"tolerations":{"description":"tolerations are extra tolerations that will be added to the pods admitted in\nthe quota associated with this resource flavor.\n\nAn example of a toleration is\ncloud.provider.com/preemptible=\"true\":NoSchedule\n\ntolerations can be up to 8 elements.","type":"array","maxItems":8,"items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"operator must be Exists when 'key' is empty, which means 'match all values and all keys'","rule":"self.all(x, !has(x.key) ? x.operator == 'Exists' : true)"},{"message":"effect must be 'NoExecute' when 'tolerationSeconds' is set","rule":"self.all(x, has(x.tolerationSeconds) ? x.effect == 'NoExecute' : true)"},{"message":"supported toleration values: 'Equal'(default), 'Exists'","rule":"self.all(x, !has(x.operator) || x.operator in ['Equal', 'Exists'])"},{"message":"a value must be empty when 'operator' is 'Exists'","rule":"self.all(x, has(x.operator) && x.operator == 'Exists' ? !has(x.value) : true)"},{"message":"supported taint effect values: 'NoSchedule', 'PreferNoSchedule', 'NoExecute'","rule":"self.all(x, !has(x.effect) || x.effect in ['NoSchedule', 'PreferNoSchedule', 'NoExecute'])"}]},"topologyName":{"description":"topologyName indicates topology for the TAS ResourceFlavor.\nWhen specified, it enables scraping of the topology information from the\nnodes matching to the Resource Flavor node labels.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"x-kubernetes-validations":[{"message":"at least one nodeLabel is required when topology is set","rule":"!has(self.topologyName) || self.nodeLabels.size() >= 1"},{"message":"resourceFlavorSpec are immutable when topologyName is set","rule":"!has(oldSelf.topologyName) || self == oldSelf"}]}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ResourceFlavor","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.ResourceFlavorList":{"description":"ResourceFlavorList is a list of ResourceFlavor","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of resourceflavors. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.ResourceFlavor"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"ResourceFlavorList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.Topology":{"description":"Topology is the Schema for the topology API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the Topology.","type":"object","required":["levels"],"properties":{"levels":{"description":"levels define the levels of topology.","type":"array","maxItems":16,"minItems":1,"items":{"description":"TopologyLevel defines the desired state of TopologyLevel","type":"object","required":["nodeLabel"],"properties":{"nodeLabel":{"description":"nodeLabel indicates the name of the node label for a specific topology\nlevel.\n\nExamples:\n- cloud.provider.com/topology-block\n- cloud.provider.com/topology-rack","type":"string","maxLength":316,"minLength":1,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"field is immutable","rule":"self == oldSelf"},{"message":"must be unique","rule":"size(self.filter(i, size(self.filter(j, j == i)) > 1)) == 0"},{"message":"the kubernetes.io/hostname label can only be used at the lowest level of topology","rule":"size(self.filter(i, i.nodeLabel == 'kubernetes.io/hostname')) == 0 || self[size(self) - 1].nodeLabel == 'kubernetes.io/hostname'"}]}}}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"Topology","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.TopologyList":{"description":"TopologyList is a list of Topology","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of topologies. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Topology"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"TopologyList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.Workload":{"description":"Workload is the Schema for the workloads API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"spec is the specification of the Workload.","type":"object","properties":{"active":{"description":"active determines if a workload can be admitted into a queue.\nChanging active from true to false will evict any running workloads.\nPossible values are:\n\n  - false: indicates that a workload should never be admitted and evicts running workloads\n  - true: indicates that a workload can be evaluated for admission into it's respective queue.\n\nDefaults to true","type":"boolean"},"maximumExecutionTimeSeconds":{"description":"maximumExecutionTimeSeconds if provided, determines the maximum time, in seconds,\nthe workload can be admitted before it's automatically deactivated.\n\nIf unspecified, no execution time limit is enforced on the Workload.","type":"integer","format":"int32","minimum":1},"podSets":{"description":"podSets is a list of sets of homogeneous pods, each described by a Pod spec\nand a count.\nThere must be at least one element and at most 8.\npodSets cannot be changed.","type":"array","maxItems":8,"minItems":1,"items":{"type":"object","required":["template"],"properties":{"count":{"description":"count is the number of pods for the spec.","type":"integer","format":"int32","minimum":0},"minCount":{"description":"minCount is the minimum number of pods for the spec acceptable\nif the workload supports partial admission.\n\nIf not provided, partial admission for the current PodSet is not\nenabled.\n\nOnly one podSet within the workload can use this.\n\nThis is an alpha field and requires enabling PartialAdmission feature gate.","type":"integer","format":"int32","minimum":1},"name":{"description":"name is the PodSet name.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"template":{"description":"template is the Pod template.\n\nThe only allowed fields in template.metadata are labels and annotations.\n\nIf requests are omitted for a container or initContainer,\nthey default to the limits if they are explicitly specified for the\ncontainer or initContainer.\n\nDuring admission, the rules in nodeSelector and\nnodeAffinity.requiredDuringSchedulingIgnoredDuringExecution that match\nthe keys in the nodeLabels from the ResourceFlavors considered for this\nWorkload are used to filter the ResourceFlavors that can be assigned to\nthis podSet.","type":"object","properties":{"metadata":{"description":"Standard object's metadata.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"Specification of the desired behavior of the pod.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status","type":"object","required":["containers"],"properties":{"activeDeadlineSeconds":{"description":"Optional duration in seconds the pod may be active on the node relative to\nStartTime before the system will actively try to mark it failed and kill associated containers.\nValue must be a positive integer.","type":"integer","format":"int64"},"affinity":{"description":"If specified, the pod's scheduling constraints","type":"object","properties":{"nodeAffinity":{"description":"Describes node affinity scheduling rules for the pod.","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node matches the corresponding matchExpressions; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"An empty preferred scheduling term matches all objects with implicit weight 0\n(i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).","type":"object","required":["preference","weight"],"properties":{"preference":{"description":"A node selector term, associated with the corresponding weight.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"weight":{"description":"Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to an update), the system\nmay or may not try to eventually evict the pod from its node.","type":"object","required":["nodeSelectorTerms"],"properties":{"nodeSelectorTerms":{"description":"Required. A list of node selector terms. The terms are ORed.","type":"array","items":{"description":"A null or empty node selector term matches no objects. The requirements of\nthem are ANDed.\nThe TopologySelectorTerm type implements a subset of the NodeSelectorTerm.","type":"object","properties":{"matchExpressions":{"description":"A list of node selector requirements by node's labels.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchFields":{"description":"A list of node selector requirements by node's fields.","type":"array","items":{"description":"A node selector requirement is a selector that contains values, a key, and an operator\nthat relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"The label key that the selector applies to.","type":"string"},"operator":{"description":"Represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.","type":"string"},"values":{"description":"An array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. If the operator is Gt or Lt, the values\narray must have a single element, which will be interpreted as an integer.\nThis array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-map-type":"atomic"}}},"podAffinity":{"description":"Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and adding\n\"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}},"podAntiAffinity":{"description":"Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).","type":"object","properties":{"preferredDuringSchedulingIgnoredDuringExecution":{"description":"The scheduler will prefer to schedule pods to nodes that satisfy\nthe anti-affinity expressions specified by this field, but it may choose\na node that violates one or more of the expressions. The node that is\nmost preferred is the one with the greatest sum of weights, i.e.\nfor each node that meets all of the scheduling requirements (resource\nrequest, requiredDuringScheduling anti-affinity expressions, etc.),\ncompute a sum by iterating through the elements of this field and subtracting\n\"weight\" from the sum if the node has pods which matches the corresponding podAffinityTerm; the\nnode(s) with the highest sum are the most preferred.","type":"array","items":{"description":"The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)","type":"object","required":["podAffinityTerm","weight"],"properties":{"podAffinityTerm":{"description":"Required. A pod affinity term, associated with the corresponding weight.","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"weight":{"description":"weight associated with matching the corresponding podAffinityTerm,\nin the range 1-100.","type":"integer","format":"int32"}}},"x-kubernetes-list-type":"atomic"},"requiredDuringSchedulingIgnoredDuringExecution":{"description":"If the anti-affinity requirements specified by this field are not met at\nscheduling time, the pod will not be scheduled onto the node.\nIf the anti-affinity requirements specified by this field cease to be met\nat some point during pod execution (e.g. due to a pod label update), the\nsystem may or may not try to eventually evict the pod from its node.\nWhen there are multiple elements, the lists of nodes corresponding to each\npodAffinityTerm are intersected, i.e. all terms must be satisfied.","type":"array","items":{"description":"Defines a set of pods (namely those matching the labelSelector\nrelative to the given namespace(s)) that this pod should be\nco-located (affinity) or not co-located (anti-affinity) with,\nwhere co-located is defined as running on a node whose value of\nthe label with key <topologyKey> matches that of any node on which\na pod of the set of pods is running","type":"object","required":["topologyKey"],"properties":{"labelSelector":{"description":"A label query over a set of resources, in this case pods.\nIf it's null, this PodAffinityTerm matches with no Pods.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key in (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both matchLabelKeys and labelSelector.\nAlso, matchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"mismatchLabelKeys":{"description":"MismatchLabelKeys is a set of pod label keys to select which pods will\nbe taken into consideration. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are merged with `labelSelector` as `key notin (value)`\nto select the group of existing pods which pods will be taken into consideration\nfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming\npod labels will be ignored. The default value is empty.\nThe same key is forbidden to exist in both mismatchLabelKeys and labelSelector.\nAlso, mismatchLabelKeys cannot be set when labelSelector isn't set.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"namespaceSelector":{"description":"A label query over the set of namespaces that the term applies to.\nThe term is applied to the union of the namespaces selected by this field\nand the ones listed in the namespaces field.\nnull selector and null or empty namespaces list means \"this pod's namespace\".\nAn empty selector ({}) matches all namespaces.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"namespaces":{"description":"namespaces specifies a static list of namespace names that the term applies to.\nThe term is applied to the union of the namespaces listed in this field\nand the ones selected by namespaceSelector.\nnull or empty namespaces list and null namespaceSelector means \"this pod's namespace\".","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"topologyKey":{"description":"This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching\nthe labelSelector in the specified namespaces, where co-located is defined as running on a node\nwhose value of the label with key topologyKey matches that of any node on which any of the\nselected pods is running.\nEmpty topologyKey is not allowed.","type":"string"}}},"x-kubernetes-list-type":"atomic"}}}}},"automountServiceAccountToken":{"description":"AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.","type":"boolean"},"containers":{"description":"List of containers belonging to the pod.\nContainers cannot currently be added or removed.\nThere must be at least one container in a Pod.\nCannot be updated.","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.\nThis field cannot be set on ephemeral containers.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis overrides the pod-level restart policy. When this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nAdditionally, setting the RestartPolicy as \"Always\" for the init container will\nhave the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. The rules are evaluated in\norder. Once a rule matches a container exit condition, the remaining\nrules are ignored. If no rule matches the container exit condition,\nthe Container-level restart policy determines the whether the container\nis restarted or not. Constraints on the rules:\n- At most 20 rules are allowed.\n- Rules can have the same action.\n- Identical rules are not forbidden in validations.\nWhen rules are specified, container MUST set RestartPolicy explicitly\neven it if matches the Pod's RestartPolicy.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"dnsConfig":{"description":"Specifies the DNS parameters of a pod.\nParameters specified here will be merged to the generated DNS\nconfiguration based on DNSPolicy.","type":"object","properties":{"nameservers":{"description":"A list of DNS name server IP addresses.\nThis will be appended to the base nameservers generated from DNSPolicy.\nDuplicated nameservers will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"options":{"description":"A list of DNS resolver options.\nThis will be merged with the base options generated from DNSPolicy.\nDuplicated entries will be removed. Resolution options given in Options\nwill override those that appear in the base DNSPolicy.","type":"array","items":{"description":"PodDNSConfigOption defines DNS resolver options of a pod.","type":"object","properties":{"name":{"description":"Name is this DNS resolver option's name.\nRequired.","type":"string"},"value":{"description":"Value is this DNS resolver option's value.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"searches":{"description":"A list of DNS search domains for host-name lookup.\nThis will be appended to the base search paths generated from DNSPolicy.\nDuplicated search paths will be removed.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"dnsPolicy":{"description":"Set DNS policy for the pod.\nDefaults to \"ClusterFirst\".\nValid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'.\nDNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.\nTo have DNS options set along with hostNetwork, you have to specify DNS policy\nexplicitly to 'ClusterFirstWithHostNet'.","type":"string"},"enableServiceLinks":{"description":"EnableServiceLinks indicates whether information about services should be injected into pod's\nenvironment variables, matching the syntax of Docker links.\nOptional: Defaults to true.","type":"boolean"},"ephemeralContainers":{"description":"List of ephemeral containers run in this pod. Ephemeral containers may be run in an existing\npod to perform user-initiated actions such as debugging. This list cannot be specified when\ncreating a pod, and it cannot be modified by updating the pod spec. In order to add an\nephemeral container to an existing pod, use the pod's ephemeralcontainers subresource.","type":"array","items":{"description":"An EphemeralContainer is a temporary container that you may add to an existing Pod for\nuser-initiated activities such as debugging. Ephemeral containers have no resource or\nscheduling guarantees, and they will not be restarted when they exit or when a Pod is\nremoved or restarted. The kubelet may evict a Pod if an ephemeral container causes the\nPod to exceed its resource allocation.\n\nTo add an ephemeral container, use the ephemeralcontainers subresource of an existing\nPod. Ephemeral containers may not be removed or restarted.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Lifecycle is not allowed for ephemeral containers.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the ephemeral container specified as a DNS_LABEL.\nThis name must be unique among all containers, init containers and ephemeral containers.","type":"string"},"ports":{"description":"Ports are not allowed for ephemeral containers.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Resources are not allowed for ephemeral containers. Ephemeral containers use spare resources\nalready allocated to the pod.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"Restart policy for the container to manage the restart behavior of each\ncontainer within a pod.\nYou cannot set this field on ephemeral containers.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. You cannot set this field on\nephemeral containers.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"Optional: SecurityContext defines the security options the ephemeral container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"Probes are not allowed for ephemeral containers.","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"targetContainerName":{"description":"If set, the name of the container from PodSpec that this ephemeral container targets.\nThe ephemeral container will be run in the namespaces (IPC, PID, etc) of this container.\nIf not set then the ephemeral container uses the namespaces configured in the Pod spec.\n\nThe container runtime must implement support for this feature. If the runtime does not\nsupport namespace targeting then the result of setting this field is undefined.","type":"string"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"hostAliases":{"description":"HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts\nfile if specified.","type":"array","items":{"description":"HostAlias holds the mapping between IP and hostnames that will be injected as an entry in the\npod's hosts file.","type":"object","required":["ip"],"properties":{"hostnames":{"description":"Hostnames for the above IP address.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"ip":{"description":"IP address of the host file entry.","type":"string"}}},"x-kubernetes-list-map-keys":["ip"],"x-kubernetes-list-type":"map"},"hostIPC":{"description":"Use the host's ipc namespace.\nOptional: Default to false.","type":"boolean"},"hostNetwork":{"description":"Host networking requested for this pod. Use the host's network namespace.\nWhen using HostNetwork you should specify ports so the scheduler is aware.\nWhen `hostNetwork` is true, specified `hostPort` fields in port definitions must match `containerPort`,\nand unspecified `hostPort` fields in port definitions are defaulted to match `containerPort`.\nDefault to false.","type":"boolean"},"hostPID":{"description":"Use the host's pid namespace.\nOptional: Default to false.","type":"boolean"},"hostUsers":{"description":"Use the host's user namespace.\nOptional: Default to true.\nIf set to true or not present, the pod will be run in the host user namespace, useful\nfor when the pod needs a feature only available to the host user namespace, such as\nloading a kernel module with CAP_SYS_MODULE.\nWhen set to false, a new userns is created for the pod. Setting false is useful for\nmitigating container breakout vulnerabilities even allowing users to run their\ncontainers as root without actually having root privileges on the host.\nThis field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.","type":"boolean"},"hostname":{"description":"Specifies the hostname of the Pod\nIf not specified, the pod's hostname will be set to a system-defined value.","type":"string"},"hostnameOverride":{"description":"HostnameOverride specifies an explicit override for the pod's hostname as perceived by the pod.\nThis field only specifies the pod's hostname and does not affect its DNS records.\nWhen this field is set to a non-empty string:\n- It takes precedence over the values set in `hostname` and `subdomain`.\n- The Pod's hostname will be set to this value.\n- `setHostnameAsFQDN` must be nil or set to false.\n- `hostNetwork` must be set to false.\n\nThis field must be a valid DNS subdomain as defined in RFC 1123 and contain at most 64 characters.\nRequires the HostnameOverride feature gate to be enabled.","type":"string"},"imagePullSecrets":{"description":"ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec.\nIf specified, these secrets will be passed to individual puller implementations for them to use.\nMore info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod","type":"array","items":{"description":"LocalObjectReference contains enough information to let you locate the\nreferenced object inside the same namespace.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"initContainers":{"description":"List of initialization containers belonging to the pod.\nInit containers are executed in order prior to containers being started. If any\ninit container fails, the pod is considered to have failed and is handled according\nto its restartPolicy. The name for an init container or normal container must be\nunique among all containers.\nInit containers may not have Lifecycle actions, Readiness probes, Liveness probes, or Startup probes.\nThe resourceRequirements of an init container are taken into account during scheduling\nby finding the highest request/limit for each resource type, and then using the max of\nthat value or the sum of the normal containers. Limits are applied to init containers\nin a similar fashion.\nInit containers cannot currently be added or removed.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/","type":"array","items":{"description":"A single application container that you want to run within a pod.","type":"object","required":["name"],"properties":{"args":{"description":"Arguments to the entrypoint.\nThe container image's CMD is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"command":{"description":"Entrypoint array. Not executed within a shell.\nThe container image's ENTRYPOINT is used if this is not provided.\nVariable references $(VAR_NAME) are expanded using the container's environment. If a variable\ncannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will\nproduce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless\nof whether the variable exists or not. Cannot be updated.\nMore info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"env":{"description":"List of environment variables to set in the container.\nCannot be updated.","type":"array","items":{"description":"EnvVar represents an environment variable present in a Container.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"value":{"description":"Variable references $(VAR_NAME) are expanded\nusing the previously defined environment variables in the container and\nany service environment variables. If a variable cannot be resolved,\nthe reference in the input string will be unchanged. Double $$ are reduced\nto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.\n\"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\".\nEscaped references will never be expanded, regardless of whether the variable\nexists or not.\nDefaults to \"\".","type":"string"},"valueFrom":{"description":"Source for the environment variable's value. Cannot be used if value is not empty.","type":"object","properties":{"configMapKeyRef":{"description":"Selects a key of a ConfigMap.","type":"object","required":["key"],"properties":{"key":{"description":"The key to select.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"fieldRef":{"description":"Selects a field of the pod: supports metadata.name, metadata.namespace, `metadata.labels['<KEY>']`, `metadata.annotations['<KEY>']`,\nspec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"fileKeyRef":{"description":"FileKeyRef selects a key of the env file.\nRequires the EnvFiles feature gate to be enabled.","type":"object","required":["key","path","volumeName"],"properties":{"key":{"description":"The key within the env file. An invalid key will prevent the pod from starting.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nDuring Alpha stage of the EnvFiles feature gate, the key size is limited to 128 characters.","type":"string"},"optional":{"description":"Specify whether the file or its key must be defined. If the file or key\ndoes not exist, then the env var is not published.\nIf optional is set to true and the specified key does not exist,\nthe environment variable will not be set in the Pod's containers.\n\nIf optional is set to false and the specified key does not exist,\nan error will be returned during Pod creation.","type":"boolean"},"path":{"description":"The path within the volume from which to select the file.\nMust be relative and may not contain the '..' path or start with '..'.","type":"string"},"volumeName":{"description":"The name of the volume mount containing the env file.","type":"string"}},"x-kubernetes-map-type":"atomic"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"},"secretKeyRef":{"description":"Selects a key of a secret in the pod's namespace","type":"object","required":["key"],"properties":{"key":{"description":"The key of the secret to select from.  Must be a valid secret key.","type":"string"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"envFrom":{"description":"List of sources to populate environment variables in the container.\nThe keys defined within a source may consist of any printable ASCII characters except '='.\nWhen a key exists in multiple\nsources, the value associated with the last source will take precedence.\nValues defined by an Env with a duplicate key will take precedence.\nCannot be updated.","type":"array","items":{"description":"EnvFromSource represents the source of a set of ConfigMaps or Secrets","type":"object","properties":{"configMapRef":{"description":"The ConfigMap to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the ConfigMap must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"prefix":{"description":"Optional text to prepend to the name of each environment variable.\nMay consist of any printable ASCII characters except '='.","type":"string"},"secretRef":{"description":"The Secret to select from","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"Specify whether the Secret must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"image":{"description":"Container image name.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"},"imagePullPolicy":{"description":"Image pull policy.\nOne of Always, Never, IfNotPresent.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/containers/images#updating-images","type":"string"},"lifecycle":{"description":"Actions that the management system should take in response to container lifecycle events.\nCannot be updated.","type":"object","properties":{"postStart":{"description":"PostStart is called immediately after a container is created. If the handler fails,\nthe container is terminated and restarted according to its restart policy.\nOther management of the container blocks until the hook completes.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"preStop":{"description":"PreStop is called immediately before a container is terminated due to an\nAPI request or management event such as liveness/startup probe failure,\npreemption, resource contention, etc. The handler is not called if the\ncontainer crashes or exits. The Pod's termination grace period countdown begins before the\nPreStop hook is executed. Regardless of the outcome of the handler, the\ncontainer will eventually terminate within the Pod's termination grace\nperiod (unless delayed by finalizers). Other management of the container blocks until the hook completes\nor until the termination grace period is reached.\nMore info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"sleep":{"description":"Sleep represents a duration that the container should sleep.","type":"object","required":["seconds"],"properties":{"seconds":{"description":"Seconds is the number of seconds to sleep.","type":"integer","format":"int64"}}},"tcpSocket":{"description":"Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept\nfor backward compatibility. There is no validation of this field and\nlifecycle hooks will fail at runtime when it is specified.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}}}},"stopSignal":{"description":"StopSignal defines which signal will be sent to a container when it is being stopped.\nIf not specified, the default is defined by the container runtime in use.\nStopSignal can only be set for Pods with a non-empty .spec.os.name","type":"string"}}},"livenessProbe":{"description":"Periodic probe of container liveness.\nContainer will be restarted if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"name":{"description":"Name of the container specified as a DNS_LABEL.\nEach container in a pod must have a unique name (DNS_LABEL).\nCannot be updated.","type":"string"},"ports":{"description":"List of ports to expose from the container. Not specifying a port here\nDOES NOT prevent that port from being exposed. Any port which is\nlistening on the default \"0.0.0.0\" address inside a container will be\naccessible from the network.\nModifying this array with strategic merge patch may corrupt the data.\nFor more information See https://github.com/kubernetes/kubernetes/issues/108255.\nCannot be updated.","type":"array","items":{"description":"ContainerPort represents a network port in a single container.","type":"object","required":["containerPort"],"properties":{"containerPort":{"description":"Number of port to expose on the pod's IP address.\nThis must be a valid port number, 0 < x < 65536.","type":"integer","format":"int32"},"hostIP":{"description":"What host IP to bind the external port to.","type":"string"},"hostPort":{"description":"Number of port to expose on the host.\nIf specified, this must be a valid port number, 0 < x < 65536.\nIf HostNetwork is specified, this must match ContainerPort.\nMost containers do not need this.","type":"integer","format":"int32"},"name":{"description":"If specified, this must be an IANA_SVC_NAME and unique within the pod. Each\nnamed port in a pod must have a unique name. Name for the port that can be\nreferred to by services.","type":"string"},"protocol":{"description":"Protocol for port. Must be UDP, TCP, or SCTP.\nDefaults to \"TCP\".","type":"string"}}},"x-kubernetes-list-map-keys":["containerPort","protocol"],"x-kubernetes-list-type":"map"},"readinessProbe":{"description":"Periodic probe of container service readiness.\nContainer will be removed from service endpoints if the probe fails.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"resizePolicy":{"description":"Resources resize policy for the container.\nThis field cannot be set on ephemeral containers.","type":"array","items":{"description":"ContainerResizePolicy represents resource resize policy for the container.","type":"object","required":["resourceName","restartPolicy"],"properties":{"resourceName":{"description":"Name of the resource to which this resource resize policy applies.\nSupported values: cpu, memory.","type":"string"},"restartPolicy":{"description":"Restart policy to apply when specified resource is resized.\nIf not specified, it defaults to NotRequired.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resources":{"description":"Compute Resources required by this container.\nCannot be updated.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"RestartPolicy defines the restart behavior of individual containers in a pod.\nThis overrides the pod-level restart policy. When this field is not specified,\nthe restart behavior is defined by the Pod's restart policy and the container type.\nAdditionally, setting the RestartPolicy as \"Always\" for the init container will\nhave the following effect:\nthis init container will be continually restarted on\nexit until all regular containers have terminated. Once all regular\ncontainers have completed, all init containers with restartPolicy \"Always\"\nwill be shut down. This lifecycle differs from normal init containers and\nis often referred to as a \"sidecar\" container. Although this init\ncontainer still starts in the init container sequence, it does not wait\nfor the container to complete before proceeding to the next init\ncontainer. Instead, the next init container starts immediately after this\ninit container is started, or after any startupProbe has successfully\ncompleted.","type":"string"},"restartPolicyRules":{"description":"Represents a list of rules to be checked to determine if the\ncontainer should be restarted on exit. The rules are evaluated in\norder. Once a rule matches a container exit condition, the remaining\nrules are ignored. If no rule matches the container exit condition,\nthe Container-level restart policy determines the whether the container\nis restarted or not. Constraints on the rules:\n- At most 20 rules are allowed.\n- Rules can have the same action.\n- Identical rules are not forbidden in validations.\nWhen rules are specified, container MUST set RestartPolicy explicitly\neven it if matches the Pod's RestartPolicy.","type":"array","items":{"description":"ContainerRestartRule describes how a container exit is handled.","type":"object","required":["action"],"properties":{"action":{"description":"Specifies the action taken on a container exit if the requirements\nare satisfied. The only possible value is \"Restart\" to restart the\ncontainer.","type":"string"},"exitCodes":{"description":"Represents the exit codes to check on container exits.","type":"object","required":["operator"],"properties":{"operator":{"description":"Represents the relationship between the container exit code(s) and the\nspecified values. Possible values are:\n- In: the requirement is satisfied if the container exit code is in the\n  set of specified values.\n- NotIn: the requirement is satisfied if the container exit code is\n  not in the set of specified values.","type":"string"},"values":{"description":"Specifies the set of values to check for container exit codes.\nAt most 255 elements are allowed.","type":"array","items":{"type":"integer","format":"int32"},"x-kubernetes-list-type":"set"}}}}},"x-kubernetes-list-type":"atomic"},"securityContext":{"description":"SecurityContext defines the security options the container should be run with.\nIf set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/","type":"object","properties":{"allowPrivilegeEscalation":{"description":"AllowPrivilegeEscalation controls whether a process can gain more\nprivileges than its parent process. This bool directly controls if\nthe no_new_privs flag will be set on the container process.\nAllowPrivilegeEscalation is true always when the container is:\n1) run as Privileged\n2) has CAP_SYS_ADMIN\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by this container. If set, this profile\noverrides the pod's appArmorProfile.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"capabilities":{"description":"The capabilities to add/drop when running containers.\nDefaults to the default set of capabilities granted by the container runtime.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"add":{"description":"Added capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"},"drop":{"description":"Removed capabilities","type":"array","items":{"description":"Capability represent POSIX capabilities type","type":"string"},"x-kubernetes-list-type":"atomic"}}},"privileged":{"description":"Run container in privileged mode.\nProcesses in privileged containers are essentially equivalent to root on the host.\nDefaults to false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"procMount":{"description":"procMount denotes the type of proc mount to use for the containers.\nThe default value is Default which uses the container runtime defaults for\nreadonly paths and masked paths.\nThis requires the ProcMountType feature flag to be enabled.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"readOnlyRootFilesystem":{"description":"Whether this container has a read-only root filesystem.\nDefault is false.\nNote that this field cannot be set when spec.os.name is windows.","type":"boolean"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxOptions":{"description":"The SELinux context to be applied to the container.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in PodSecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by this container. If seccomp options are\nprovided at both the pod & container level, the container options\noverride the pod options.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options from the PodSecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"startupProbe":{"description":"StartupProbe indicates that the Pod has successfully initialized.\nIf specified, no other probes are executed until this completes successfully.\nIf this probe fails, the Pod will be restarted, just as if the livenessProbe failed.\nThis can be used to provide different probe parameters at the beginning of a Pod's lifecycle,\nwhen it might take a long time to load data or warm a cache, than during steady-state operation.\nThis cannot be updated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"object","properties":{"exec":{"description":"Exec specifies a command to execute in the container.","type":"object","properties":{"command":{"description":"Command is the command line to execute inside the container, the working directory for the\ncommand  is root ('/') in the container's filesystem. The command is simply exec'd, it is\nnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To use\na shell, you need to explicitly call out to that shell.\nExit status of 0 is treated as live/healthy and non-zero is unhealthy.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"failureThreshold":{"description":"Minimum consecutive failures for the probe to be considered failed after having succeeded.\nDefaults to 3. Minimum value is 1.","type":"integer","format":"int32"},"grpc":{"description":"GRPC specifies a GRPC HealthCheckRequest.","type":"object","required":["port"],"properties":{"port":{"description":"Port number of the gRPC service. Number must be in the range 1 to 65535.","type":"integer","format":"int32"},"service":{"description":"Service is the name of the service to place in the gRPC HealthCheckRequest\n(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).\n\nIf this is not specified, the default behavior is defined by gRPC.","type":"string"}}},"httpGet":{"description":"HTTPGet specifies an HTTP GET request to perform.","type":"object","required":["port"],"properties":{"host":{"description":"Host name to connect to, defaults to the pod IP. You probably want to set\n\"Host\" in httpHeaders instead.","type":"string"},"httpHeaders":{"description":"Custom headers to set in the request. HTTP allows repeated headers.","type":"array","items":{"description":"HTTPHeader describes a custom header to be used in HTTP probes","type":"object","required":["name","value"],"properties":{"name":{"description":"The header field name.\nThis will be canonicalized upon output, so case-variant names will be understood as the same header.","type":"string"},"value":{"description":"The header field value","type":"string"}}},"x-kubernetes-list-type":"atomic"},"path":{"description":"Path to access on the HTTP server.","type":"string"},"port":{"description":"Name or number of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true},"scheme":{"description":"Scheme to use for connecting to the host.\nDefaults to HTTP.","type":"string"}}},"initialDelaySeconds":{"description":"Number of seconds after the container has started before liveness probes are initiated.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"},"periodSeconds":{"description":"How often (in seconds) to perform the probe.\nDefault to 10 seconds. Minimum value is 1.","type":"integer","format":"int32"},"successThreshold":{"description":"Minimum consecutive successes for the probe to be considered successful after having failed.\nDefaults to 1. Must be 1 for liveness and startup. Minimum value is 1.","type":"integer","format":"int32"},"tcpSocket":{"description":"TCPSocket specifies a connection to a TCP port.","type":"object","required":["port"],"properties":{"host":{"description":"Optional: Host name to connect to, defaults to the pod IP.","type":"string"},"port":{"description":"Number or name of the port to access on the container.\nNumber must be in the range 1 to 65535.\nName must be an IANA_SVC_NAME.","x-kubernetes-int-or-string":true}}},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully upon probe failure.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nIf this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, this\nvalue overrides the value provided by the pod spec.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nThis is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.\nMinimum value is 1. spec.terminationGracePeriodSeconds is used if unset.","type":"integer","format":"int64"},"timeoutSeconds":{"description":"Number of seconds after which the probe times out.\nDefaults to 1 second. Minimum value is 1.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes","type":"integer","format":"int32"}}},"stdin":{"description":"Whether this container should allocate a buffer for stdin in the container runtime. If this\nis not set, reads from stdin in the container will always result in EOF.\nDefault is false.","type":"boolean"},"stdinOnce":{"description":"Whether the container runtime should close the stdin channel after it has been opened by\na single attach. When stdin is true the stdin stream will remain open across multiple attach\nsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the\nfirst client attaches to stdin, and then remains open and accepts data until the client disconnects,\nat which time stdin is closed and remains closed until the container is restarted. If this\nflag is false, a container processes that reads from stdin will never receive an EOF.\nDefault is false","type":"boolean"},"terminationMessagePath":{"description":"Optional: Path at which the file to which the container's termination message\nwill be written is mounted into the container's filesystem.\nMessage written is intended to be brief final status, such as an assertion failure message.\nWill be truncated by the node if greater than 4096 bytes. The total message length across\nall containers will be limited to 12kb.\nDefaults to /dev/termination-log.\nCannot be updated.","type":"string"},"terminationMessagePolicy":{"description":"Indicate how the termination message should be populated. File will use the contents of\nterminationMessagePath to populate the container status message on both success and failure.\nFallbackToLogsOnError will use the last chunk of container log output if the termination\nmessage file is empty and the container exited with an error.\nThe log output is limited to 2048 bytes or 80 lines, whichever is smaller.\nDefaults to File.\nCannot be updated.","type":"string"},"tty":{"description":"Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.\nDefault is false.","type":"boolean"},"volumeDevices":{"description":"volumeDevices is the list of block devices to be used by the container.","type":"array","items":{"description":"volumeDevice describes a mapping of a raw block device within a container.","type":"object","required":["devicePath","name"],"properties":{"devicePath":{"description":"devicePath is the path inside of the container that the device will be mapped to.","type":"string"},"name":{"description":"name must match the name of a persistentVolumeClaim in the pod","type":"string"}}},"x-kubernetes-list-map-keys":["devicePath"],"x-kubernetes-list-type":"map"},"volumeMounts":{"description":"Pod volumes to mount into the container's filesystem.\nCannot be updated.","type":"array","items":{"description":"VolumeMount describes a mounting of a Volume within a container.","type":"object","required":["mountPath","name"],"properties":{"mountPath":{"description":"Path within the container at which the volume should be mounted.  Must\nnot contain ':'.","type":"string"},"mountPropagation":{"description":"mountPropagation determines how mounts are propagated from the host\nto container and the other way around.\nWhen not set, MountPropagationNone is used.\nThis field is beta in 1.10.\nWhen RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified\n(which defaults to None).","type":"string"},"name":{"description":"This must match the Name of a Volume.","type":"string"},"readOnly":{"description":"Mounted read-only if true, read-write otherwise (false or unspecified).\nDefaults to false.","type":"boolean"},"recursiveReadOnly":{"description":"RecursiveReadOnly specifies whether read-only mounts should be handled\nrecursively.\n\nIf ReadOnly is false, this field has no meaning and must be unspecified.\n\nIf ReadOnly is true, and this field is set to Disabled, the mount is not made\nrecursively read-only.  If this field is set to IfPossible, the mount is made\nrecursively read-only, if it is supported by the container runtime.  If this\nfield is set to Enabled, the mount is made recursively read-only if it is\nsupported by the container runtime, otherwise the pod will not be started and\nan error will be generated to indicate the reason.\n\nIf this field is set to IfPossible or Enabled, MountPropagation must be set to\nNone (or be unspecified, which defaults to None).\n\nIf this field is not specified, it is treated as an equivalent of Disabled.","type":"string"},"subPath":{"description":"Path within the volume from which the container's volume should be mounted.\nDefaults to \"\" (volume's root).","type":"string"},"subPathExpr":{"description":"Expanded path within the volume from which the container's volume should be mounted.\nBehaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.\nDefaults to \"\" (volume's root).\nSubPathExpr and SubPath are mutually exclusive.","type":"string"}}},"x-kubernetes-list-map-keys":["mountPath"],"x-kubernetes-list-type":"map"},"workingDir":{"description":"Container's working directory.\nIf not specified, the container runtime's default will be used, which\nmight be configured in the container image.\nCannot be updated.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"nodeName":{"description":"NodeName indicates in which node this pod is scheduled.\nIf empty, this pod is a candidate for scheduling by the scheduler defined in schedulerName.\nOnce this field is set, the kubelet for this node becomes responsible for the lifecycle of this pod.\nThis field should not be used to express a desire for the pod to be scheduled on a specific node.\nhttps://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#nodename","type":"string"},"nodeSelector":{"description":"NodeSelector is a selector which must be true for the pod to fit on a node.\nSelector which must match a node's labels for the pod to be scheduled on that node.\nMore info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/","type":"object","additionalProperties":{"type":"string"},"x-kubernetes-map-type":"atomic"},"os":{"description":"Specifies the OS of the containers in the pod.\nSome pod and container fields are restricted if this is set.\n\nIf the OS field is set to linux, the following fields must be unset:\n-securityContext.windowsOptions\n\nIf the OS field is set to windows, following fields must be unset:\n- spec.hostPID\n- spec.hostIPC\n- spec.hostUsers\n- spec.resources\n- spec.securityContext.appArmorProfile\n- spec.securityContext.seLinuxOptions\n- spec.securityContext.seccompProfile\n- spec.securityContext.fsGroup\n- spec.securityContext.fsGroupChangePolicy\n- spec.securityContext.sysctls\n- spec.shareProcessNamespace\n- spec.securityContext.runAsUser\n- spec.securityContext.runAsGroup\n- spec.securityContext.supplementalGroups\n- spec.securityContext.supplementalGroupsPolicy\n- spec.containers[*].securityContext.appArmorProfile\n- spec.containers[*].securityContext.seLinuxOptions\n- spec.containers[*].securityContext.seccompProfile\n- spec.containers[*].securityContext.capabilities\n- spec.containers[*].securityContext.readOnlyRootFilesystem\n- spec.containers[*].securityContext.privileged\n- spec.containers[*].securityContext.allowPrivilegeEscalation\n- spec.containers[*].securityContext.procMount\n- spec.containers[*].securityContext.runAsUser\n- spec.containers[*].securityContext.runAsGroup","type":"object","required":["name"],"properties":{"name":{"description":"Name is the name of the operating system. The currently supported values are linux and windows.\nAdditional value may be defined in future and can be one of:\nhttps://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration\nClients should expect to handle additional values and treat unrecognized values in this field as os: null","type":"string"}}},"overhead":{"description":"Overhead represents the resource overhead associated with running a pod for a given RuntimeClass.\nThis field will be autopopulated at admission time by the RuntimeClass admission controller. If\nthe RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests.\nThe RuntimeClass admission controller will reject Pod create requests which have the overhead already\nset. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the value\ndefined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"preemptionPolicy":{"description":"PreemptionPolicy is the Policy for preempting pods with lower priority.\nOne of Never, PreemptLowerPriority.\nDefaults to PreemptLowerPriority if unset.","type":"string"},"priority":{"description":"The priority value. Various system components use this field to find the\npriority of the pod. When Priority Admission Controller is enabled, it\nprevents users from setting this field. The admission controller populates\nthis field from PriorityClassName.\nThe higher the value, the higher the priority.","type":"integer","format":"int32"},"priorityClassName":{"description":"If specified, indicates the pod's priority. \"system-node-critical\" and\n\"system-cluster-critical\" are two special keywords which indicate the\nhighest priorities with the former being the highest priority. Any other\nname must be defined by creating a PriorityClass object with that name.\nIf not specified, the pod priority will be default or zero if there is no\ndefault.","type":"string"},"readinessGates":{"description":"If specified, all readiness gates will be evaluated for pod readiness.\nA pod is ready when all its containers are ready AND\nall conditions specified in the readiness gates have status equal to \"True\"\nMore info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates","type":"array","items":{"description":"PodReadinessGate contains the reference to a pod condition","type":"object","required":["conditionType"],"properties":{"conditionType":{"description":"ConditionType refers to a condition in the pod's condition list with matching type.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"resourceClaims":{"description":"ResourceClaims defines which ResourceClaims must be allocated\nand reserved before the Pod is allowed to start. The resources\nwill be made available to those containers which consume them\nby name.\n\nThis is a stable field but requires that the\nDynamicResourceAllocation feature gate is enabled.\n\nThis field is immutable.","type":"array","items":{"description":"PodResourceClaim references exactly one ResourceClaim, either directly\nor by naming a ResourceClaimTemplate which is then turned into a ResourceClaim\nfor the pod.\n\nIt adds a name to it that uniquely identifies the ResourceClaim inside the Pod.\nContainers that need access to the ResourceClaim reference it with this name.","type":"object","required":["name"],"properties":{"name":{"description":"Name uniquely identifies this resource claim inside the pod.\nThis must be a DNS_LABEL.","type":"string"},"resourceClaimName":{"description":"ResourceClaimName is the name of a ResourceClaim object in the same\nnamespace as this pod.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"},"resourceClaimTemplateName":{"description":"ResourceClaimTemplateName is the name of a ResourceClaimTemplate\nobject in the same namespace as this pod.\n\nThe template will be used to create a new ResourceClaim, which will\nbe bound to this pod. When this pod is deleted, the ResourceClaim\nwill also be deleted. The pod name and resource name, along with a\ngenerated component, will be used to form a unique name for the\nResourceClaim, which will be recorded in pod.status.resourceClaimStatuses.\n\nThis field is immutable and no changes will be made to the\ncorresponding ResourceClaim by the control plane after creating the\nResourceClaim.\n\nExactly one of ResourceClaimName and ResourceClaimTemplateName must\nbe set.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"resources":{"description":"Resources is the total amount of CPU and Memory resources required by all\ncontainers in the pod. It supports specifying Requests and Limits for\n\"cpu\", \"memory\" and \"hugepages-\" resource names only. ResourceClaims are not supported.\n\nThis field enables fine-grained control over resource allocation for the\nentire pod, allowing resource sharing among containers in a pod.\n\nThis is an alpha field and requires enabling the PodLevelResources feature\ngate.","type":"object","properties":{"claims":{"description":"Claims lists the names of resources, defined in spec.resourceClaims,\nthat are used by this container.\n\nThis field depends on the\nDynamicResourceAllocation feature gate.\n\nThis field is immutable. It can only be set for containers.","type":"array","items":{"description":"ResourceClaim references one entry in PodSpec.ResourceClaims.","type":"object","required":["name"],"properties":{"name":{"description":"Name must match the name of one entry in pod.spec.resourceClaims of\nthe Pod where this field is used. It makes that resource available\ninside a container.","type":"string"},"request":{"description":"Request is the name chosen for a request in the referenced claim.\nIf empty, everything from the claim is made available, otherwise\nonly the result of this request.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"restartPolicy":{"description":"Restart policy for all containers within the pod.\nOne of Always, OnFailure, Never. In some contexts, only a subset of those values may be permitted.\nDefault to Always.\nMore info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policy","type":"string"},"runtimeClassName":{"description":"RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used\nto run this pod.  If no RuntimeClass resource matches the named class, the pod will not be run.\nIf unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an\nempty definition that uses the default runtime handler.\nMore info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class","type":"string"},"schedulerName":{"description":"If specified, the pod will be dispatched by specified scheduler.\nIf not specified, the pod will be dispatched by default scheduler.","type":"string"},"schedulingGates":{"description":"SchedulingGates is an opaque list of values that if specified will block scheduling the pod.\nIf schedulingGates is not empty, the pod will stay in the SchedulingGated state and the\nscheduler will not attempt to schedule the pod.\n\nSchedulingGates can only be set at pod creation time, and be removed only afterwards.","type":"array","items":{"description":"PodSchedulingGate is associated to a Pod to guard its scheduling.","type":"object","required":["name"],"properties":{"name":{"description":"Name of the scheduling gate.\nEach scheduling gate must have a unique name field.","type":"string"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"securityContext":{"description":"SecurityContext holds pod-level security attributes and common container settings.\nOptional: Defaults to empty.  See type description for default values of each field.","type":"object","properties":{"appArmorProfile":{"description":"appArmorProfile is the AppArmor options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile loaded on the node that should be used.\nThe profile must be preconfigured on the node to work.\nMust match the loaded name of the profile.\nMust be set if and only if type is \"Localhost\".","type":"string"},"type":{"description":"type indicates which kind of AppArmor profile will be applied.\nValid options are:\n  Localhost - a profile pre-loaded on the node.\n  RuntimeDefault - the container runtime's default profile.\n  Unconfined - no AppArmor enforcement.","type":"string"}}},"fsGroup":{"description":"A special supplemental group that applies to all containers in a pod.\nSome volume types allow the Kubelet to change the ownership of that volume\nto be owned by the pod:\n\n1. The owning GID will be the FSGroup\n2. The setgid bit is set (new files created in the volume will be owned by FSGroup)\n3. The permission bits are OR'd with rw-rw----\n\nIf unset, the Kubelet will not modify the ownership and permissions of any volume.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"fsGroupChangePolicy":{"description":"fsGroupChangePolicy defines behavior of changing ownership and permission of the volume\nbefore being exposed inside Pod. This field will only apply to\nvolume types which support fsGroup based ownership(and permissions).\nIt will have no effect on ephemeral volume types such as: secret, configmaps\nand emptydir.\nValid values are \"OnRootMismatch\" and \"Always\". If not specified, \"Always\" is used.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"runAsGroup":{"description":"The GID to run the entrypoint of the container process.\nUses runtime default if unset.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"runAsNonRoot":{"description":"Indicates that the container must run as a non-root user.\nIf true, the Kubelet will validate the image at runtime to ensure that it\ndoes not run as UID 0 (root) and fail to start the container if it does.\nIf unset or false, no such validation will be performed.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"boolean"},"runAsUser":{"description":"The UID to run the entrypoint of the container process.\nDefaults to user specified in image metadata if unspecified.\nMay also be set in SecurityContext.  If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence\nfor that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"integer","format":"int64"},"seLinuxChangePolicy":{"description":"seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.\nIt has no effect on nodes that do not support SELinux or to volumes does not support SELinux.\nValid values are \"MountOption\" and \"Recursive\".\n\n\"Recursive\" means relabeling of all files on all Pod volumes by the container runtime.\nThis may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.\n\n\"MountOption\" mounts all eligible Pod volumes with `-o context` mount option.\nThis requires all Pods that share the same volume to use the same SELinux label.\nIt is not possible to share the same volume among privileged and unprivileged Pods.\nEligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes\nwhose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their\nCSIDriver instance. Other volumes are always re-labelled recursively.\n\"MountOption\" value is allowed only when SELinuxMount feature gate is enabled.\n\nIf not specified and SELinuxMount feature gate is enabled, \"MountOption\" is used.\nIf not specified and SELinuxMount feature gate is disabled, \"MountOption\" is used for ReadWriteOncePod volumes\nand \"Recursive\" for all other volumes.\n\nThis field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.\n\nAll Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"seLinuxOptions":{"description":"The SELinux context to be applied to all containers.\nIf unspecified, the container runtime will allocate a random SELinux context for each\ncontainer.  May also be set in SecurityContext.  If set in\nboth SecurityContext and PodSecurityContext, the value specified in SecurityContext\ntakes precedence for that container.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","properties":{"level":{"description":"Level is SELinux level label that applies to the container.","type":"string"},"role":{"description":"Role is a SELinux role label that applies to the container.","type":"string"},"type":{"description":"Type is a SELinux type label that applies to the container.","type":"string"},"user":{"description":"User is a SELinux user label that applies to the container.","type":"string"}}},"seccompProfile":{"description":"The seccomp options to use by the containers in this pod.\nNote that this field cannot be set when spec.os.name is windows.","type":"object","required":["type"],"properties":{"localhostProfile":{"description":"localhostProfile indicates a profile defined in a file on the node should be used.\nThe profile must be preconfigured on the node to work.\nMust be a descending path, relative to the kubelet's configured seccomp profile location.\nMust be set if type is \"Localhost\". Must NOT be set for any other type.","type":"string"},"type":{"description":"type indicates which kind of seccomp profile will be applied.\nValid options are:\n\nLocalhost - a profile defined in a file on the node should be used.\nRuntimeDefault - the container runtime default profile should be used.\nUnconfined - no profile should be applied.","type":"string"}}},"supplementalGroups":{"description":"A list of groups applied to the first process run in each container, in\naddition to the container's primary GID and fsGroup (if specified).  If\nthe SupplementalGroupsPolicy feature is enabled, the\nsupplementalGroupsPolicy field determines whether these are in addition\nto or instead of any group memberships defined in the container image.\nIf unspecified, no additional groups are added, though group memberships\ndefined in the container image may still be used, depending on the\nsupplementalGroupsPolicy field.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"type":"integer","format":"int64"},"x-kubernetes-list-type":"atomic"},"supplementalGroupsPolicy":{"description":"Defines how supplemental groups of the first container processes are calculated.\nValid values are \"Merge\" and \"Strict\". If not specified, \"Merge\" is used.\n(Alpha) Using the field requires the SupplementalGroupsPolicy feature gate to be enabled\nand the container runtime must implement support for this feature.\nNote that this field cannot be set when spec.os.name is windows.","type":"string"},"sysctls":{"description":"Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupported\nsysctls (by the container runtime) might fail to launch.\nNote that this field cannot be set when spec.os.name is windows.","type":"array","items":{"description":"Sysctl defines a kernel parameter to be set","type":"object","required":["name","value"],"properties":{"name":{"description":"Name of a property to set","type":"string"},"value":{"description":"Value of a property to set","type":"string"}}},"x-kubernetes-list-type":"atomic"},"windowsOptions":{"description":"The Windows specific settings applied to all containers.\nIf unspecified, the options within a container's SecurityContext will be used.\nIf set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.\nNote that this field cannot be set when spec.os.name is linux.","type":"object","properties":{"gmsaCredentialSpec":{"description":"GMSACredentialSpec is where the GMSA admission webhook\n(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the\nGMSA credential spec named by the GMSACredentialSpecName field.","type":"string"},"gmsaCredentialSpecName":{"description":"GMSACredentialSpecName is the name of the GMSA credential spec to use.","type":"string"},"hostProcess":{"description":"HostProcess determines if a container should be run as a 'Host Process' container.\nAll of a Pod's containers must have the same effective HostProcess value\n(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).\nIn addition, if HostProcess is true then HostNetwork must also be set to true.","type":"boolean"},"runAsUserName":{"description":"The UserName in Windows to run the entrypoint of the container process.\nDefaults to the user specified in image metadata if unspecified.\nMay also be set in PodSecurityContext. If set in both SecurityContext and\nPodSecurityContext, the value specified in SecurityContext takes precedence.","type":"string"}}}}},"serviceAccount":{"description":"DeprecatedServiceAccount is a deprecated alias for ServiceAccountName.\nDeprecated: Use serviceAccountName instead.","type":"string"},"serviceAccountName":{"description":"ServiceAccountName is the name of the ServiceAccount to use to run this pod.\nMore info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/","type":"string"},"setHostnameAsFQDN":{"description":"If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default).\nIn Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname).\nIn Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINE\\\\SYSTEM\\\\CurrentControlSet\\\\Services\\\\Tcpip\\\\Parameters to FQDN.\nIf a pod does not have FQDN, this has no effect.\nDefault to false.","type":"boolean"},"shareProcessNamespace":{"description":"Share a single process namespace between all of the containers in a pod.\nWhen this is set containers will be able to view and signal processes from other containers\nin the same pod, and the first process in each container will not be assigned PID 1.\nHostPID and ShareProcessNamespace cannot both be set.\nOptional: Default to false.","type":"boolean"},"subdomain":{"description":"If specified, the fully qualified Pod hostname will be \"<hostname>.<subdomain>.<pod namespace>.svc.<cluster domain>\".\nIf not specified, the pod will not have a domainname at all.","type":"string"},"terminationGracePeriodSeconds":{"description":"Optional duration in seconds the pod needs to terminate gracefully. May be decreased in delete request.\nValue must be non-negative integer. The value zero indicates stop immediately via\nthe kill signal (no opportunity to shut down).\nIf this value is nil, the default grace period will be used instead.\nThe grace period is the duration in seconds after the processes running in the pod are sent\na termination signal and the time when the processes are forcibly halted with a kill signal.\nSet this value longer than the expected cleanup time for your process.\nDefaults to 30 seconds.","type":"integer","format":"int64"},"tolerations":{"description":"If specified, the pod's tolerations.","type":"array","items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"topologySpreadConstraints":{"description":"TopologySpreadConstraints describes how a group of pods ought to spread across topology\ndomains. Scheduler will schedule pods in a way which abides by the constraints.\nAll topologySpreadConstraints are ANDed.","type":"array","items":{"description":"TopologySpreadConstraint specifies how to spread matching pods among the given topology.","type":"object","required":["maxSkew","topologyKey","whenUnsatisfiable"],"properties":{"labelSelector":{"description":"LabelSelector is used to find matching pods.\nPods that match this label selector are counted to determine the number of pods\nin their corresponding topology domain.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"matchLabelKeys":{"description":"MatchLabelKeys is a set of pod label keys to select the pods over which\nspreading will be calculated. The keys are used to lookup values from the\nincoming pod labels, those key-value labels are ANDed with labelSelector\nto select the group of existing pods over which spreading will be calculated\nfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.\nMatchLabelKeys cannot be set when LabelSelector isn't set.\nKeys that don't exist in the incoming pod labels will\nbe ignored. A null or empty list means only match against labelSelector.\n\nThis is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"maxSkew":{"description":"MaxSkew describes the degree to which pods may be unevenly distributed.\nWhen `whenUnsatisfiable=DoNotSchedule`, it is the maximum permitted difference\nbetween the number of matching pods in the target topology and the global minimum.\nThe global minimum is the minimum number of matching pods in an eligible domain\nor zero if the number of eligible domains is less than MinDomains.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 2/2/1:\nIn this case, the global minimum is 1.\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |   P   |\n- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;\nscheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)\nviolate MaxSkew(1).\n- if MaxSkew is 2, incoming pod can be scheduled onto any zone.\nWhen `whenUnsatisfiable=ScheduleAnyway`, it is used to give higher precedence\nto topologies that satisfy it.\nIt's a required field. Default value is 1 and 0 is not allowed.","type":"integer","format":"int32"},"minDomains":{"description":"MinDomains indicates a minimum number of eligible domains.\nWhen the number of eligible domains with matching topology keys is less than minDomains,\nPod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed.\nAnd when the number of eligible domains with matching topology keys equals or greater than minDomains,\nthis value has no effect on scheduling.\nAs a result, when the number of eligible domains is less than minDomains,\nscheduler won't schedule more than maxSkew Pods to those domains.\nIf value is nil, the constraint behaves as if MinDomains is equal to 1.\nValid values are integers greater than 0.\nWhen value is not nil, WhenUnsatisfiable must be DoNotSchedule.\n\nFor example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same\nlabelSelector spread as 2/2/2:\n| zone1 | zone2 | zone3 |\n|  P P  |  P P  |  P P  |\nThe number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0.\nIn this situation, new pod with the same labelSelector cannot be scheduled,\nbecause computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,\nit will violate MaxSkew.","type":"integer","format":"int32"},"nodeAffinityPolicy":{"description":"NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector\nwhen calculating pod topology spread skew. Options are:\n- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.\n- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.\n\nIf this value is nil, the behavior is equivalent to the Honor policy.","type":"string"},"nodeTaintsPolicy":{"description":"NodeTaintsPolicy indicates how we will treat node taints when calculating\npod topology spread skew. Options are:\n- Honor: nodes without taints, along with tainted nodes for which the incoming pod\nhas a toleration, are included.\n- Ignore: node taints are ignored. All nodes are included.\n\nIf this value is nil, the behavior is equivalent to the Ignore policy.","type":"string"},"topologyKey":{"description":"TopologyKey is the key of node labels. Nodes that have a label with this key\nand identical values are considered to be in the same topology.\nWe consider each <key, value> as a \"bucket\", and try to put balanced number\nof pods into each bucket.\nWe define a domain as a particular instance of a topology.\nAlso, we define an eligible domain as a domain whose nodes meet the requirements of\nnodeAffinityPolicy and nodeTaintsPolicy.\ne.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology.\nAnd, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology.\nIt's a required field.","type":"string"},"whenUnsatisfiable":{"description":"WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy\nthe spread constraint.\n- DoNotSchedule (default) tells the scheduler not to schedule it.\n- ScheduleAnyway tells the scheduler to schedule the pod in any location,\n  but giving higher precedence to topologies that would help reduce the\n  skew.\nA constraint is considered \"Unsatisfiable\" for an incoming pod\nif and only if every possible node assignment for that pod would violate\n\"MaxSkew\" on some topology.\nFor example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same\nlabelSelector spread as 3/1/1:\n| zone1 | zone2 | zone3 |\n| P P P |   P   |   P   |\nIf WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled\nto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies\nMaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler\nwon't make it *more* imbalanced.\nIt's a required field.","type":"string"}}},"x-kubernetes-list-map-keys":["topologyKey","whenUnsatisfiable"],"x-kubernetes-list-type":"map"},"volumes":{"description":"List of volumes that can be mounted by containers belonging to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes","type":"array","items":{"description":"Volume represents a named volume in a pod that may be accessed by any container in the pod.","type":"object","required":["name"],"properties":{"awsElasticBlockStore":{"description":"awsElasticBlockStore represents an AWS Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nDeprecated: AWSElasticBlockStore is deprecated. All operations for the in-tree\nawsElasticBlockStore type are redirected to the ebs.csi.aws.com CSI driver.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).","type":"integer","format":"int32"},"readOnly":{"description":"readOnly value true will force the readOnly setting in VolumeMounts.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"boolean"},"volumeID":{"description":"volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore","type":"string"}}},"azureDisk":{"description":"azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.\nDeprecated: AzureDisk is deprecated. All operations for the in-tree azureDisk type\nare redirected to the disk.csi.azure.com CSI driver.","type":"object","required":["diskName","diskURI"],"properties":{"cachingMode":{"description":"cachingMode is the Host Caching mode: None, Read Only, Read Write.","type":"string"},"diskName":{"description":"diskName is the Name of the data disk in the blob storage","type":"string"},"diskURI":{"description":"diskURI is the URI of data disk in the blob storage","type":"string"},"fsType":{"description":"fsType is Filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"kind":{"description":"kind expected values are Shared: multiple blob disks per storage account  Dedicated: single blob disk per storage account  Managed: azure managed data disk (only in managed availability set). defaults to shared","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"}}},"azureFile":{"description":"azureFile represents an Azure File Service mount on the host and bind mount to the pod.\nDeprecated: AzureFile is deprecated. All operations for the in-tree azureFile type\nare redirected to the file.csi.azure.com CSI driver.","type":"object","required":["secretName","shareName"],"properties":{"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretName":{"description":"secretName is the  name of secret that contains Azure Storage Account Name and Key","type":"string"},"shareName":{"description":"shareName is the azure share Name","type":"string"}}},"cephfs":{"description":"cephFS represents a Ceph FS mount on the host that shares a pod's lifetime.\nDeprecated: CephFS is deprecated and the in-tree cephfs type is no longer supported.","type":"object","required":["monitors"],"properties":{"monitors":{"description":"monitors is Required: Monitors is a collection of Ceph monitors\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"path":{"description":"path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /","type":"string"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"boolean"},"secretFile":{"description":"secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"},"secretRef":{"description":"secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is optional: User is the rados user name, default is admin\nMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it","type":"string"}}},"cinder":{"description":"cinder represents a cinder volume attached and mounted on kubelets host machine.\nDeprecated: Cinder is deprecated. All operations for the in-tree cinder type\nare redirected to the cinder.csi.openstack.org CSI driver.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"boolean"},"secretRef":{"description":"secretRef is optional: points to a secret object containing parameters used to connect\nto OpenStack.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeID":{"description":"volumeID used to identify the volume in cinder.\nMore info: https://examples.k8s.io/mysql-cinder-pd/README.md","type":"string"}}},"configMap":{"description":"configMap represents a configMap that should populate this volume","type":"object","properties":{"defaultMode":{"description":"defaultMode is optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"csi":{"description":"csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the CSI driver that handles this volume.\nConsult with your admin for the correct name as registered in the cluster.","type":"string"},"fsType":{"description":"fsType to mount. Ex. \"ext4\", \"xfs\", \"ntfs\".\nIf not provided, the empty value is passed to the associated CSI driver\nwhich will determine the default filesystem to apply.","type":"string"},"nodePublishSecretRef":{"description":"nodePublishSecretRef is a reference to the secret object containing\nsensitive information to pass to the CSI driver to complete the CSI\nNodePublishVolume and NodeUnpublishVolume calls.\nThis field is optional, and  may be empty if no secret is required. If the\nsecret object contains more than one secret, all secret references are passed.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"readOnly":{"description":"readOnly specifies a read-only configuration for the volume.\nDefaults to false (read/write).","type":"boolean"},"volumeAttributes":{"description":"volumeAttributes stores driver-specific properties that are passed to the CSI\ndriver. Consult your driver's documentation for supported values.","type":"object","additionalProperties":{"type":"string"}}}},"downwardAPI":{"description":"downwardAPI represents downward API about the pod that should populate this volume","type":"object","properties":{"defaultMode":{"description":"Optional: mode bits to use on created files by default. Must be a\nOptional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDefaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"Items is a list of downward API volume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"emptyDir":{"description":"emptyDir represents a temporary directory that shares a pod's lifetime.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"object","properties":{"medium":{"description":"medium represents what type of storage medium should back this directory.\nThe default is \"\" which means to use the node's default medium.\nMust be an empty string (default) or Memory.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","type":"string"},"sizeLimit":{"description":"sizeLimit is the total amount of local storage required for this EmptyDir volume.\nThe size limit is also applicable for memory medium.\nThe maximum usage on memory medium EmptyDir would be the minimum value between\nthe SizeLimit specified here and the sum of memory limits of all containers in a pod.\nThe default is nil which means that the limit is undefined.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}},"ephemeral":{"description":"ephemeral represents a volume that is handled by a cluster storage driver.\nThe volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,\nand deleted when the pod is removed.\n\nUse this if:\na) the volume is only needed while the pod runs,\nb) features of normal volumes like restoring from snapshot or capacity\n   tracking are needed,\nc) the storage driver is specified through a storage class, and\nd) the storage driver supports dynamic volume provisioning through\n   a PersistentVolumeClaim (see EphemeralVolumeSource for more\n   information on the connection between this volume type\n   and PersistentVolumeClaim).\n\nUse PersistentVolumeClaim or one of the vendor-specific\nAPIs for volumes that persist for longer than the lifecycle\nof an individual pod.\n\nUse CSI for light-weight local ephemeral volumes if the CSI driver is meant to\nbe used that way - see the documentation of the driver for\nmore information.\n\nA pod can use both types of ephemeral volumes and\npersistent volumes at the same time.","type":"object","properties":{"volumeClaimTemplate":{"description":"Will be used to create a stand-alone PVC to provision the volume.\nThe pod in which this EphemeralVolumeSource is embedded will be the\nowner of the PVC, i.e. the PVC will be deleted together with the\npod.  The name of the PVC will be `<pod name>-<volume name>` where\n`<volume name>` is the name from the `PodSpec.Volumes` array\nentry. Pod validation will reject the pod if the concatenated name\nis not valid for a PVC (for example, too long).\n\nAn existing PVC with that name that is not owned by the pod\nwill *not* be used for the pod to avoid using an unrelated\nvolume by mistake. Starting the pod is then blocked until\nthe unrelated PVC is removed. If such a pre-created PVC is\nmeant to be used by the pod, the PVC has to updated with an\nowner reference to the pod once the pod exists. Normally\nthis should not be necessary, but it may be useful when\nmanually reconstructing a broken cluster.\n\nThis field is read-only and no changes will be made by Kubernetes\nto the PVC after it has been created.\n\nRequired, must not be nil.","type":"object","required":["spec"],"properties":{"metadata":{"description":"May contain labels and annotations that will be copied into the PVC\nwhen creating it. No other fields are allowed and will be rejected during\nvalidation.","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"The specification for the PersistentVolumeClaim. The entire content is\ncopied unchanged into the PVC that gets created from this\ntemplate. The same fields as in a PersistentVolumeClaim\nare also valid here.","type":"object","properties":{"accessModes":{"description":"accessModes contains the desired access modes the volume should have.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"dataSource":{"description":"dataSource field can be used to specify either:\n* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)\n* An existing PVC (PersistentVolumeClaim)\nIf the provisioner or an external controller can support the specified data source,\nit will create a new volume based on the contents of the specified data source.\nWhen the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,\nand dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.\nIf the namespace is specified, then dataSourceRef will not be copied to dataSource.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"}},"x-kubernetes-map-type":"atomic"},"dataSourceRef":{"description":"dataSourceRef specifies the object from which to populate the volume with data, if a non-empty\nvolume is desired. This may be any object from a non-empty API group (non\ncore object) or a PersistentVolumeClaim object.\nWhen this field is specified, volume binding will only succeed if the type of\nthe specified object matches some installed volume populator or dynamic\nprovisioner.\nThis field will replace the functionality of the dataSource field and as such\nif both fields are non-empty, they must have the same value. For backwards\ncompatibility, when namespace isn't specified in dataSourceRef,\nboth fields (dataSource and dataSourceRef) will be set to the same\nvalue automatically if one of them is empty and the other is non-empty.\nWhen namespace is specified in dataSourceRef,\ndataSource isn't set to the same value and must be empty.\nThere are three important differences between dataSource and dataSourceRef:\n* While dataSource only allows two specific types of objects, dataSourceRef\n  allows any non-core object, as well as PersistentVolumeClaim objects.\n* While dataSource ignores disallowed values (dropping them), dataSourceRef\n  preserves all values, and generates an error if a disallowed value is\n  specified.\n* While dataSource only allows local objects, dataSourceRef allows objects\n  in any namespaces.\n(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.\n(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"object","required":["kind","name"],"properties":{"apiGroup":{"description":"APIGroup is the group for the resource being referenced.\nIf APIGroup is not specified, the specified Kind must be in the core API group.\nFor any other third-party types, APIGroup is required.","type":"string"},"kind":{"description":"Kind is the type of resource being referenced","type":"string"},"name":{"description":"Name is the name of resource being referenced","type":"string"},"namespace":{"description":"Namespace is the namespace of resource being referenced\nNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.\n(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.","type":"string"}}},"resources":{"description":"resources represents the minimum resources the volume should have.\nUsers are allowed to specify resource requirements\nthat are lower than previous value but must still be higher than capacity recorded in the\nstatus field of the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources","type":"object","properties":{"limits":{"description":"Limits describes the maximum amount of compute resources allowed.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"requests":{"description":"Requests describes the minimum amount of compute resources required.\nIf Requests is omitted for a container, it defaults to Limits if that is explicitly specified,\notherwise to an implementation-defined value. Requests cannot exceed Limits.\nMore info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"selector":{"description":"selector is a label query over volumes to consider for binding.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"storageClassName":{"description":"storageClassName is the name of the StorageClass required by the claim.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1","type":"string"},"volumeAttributesClassName":{"description":"volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.\nIf specified, the CSI driver will create or update the volume with the attributes defined\nin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,\nit can be changed after the claim is created. An empty string or nil value indicates that no\nVolumeAttributesClass will be applied to the claim. If the claim enters an Infeasible error state,\nthis field can be reset to its previous value (including nil) to cancel the modification.\nIf the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be\nset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource\nexists.\nMore info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/","type":"string"},"volumeMode":{"description":"volumeMode defines what type of volume is required by the claim.\nValue of Filesystem is implied when not included in claim spec.","type":"string"},"volumeName":{"description":"volumeName is the binding reference to the PersistentVolume backing this claim.","type":"string"}}}}}}},"fc":{"description":"fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"lun":{"description":"lun is Optional: FC target lun number","type":"integer","format":"int32"},"readOnly":{"description":"readOnly is Optional: Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"targetWWNs":{"description":"targetWWNs is Optional: FC target worldwide names (WWNs)","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"wwids":{"description":"wwids Optional: FC volume world wide identifiers (wwids)\nEither wwids or combination of targetWWNs and lun must be set, but not both simultaneously.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"flexVolume":{"description":"flexVolume represents a generic volume resource that is\nprovisioned/attached using an exec based plugin.\nDeprecated: FlexVolume is deprecated. Consider using a CSIDriver instead.","type":"object","required":["driver"],"properties":{"driver":{"description":"driver is the name of the driver to use for this volume.","type":"string"},"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". The default filesystem depends on FlexVolume script.","type":"string"},"options":{"description":"options is Optional: this field holds extra command options if any.","type":"object","additionalProperties":{"type":"string"}},"readOnly":{"description":"readOnly is Optional: defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef is Optional: secretRef is reference to the secret object containing\nsensitive information to pass to the plugin scripts. This may be\nempty if no secret object is specified. If the secret object\ncontains more than one secret, all secrets are passed to the plugin\nscripts.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"flocker":{"description":"flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running.\nDeprecated: Flocker is deprecated and the in-tree flocker type is no longer supported.","type":"object","properties":{"datasetName":{"description":"datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker\nshould be considered as deprecated","type":"string"},"datasetUUID":{"description":"datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset","type":"string"}}},"gcePersistentDisk":{"description":"gcePersistentDisk represents a GCE Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nDeprecated: GCEPersistentDisk is deprecated. All operations for the in-tree\ngcePersistentDisk type are redirected to the pd.csi.storage.gke.io CSI driver.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"object","required":["pdName"],"properties":{"fsType":{"description":"fsType is filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"partition":{"description":"partition is the partition in the volume that you want to mount.\nIf omitted, the default is to mount by volume name.\nExamples: For volume /dev/sda1, you specify the partition as \"1\".\nSimilarly, the volume partition for /dev/sda is \"0\" (or you can leave the property empty).\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"integer","format":"int32"},"pdName":{"description":"pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk","type":"boolean"}}},"gitRepo":{"description":"gitRepo represents a git repository at a particular revision.\nDeprecated: GitRepo is deprecated. To provision a container with a git repo, mount an\nEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir\ninto the Pod's container.","type":"object","required":["repository"],"properties":{"directory":{"description":"directory is the target directory name.\nMust not contain or start with '..'.  If '.' is supplied, the volume directory will be the\ngit repository.  Otherwise, if specified, the volume will contain the git repository in\nthe subdirectory with the given name.","type":"string"},"repository":{"description":"repository is the URL","type":"string"},"revision":{"description":"revision is the commit hash for the specified revision.","type":"string"}}},"glusterfs":{"description":"glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.\nDeprecated: Glusterfs is deprecated and the in-tree glusterfs type is no longer supported.","type":"object","required":["endpoints","path"],"properties":{"endpoints":{"description":"endpoints is the endpoint name that details Glusterfs topology.","type":"string"},"path":{"description":"path is the Glusterfs volume path.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"string"},"readOnly":{"description":"readOnly here will force the Glusterfs volume to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod","type":"boolean"}}},"hostPath":{"description":"hostPath represents a pre-existing file or directory on the host\nmachine that is directly exposed to the container. This is generally\nused for system agents or other privileged things that are allowed\nto see the host machine. Most containers will NOT need this.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"object","required":["path"],"properties":{"path":{"description":"path of the directory on the host.\nIf the path is a symlink, it will follow the link to the real path.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"},"type":{"description":"type for HostPath Volume\nDefaults to \"\"\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath","type":"string"}}},"image":{"description":"image represents an OCI object (a container image or artifact) pulled and mounted on the kubelet's host machine.\nThe volume is resolved at pod startup depending on which PullPolicy value is provided:\n\n- Always: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\n- Never: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\n- IfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\n\nThe volume gets re-resolved if the pod gets deleted and recreated, which means that new remote content will become available on pod recreation.\nA failure to resolve or pull the image during pod startup will block containers from starting and may add significant latency. Failures will be retried using normal volume backoff and will be reported on the pod reason and message.\nThe types of objects that may be mounted by this volume are defined by the container runtime implementation on a host machine and at minimum must include all valid types supported by the container image field.\nThe OCI object gets mounted in a single directory (spec.containers[*].volumeMounts.mountPath) by merging the manifest layers in the same way as for container images.\nThe volume will be mounted read-only (ro) and non-executable files (noexec).\nSub path mounts for containers are not supported (spec.containers[*].volumeMounts.subpath) before 1.33.\nThe field spec.securityContext.fsGroupChangePolicy has no effect on this volume type.","type":"object","properties":{"pullPolicy":{"description":"Policy for pulling OCI objects. Possible values are:\nAlways: the kubelet always attempts to pull the reference. Container creation will fail If the pull fails.\nNever: the kubelet never pulls the reference and only uses a local image or artifact. Container creation will fail if the reference isn't present.\nIfNotPresent: the kubelet pulls if the reference isn't already present on disk. Container creation will fail if the reference isn't present and the pull fails.\nDefaults to Always if :latest tag is specified, or IfNotPresent otherwise.","type":"string"},"reference":{"description":"Required: Image or artifact reference to be used.\nBehaves in the same way as pod.spec.containers[*].image.\nPull secrets will be assembled in the same way as for the container image by looking up node credentials, SA image pull secrets, and pod spec image pull secrets.\nMore info: https://kubernetes.io/docs/concepts/containers/images\nThis field is optional to allow higher level config management to default or override\ncontainer images in workload controllers like Deployments and StatefulSets.","type":"string"}}},"iscsi":{"description":"iscsi represents an ISCSI Disk resource that is attached to a\nkubelet's host machine and then exposed to the pod.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes/#iscsi","type":"object","required":["iqn","lun","targetPortal"],"properties":{"chapAuthDiscovery":{"description":"chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication","type":"boolean"},"chapAuthSession":{"description":"chapAuthSession defines whether support iSCSI Session CHAP authentication","type":"boolean"},"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi","type":"string"},"initiatorName":{"description":"initiatorName is the custom iSCSI Initiator Name.\nIf initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface\n<target portal>:<volume name> will be created for the connection.","type":"string"},"iqn":{"description":"iqn is the target iSCSI Qualified Name.","type":"string"},"iscsiInterface":{"description":"iscsiInterface is the interface Name that uses an iSCSI transport.\nDefaults to 'default' (tcp).","type":"string"},"lun":{"description":"lun represents iSCSI Target Lun number.","type":"integer","format":"int32"},"portals":{"description":"portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.","type":"boolean"},"secretRef":{"description":"secretRef is the CHAP Secret for iSCSI target and initiator authentication","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"targetPortal":{"description":"targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port\nis other than default (typically TCP ports 860 and 3260).","type":"string"}}},"name":{"description":"name of the volume.\nMust be a DNS_LABEL and unique within the pod.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"nfs":{"description":"nfs represents an NFS mount on the host that shares a pod's lifetime\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"object","required":["path","server"],"properties":{"path":{"description":"path that is exported by the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"},"readOnly":{"description":"readOnly here will force the NFS export to be mounted with read-only permissions.\nDefaults to false.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"boolean"},"server":{"description":"server is the hostname or IP address of the NFS server.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs","type":"string"}}},"persistentVolumeClaim":{"description":"persistentVolumeClaimVolumeSource represents a reference to a\nPersistentVolumeClaim in the same namespace.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"object","required":["claimName"],"properties":{"claimName":{"description":"claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims","type":"string"},"readOnly":{"description":"readOnly Will force the ReadOnly setting in VolumeMounts.\nDefault false.","type":"boolean"}}},"photonPersistentDisk":{"description":"photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine.\nDeprecated: PhotonPersistentDisk is deprecated and the in-tree photonPersistentDisk type is no longer supported.","type":"object","required":["pdID"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"pdID":{"description":"pdID is the ID that identifies Photon Controller persistent disk","type":"string"}}},"portworxVolume":{"description":"portworxVolume represents a portworx volume attached and mounted on kubelets host machine.\nDeprecated: PortworxVolume is deprecated. All operations for the in-tree portworxVolume type\nare redirected to the pxd.portworx.com CSI driver when the CSIMigrationPortworx feature-gate\nis on.","type":"object","required":["volumeID"],"properties":{"fsType":{"description":"fSType represents the filesystem type to mount\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"volumeID":{"description":"volumeID uniquely identifies a Portworx volume","type":"string"}}},"projected":{"description":"projected items for all in one resources secrets, configmaps, and downward API","type":"object","properties":{"defaultMode":{"description":"defaultMode are the mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"sources":{"description":"sources is the list of volume projections. Each entry in this list\nhandles one source.","type":"array","items":{"description":"Projection that may be projected along with other supported volume types.\nExactly one of these fields must be set.","type":"object","properties":{"clusterTrustBundle":{"description":"ClusterTrustBundle allows a pod to access the `.spec.trustBundle` field\nof ClusterTrustBundle objects in an auto-updating file.\n\nAlpha, gated by the ClusterTrustBundleProjection feature gate.\n\nClusterTrustBundle objects can either be selected by name, or by the\ncombination of signer name and a label selector.\n\nKubelet performs aggressive normalization of the PEM contents written\ninto the pod filesystem.  Esoteric PEM features such as inter-block\ncomments and block headers are stripped.  Certificates are deduplicated.\nThe ordering of certificates within the file is arbitrary, and Kubelet\nmay change the order over time.","type":"object","required":["path"],"properties":{"labelSelector":{"description":"Select all ClusterTrustBundles that match this label selector.  Only has\neffect if signerName is set.  Mutually-exclusive with name.  If unset,\ninterpreted as \"match nothing\".  If set but empty, interpreted as \"match\neverything\".","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"name":{"description":"Select a single ClusterTrustBundle by object name.  Mutually-exclusive\nwith signerName and labelSelector.","type":"string"},"optional":{"description":"If true, don't block pod startup if the referenced ClusterTrustBundle(s)\naren't available.  If using name, then the named ClusterTrustBundle is\nallowed not to exist.  If using signerName, then the combination of\nsignerName and labelSelector is allowed to match zero\nClusterTrustBundles.","type":"boolean"},"path":{"description":"Relative path from the volume root to write the bundle.","type":"string"},"signerName":{"description":"Select all ClusterTrustBundles that match this signer name.\nMutually-exclusive with name.  The contents of all selected\nClusterTrustBundles will be unified and deduplicated.","type":"string"}}},"configMap":{"description":"configMap information about the configMap data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nConfigMap will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the ConfigMap,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional specify whether the ConfigMap or its keys must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"downwardAPI":{"description":"downwardAPI information about the downwardAPI data to project","type":"object","properties":{"items":{"description":"Items is a list of DownwardAPIVolume file","type":"array","items":{"description":"DownwardAPIVolumeFile represents information to create the file containing the pod field","type":"object","required":["path"],"properties":{"fieldRef":{"description":"Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported.","type":"object","required":["fieldPath"],"properties":{"apiVersion":{"description":"Version of the schema the FieldPath is written in terms of, defaults to \"v1\".","type":"string"},"fieldPath":{"description":"Path of the field to select in the specified API version.","type":"string"}},"x-kubernetes-map-type":"atomic"},"mode":{"description":"Optional: mode bits used to set permissions on this file, must be an octal value\nbetween 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"Required: Path is  the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'","type":"string"},"resourceFieldRef":{"description":"Selects a resource of the container: only resources limits and requests\n(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.","type":"object","required":["resource"],"properties":{"containerName":{"description":"Container name: required for volumes, optional for env vars","type":"string"},"divisor":{"description":"Specifies the output format of the exposed resources, defaults to \"1\"","pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true},"resource":{"description":"Required: resource to select","type":"string"}},"x-kubernetes-map-type":"atomic"}}},"x-kubernetes-list-type":"atomic"}}},"podCertificate":{"description":"Projects an auto-rotating credential bundle (private key and certificate\nchain) that the pod can use either as a TLS client or server.\n\nKubelet generates a private key and uses it to send a\nPodCertificateRequest to the named signer.  Once the signer approves the\nrequest and issues a certificate chain, Kubelet writes the key and\ncertificate chain to the pod filesystem.  The pod does not start until\ncertificates have been issued for each podCertificate projected volume\nsource in its spec.\n\nKubelet will begin trying to rotate the certificate at the time indicated\nby the signer using the PodCertificateRequest.Status.BeginRefreshAt\ntimestamp.\n\nKubelet can write a single file, indicated by the credentialBundlePath\nfield, or separate files, indicated by the keyPath and\ncertificateChainPath fields.\n\nThe credential bundle is a single file in PEM format.  The first PEM\nentry is the private key (in PKCS#8 format), and the remaining PEM\nentries are the certificate chain issued by the signer (typically,\nsigners will return their certificate chain in leaf-to-root order).\n\nPrefer using the credential bundle format, since your application code\ncan read it atomically.  If you use keyPath and certificateChainPath,\nyour application must make two separate file reads. If these coincide\nwith a certificate rotation, it is possible that the private key and leaf\ncertificate you read may not correspond to each other.  Your application\nwill need to check for this condition, and re-read until they are\nconsistent.\n\nThe named signer controls chooses the format of the certificate it\nissues; consult the signer implementation's documentation to learn how to\nuse the certificates it issues.","type":"object","required":["keyType","signerName"],"properties":{"certificateChainPath":{"description":"Write the certificate chain at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"credentialBundlePath":{"description":"Write the credential bundle at this path in the projected volume.\n\nThe credential bundle is a single file that contains multiple PEM blocks.\nThe first PEM block is a PRIVATE KEY block, containing a PKCS#8 private\nkey.\n\nThe remaining blocks are CERTIFICATE blocks, containing the issued\ncertificate chain from the signer (leaf and any intermediates).\n\nUsing credentialBundlePath lets your Pod's application code make a single\natomic read that retrieves a consistent key and certificate chain.  If you\nproject them to separate files, your application code will need to\nadditionally check that the leaf certificate was issued to the key.","type":"string"},"keyPath":{"description":"Write the key at this path in the projected volume.\n\nMost applications should use credentialBundlePath.  When using keyPath\nand certificateChainPath, your application needs to check that the key\nand leaf certificate are consistent, because it is possible to read the\nfiles mid-rotation.","type":"string"},"keyType":{"description":"The type of keypair Kubelet will generate for the pod.\n\nValid values are \"RSA3072\", \"RSA4096\", \"ECDSAP256\", \"ECDSAP384\",\n\"ECDSAP521\", and \"ED25519\".","type":"string"},"maxExpirationSeconds":{"description":"maxExpirationSeconds is the maximum lifetime permitted for the\ncertificate.\n\nKubelet copies this value verbatim into the PodCertificateRequests it\ngenerates for this projection.\n\nIf omitted, kube-apiserver will set it to 86400(24 hours). kube-apiserver\nwill reject values shorter than 3600 (1 hour).  The maximum allowable\nvalue is 7862400 (91 days).\n\nThe signer implementation is then free to issue a certificate with any\nlifetime *shorter* than MaxExpirationSeconds, but no shorter than 3600\nseconds (1 hour).  This constraint is enforced by kube-apiserver.\n`kubernetes.io` signers will never issue certificates with a lifetime\nlonger than 24 hours.","type":"integer","format":"int32"},"signerName":{"description":"Kubelet's generated CSRs will be addressed to this signer.","type":"string"},"userAnnotations":{"description":"userAnnotations allow pod authors to pass additional information to\nthe signer implementation.  Kubernetes does not restrict or validate this\nmetadata in any way.\n\nThese values are copied verbatim into the `spec.unverifiedUserAnnotations` field of\nthe PodCertificateRequest objects that Kubelet creates.\n\nEntries are subject to the same validation as object metadata annotations,\nwith the addition that all keys must be domain-prefixed. No restrictions\nare placed on values, except an overall size limitation on the entire field.\n\nSigners should document the keys and values they support. Signers should\ndeny requests that contain keys they do not recognize.","type":"object","additionalProperties":{"type":"string"}}}},"secret":{"description":"secret information about the secret data to project","type":"object","properties":{"items":{"description":"items if unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"},"optional":{"description":"optional field specify whether the Secret or its key must be defined","type":"boolean"}},"x-kubernetes-map-type":"atomic"},"serviceAccountToken":{"description":"serviceAccountToken is information about the serviceAccountToken data to project","type":"object","required":["path"],"properties":{"audience":{"description":"audience is the intended audience of the token. A recipient of a token\nmust identify itself with an identifier specified in the audience of the\ntoken, and otherwise should reject the token. The audience defaults to the\nidentifier of the apiserver.","type":"string"},"expirationSeconds":{"description":"expirationSeconds is the requested duration of validity of the service\naccount token. As the token approaches expiration, the kubelet volume\nplugin will proactively rotate the service account token. The kubelet will\nstart trying to rotate the token if the token is older than 80 percent of\nits time to live or if the token is older than 24 hours.Defaults to 1 hour\nand must be at least 10 minutes.","type":"integer","format":"int64"},"path":{"description":"path is the path relative to the mount point of the file to project the\ntoken into.","type":"string"}}}}},"x-kubernetes-list-type":"atomic"}}},"quobyte":{"description":"quobyte represents a Quobyte mount on the host that shares a pod's lifetime.\nDeprecated: Quobyte is deprecated and the in-tree quobyte type is no longer supported.","type":"object","required":["registry","volume"],"properties":{"group":{"description":"group to map volume access to\nDefault is no group","type":"string"},"readOnly":{"description":"readOnly here will force the Quobyte volume to be mounted with read-only permissions.\nDefaults to false.","type":"boolean"},"registry":{"description":"registry represents a single or multiple Quobyte Registry services\nspecified as a string as host:port pair (multiple entries are separated with commas)\nwhich acts as the central registry for volumes","type":"string"},"tenant":{"description":"tenant owning the given Quobyte volume in the Backend\nUsed with dynamically provisioned Quobyte volumes, value is set by the plugin","type":"string"},"user":{"description":"user to map volume access to\nDefaults to serivceaccount user","type":"string"},"volume":{"description":"volume is a string that references an already created Quobyte volume by name.","type":"string"}}},"rbd":{"description":"rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.\nDeprecated: RBD is deprecated and the in-tree rbd type is no longer supported.","type":"object","required":["image","monitors"],"properties":{"fsType":{"description":"fsType is the filesystem type of the volume that you want to mount.\nTip: Ensure that the filesystem type is supported by the host operating system.\nExamples: \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#rbd","type":"string"},"image":{"description":"image is the rados image name.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"keyring":{"description":"keyring is the path to key ring for RBDUser.\nDefault is /etc/ceph/keyring.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"monitors":{"description":"monitors is a collection of Ceph monitors.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"},"pool":{"description":"pool is the rados pool name.\nDefault is rbd.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"},"readOnly":{"description":"readOnly here will force the ReadOnly setting in VolumeMounts.\nDefaults to false.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"boolean"},"secretRef":{"description":"secretRef is name of the authentication secret for RBDUser. If provided\noverrides keyring.\nDefault is nil.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"user":{"description":"user is the rados user name.\nDefault is admin.\nMore info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it","type":"string"}}},"scaleIO":{"description":"scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.\nDeprecated: ScaleIO is deprecated and the in-tree scaleIO type is no longer supported.","type":"object","required":["gateway","secretRef","system"],"properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\".\nDefault is \"xfs\".","type":"string"},"gateway":{"description":"gateway is the host address of the ScaleIO API Gateway.","type":"string"},"protectionDomain":{"description":"protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.","type":"string"},"readOnly":{"description":"readOnly Defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef references to the secret for ScaleIO user and other\nsensitive information. If this is not provided, Login operation will fail.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"sslEnabled":{"description":"sslEnabled Flag enable/disable SSL communication with Gateway, default false","type":"boolean"},"storageMode":{"description":"storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.\nDefault is ThinProvisioned.","type":"string"},"storagePool":{"description":"storagePool is the ScaleIO Storage Pool associated with the protection domain.","type":"string"},"system":{"description":"system is the name of the storage system as configured in ScaleIO.","type":"string"},"volumeName":{"description":"volumeName is the name of a volume already created in the ScaleIO system\nthat is associated with this volume source.","type":"string"}}},"secret":{"description":"secret represents a secret that should populate this volume.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"object","properties":{"defaultMode":{"description":"defaultMode is Optional: mode bits used to set permissions on created files by default.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values\nfor mode bits. Defaults to 0644.\nDirectories within the path are not affected by this setting.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"items":{"description":"items If unspecified, each key-value pair in the Data field of the referenced\nSecret will be projected into the volume as a file whose name is the\nkey and content is the value. If specified, the listed keys will be\nprojected into the specified paths, and unlisted keys will not be\npresent. If a key is specified which is not present in the Secret,\nthe volume setup will error unless it is marked optional. Paths must be\nrelative and may not contain the '..' path or start with '..'.","type":"array","items":{"description":"Maps a string key to a path within a volume.","type":"object","required":["key","path"],"properties":{"key":{"description":"key is the key to project.","type":"string"},"mode":{"description":"mode is Optional: mode bits used to set permissions on this file.\nMust be an octal value between 0000 and 0777 or a decimal value between 0 and 511.\nYAML accepts both octal and decimal values, JSON requires decimal values for mode bits.\nIf not specified, the volume defaultMode will be used.\nThis might be in conflict with other options that affect the file\nmode, like fsGroup, and the result can be other mode bits set.","type":"integer","format":"int32"},"path":{"description":"path is the relative path of the file to map the key to.\nMay not be an absolute path.\nMay not contain the path element '..'.\nMay not start with the string '..'.","type":"string"}}},"x-kubernetes-list-type":"atomic"},"optional":{"description":"optional field specify whether the Secret or its keys must be defined","type":"boolean"},"secretName":{"description":"secretName is the name of the secret in the pod's namespace to use.\nMore info: https://kubernetes.io/docs/concepts/storage/volumes#secret","type":"string"}}},"storageos":{"description":"storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.\nDeprecated: StorageOS is deprecated and the in-tree storageos type is no longer supported.","type":"object","properties":{"fsType":{"description":"fsType is the filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"readOnly":{"description":"readOnly defaults to false (read/write). ReadOnly here will force\nthe ReadOnly setting in VolumeMounts.","type":"boolean"},"secretRef":{"description":"secretRef specifies the secret to use for obtaining the StorageOS API\ncredentials.  If not specified, default values will be attempted.","type":"object","properties":{"name":{"description":"Name of the referent.\nThis field is effectively required, but due to backwards compatibility is\nallowed to be empty. Instances of this type with an empty value here are\nalmost certainly wrong.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names","type":"string"}},"x-kubernetes-map-type":"atomic"},"volumeName":{"description":"volumeName is the human-readable name of the StorageOS volume.  Volume\nnames are only unique within a namespace.","type":"string"},"volumeNamespace":{"description":"volumeNamespace specifies the scope of the volume within StorageOS.  If no\nnamespace is specified then the Pod's namespace will be used.  This allows the\nKubernetes name scoping to be mirrored within StorageOS for tighter integration.\nSet VolumeName to any name to override the default behaviour.\nSet to \"default\" if you are not using namespaces within StorageOS.\nNamespaces that do not pre-exist within StorageOS will be created.","type":"string"}}},"vsphereVolume":{"description":"vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine.\nDeprecated: VsphereVolume is deprecated. All operations for the in-tree vsphereVolume type\nare redirected to the csi.vsphere.vmware.com CSI driver.","type":"object","required":["volumePath"],"properties":{"fsType":{"description":"fsType is filesystem type to mount.\nMust be a filesystem type supported by the host operating system.\nEx. \"ext4\", \"xfs\", \"ntfs\". Implicitly inferred to be \"ext4\" if unspecified.","type":"string"},"storagePolicyID":{"description":"storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.","type":"string"},"storagePolicyName":{"description":"storagePolicyName is the storage Policy Based Management (SPBM) profile name.","type":"string"},"volumePath":{"description":"volumePath is the path that identifies vSphere volume vmdk","type":"string"}}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"workloadRef":{"description":"WorkloadRef provides a reference to the Workload object that this Pod belongs to.\nThis field is used by the scheduler to identify the PodGroup and apply the\ncorrect group scheduling policies. The Workload object referenced\nby this field may not exist at the time the Pod is created.\nThis field is immutable, but a Workload object with the same name\nmay be recreated with different policies. Doing this during pod scheduling\nmay result in the placement not conforming to the expected policies.","type":"object","required":["name","podGroup"],"properties":{"name":{"description":"Name defines the name of the Workload object this Pod belongs to.\nWorkload must be in the same namespace as the Pod.\nIf it doesn't match any existing Workload, the Pod will remain unschedulable\nuntil a Workload object is created and observed by the kube-scheduler.\nIt must be a DNS subdomain.","type":"string"},"podGroup":{"description":"PodGroup is the name of the PodGroup within the Workload that this Pod\nbelongs to. If it doesn't match any existing PodGroup within the Workload,\nthe Pod will remain unschedulable until the Workload object is recreated\nand observed by the kube-scheduler. It must be a DNS label.","type":"string"},"podGroupReplicaKey":{"description":"PodGroupReplicaKey specifies the replica key of the PodGroup to which this\nPod belongs. It is used to distinguish pods belonging to different replicas\nof the same pod group. The pod group policy is applied separately to each replica.\nWhen set, it must be a DNS label.","type":"string"}}}}}}},"topologyRequest":{"description":"topologyRequest defines the topology request for the PodSet.","type":"object","properties":{"podIndexLabel":{"description":"podIndexLabel indicates the name of the label indexing the pods.\nFor example, in the context of\n- kubernetes job this is: kubernetes.io/job-completion-index\n- JobSet: kubernetes.io/job-completion-index (inherited from Job)\n- Kubeflow: training.kubeflow.org/replica-index\n\tThis is limited to 317 characters.","type":"string","maxLength":317},"podSetGroupName":{"description":"podSetGroupName indicates the name of the group of PodSets to which this PodSet belongs to.\nPodSets with the same `PodSetGroupName` should be assigned the same ResourceFlavor","type":"string","maxLength":256},"podSetSliceRequiredTopology":{"description":"podSetSliceRequiredTopology indicates the topology level required by the PodSet slice, as\nindicated by the `kueue.x-k8s.io/podset-slice-required-topology` annotation.\n\nThis is limited to 63","type":"string","maxLength":63},"podSetSliceSize":{"description":"podSetSliceSize indicates the size of a subgroup of pods in a PodSet for which\nKueue finds a requested topology domain on a level defined\nin `kueue.x-k8s.io/podset-slice-required-topology` annotation.","type":"integer","format":"int32"},"preferred":{"description":"preferred indicates the topology level preferred by the PodSet, as\nindicated by the `kueue.x-k8s.io/podset-preferred-topology` PodSet\nannotation.\nThis is limited to 63 characters.","type":"string","maxLength":63},"required":{"description":"required indicates the topology level required by the PodSet, as\nindicated by the `kueue.x-k8s.io/podset-required-topology` PodSet\nannotation.\nThis is limited to 63 characters.","type":"string","maxLength":63},"subGroupCount":{"description":"subGroupCount indicates the count of replicated Jobs (groups) within a PodSet.\nFor example, in the context of JobSet this value is read from jobset.sigs.k8s.io/replicatedjob-replicas.","type":"integer","format":"int32"},"subGroupIndexLabel":{"description":"subGroupIndexLabel indicates the name of the label indexing the instances of replicated Jobs (groups)\nwithin a PodSet. For example, in the context of JobSet this is jobset.sigs.k8s.io/job-index.\n\tThis is limited to 317 characters.","type":"string","maxLength":317},"unconstrained":{"description":"unconstrained indicates that Kueue has the freedom to schedule the PodSet within\nthe entire available capacity, without constraints on the compactness of the placement.\nThis is indicated by the `kueue.x-k8s.io/podset-unconstrained-topology` PodSet annotation.","type":"boolean"}}}},"x-kubernetes-validations":[{"message":"minCount should be positive and less or equal to count","rule":"has(self.minCount) ? self.minCount <= self.count : true"}]},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"priority":{"description":"priority determines the order of access to the resources managed by the\nClusterQueue where the workload is queued.\nThe priority value is populated from the referenced PriorityClass (via priorityClassRef).\nThe higher the value, the higher the priority.\nIf priorityClassRef is specified, priority must not be null.","type":"integer","format":"int32"},"priorityClassRef":{"description":"priorityClassRef references a PriorityClass object that defines the workload's priority.","type":"object","required":["group","kind","name"],"properties":{"group":{"description":"group is the API group of the PriorityClass object.\nUse \"kueue.x-k8s.io\" for WorkloadPriorityClass.\nUse \"scheduling.k8s.io\" for Pod PriorityClass.","type":"string","enum":["kueue.x-k8s.io","scheduling.k8s.io"]},"kind":{"description":"kind is the kind of the PriorityClass object.","type":"string","enum":["WorkloadPriorityClass","PriorityClass"]},"name":{"description":"name is the name of the PriorityClass the Workload is associated with.\nIf specified, indicates the workload's priority.\n\"system-node-critical\" and \"system-cluster-critical\" are two special\nkeywords which indicate the highest priorities with the former being\nthe highest priority. Any other name must be defined by creating a\nPriorityClass object with that name. If not specified, the workload\npriority will be default or zero if there is no default.","type":"string","maxLength":253,"minLength":1,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"x-kubernetes-validations":[{"message":"only the PriorityClass kind is allowed for the scheduling.k8s.io group","rule":"(self.group == 'scheduling.k8s.io') ? self.kind == 'PriorityClass' : true"},{"message":"only the WorkloadPriorityClass kind is allowed for the kueue.x-k8s.io group","rule":"(self.group == 'kueue.x-k8s.io') ? self.kind == 'WorkloadPriorityClass' : true"}]},"queueName":{"description":"queueName is the name of the LocalQueue the Workload is associated with.\nqueueName cannot be changed while .status.admission is not null.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"x-kubernetes-validations":[{"message":"priority should not be nil when priorityClassRef is set","rule":"!has(self.priorityClassRef) || has(self.priority)"}]},"status":{"description":"status is the status of the Workload.","type":"object","properties":{"accumulatedPastExecutionTimeSeconds":{"description":"accumulatedPastExecutionTimeSeconds holds the total time, in seconds, the workload spent\nin Admitted state, in the previous `Admit` - `Evict` cycles.","type":"integer","format":"int32"},"admission":{"description":"admission holds the parameters of the admission of the workload by a\nClusterQueue. admission can be set back to null, but its fields cannot be\nchanged once set.","type":"object","properties":{"clusterQueue":{"description":"clusterQueue is the name of the ClusterQueue that admitted this workload.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"},"podSetAssignments":{"description":"podSetAssignments hold the admission results for each of the .spec.podSets entries.","type":"array","maxItems":8,"items":{"type":"object","properties":{"count":{"description":"count is the number of pods taken into account at admission time.\nThis field will not change in case of quota reclaim.\nValue could be missing for Workloads created before this field was added,\nin that case spec.podSets[*].count value will be used.","type":"integer","format":"int32","minimum":0},"delayedTopologyRequest":{"description":"delayedTopologyRequest indicates the topology assignment is delayed.\nTopology assignment might be delayed in case there is ProvisioningRequest\nAdmissionCheck used.\nKueue schedules the second pass of scheduling for each workload with at\nleast one PodSet which has delayedTopologyRequest=true and without\ntopologyAssignment.","type":"string","maxLength":7,"enum":["Pending","Ready"]},"flavors":{"description":"flavors are the flavors assigned to the workload for each resource.","type":"object","additionalProperties":{"description":"ResourceFlavorReference is the name of the ResourceFlavor.","type":"string","maxLength":253,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*$"}},"name":{"description":"name is the name of the podSet. It should match one of the names in .spec.podSets.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"resourceUsage":{"description":"resourceUsage keeps track of the total resources all the pods in the podset need to run.\n\nBeside what is provided in podSet's specs, this calculation takes into account\nthe LimitRange defaults and RuntimeClass overheads at the moment of admission.\nThis field will not change in case of quota reclaim.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}},"topologyAssignment":{"description":"topologyAssignment indicates the topology assignment divided into\ntopology domains corresponding to the lowest level of the topology.\nThe assignment specifies the number of Pods to be scheduled per topology\ndomain and specifies the node selectors for each topology domain, in the\nfollowing way:\n* `levels` specifies the node selector keys (same for all domains).\n  - If the TopologySpec.Levels field contains \"kubernetes.io/hostname\" label,\n    topologyAssignment will contain data only for this label,\n    and omit higher levels in the topology.\n* `slices` specifies the node selector values and pod counts for all domains\n  (which may be partitioned into separate slices).\n  - The node selector values are arranged first by topology level, only then by domain.\n    (This allows \"optimizing\" similar values; see below).\n* The format of `slices` supports the following variations\n  (aimed to optimize the total bytesize for very large number of domains; see examples below):\n  - When all node selector values (at a given topology level, in a given slice)\n    share a common prefix and/or suffix, these may be stored\n    in dedicated `prefix`/`suffix` fields.\n    If so, the array of `roots` will only store the remaining parts of these strings.\n  - When all node selector values (at a given topology level, in a given slice)\n    are identical, this may be represented by `universal` value.\n  - When all pod counts (in a given slice) are identical,\n    this may be represented by `universal` pod count.\n\nExample 1:\n\nThe following represents an assignment in which:\n* 4 Pods are to be scheduled on nodes matching the node selector:\n  - cloud.provider.com/topology-block: block-1\n  - cloud.provider.com/topology-rack: rack-1\n* 2 Pods are to be scheduled on nodes matching the node selector:\n  - cloud.provider.com/topology-block: block-1\n  - cloud.provider.com/topology-rack: rack-2\n\ntopologyAssignment:\n  levels:\n  - cloud.provider.com/topology-block\n  - cloud.provider.com/topology-rack\n  slices:\n  - domainCount: 2\n    valuesPerLevel:\n    - individual:\n        roots: [block-1, block-1]\n    - individual:\n        roots: [rack-1, rack-2]\n    podCounts:\n      individual: [4, 2]\n\nExample 2:\n\nThe following is equivalent to Example 1 - but using extracted prefix and universalValue.\n\ntopologyAssignment:\n  levels:\n  - cloud.provider.com/topology-block\n  - cloud.provider.com/topology-rack\n  slices:\n  - domainCount: 2\n    valuesPerLevel:\n    - universal: block-1\n    - individual:\n        prefix: rack-\n\t\t   roots: [1, 2]\n    podCounts:\n      individual: [4, 2]\n\nExample 3:\n\nNow suppose that:\n- the Topology object defines kubernetes.io/hostname as the lowest level\n  (and hence, in the topologyAssignment, we omit all other levels\n  since the hostname label suffices to explicitly identify a proper node),\n- we assign 1 Pod per each node,\n- the node naming scheme is `block-{blockId}-rack-{rackId}-node-{nodeId}`.\nThen, using the \"extraction of commons\", the assignment from Examples 1-2 would look as follows:\n\ntopologyAssignment:\n  levels:\n  - kubernetes.io/hostname\n  slices:\n  - domainCount: 6\n    valuesPerLevel:\n    - individual:\n        prefix: block-1-rack-\n\t\t   roots: [1-node-1, 1-node-2, 1-node-3, 1-node-4, 2-node-1, 2-node-2]\n    podCounts:\n      universal: 1\n\nExample 4:\n\nBy using multiple slices, we can afford even longer common prefixes.\nThe assignment from Example 3 can be alternatively represented as follows:\n\ntopologyAssignment:\n  levels:\n  - kubernetes.io/hostname\n  slices:\n  - domainCount: 4\n    valuesPerLevel:\n    - individual:\n        prefix: block-1-rack-1-node-\n\t\t   roots: [1, 2, 3, 4]\n    podCounts:\n      universal: 1\n  - domainCount: 2\n    valuesPerLevel:\n    - individual:\n        prefix: block-1-rack-2-node-\n\t\t   roots: [1, 2]\n    podCounts:\n      universal: 1","type":"object","required":["levels","slices"],"properties":{"levels":{"description":"levels is an ordered list of keys denoting the levels of the assigned\ntopology (i.e. node label keys), from the highest to the lowest level of\nthe topology.","type":"array","maxItems":16,"minItems":1,"items":{"type":"string","maxLength":317},"x-kubernetes-list-type":"atomic"},"slices":{"description":"slices represent topology assignments for subsets of pods of a workload.\nThe full assignment is obtained as a union of all slices.","type":"array","maxItems":1000,"items":{"type":"object","required":["domainCount","podCounts","valuesPerLevel"],"properties":{"domainCount":{"description":"domainCount is the number of domains covered by this slice.","type":"integer","format":"int32","minimum":1},"podCounts":{"description":"podCounts specifies the number of pods allocated per each domain.","type":"object","properties":{"individual":{"description":"individual - if set - specifies the number of pods allocated in each domain in this slice.\nIf set, its length must be equal to the \"domainCount\" field of the TopologyAssignmentSlice.\nExactly one of universal, individual must be set.","type":"array","maxItems":100000,"minItems":1,"items":{"type":"integer","format":"int32","minimum":1},"x-kubernetes-list-type":"atomic"},"universal":{"description":"universal - if set - specifies the number of pods allocated in every domain in this slice.\nExactly one of universal, individual must be set.","type":"integer","format":"int32","minimum":1}},"x-kubernetes-validations":[{"message":"exactly one of the fields in [universal individual] must be set","rule":"[has(self.universal),has(self.individual)].filter(x,x==true).size() == 1"}]},"valuesPerLevel":{"description":"valuesPerLevel has one entry for each of the Levels specified in the TopologyAssignment.\nThe entry corresponding to a particular level specifies the placement of pods at that level.","type":"array","maxItems":16,"minItems":1,"items":{"type":"object","properties":{"individual":{"description":"individual - if set - specifies multiple topology placement values (at a particular topology level)\nthat apply to the pods in the current TopologyAssignmentSlice.\nExactly one of universal, individual must be set.","type":"object","required":["roots"],"properties":{"prefix":{"description":"prefix specifies a common prefix for all values in this slice assignment.\nIt must be either nil pointer or a non-empty string.","type":"string","maxLength":63},"roots":{"description":"roots specifies the values in this assignment (excluding prefix and suffix, if non-empty).\nIts length must be equal to the \"domainCount\" field of the TopologyAssignmentSlice.","type":"array","maxItems":100000,"minItems":1,"items":{"type":"string","maxLength":63},"x-kubernetes-list-type":"atomic"},"suffix":{"description":"suffix specifies a common suffix for all values in this slice assignment.\nIt must be either nil pointer or a non-empty string.","type":"string","maxLength":63}}},"universal":{"description":"universal - if set - specifies a single topology placement value (at a particular topology level)\nthat applies to all pods in the current TopologyAssignmentSlice.\nExactly one of universal, individual must be set.","type":"string","maxLength":63}},"x-kubernetes-validations":[{"message":"exactly one of the fields in [universal individual] must be set","rule":"[has(self.universal),has(self.individual)].filter(x,x==true).size() == 1"}]},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-validations":[{"message":"podCounts.individual must have length equal to domainCount","rule":"!has(self.podCounts.individual) || size(self.podCounts.individual) == self.domainCount"},{"message":"valuesPerLevel.individual, if set, must have roots of length equal to domainCount of this TopologyAssignmentSlice","rule":"self.valuesPerLevel.all(x, !has(x.individual) || size(x.individual.roots) == self.domainCount)"}]},"x-kubernetes-list-type":"atomic"}},"x-kubernetes-validations":[{"message":"valuesPerLevel must have the same length as the number of levels in this TopologyAssignment","rule":"self.slices.all(x, size(x.valuesPerLevel) == size(self.levels))"}]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}}},"admissionChecks":{"description":"admissionChecks list all the admission checks required by the workload and the current status","type":"array","maxItems":8,"items":{"type":"object","required":["lastTransitionTime","message","name","state"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"name":{"description":"name identifies the admission check.","type":"string","maxLength":316,"minLength":1},"podSetUpdates":{"description":"podSetUpdates contains a list of pod set modifications suggested by AdmissionChecks.","type":"array","maxItems":8,"items":{"description":"PodSetUpdate contains a list of pod set modifications suggested by AdmissionChecks.\nThe modifications should be additive only - modifications of already existing keys\nor having the same key provided by multiple AdmissionChecks is not allowed and will\nresult in failure during workload admission.","type":"object","required":["name"],"properties":{"annotations":{"description":"annotations of the PodSet to modify.","type":"object","additionalProperties":{"type":"string"}},"labels":{"description":"labels of the PodSet to modify.","type":"object","additionalProperties":{"type":"string"}},"name":{"description":"name of the PodSet to modify. Should match to one of the Workload's PodSets.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"nodeSelector":{"description":"nodeSelector of the PodSet to modify.","type":"object","additionalProperties":{"type":"string"}},"tolerations":{"description":"tolerations of the PodSet to modify.","type":"array","maxItems":8,"items":{"description":"The pod this Toleration is attached to tolerates any taint that matches\nthe triple <key,value,effect> using the matching operator <operator>.","type":"object","properties":{"effect":{"description":"Effect indicates the taint effect to match. Empty means match all taint effects.\nWhen specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.","type":"string"},"key":{"description":"Key is the taint key that the toleration applies to. Empty means match all taint keys.\nIf the key is empty, operator must be Exists; this combination means to match all values and all keys.","type":"string"},"operator":{"description":"Operator represents a key's relationship to the value.\nValid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.\nExists is equivalent to wildcard for value, so that a pod can\ntolerate all taints of a particular category.\nLt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).","type":"string"},"tolerationSeconds":{"description":"TolerationSeconds represents the period of time the toleration (which must be\nof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,\nit is not set, which means tolerate the taint forever (do not evict). Zero and\nnegative values will be treated as 0 (evict immediately) by the system.","type":"integer","format":"int64"},"value":{"description":"Value is the taint value the toleration matches to.\nIf the operator is Exists, the value should be empty, otherwise just a regular string.","type":"string"}}},"x-kubernetes-list-type":"atomic","x-kubernetes-validations":[{"message":"operator must be Exists when 'key' is empty, which means 'match all values and all keys'","rule":"self.all(x, !has(x.key) ? x.operator == 'Exists' : true)"},{"message":"effect must be 'NoExecute' when 'tolerationSeconds' is set","rule":"self.all(x, has(x.tolerationSeconds) ? x.effect == 'NoExecute' : true)"},{"message":"supported toleration values: 'Equal'(default), 'Exists'","rule":"self.all(x, !has(x.operator) || x.operator in ['Equal', 'Exists'])"},{"message":"a value must be empty when 'operator' is 'Exists'","rule":"self.all(x, has(x.operator) && x.operator == 'Exists' ? !has(x.value) : true)"},{"message":"supported taint effect values: 'NoSchedule', 'PreferNoSchedule', 'NoExecute'","rule":"self.all(x, !has(x.effect) || x.effect in ['NoSchedule', 'PreferNoSchedule', 'NoExecute'])"}]}}},"x-kubernetes-list-type":"atomic"},"requeueAfterSeconds":{"description":"requeueAfterSeconds indicates how long to wait at least before\nretrying to admit the workload.\nThe admission check controllers can set this field when State=Retry\nto implement delays between retry attempts.\n\nIf nil when State=Retry, Kueue will retry immediately.\nIf set, Kueue will add the workload back to the queue after\n  lastTransitionTime + RequeueAfterSeconds is over.","type":"integer","format":"int32","minimum":0},"retryCount":{"description":"retryCount tracks retry attempts for this admission check.\nKueue automatically increments the counter whenever the\nstate transitions to Retry.","type":"integer","format":"int32","minimum":0},"state":{"description":"state of the admissionCheck, one of Pending, Ready, Retry, Rejected","type":"string","enum":["Pending","Ready","Retry","Rejected"]}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"clusterName":{"description":"clusterName is the name of the cluster where the workload is currently assigned.\n\nWith ElasticJobs, this field may also indicate the cluster where the original (old) workload\nwas assigned, providing placement context for new scaled-up workloads. This supports\naffinity or propagation policies across workload slices.\n\nThis field is reset after the Workload is evicted.","type":"string","maxLength":256},"conditions":{"description":"conditions hold the latest available observations of the Workload\ncurrent state.\n\nThe type of the condition could be:\n\n- Admitted: the Workload was admitted through a ClusterQueue.\n- Finished: the associated workload finished running (failed or succeeded).\n- PodsReady: at least `.spec.podSets[*].count` Pods are ready or have\nsucceeded.\nconditions are limited to 16 items.","type":"array","maxItems":16,"items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"nominatedClusterNames":{"description":"nominatedClusterNames specifies the list of cluster names that have been nominated for scheduling.\nThis field is mutually exclusive with the `.status.clusterName` field, and is reset when\n`status.clusterName` is set.\nThis field is optional.","type":"array","maxItems":20,"items":{"type":"string","maxLength":256},"x-kubernetes-list-type":"atomic"},"reclaimablePods":{"description":"reclaimablePods keeps track of the number pods within a podset for which\nthe resource reservation is no longer needed.","type":"array","maxItems":8,"items":{"type":"object","required":["count","name"],"properties":{"count":{"description":"count is the number of pods for which the requested resources are no longer needed.","type":"integer","format":"int32","minimum":0},"name":{"description":"name is the PodSet name.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"requeueState":{"description":"requeueState holds the re-queue state\nwhen a workload meets Eviction with PodsReadyTimeout reason.","type":"object","properties":{"count":{"description":"count records the number of times a workload has been re-queued\nWhen a deactivated (`.spec.activate`=`false`) workload is reactivated (`.spec.activate`=`true`),\nthis count would be reset to null.","type":"integer","format":"int32","minimum":0},"requeueAt":{"description":"requeueAt records the time when a workload will be re-queued.\nWhen a deactivated (`.spec.activate`=`false`) workload is reactivated (`.spec.activate`=`true`),\nthis time would be reset to null.","type":"string","format":"date-time"}}},"resourceRequests":{"description":"resourceRequests provides a detailed view of the resources that were\nrequested by a non-admitted workload when it was considered for admission.\nIf admission is non-null, resourceRequests will be empty because\nadmission.resourceUsage contains the detailed information.","type":"array","maxItems":8,"items":{"type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the podSet. It should match one of the names in .spec.podSets.","type":"string","maxLength":63,"pattern":"^[a-z0-9]([-a-z0-9]*[a-z0-9])?$"},"resources":{"description":"resources is the total resources all the pods in the podset need to run.\n\nBeside what is provided in podSet's specs, this value also takes into account\nthe LimitRange defaults and RuntimeClass overheads at the moment of consideration\nand the application of resource.excludeResourcePrefixes and resource.transformations.","type":"object","additionalProperties":{"pattern":"^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$","x-kubernetes-int-or-string":true}}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"},"schedulingStats":{"description":"schedulingStats tracks scheduling statistics","type":"object","properties":{"evictions":{"description":"evictions tracks eviction statistics by reason and underlyingCause.","type":"array","maxItems":256,"items":{"type":"object","required":["count","reason","underlyingCause"],"properties":{"count":{"description":"count tracks the number of evictions for this reason and detailed reason.","type":"integer","format":"int32","minimum":0},"reason":{"description":"reason specifies the programmatic identifier for the eviction cause.","type":"string","maxLength":316},"underlyingCause":{"description":"underlyingCause specifies a finer-grained explanation that complements the eviction reason.\nThis may be an empty string.","type":"string","maxLength":316}}},"x-kubernetes-list-map-keys":["reason","underlyingCause"],"x-kubernetes-list-type":"map"}}},"unhealthyNodes":{"description":"unhealthyNodes holds the failed nodes running at least one pod of this workload\nwhen Topology-Aware Scheduling is used. This field should not be set by the users.\nIt indicates Kueue's scheduler is searching for replacements of the failed nodes.\nRequires enabling the TASFailedNodeReplacement feature gate.","type":"array","maxItems":8,"items":{"type":"object","required":["name"],"properties":{"name":{"description":"name is the name of the unhealthy node.","type":"string","maxLength":63}}},"x-kubernetes-list-map-keys":["name"],"x-kubernetes-list-type":"map"}},"x-kubernetes-validations":[{"message":"clusterName is immutable once set","rule":"!has(oldSelf.clusterName) || !has(self.clusterName) || oldSelf.clusterName == self.clusterName"},{"message":"clusterName and nominatedClusterNames are mutually exclusive","rule":"!has(self.clusterName) || (!has(self.nominatedClusterNames) || (has(self.nominatedClusterNames) && size(self.nominatedClusterNames) == 0))"}]}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"Workload","version":"v1beta2"}],"x-kubernetes-validations":[{"message":"podSetAssignments must have the same number of podSets as the spec","rule":"has(self.status) && has(self.status.conditions) && self.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True') && has(self.status.admission) ? size(self.spec.podSets) == size(self.status.admission.podSetAssignments) : true"},{"message":"priorityClassRef is immutable while workload quota reserved","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True')) ? (!has(oldSelf.spec.priorityClassRef) && !has(self.spec.priorityClassRef)) || (has(oldSelf.spec.priorityClassRef) && has(self.spec.priorityClassRef)) : true"},{"message":"priorityClassRef.group is immutable while workload quota reserved","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True') && has(oldSelf.spec.priorityClassRef) && has(self.spec.priorityClassRef)) ? oldSelf.spec.priorityClassRef.group == self.spec.priorityClassRef.group : true"},{"message":"priorityClassRef.kind is immutable while workload quota reserved","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True') && has(oldSelf.spec.priorityClassRef) && has(self.spec.priorityClassRef)) ? oldSelf.spec.priorityClassRef.kind == self.spec.priorityClassRef.kind : true"},{"message":"priorityClassRef.name is immutable for scheduling.k8s.io/priorityclass while workload quota reserved","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True') && has(oldSelf.spec.priorityClassRef) && has(self.spec.priorityClassRef) && self.spec.priorityClassRef.group == 'scheduling.k8s.io' && self.spec.priorityClassRef.kind == 'PriorityClass') ? oldSelf.spec.priorityClassRef.name == self.spec.priorityClassRef.name : true"},{"message":"queueName is immutable while workload quota reserved","rule":"(has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True')) && (has(self.status) && has(self.status.conditions) && self.status.conditions.exists(c, c.type == 'QuotaReserved' && c.status == 'True')) && has(oldSelf.spec.queueName) && has(self.spec.queueName) ? oldSelf.spec.queueName == self.spec.queueName : true"},{"message":"maximumExecutionTimeSeconds is immutable while workload quota reserved","rule":"((has(oldSelf.status) && has(oldSelf.status.conditions) && oldSelf.status.conditions.exists(c, c.type == 'Admitted' && c.status == 'True')) && (has(self.status) && has(self.status.conditions) && self.status.conditions.exists(c, c.type == 'Admitted' && c.status == 'True')))?((has(oldSelf.spec.maximumExecutionTimeSeconds)?oldSelf.spec.maximumExecutionTimeSeconds:0) ==  (has(self.spec.maximumExecutionTimeSeconds)?self.spec.maximumExecutionTimeSeconds:0)):true"}]},"io.x-k8s.kueue.v1beta2.WorkloadList":{"description":"WorkloadList is a list of Workload","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of workloads. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.Workload"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"WorkloadList","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.WorkloadPriorityClass":{"description":"WorkloadPriorityClass is the Schema for the workloadPriorityClass API","type":"object","required":["value"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"description":{"description":"description is an arbitrary string that usually provides guidelines on\nwhen this workloadPriorityClass should be used.\nThe description is limited to a maximum of 2048 characters.","type":"string","maxLength":2048},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"value":{"description":"value represents the integer value of this workloadPriorityClass. This is the actual priority that workloads\nreceive when jobs have the name of this class in their workloadPriorityClass label.\nChanging the value of workloadPriorityClass doesn't affect the priority of workloads that were already created.","type":"integer","format":"int32"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClass","version":"v1beta2"}]},"io.x-k8s.kueue.v1beta2.WorkloadPriorityClassList":{"description":"WorkloadPriorityClassList is a list of WorkloadPriorityClass","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of workloadpriorityclasses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/io.x-k8s.kueue.v1beta2.WorkloadPriorityClass"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kueue.x-k8s.io","kind":"WorkloadPriorityClassList","version":"v1beta2"}]},"org.kubearchive.v1.ClusterKubeArchiveConfig":{"description":"ClusterKubeArchiveConfig is the Schema for the clusterkubearchiveconfigs API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterKubeArchiveConfigSpec defines the desired state of ClusterKubeArchiveConfig","type":"object","required":["resources"],"properties":{"resources":{"type":"array","items":{"type":"object","properties":{"archiveOnDelete":{"type":"string"},"archiveWhen":{"type":"string"},"deleteWhen":{"type":"string"},"keepLastWhen":{"type":"array","items":{"type":"object","required":["count","name","when"],"properties":{"count":{"type":"integer"},"name":{"type":"string"},"sortBy":{"type":"string"},"when":{"type":"string"}}}},"selector":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"}}}}}}}},"status":{"description":"ClusterKubeArchiveConfigStatus defines the observed state of ClusterKubeArchiveConfig","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfig","version":"v1"}]},"org.kubearchive.v1.ClusterKubeArchiveConfigList":{"description":"ClusterKubeArchiveConfigList is a list of ClusterKubeArchiveConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterkubearchiveconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.kubearchive.v1.ClusterKubeArchiveConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"ClusterKubeArchiveConfigList","version":"v1"}]},"org.kubearchive.v1.ClusterVacuumConfig":{"description":"ClusterVacuumConfig is the Schema for the clustervacuumconfigs API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterVacuumConfigSpec defines the desired state of ClusterVacuumConfig resource","type":"object","properties":{"namespaces":{"type":"object","additionalProperties":{"type":"object","properties":{"resources":{"type":"array","items":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"}}}}}}}}},"status":{"description":"ClusterVacuumConfigStatus defines the observed state of ClusterVacuumConfig resource","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"ClusterVacuumConfig","version":"v1"}]},"org.kubearchive.v1.ClusterVacuumConfigList":{"description":"ClusterVacuumConfigList is a list of ClusterVacuumConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clustervacuumconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.kubearchive.v1.ClusterVacuumConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"ClusterVacuumConfigList","version":"v1"}]},"org.kubearchive.v1.KubeArchiveConfig":{"description":"KubeArchiveConfig is the Schema for the kubearchiveconfigs API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"KubeArchiveConfigSpec defines the desired state of KubeArchiveConfig","type":"object","required":["resources"],"properties":{"resources":{"type":"array","items":{"type":"object","properties":{"archiveOnDelete":{"type":"string"},"archiveWhen":{"type":"string"},"deleteWhen":{"type":"string"},"keepLastWhen":{"type":"object","properties":{"keep":{"type":"array","items":{"type":"object","required":["count","when"],"properties":{"count":{"type":"integer"},"sortBy":{"type":"string"},"when":{"type":"string"}}}},"override":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"type":"integer"},"name":{"type":"string"}}}}}},"selector":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"}}}}}}}},"status":{"description":"KubeArchiveConfigStatus defines the observed state of KubeArchiveConfig","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"KubeArchiveConfig","version":"v1"}]},"org.kubearchive.v1.KubeArchiveConfigList":{"description":"KubeArchiveConfigList is a list of KubeArchiveConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of kubearchiveconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.kubearchive.v1.KubeArchiveConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"KubeArchiveConfigList","version":"v1"}]},"org.kubearchive.v1.NamespaceVacuumConfig":{"description":"NamespaceVacuumConfig is the Schema for the namespacevacuumconfigs API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"VacuumListSpec defines the desired state of VacuumList resource","type":"object","properties":{"resources":{"type":"array","items":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"}}}}}},"status":{"description":"NamespaceVacuumConfigStatus defines the observed state of NamespaceVacuumConfig resource","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"NamespaceVacuumConfig","version":"v1"}]},"org.kubearchive.v1.NamespaceVacuumConfigList":{"description":"NamespaceVacuumConfigList is a list of NamespaceVacuumConfig","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of namespacevacuumconfigs. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.kubearchive.v1.NamespaceVacuumConfig"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"NamespaceVacuumConfigList","version":"v1"}]},"org.kubearchive.v1.SinkFilter":{"description":"SinkFilter is the Schema for the sinkfilters API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"SinkFilterSpec defines the desired state of SinkFilter resource","type":"object","required":["namespaces"],"properties":{"cluster":{"type":"array","items":{"type":"object","properties":{"archiveOnDelete":{"type":"string"},"archiveWhen":{"type":"string"},"deleteWhen":{"type":"string"},"keepLastWhen":{"type":"array","items":{"type":"object","required":["count","name","when"],"properties":{"count":{"type":"integer"},"name":{"type":"string"},"sortBy":{"type":"string"},"when":{"type":"string"}}}},"selector":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"}}}}}},"namespaces":{"type":"object","additionalProperties":{"type":"array","items":{"type":"object","properties":{"archiveOnDelete":{"type":"string"},"archiveWhen":{"type":"string"},"deleteWhen":{"type":"string"},"keepLastWhen":{"type":"object","properties":{"keep":{"type":"array","items":{"type":"object","required":["count","when"],"properties":{"count":{"type":"integer"},"sortBy":{"type":"string"},"when":{"type":"string"}}}},"override":{"type":"array","items":{"type":"object","required":["count","name"],"properties":{"count":{"type":"integer"},"name":{"type":"string"}}}}}},"selector":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"}}}}}}}}},"status":{"description":"SinkFilterStatus defines the observed state of SinkFilter resource","type":"object"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"SinkFilter","version":"v1"}]},"org.kubearchive.v1.SinkFilterList":{"description":"SinkFilterList is a list of SinkFilter","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of sinkfilters. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.kubearchive.v1.SinkFilter"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"kubearchive.org","kind":"SinkFilterList","version":"v1"}]},"org.openshift.ci.v1alpha1.TestPlatformCluster":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["ciOperator"],"properties":{"ciOperator":{"description":"CIOperatorSpec contains what is needed to run ci-operator","type":"object","properties":{"baseImages":{"type":"object","additionalProperties":{"description":"ImageStreamTagReference identifies an ImageStreamTag","type":"object","required":["name","namespace","tag"],"properties":{"as":{"description":"As is an optional string to use as the intermediate name for this reference.","type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"tag":{"type":"string"}}}},"buildRoot":{"description":"BuildRootImageConfiguration holds the two ways of using a base image\nthat the pipeline will caches on.","type":"object","properties":{"from_repository":{"description":"If the BuildRoot images pullspec should be read from a file in the repository (BuildRootImageFileName).","type":"boolean"},"image_stream_tag":{"description":"ImageStreamTagReference identifies an ImageStreamTag","type":"object","required":["name","namespace","tag"],"properties":{"as":{"description":"As is an optional string to use as the intermediate name for this reference.","type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"tag":{"type":"string"}}},"project_image":{"description":"ProjectDirectoryImageBuildInputs holds inputs for an image build from the repo under test","type":"object","properties":{"build_args":{"description":"BuildArgs contains build arguments that will be resolved in the Dockerfile.\nSee https://docs.docker.com/engine/reference/builder/#/arg for more details.","type":"array","items":{"type":"object","properties":{"name":{"description":"Name of the build arg.","type":"string"},"value":{"description":"Value of the build arg.","type":"string"}}}},"context_dir":{"description":"ContextDir is the directory in the project\nfrom which this build should be run.","type":"string"},"dockerfile_literal":{"description":"DockerfileLiteral can be used to  provide an inline Dockerfile.\nMutually exclusive with DockerfilePath.","type":"string"},"dockerfile_path":{"description":"DockerfilePath is the path to a Dockerfile in the\nproject to run relative to the context_dir.","type":"string"},"inputs":{"description":"Inputs is a map of tag reference name to image input changes\nthat will populate the build context for the Dockerfile or\nalter the input image for a multi-stage build.","type":"object","additionalProperties":{"description":"ImageBuildInputs is a subset of the v1 OpenShift Build API object\ndefining an input source.","type":"object","properties":{"as":{"description":"As is a list of multi-stage step names or image names that will\nbe replaced by the image reference from this step. For instance,\nif the Dockerfile defines FROM nginx:latest AS base, specifying\neither \"nginx:latest\" or \"base\" in this array will replace that\nimage with the pipeline input.","type":"array","items":{"type":"string"}},"paths":{"description":"Paths is a list of paths to copy out of this image and into the\ncontext directory.","type":"array","items":{"description":"ImageSourcePath maps a path in the source image into a destination\npath in the context. See the v1 OpenShift Build API for more info.","type":"object","required":["destination_dir","source_path"],"properties":{"destination_dir":{"description":"DestinationDir is the directory in the destination image to copy\nto.","type":"string"},"source_path":{"description":"SourcePath is a file or directory in the source image to copy from.","type":"string"}}}}}}},"ref":{"description":"Ref is an optional string linking to the extra_ref in \"org.repo\" format that this belongs to","type":"string"}}},"use_build_cache":{"description":"UseBuildCache enables the import and use of the prior `bin` image\nas a build cache, if the underlying build root has not changed since\nthe previous cache was published.","type":"boolean"}}},"externalImages":{"type":"object","additionalProperties":{"description":"ExternalImage describes the external image that is imported into the pipeline","type":"object","required":["name","namespace","registry","tag"],"properties":{"as":{"description":"As is an optional string to use as the intermediate name for this reference.","type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"pull_secret":{"description":"PullSecret is the name of the secret to use to pull the image","type":"string"},"pull_spec":{"description":"PullSpec is the full pullSpec of the external image, only to be set programmatically,\nand takes precedent over the other fields in ExternalImage","type":"string"},"registry":{"description":"Registry is the registry to pull images from (e.g. quay.io)","type":"string"},"tag":{"type":"string"}}}},"releases":{"type":"object","additionalProperties":{"description":"UnresolvedRelease describes a semantic release payload\nidentifier we need to resolve to a pull spec.","type":"object","properties":{"candidate":{"description":"Candidate describes a candidate release payload","type":"object","required":["product","stream","version"],"properties":{"architecture":{"description":"Architecture is the architecture for the product.\nDefaults to amd64.","type":"string"},"product":{"description":"Product is the name of the product being released","type":"string"},"relative":{"description":"Relative optionally specifies how old of a release\nis requested from this stream. For instance, a value\nof 1 will resolve to the previous validated release\nfor this stream.","type":"integer"},"stream":{"description":"ReleaseStream is the stream from which we pick the latest candidate","type":"string"},"version":{"description":"Version is the minor version to search for","type":"string"}}},"integration":{"description":"Integration describes an integration stream which we can create a payload out of","type":"object","required":["name","namespace"],"properties":{"include_built_images":{"description":"IncludeBuiltImages determines if the release we assemble will include\nimages built during the test itself.","type":"boolean"},"name":{"description":"Name is the name of the ImageStream","type":"string"},"namespace":{"description":"Namespace is the namespace in which the integration stream lives.","type":"string"},"reference_policy":{"description":"ReferencePolicy is the policy to use when resolving references (Local or Source)","type":"string"}}},"prerelease":{"description":"Prerelease describes a yet-to-be released payload","type":"object","required":["product","version_bounds"],"properties":{"architecture":{"description":"Architecture is the architecture for the product.\nDefaults to amd64.","type":"string"},"product":{"description":"Product is the name of the product being released","type":"string"},"relative":{"description":"Relative optionally specifies how old of a release\nis requested from this stream. For instance, a value\nof 1 will resolve to the previous validated release\nfor this stream.","type":"integer"},"version_bounds":{"description":"VersionBounds describe the allowable version bounds to search in","type":"object","required":["lower","upper"],"properties":{"lower":{"type":"string"},"stream":{"description":"Stream dictates which stream to search for a version within the specified bounds\ndefaults to 4-stable.","type":"string"},"upper":{"type":"string"}}}}},"release":{"description":"Release describes a released payload","type":"object","required":["channel","version"],"properties":{"architecture":{"description":"Architecture is the architecture for the release.\nDefaults to amd64.","type":"string"},"channel":{"description":"Channel is the release channel to search in","type":"string"},"version":{"description":"Version is the minor version to search for","type":"string"}}}}}},"resources":{"description":"ResourceConfiguration defines resource overrides for jobs run\nby the operator.","type":"object","additionalProperties":{"description":"ResourceRequirements are resource requests and limits applied\nto the individual steps in the job. They are passed directly to\nbuilds or pods.","type":"object","properties":{"limits":{"description":"Limits are resource limits applied to an individual step in the job.\nThese are directly used in creating the Pods that execute the Job.","type":"object","additionalProperties":{"type":"string"}},"requests":{"description":"Requests are resource requests applied to an individual step in the job.\nThese are directly used in creating the Pods that execute the Job.","type":"object","additionalProperties":{"type":"string"}}}}},"test":{"description":"TestSpec determines the workflow will be executed by the ci-operator to provision a cluster.","type":"object","properties":{"clusterClaim":{"description":"ClusterClaim claims an OpenShift cluster for the job.","type":"object","required":["cloud","owner","version"],"properties":{"architecture":{"description":"Architecture is the architecture for the product.\nDefaults to amd64.","type":"string"},"as":{"description":"As is the name to use when importing the cluster claim release payload.\nIf unset, claim release will be imported as `latest`.","type":"string"},"cloud":{"description":"Cloud is the cloud where the product is installed, e.g., aws.","type":"string"},"labels":{"description":"Labels is the labels to select the cluster pools","type":"object","additionalProperties":{"type":"string"}},"owner":{"description":"Owner is the owner of cloud account used to install the product, e.g., dpp.","type":"string"},"product":{"description":"Product is the name of the product being released.\nDefaults to ocp.","type":"string"},"timeout":{"description":"Timeout is how long ci-operator will wait for the cluster to be ready.\nDefaults to 1h.","type":"string"},"version":{"description":"Version is the version of the product","type":"string"}}},"clusterProfile":{"type":"string"},"env":{"type":"object","additionalProperties":{"type":"string"}},"workflow":{"type":"string"}}}}},"compositeDeletePolicy":{"type":"string","enum":["Background","Foreground"]},"compositionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionUpdatePolicy":{"type":"string","enum":["Automatic","Manual"]},"resourceRef":{"type":"object","required":["apiVersion","kind","name"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"}}},"tearDownCluster":{"description":"When set to true, signals the controller that the ephemeral cluster is no longer needed,\nallowing decommissioning procedures to begin.","type":"boolean"},"writeConnectionSecretToRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}}}},"status":{"type":"object","properties":{"claimConditionTypes":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"observedGeneration":{"type":"integer","format":"int64"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"connectionDetails":{"type":"object","properties":{"lastPublishedTime":{"type":"string","format":"date-time"}}}}}},"x-kubernetes-group-version-kind":[{"group":"ci.openshift.org","kind":"TestPlatformCluster","version":"v1alpha1"}]},"org.openshift.ci.v1alpha1.TestPlatformClusterList":{"description":"TestPlatformClusterList is a list of TestPlatformCluster","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of testplatformclusters. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.TestPlatformCluster"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"ci.openshift.org","kind":"TestPlatformClusterList","version":"v1alpha1"}]},"org.openshift.ci.v1alpha1.XTestPlatformCluster":{"type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"type":"object","required":["ciOperator"],"properties":{"ciOperator":{"description":"CIOperatorSpec contains what is needed to run ci-operator","type":"object","properties":{"baseImages":{"type":"object","additionalProperties":{"description":"ImageStreamTagReference identifies an ImageStreamTag","type":"object","required":["name","namespace","tag"],"properties":{"as":{"description":"As is an optional string to use as the intermediate name for this reference.","type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"tag":{"type":"string"}}}},"buildRoot":{"description":"BuildRootImageConfiguration holds the two ways of using a base image\nthat the pipeline will caches on.","type":"object","properties":{"from_repository":{"description":"If the BuildRoot images pullspec should be read from a file in the repository (BuildRootImageFileName).","type":"boolean"},"image_stream_tag":{"description":"ImageStreamTagReference identifies an ImageStreamTag","type":"object","required":["name","namespace","tag"],"properties":{"as":{"description":"As is an optional string to use as the intermediate name for this reference.","type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"tag":{"type":"string"}}},"project_image":{"description":"ProjectDirectoryImageBuildInputs holds inputs for an image build from the repo under test","type":"object","properties":{"build_args":{"description":"BuildArgs contains build arguments that will be resolved in the Dockerfile.\nSee https://docs.docker.com/engine/reference/builder/#/arg for more details.","type":"array","items":{"type":"object","properties":{"name":{"description":"Name of the build arg.","type":"string"},"value":{"description":"Value of the build arg.","type":"string"}}}},"context_dir":{"description":"ContextDir is the directory in the project\nfrom which this build should be run.","type":"string"},"dockerfile_literal":{"description":"DockerfileLiteral can be used to  provide an inline Dockerfile.\nMutually exclusive with DockerfilePath.","type":"string"},"dockerfile_path":{"description":"DockerfilePath is the path to a Dockerfile in the\nproject to run relative to the context_dir.","type":"string"},"inputs":{"description":"Inputs is a map of tag reference name to image input changes\nthat will populate the build context for the Dockerfile or\nalter the input image for a multi-stage build.","type":"object","additionalProperties":{"description":"ImageBuildInputs is a subset of the v1 OpenShift Build API object\ndefining an input source.","type":"object","properties":{"as":{"description":"As is a list of multi-stage step names or image names that will\nbe replaced by the image reference from this step. For instance,\nif the Dockerfile defines FROM nginx:latest AS base, specifying\neither \"nginx:latest\" or \"base\" in this array will replace that\nimage with the pipeline input.","type":"array","items":{"type":"string"}},"paths":{"description":"Paths is a list of paths to copy out of this image and into the\ncontext directory.","type":"array","items":{"description":"ImageSourcePath maps a path in the source image into a destination\npath in the context. See the v1 OpenShift Build API for more info.","type":"object","required":["destination_dir","source_path"],"properties":{"destination_dir":{"description":"DestinationDir is the directory in the destination image to copy\nto.","type":"string"},"source_path":{"description":"SourcePath is a file or directory in the source image to copy from.","type":"string"}}}}}}},"ref":{"description":"Ref is an optional string linking to the extra_ref in \"org.repo\" format that this belongs to","type":"string"}}},"use_build_cache":{"description":"UseBuildCache enables the import and use of the prior `bin` image\nas a build cache, if the underlying build root has not changed since\nthe previous cache was published.","type":"boolean"}}},"externalImages":{"type":"object","additionalProperties":{"description":"ExternalImage describes the external image that is imported into the pipeline","type":"object","required":["name","namespace","registry","tag"],"properties":{"as":{"description":"As is an optional string to use as the intermediate name for this reference.","type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"pull_secret":{"description":"PullSecret is the name of the secret to use to pull the image","type":"string"},"pull_spec":{"description":"PullSpec is the full pullSpec of the external image, only to be set programmatically,\nand takes precedent over the other fields in ExternalImage","type":"string"},"registry":{"description":"Registry is the registry to pull images from (e.g. quay.io)","type":"string"},"tag":{"type":"string"}}}},"releases":{"type":"object","additionalProperties":{"description":"UnresolvedRelease describes a semantic release payload\nidentifier we need to resolve to a pull spec.","type":"object","properties":{"candidate":{"description":"Candidate describes a candidate release payload","type":"object","required":["product","stream","version"],"properties":{"architecture":{"description":"Architecture is the architecture for the product.\nDefaults to amd64.","type":"string"},"product":{"description":"Product is the name of the product being released","type":"string"},"relative":{"description":"Relative optionally specifies how old of a release\nis requested from this stream. For instance, a value\nof 1 will resolve to the previous validated release\nfor this stream.","type":"integer"},"stream":{"description":"ReleaseStream is the stream from which we pick the latest candidate","type":"string"},"version":{"description":"Version is the minor version to search for","type":"string"}}},"integration":{"description":"Integration describes an integration stream which we can create a payload out of","type":"object","required":["name","namespace"],"properties":{"include_built_images":{"description":"IncludeBuiltImages determines if the release we assemble will include\nimages built during the test itself.","type":"boolean"},"name":{"description":"Name is the name of the ImageStream","type":"string"},"namespace":{"description":"Namespace is the namespace in which the integration stream lives.","type":"string"},"reference_policy":{"description":"ReferencePolicy is the policy to use when resolving references (Local or Source)","type":"string"}}},"prerelease":{"description":"Prerelease describes a yet-to-be released payload","type":"object","required":["product","version_bounds"],"properties":{"architecture":{"description":"Architecture is the architecture for the product.\nDefaults to amd64.","type":"string"},"product":{"description":"Product is the name of the product being released","type":"string"},"relative":{"description":"Relative optionally specifies how old of a release\nis requested from this stream. For instance, a value\nof 1 will resolve to the previous validated release\nfor this stream.","type":"integer"},"version_bounds":{"description":"VersionBounds describe the allowable version bounds to search in","type":"object","required":["lower","upper"],"properties":{"lower":{"type":"string"},"stream":{"description":"Stream dictates which stream to search for a version within the specified bounds\ndefaults to 4-stable.","type":"string"},"upper":{"type":"string"}}}}},"release":{"description":"Release describes a released payload","type":"object","required":["channel","version"],"properties":{"architecture":{"description":"Architecture is the architecture for the release.\nDefaults to amd64.","type":"string"},"channel":{"description":"Channel is the release channel to search in","type":"string"},"version":{"description":"Version is the minor version to search for","type":"string"}}}}}},"resources":{"description":"ResourceConfiguration defines resource overrides for jobs run\nby the operator.","type":"object","additionalProperties":{"description":"ResourceRequirements are resource requests and limits applied\nto the individual steps in the job. They are passed directly to\nbuilds or pods.","type":"object","properties":{"limits":{"description":"Limits are resource limits applied to an individual step in the job.\nThese are directly used in creating the Pods that execute the Job.","type":"object","additionalProperties":{"type":"string"}},"requests":{"description":"Requests are resource requests applied to an individual step in the job.\nThese are directly used in creating the Pods that execute the Job.","type":"object","additionalProperties":{"type":"string"}}}}},"test":{"description":"TestSpec determines the workflow will be executed by the ci-operator to provision a cluster.","type":"object","properties":{"clusterClaim":{"description":"ClusterClaim claims an OpenShift cluster for the job.","type":"object","required":["cloud","owner","version"],"properties":{"architecture":{"description":"Architecture is the architecture for the product.\nDefaults to amd64.","type":"string"},"as":{"description":"As is the name to use when importing the cluster claim release payload.\nIf unset, claim release will be imported as `latest`.","type":"string"},"cloud":{"description":"Cloud is the cloud where the product is installed, e.g., aws.","type":"string"},"labels":{"description":"Labels is the labels to select the cluster pools","type":"object","additionalProperties":{"type":"string"}},"owner":{"description":"Owner is the owner of cloud account used to install the product, e.g., dpp.","type":"string"},"product":{"description":"Product is the name of the product being released.\nDefaults to ocp.","type":"string"},"timeout":{"description":"Timeout is how long ci-operator will wait for the cluster to be ready.\nDefaults to 1h.","type":"string"},"version":{"description":"Version is the version of the product","type":"string"}}},"clusterProfile":{"type":"string"},"env":{"type":"object","additionalProperties":{"type":"string"}},"workflow":{"type":"string"}}}}},"claimRef":{"type":"object","required":["apiVersion","kind","namespace","name"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"compositionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionRef":{"type":"object","required":["name"],"properties":{"name":{"type":"string"}}},"compositionRevisionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionSelector":{"type":"object","required":["matchLabels"],"properties":{"matchLabels":{"type":"object","additionalProperties":{"type":"string"}}}},"compositionUpdatePolicy":{"type":"string","enum":["Automatic","Manual"]},"resourceRefs":{"type":"array","items":{"type":"object","required":["apiVersion","kind"],"properties":{"apiVersion":{"type":"string"},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"}}},"x-kubernetes-list-type":"atomic"},"tearDownCluster":{"description":"When set to true, signals the controller that the ephemeral cluster is no longer needed,\nallowing decommissioning procedures to begin.","type":"boolean"},"writeConnectionSecretToRef":{"type":"object","required":["name","namespace"],"properties":{"name":{"type":"string"},"namespace":{"type":"string"}}}}},"status":{"type":"object","properties":{"claimConditionTypes":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"conditions":{"description":"Conditions of the resource.","type":"array","items":{"type":"object","required":["lastTransitionTime","reason","status","type"],"properties":{"lastTransitionTime":{"type":"string","format":"date-time"},"message":{"type":"string"},"observedGeneration":{"type":"integer","format":"int64"},"reason":{"type":"string"},"status":{"type":"string"},"type":{"type":"string"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"connectionDetails":{"type":"object","properties":{"lastPublishedTime":{"type":"string","format":"date-time"}}}}}},"x-kubernetes-group-version-kind":[{"group":"ci.openshift.org","kind":"XTestPlatformCluster","version":"v1alpha1"}]},"org.openshift.ci.v1alpha1.XTestPlatformClusterList":{"description":"XTestPlatformClusterList is a list of XTestPlatformCluster","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of xtestplatformclusters. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.openshift.ci.v1alpha1.XTestPlatformCluster"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"ci.openshift.org","kind":"XTestPlatformClusterList","version":"v1alpha1"}]},"org.ovn.k8s.v1.AdminPolicyBasedExternalRoute":{"description":"AdminPolicyBasedExternalRoute is a CRD allowing the cluster administrators to configure policies for external gateway IPs to be applied to all the pods contained in selected namespaces. Egress traffic from the pods that belong to the selected namespaces to outside the cluster is routed through these external gateway IPs.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"AdminPolicyBasedExternalRouteSpec defines the desired state of AdminPolicyBasedExternalRoute","type":"object","required":["from","nextHops"],"properties":{"from":{"description":"From defines the selectors that will determine the target namespaces to this CR.","type":"object","required":["namespaceSelector"],"properties":{"namespaceSelector":{"description":"NamespaceSelector defines a selector to be used to determine which namespaces will be targeted by this CR","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"nextHops":{"description":"NextHops defines two types of hops: Static and Dynamic. Each hop defines at least one external gateway IP.","type":"object","minProperties":1,"properties":{"dynamic":{"description":"DynamicHops defines a slices of DynamicHop. This field is optional.","type":"array","items":{"description":"DynamicHop defines the configuration for a dynamic external gateway interface. These interfaces are wrapped around a pod object that resides inside the cluster. The field NetworkAttachmentName captures the name of the multus network name to use when retrieving the gateway IP to use. The PodSelector and the NamespaceSelector are mandatory fields.","type":"object","required":["namespaceSelector","podSelector"],"properties":{"bfdEnabled":{"description":"BFDEnabled determines if the interface implements the Bidirectional Forward Detection protocol. Defaults to false.","type":"boolean"},"namespaceSelector":{"description":"NamespaceSelector defines a selector to filter the namespaces where the pod gateways are located.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"networkAttachmentName":{"description":"NetworkAttachmentName determines the multus network name to use when retrieving the pod IPs that will be used as the gateway IP. When this field is empty, the logic assumes that the pod is configured with HostNetwork and is using the node's IP as gateway.","type":"string"},"podSelector":{"description":"PodSelector defines the selector to filter the pods that are external gateways.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}},"static":{"description":"StaticHops defines a slice of StaticHop. This field is optional.","type":"array","items":{"description":"StaticHop defines the configuration of a static IP that acts as an external Gateway Interface. IP field is mandatory.","type":"object","required":["ip"],"properties":{"bfdEnabled":{"description":"BFDEnabled determines if the interface implements the Bidirectional Forward Detection protocol. Defaults to false.","type":"boolean"},"ip":{"description":"IP defines the static IP to be used for egress traffic. The IP can be either IPv4 or IPv6.","type":"string","pattern":"^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$|^s*((([0-9A-Fa-f]{1,4}:){7}([0-9A-Fa-f]{1,4}|:))|(([0-9A-Fa-f]{1,4}:){6}(:[0-9A-Fa-f]{1,4}|((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3})|:))|(([0-9A-Fa-f]{1,4}:){5}(((:[0-9A-Fa-f]{1,4}){1,2})|:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3})|:))|(([0-9A-Fa-f]{1,4}:){4}(((:[0-9A-Fa-f]{1,4}){1,3})|((:[0-9A-Fa-f]{1,4})?:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){3}(((:[0-9A-Fa-f]{1,4}){1,4})|((:[0-9A-Fa-f]{1,4}){0,2}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){2}(((:[0-9A-Fa-f]{1,4}){1,5})|((:[0-9A-Fa-f]{1,4}){0,3}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(([0-9A-Fa-f]{1,4}:){1}(((:[0-9A-Fa-f]{1,4}){1,6})|((:[0-9A-Fa-f]{1,4}){0,4}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:))|(:(((:[0-9A-Fa-f]{1,4}){1,7})|((:[0-9A-Fa-f]{1,4}){0,5}:((25[0-5]|2[0-4]d|1dd|[1-9]?d)(.(25[0-5]|2[0-4]d|1dd|[1-9]?d)){3}))|:)))(%.+)?s*"}}}}}}}},"status":{"description":"AdminPolicyBasedRouteStatus contains the observed status of the AdminPolicyBased route types.","type":"object","properties":{"lastTransitionTime":{"description":"Captures the time when the last change was applied.","type":"string","format":"date-time"},"messages":{"description":"An array of Human-readable messages indicating details about the status of the object.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"status":{"description":"A concise indication of whether the AdminPolicyBasedRoute resource is applied with success","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRoute","version":"v1"}]},"org.ovn.k8s.v1.AdminPolicyBasedExternalRouteList":{"description":"AdminPolicyBasedExternalRouteList is a list of AdminPolicyBasedExternalRoute","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of adminpolicybasedexternalroutes. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.ovn.k8s.v1.AdminPolicyBasedExternalRoute"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"AdminPolicyBasedExternalRouteList","version":"v1"}]},"org.ovn.k8s.v1.ClusterUserDefinedNetwork":{"description":"ClusterUserDefinedNetwork describe network request for a shared network across namespaces.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterUserDefinedNetworkSpec defines the desired state of ClusterUserDefinedNetwork.","type":"object","required":["namespaceSelector","network"],"properties":{"namespaceSelector":{"description":"NamespaceSelector Label selector for which namespace network should be available for.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"network":{"description":"Network is the user-defined-network spec","type":"object","required":["topology"],"properties":{"layer2":{"description":"Layer2 is the Layer2 topology configuration.","type":"object","required":["role"],"properties":{"ipam":{"description":"IPAM section contains IPAM-related configuration for the network.","type":"object","minProperties":1,"properties":{"lifecycle":{"description":"Lifecycle controls IP addresses management lifecycle.\n\nThe only allowed value is Persistent. When set, OVN Kubernetes assigned IP addresses will be persisted in an\n`ipamclaims.k8s.cni.cncf.io` object. These IP addresses will be reused by other pods if requested.\nOnly supported when mode is `Enabled`.","type":"string","enum":["Persistent"]},"mode":{"description":"Mode controls how much of the IP configuration will be managed by OVN.\n`Enabled` means OVN-Kubernetes will apply IP configuration to the SDN infrastructure and it will also assign IPs\nfrom the selected subnet to the individual pods.\n`Disabled` means OVN-Kubernetes will only assign MAC addresses and provide layer 2 communication, letting users\nconfigure IP addresses for the pods.\n`Disabled` is only available for Secondary networks.\nBy disabling IPAM, any Kubernetes features that rely on selecting pods by IP will no longer function\n(such as network policy, services, etc). Additionally, IP port security will also be disabled for interfaces attached to this network.\nDefaults to `Enabled`.","type":"string","enum":["Enabled","Disabled"]}},"x-kubernetes-validations":[{"message":"lifecycle Persistent is only supported when ipam.mode is Enabled","rule":"!has(self.lifecycle) || self.lifecycle != 'Persistent' || !has(self.mode) || self.mode == 'Enabled'"}]},"joinSubnets":{"description":"JoinSubnets are used inside the OVN network topology.\n\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\nThis field is only allowed for \"Primary\" network.\nIt is not recommended to set this field without explicit need and understanding of the OVN network topology.\nWhen omitted, the platform will choose a reasonable default which is subject to change over time.","type":"array","maxItems":2,"minItems":1,"items":{"type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0]) || !isCIDR(self[1]) || cidr(self[0]).ip().family() != cidr(self[1]).ip().family()"}]},"mtu":{"description":"MTU is the maximum transmission unit for a network.\nMTU is optional, if not provided, the globally configured value in OVN-Kubernetes (defaults to 1400) is used for the network.","type":"integer","format":"int32","maximum":65536,"minimum":576},"role":{"description":"Role describes the network role in the pod.\n\nAllowed value is \"Secondary\".\nSecondary network is only assigned to pods that use `k8s.v1.cni.cncf.io/networks` annotation to select given network.","type":"string","enum":["Primary","Secondary"]},"subnets":{"description":"Subnets are used for the pod network across the cluster.\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\n\nThe format should match standard CIDR notation (for example, \"10.128.0.0/16\").\nThis field must be omitted if `ipam.mode` is `Disabled`.","type":"array","maxItems":2,"minItems":1,"items":{"type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0]) || !isCIDR(self[1]) || cidr(self[0]).ip().family() != cidr(self[1]).ip().family()"}]}},"x-kubernetes-validations":[{"message":"Subnets is required with ipam.mode is Enabled or unset","rule":"has(self.ipam) && has(self.ipam.mode) && self.ipam.mode != 'Enabled' || has(self.subnets)"},{"message":"Subnets must be unset when ipam.mode is Disabled","rule":"!has(self.ipam) || !has(self.ipam.mode) || self.ipam.mode != 'Disabled' || !has(self.subnets)"},{"message":"Disabled ipam.mode is only supported for Secondary network","rule":"!has(self.ipam) || !has(self.ipam.mode) || self.ipam.mode != 'Disabled' || self.role == 'Secondary'"},{"message":"JoinSubnets is only supported for Primary network","rule":"!has(self.joinSubnets) || has(self.role) && self.role == 'Primary'"},{"message":"MTU should be greater than or equal to 1280 when IPv6 subent is used","rule":"!has(self.subnets) || !has(self.mtu) || !self.subnets.exists_one(i, isCIDR(i) && cidr(i).ip().family() == 6) || self.mtu >= 1280"}]},"layer3":{"description":"Layer3 is the Layer3 topology configuration.","type":"object","required":["role","subnets"],"properties":{"joinSubnets":{"description":"JoinSubnets are used inside the OVN network topology.\n\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\nThis field is only allowed for \"Primary\" network.\nIt is not recommended to set this field without explicit need and understanding of the OVN network topology.\nWhen omitted, the platform will choose a reasonable default which is subject to change over time.","type":"array","maxItems":2,"minItems":1,"items":{"type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0]) || !isCIDR(self[1]) || cidr(self[0]).ip().family() != cidr(self[1]).ip().family()"}]},"mtu":{"description":"MTU is the maximum transmission unit for a network.\n\nMTU is optional, if not provided, the globally configured value in OVN-Kubernetes (defaults to 1400) is used for the network.","type":"integer","format":"int32","maximum":65536,"minimum":576},"role":{"description":"Role describes the network role in the pod.\n\nAllowed values are \"Primary\" and \"Secondary\".\nPrimary network is automatically assigned to every pod created in the same namespace.\nSecondary network is only assigned to pods that use `k8s.v1.cni.cncf.io/networks` annotation to select given network.","type":"string","enum":["Primary","Secondary"]},"subnets":{"description":"Subnets are used for the pod network across the cluster.\n\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\nGiven subnet is split into smaller subnets for every node.","type":"array","maxItems":2,"minItems":1,"items":{"type":"object","required":["cidr"],"properties":{"cidr":{"description":"CIDR specifies L3Subnet, which is split into smaller subnets for every node.","type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"hostSubnet":{"description":"HostSubnet specifies the subnet size for every node.\n\nWhen not set, it will be assigned automatically.","type":"integer","format":"int32","maximum":127,"minimum":1}},"x-kubernetes-validations":[{"message":"HostSubnet must be smaller than CIDR subnet","rule":"!has(self.hostSubnet) || !isCIDR(self.cidr) || self.hostSubnet > cidr(self.cidr).prefixLength()"},{"message":"HostSubnet must < 32 for ipv4 CIDR","rule":"!has(self.hostSubnet) || !isCIDR(self.cidr) || (cidr(self.cidr).ip().family() != 4 || self.hostSubnet < 32)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0].cidr) || !isCIDR(self[1].cidr) || cidr(self[0].cidr).ip().family() != cidr(self[1].cidr).ip().family()"}]}},"x-kubernetes-validations":[{"message":"JoinSubnets is only supported for Primary network","rule":"!has(self.joinSubnets) || has(self.role) && self.role == 'Primary'"},{"message":"MTU should be greater than or equal to 1280 when IPv6 subent is used","rule":"!has(self.subnets) || !has(self.mtu) || !self.subnets.exists_one(i, isCIDR(i.cidr) && cidr(i.cidr).ip().family() == 6) || self.mtu >= 1280"}]},"topology":{"description":"Topology describes network configuration.\n\nAllowed values are \"Layer3\", \"Layer2\".\nLayer3 topology creates a layer 2 segment per node, each with a different subnet. Layer 3 routing is used to interconnect node subnets.\nLayer2 topology creates one logical switch shared by all nodes.","type":"string","enum":["Layer2","Layer3"]}},"x-kubernetes-validations":[{"message":"Network spec is immutable","rule":"self == oldSelf"}]}}},"status":{"description":"ClusterUserDefinedNetworkStatus contains the observed status of the ClusterUserDefinedNetwork.","type":"object","properties":{"conditions":{"description":"Conditions slice of condition objects indicating details about ClusterUserDefineNetwork status.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetwork","version":"v1"}]},"org.ovn.k8s.v1.ClusterUserDefinedNetworkList":{"description":"ClusterUserDefinedNetworkList is a list of ClusterUserDefinedNetwork","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusteruserdefinednetworks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.ovn.k8s.v1.ClusterUserDefinedNetwork"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"ClusterUserDefinedNetworkList","version":"v1"}]},"org.ovn.k8s.v1.EgressFirewall":{"description":"EgressFirewall describes the current egress firewall for a Namespace.\nTraffic from a pod to an IP address outside the cluster will be checked against\neach EgressFirewallRule in the pod's namespace's EgressFirewall, in\norder. If no rule matches (or no EgressFirewall is present) then the traffic\nwill be allowed by default.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of EgressFirewall.","type":"object","required":["egress"],"properties":{"egress":{"description":"a collection of egress firewall rule objects","type":"array","items":{"description":"EgressFirewallRule is a single egressfirewall rule object","type":"object","required":["to","type"],"properties":{"ports":{"description":"ports specify what ports and protocols the rule applies to","type":"array","items":{"description":"EgressFirewallPort specifies the port to allow or deny traffic to","type":"object","required":["port","protocol"],"properties":{"port":{"description":"port that the traffic must match","type":"integer","format":"int32","maximum":65535,"minimum":1},"protocol":{"description":"protocol (tcp, udp, sctp) that the traffic must match.","type":"string","pattern":"^TCP|UDP|SCTP$"}}}},"to":{"description":"to is the target that traffic is allowed/denied to","type":"object","maxProperties":1,"minProperties":1,"properties":{"cidrSelector":{"description":"cidrSelector is the CIDR range to allow/deny traffic to. If this is set, dnsName and nodeSelector must be unset.","type":"string"},"dnsName":{"description":"dnsName is the domain name to allow/deny traffic to. If this is set, cidrSelector and nodeSelector must be unset.\nFor a wildcard DNS name, the '*' will match only one label. Additionally, only a single '*' can be\nused at the beginning of the wildcard DNS name. For example, '*.example.com' will match 'sub1.example.com'\nbut won't match 'sub2.sub1.example.com'.","type":"string","pattern":"^(\\*\\.)?([A-Za-z0-9-]+\\.)*[A-Za-z0-9-]+\\.?$"},"nodeSelector":{"description":"nodeSelector will allow/deny traffic to the Kubernetes node IP of selected nodes. If this is set,\ncidrSelector and DNSName must be unset.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}},"type":{"description":"type marks this as an \"Allow\" or \"Deny\" rule","type":"string","pattern":"^Allow|Deny$"}}}}}},"status":{"description":"Observed status of EgressFirewall","type":"object","properties":{"messages":{"type":"array","items":{"type":"string"},"x-kubernetes-list-type":"set"},"status":{"type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressFirewall","version":"v1"}]},"org.ovn.k8s.v1.EgressFirewallList":{"description":"EgressFirewallList is a list of EgressFirewall","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of egressfirewalls. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressFirewall"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressFirewallList","version":"v1"}]},"org.ovn.k8s.v1.EgressIP":{"description":"EgressIP is a CRD allowing the user to define a fixed source IP for all egress traffic originating from any pods which match the EgressIP resource according to its spec definition.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"Specification of the desired behavior of EgressIP.","type":"object","required":["egressIPs","namespaceSelector"],"properties":{"egressIPs":{"description":"EgressIPs is the list of egress IP addresses requested. Can be IPv4 and/or IPv6. This field is mandatory.","type":"array","items":{"type":"string"}},"namespaceSelector":{"description":"NamespaceSelector applies the egress IP only to the namespace(s) whose label matches this definition. This field is mandatory.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}}},"podSelector":{"description":"PodSelector applies the egress IP only to the pods whose label matches this definition. This field is optional, and in case it is not set: results in the egress IP being applied to all pods in the namespace(s) matched by the NamespaceSelector. In case it is set: is intersected with the NamespaceSelector, thus applying the egress IP to the pods (in the namespace(s) already matched by the NamespaceSelector) which match this pod selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}}}}},"status":{"description":"Observed status of EgressIP. Read-only.","type":"object","required":["items"],"properties":{"items":{"description":"The list of assigned egress IPs and their corresponding node assignment.","type":"array","items":{"description":"The per node status, for those egress IPs who have been assigned.","type":"object","required":["egressIP","node"],"properties":{"egressIP":{"description":"Assigned egress IP","type":"string"},"node":{"description":"Assigned node name","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressIP","version":"v1"}]},"org.ovn.k8s.v1.EgressIPList":{"description":"EgressIPList is a list of EgressIP","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of egressips. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressIP"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressIPList","version":"v1"}]},"org.ovn.k8s.v1.EgressQoS":{"description":"EgressQoS is a CRD that allows the user to define a DSCP value\nfor pods egress traffic on its namespace to specified CIDRs.\nTraffic from these pods will be checked against each EgressQoSRule in\nthe namespace's EgressQoS, and if there is a match the traffic is marked\nwith the relevant DSCP value.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"EgressQoSSpec defines the desired state of EgressQoS","type":"object","required":["egress"],"properties":{"egress":{"description":"a collection of Egress QoS rule objects","type":"array","items":{"type":"object","required":["dscp"],"properties":{"dscp":{"description":"DSCP marking value for matching pods' traffic.","type":"integer","maximum":63,"minimum":0},"dstCIDR":{"description":"DstCIDR specifies the destination's CIDR. Only traffic heading\nto this CIDR will be marked with the DSCP value.\nThis field is optional, and in case it is not set the rule is applied\nto all egress traffic regardless of the destination.","type":"string","format":"cidr"},"podSelector":{"description":"PodSelector applies the QoS rule only to the pods in the namespace whose label\nmatches this definition. This field is optional, and in case it is not set\nresults in the rule being applied to all pods in the namespace.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}},"status":{"description":"EgressQoSStatus defines the observed state of EgressQoS","type":"object","properties":{"conditions":{"description":"An array of condition objects indicating details about status of EgressQoS object.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.\n---\nThis struct is intended for direct use as an array at the field path .status.conditions.  For example,\n\n\n\ttype FooStatus struct{\n\t    // Represents the observations of a foo's current state.\n\t    // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\"\n\t    // +patchMergeKey=type\n\t    // +patchStrategy=merge\n\t    // +listType=map\n\t    // +listMapKey=type\n\t    Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t    // other fields\n\t}","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.\n---\nMany .condition.type values are consistent across resources like Available, but because arbitrary conditions can be\nuseful (see .node.status.conditions), the ability to deconflict is important.\nThe regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"},"status":{"description":"A concise indication of whether the EgressQoS resource is applied with success.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressQoS","version":"v1"}]},"org.ovn.k8s.v1.EgressQoSList":{"description":"EgressQoSList is a list of EgressQoS","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of egressqoses. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressQoS"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressQoSList","version":"v1"}]},"org.ovn.k8s.v1.EgressService":{"description":"EgressService is a CRD that allows the user to request that the source IP of egress packets originating from all of the pods that are endpoints of the corresponding LoadBalancer Service would be its ingress IP. In addition, it allows the user to request that egress packets originating from all of the pods that are endpoints of the LoadBalancer service would use a different network than the main one.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"EgressServiceSpec defines the desired state of EgressService","type":"object","properties":{"network":{"description":"The network which this service should send egress and corresponding ingress replies to. This is typically implemented as VRF mapping, representing a numeric id or string name of a routing table which by omission uses the default host routing.","type":"string"},"nodeSelector":{"description":"Allows limiting the nodes that can be selected to handle the service's traffic when sourceIPBy=LoadBalancerIP. When present only a node whose labels match the specified selectors can be selected for handling the service's traffic. When it is not specified any node in the cluster can be chosen to manage the service's traffic.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.","type":"array","items":{"type":"string"}}}}},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"sourceIPBy":{"description":"Determines the source IP of egress traffic originating from the pods backing the LoadBalancer Service. When `LoadBalancerIP` the source IP is set to its LoadBalancer ingress IP. When `Network` the source IP is set according to the interface of the Network, leveraging the masquerade rules that are already in place. Typically these rules specify SNAT to the IP of the outgoing interface, which means the packet will typically leave with the IP of the node.","type":"string","enum":["LoadBalancerIP","Network"]}}},"status":{"description":"EgressServiceStatus defines the observed state of EgressService","type":"object","required":["host"],"properties":{"host":{"description":"The name of the node selected to handle the service's traffic. In case sourceIPBy=Network the field will be set to \"ALL\".","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressService","version":"v1"}]},"org.ovn.k8s.v1.EgressServiceList":{"description":"EgressServiceList is a list of EgressService","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of egressservices. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.ovn.k8s.v1.EgressService"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"EgressServiceList","version":"v1"}]},"org.ovn.k8s.v1.UserDefinedNetwork":{"description":"UserDefinedNetwork describe network request for a Namespace.","type":"object","required":["spec"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"UserDefinedNetworkSpec defines the desired state of UserDefinedNetworkSpec.","type":"object","required":["topology"],"properties":{"layer2":{"description":"Layer2 is the Layer2 topology configuration.","type":"object","required":["role"],"properties":{"ipam":{"description":"IPAM section contains IPAM-related configuration for the network.","type":"object","minProperties":1,"properties":{"lifecycle":{"description":"Lifecycle controls IP addresses management lifecycle.\n\nThe only allowed value is Persistent. When set, OVN Kubernetes assigned IP addresses will be persisted in an\n`ipamclaims.k8s.cni.cncf.io` object. These IP addresses will be reused by other pods if requested.\nOnly supported when mode is `Enabled`.","type":"string","enum":["Persistent"]},"mode":{"description":"Mode controls how much of the IP configuration will be managed by OVN.\n`Enabled` means OVN-Kubernetes will apply IP configuration to the SDN infrastructure and it will also assign IPs\nfrom the selected subnet to the individual pods.\n`Disabled` means OVN-Kubernetes will only assign MAC addresses and provide layer 2 communication, letting users\nconfigure IP addresses for the pods.\n`Disabled` is only available for Secondary networks.\nBy disabling IPAM, any Kubernetes features that rely on selecting pods by IP will no longer function\n(such as network policy, services, etc). Additionally, IP port security will also be disabled for interfaces attached to this network.\nDefaults to `Enabled`.","type":"string","enum":["Enabled","Disabled"]}},"x-kubernetes-validations":[{"message":"lifecycle Persistent is only supported when ipam.mode is Enabled","rule":"!has(self.lifecycle) || self.lifecycle != 'Persistent' || !has(self.mode) || self.mode == 'Enabled'"}]},"joinSubnets":{"description":"JoinSubnets are used inside the OVN network topology.\n\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\nThis field is only allowed for \"Primary\" network.\nIt is not recommended to set this field without explicit need and understanding of the OVN network topology.\nWhen omitted, the platform will choose a reasonable default which is subject to change over time.","type":"array","maxItems":2,"minItems":1,"items":{"type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0]) || !isCIDR(self[1]) || cidr(self[0]).ip().family() != cidr(self[1]).ip().family()"}]},"mtu":{"description":"MTU is the maximum transmission unit for a network.\nMTU is optional, if not provided, the globally configured value in OVN-Kubernetes (defaults to 1400) is used for the network.","type":"integer","format":"int32","maximum":65536,"minimum":576},"role":{"description":"Role describes the network role in the pod.\n\nAllowed value is \"Secondary\".\nSecondary network is only assigned to pods that use `k8s.v1.cni.cncf.io/networks` annotation to select given network.","type":"string","enum":["Primary","Secondary"]},"subnets":{"description":"Subnets are used for the pod network across the cluster.\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\n\nThe format should match standard CIDR notation (for example, \"10.128.0.0/16\").\nThis field must be omitted if `ipam.mode` is `Disabled`.","type":"array","maxItems":2,"minItems":1,"items":{"type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0]) || !isCIDR(self[1]) || cidr(self[0]).ip().family() != cidr(self[1]).ip().family()"}]}},"x-kubernetes-validations":[{"message":"Subnets is required with ipam.mode is Enabled or unset","rule":"has(self.ipam) && has(self.ipam.mode) && self.ipam.mode != 'Enabled' || has(self.subnets)"},{"message":"Subnets must be unset when ipam.mode is Disabled","rule":"!has(self.ipam) || !has(self.ipam.mode) || self.ipam.mode != 'Disabled' || !has(self.subnets)"},{"message":"Disabled ipam.mode is only supported for Secondary network","rule":"!has(self.ipam) || !has(self.ipam.mode) || self.ipam.mode != 'Disabled' || self.role == 'Secondary'"},{"message":"JoinSubnets is only supported for Primary network","rule":"!has(self.joinSubnets) || has(self.role) && self.role == 'Primary'"},{"message":"MTU should be greater than or equal to 1280 when IPv6 subent is used","rule":"!has(self.subnets) || !has(self.mtu) || !self.subnets.exists_one(i, isCIDR(i) && cidr(i).ip().family() == 6) || self.mtu >= 1280"}]},"layer3":{"description":"Layer3 is the Layer3 topology configuration.","type":"object","required":["role","subnets"],"properties":{"joinSubnets":{"description":"JoinSubnets are used inside the OVN network topology.\n\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\nThis field is only allowed for \"Primary\" network.\nIt is not recommended to set this field without explicit need and understanding of the OVN network topology.\nWhen omitted, the platform will choose a reasonable default which is subject to change over time.","type":"array","maxItems":2,"minItems":1,"items":{"type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0]) || !isCIDR(self[1]) || cidr(self[0]).ip().family() != cidr(self[1]).ip().family()"}]},"mtu":{"description":"MTU is the maximum transmission unit for a network.\n\nMTU is optional, if not provided, the globally configured value in OVN-Kubernetes (defaults to 1400) is used for the network.","type":"integer","format":"int32","maximum":65536,"minimum":576},"role":{"description":"Role describes the network role in the pod.\n\nAllowed values are \"Primary\" and \"Secondary\".\nPrimary network is automatically assigned to every pod created in the same namespace.\nSecondary network is only assigned to pods that use `k8s.v1.cni.cncf.io/networks` annotation to select given network.","type":"string","enum":["Primary","Secondary"]},"subnets":{"description":"Subnets are used for the pod network across the cluster.\n\nDual-stack clusters may set 2 subnets (one for each IP family), otherwise only 1 subnet is allowed.\nGiven subnet is split into smaller subnets for every node.","type":"array","maxItems":2,"minItems":1,"items":{"type":"object","required":["cidr"],"properties":{"cidr":{"description":"CIDR specifies L3Subnet, which is split into smaller subnets for every node.","type":"string","maxLength":43,"x-kubernetes-validations":[{"message":"CIDR is invalid","rule":"isCIDR(self)"}]},"hostSubnet":{"description":"HostSubnet specifies the subnet size for every node.\n\nWhen not set, it will be assigned automatically.","type":"integer","format":"int32","maximum":127,"minimum":1}},"x-kubernetes-validations":[{"message":"HostSubnet must be smaller than CIDR subnet","rule":"!has(self.hostSubnet) || !isCIDR(self.cidr) || self.hostSubnet > cidr(self.cidr).prefixLength()"},{"message":"HostSubnet must < 32 for ipv4 CIDR","rule":"!has(self.hostSubnet) || !isCIDR(self.cidr) || (cidr(self.cidr).ip().family() != 4 || self.hostSubnet < 32)"}]},"x-kubernetes-validations":[{"message":"When 2 CIDRs are set, they must be from different IP families","rule":"size(self) != 2 || !isCIDR(self[0].cidr) || !isCIDR(self[1].cidr) || cidr(self[0].cidr).ip().family() != cidr(self[1].cidr).ip().family()"}]}},"x-kubernetes-validations":[{"message":"JoinSubnets is only supported for Primary network","rule":"!has(self.joinSubnets) || has(self.role) && self.role == 'Primary'"},{"message":"MTU should be greater than or equal to 1280 when IPv6 subent is used","rule":"!has(self.subnets) || !has(self.mtu) || !self.subnets.exists_one(i, isCIDR(i.cidr) && cidr(i.cidr).ip().family() == 6) || self.mtu >= 1280"}]},"topology":{"description":"Topology describes network configuration.\n\nAllowed values are \"Layer3\", \"Layer2\".\nLayer3 topology creates a layer 2 segment per node, each with a different subnet. Layer 3 routing is used to interconnect node subnets.\nLayer2 topology creates one logical switch shared by all nodes.","type":"string","enum":["Layer2","Layer3"]}},"x-kubernetes-validations":[{"message":"Spec is immutable","rule":"self == oldSelf"},{"message":"spec.layer3 is required when topology is Layer3 and forbidden otherwise","rule":"has(self.topology) && self.topology == 'Layer3' ? has(self.layer3): !has(self.layer3)"},{"message":"spec.layer2 is required when topology is Layer2 and forbidden otherwise","rule":"has(self.topology) && self.topology == 'Layer2' ? has(self.layer2): !has(self.layer2)"}]},"status":{"description":"UserDefinedNetworkStatus contains the observed status of the UserDefinedNetwork.","type":"object","properties":{"conditions":{"type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}},"x-kubernetes-list-map-keys":["type"],"x-kubernetes-list-type":"map"}}}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"UserDefinedNetwork","version":"v1"}]},"org.ovn.k8s.v1.UserDefinedNetworkList":{"description":"UserDefinedNetworkList is a list of UserDefinedNetwork","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of userdefinednetworks. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/org.ovn.k8s.v1.UserDefinedNetwork"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"k8s.ovn.org","kind":"UserDefinedNetworkList","version":"v1"}]},"run.package-operator.v1alpha1.ClusterObjectDeployment":{"description":"ClusterObjectDeployment is the Schema for the ClusterObjectDeployments API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterObjectDeploymentSpec defines the desired state of a ClusterObjectDeployment.","type":"object","required":["selector","template"],"properties":{"paused":{"description":"If Paused is true, the object and its children will not be reconciled.","type":"boolean"},"revisionHistoryLimit":{"description":"Number of old revisions in the form of archived ObjectSets to keep.","type":"integer","format":"int32"},"selector":{"description":"Selector targets ObjectSets managed by this Deployment.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"template":{"description":"Template to create new ObjectSets from.","type":"object","required":["metadata","spec"],"properties":{"metadata":{"description":"Common Object Metadata.","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"ObjectSet specification.","type":"object","properties":{"availabilityProbes":{"description":"Availability Probes check objects that are part of the package.\nAll probes need to succeed for a package to be considered Available.\nFailing probes will prevent the reconciliation of objects in later phases.","type":"array","items":{"description":"ObjectSetProbe define how ObjectSets check their children for their status.","type":"object","required":["probes","selector"],"properties":{"probes":{"description":"Probe configuration parameters.","type":"array","items":{"description":"Probe defines probe parameters. Only one can be filled.","type":"object","properties":{"cel":{"description":"ProbeCELSpec uses Common Expression Language (CEL) to probe an object.\nCEL rules have to evaluate to a boolean to be valid.\nSee:\nhttps://kubernetes.io/docs/reference/using-api/cel\nhttps://github.com/google/cel-go","type":"object","required":["message","rule"],"properties":{"message":{"description":"Error message to output if rule evaluates to false.","type":"string"},"rule":{"description":"CEL rule to evaluate.","type":"string"}}},"condition":{"description":"ProbeConditionSpec checks whether or not the object reports a condition with given type and status.","type":"object","required":["status","type"],"properties":{"status":{"description":"Condition status to probe for.","type":"string"},"type":{"description":"Condition type to probe for.","type":"string"}}},"fieldsEqual":{"description":"ProbeFieldsEqualSpec compares two fields specified by JSON Paths.","type":"object","required":["fieldA","fieldB"],"properties":{"fieldA":{"description":"First field for comparison.","type":"string"},"fieldB":{"description":"Second field for comparison.","type":"string"}}}}}},"selector":{"description":"Selector specifies which objects this probe should target.","type":"object","required":["kind"],"properties":{"kind":{"description":"Kind and API Group of the object to probe.","type":"object","required":["group","kind"],"properties":{"group":{"description":"Object Group to apply a probe to.","type":"string"},"kind":{"description":"Object Kind to apply a probe to.","type":"string"}}},"selector":{"description":"Further sub-selects objects based on a Label Selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}},"phases":{"description":"Reconcile phase configuration for a ObjectSet.\nPhases will be reconciled in order and the contained objects checked\nagainst given probes before continuing with the next phase.","type":"array","items":{"description":"ObjectSetTemplatePhase configures the reconcile phase of ObjectSets.","type":"object","required":["name"],"properties":{"class":{"description":"If non empty, the ObjectSet controller will delegate phase reconciliation\nto another controller, by creating an ObjectSetPhase object. If set to the\nstring \"default\" the built-in Package Operator ObjectSetPhase controller\nwill reconcile the object in the same way the ObjectSet would. If set to\nany other string, an out-of-tree controller needs to be present to handle\nObjectSetPhase objects.","type":"string"},"name":{"description":"Name of the reconcile phase. Must be unique within a ObjectSet.","type":"string"},"objects":{"description":"Objects belonging to this phase.","type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}}},"slices":{"description":"References to ObjectSlices containing objects for this phase.","type":"array","items":{"type":"string"}}}}},"successDelaySeconds":{"description":"Success Delay Seconds applies a wait period from the time an\nObject Set is available to the time it is marked as successful.\nThis can be used to prevent false reporting of success when\nthe underlying objects may initially satisfy the availability\nprobes, but are ultimately unstable.","type":"integer","format":"int32"}}}}}}},"status":{"description":"ClusterObjectDeploymentStatus defines the observed state of a ClusterObjectDeployment.","type":"object","properties":{"collisionCount":{"description":"Count of hash collisions of the ClusterObjectDeployment.","type":"integer","format":"int32"},"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"ControllerOf references the owned ClusterObjectSet revisions.","type":"array","items":{"description":"ControlledObjectReference an object controlled by this object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}},"revision":{"description":"Deployment revision.","type":"integer","format":"int64"},"templateHash":{"description":"Computed TemplateHash.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectDeployment","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectDeploymentList":{"description":"ClusterObjectDeploymentList is a list of ClusterObjectDeployment","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterobjectdeployments. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectDeployment"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectDeploymentList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectSet":{"description":"ClusterObjectSet reconciles a collection of objects through ordered phases and aggregates their status.\n\nClusterObjectSets behave similarly to Kubernetes ReplicaSets, by managing a collection of objects and\nbeing itself mostly immutable. This object type is able to suspend/pause reconciliation of specific\nobjects to facilitate the transition between revisions.\n\nArchived ClusterObjectSets may stay on the cluster, to store information about previous revisions.\n\nA Namespace-scoped version of this API is available as ObjectSet.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterObjectSetSpec defines the desired state of a ClusterObjectSet.","type":"object","properties":{"availabilityProbes":{"description":"Availability Probes check objects that are part of the package.\nAll probes need to succeed for a package to be considered Available.\nFailing probes will prevent the reconciliation of objects in later phases.","type":"array","items":{"description":"ObjectSetProbe define how ObjectSets check their children for their status.","type":"object","required":["probes","selector"],"properties":{"probes":{"description":"Probe configuration parameters.","type":"array","items":{"description":"Probe defines probe parameters. Only one can be filled.","type":"object","properties":{"cel":{"description":"ProbeCELSpec uses Common Expression Language (CEL) to probe an object.\nCEL rules have to evaluate to a boolean to be valid.\nSee:\nhttps://kubernetes.io/docs/reference/using-api/cel\nhttps://github.com/google/cel-go","type":"object","required":["message","rule"],"properties":{"message":{"description":"Error message to output if rule evaluates to false.","type":"string"},"rule":{"description":"CEL rule to evaluate.","type":"string"}}},"condition":{"description":"ProbeConditionSpec checks whether or not the object reports a condition with given type and status.","type":"object","required":["status","type"],"properties":{"status":{"description":"Condition status to probe for.","type":"string"},"type":{"description":"Condition type to probe for.","type":"string"}}},"fieldsEqual":{"description":"ProbeFieldsEqualSpec compares two fields specified by JSON Paths.","type":"object","required":["fieldA","fieldB"],"properties":{"fieldA":{"description":"First field for comparison.","type":"string"},"fieldB":{"description":"Second field for comparison.","type":"string"}}}}}},"selector":{"description":"Selector specifies which objects this probe should target.","type":"object","required":["kind"],"properties":{"kind":{"description":"Kind and API Group of the object to probe.","type":"object","required":["group","kind"],"properties":{"group":{"description":"Object Group to apply a probe to.","type":"string"},"kind":{"description":"Object Kind to apply a probe to.","type":"string"}}},"selector":{"description":"Further sub-selects objects based on a Label Selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}},"lifecycleState":{"description":"Specifies the lifecycle state of the ClusterObjectSet.","type":"string","enum":["Active","Paused","Archived"]},"phases":{"description":"Reconcile phase configuration for a ObjectSet.\nPhases will be reconciled in order and the contained objects checked\nagainst given probes before continuing with the next phase.","type":"array","items":{"description":"ObjectSetTemplatePhase configures the reconcile phase of ObjectSets.","type":"object","required":["name"],"properties":{"class":{"description":"If non empty, the ObjectSet controller will delegate phase reconciliation\nto another controller, by creating an ObjectSetPhase object. If set to the\nstring \"default\" the built-in Package Operator ObjectSetPhase controller\nwill reconcile the object in the same way the ObjectSet would. If set to\nany other string, an out-of-tree controller needs to be present to handle\nObjectSetPhase objects.","type":"string"},"name":{"description":"Name of the reconcile phase. Must be unique within a ObjectSet.","type":"string"},"objects":{"description":"Objects belonging to this phase.","type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}}},"slices":{"description":"References to ObjectSlices containing objects for this phase.","type":"array","items":{"type":"string"}}}}},"previous":{"description":"Previous revisions of the ClusterObjectSet to adopt objects from.","type":"array","items":{"description":"PreviousRevisionReference references a previous revision of an ObjectSet or ClusterObjectSet.","type":"object","required":["name"],"properties":{"name":{"description":"Name of a previous revision.","type":"string"}}}},"revision":{"description":"Computed revision number, monotonically increasing.","type":"integer","format":"int64"},"successDelaySeconds":{"description":"Success Delay Seconds applies a wait period from the time an\nObject Set is available to the time it is marked as successful.\nThis can be used to prevent false reporting of success when\nthe underlying objects may initially satisfy the availability\nprobes, but are ultimately unstable.","type":"integer","format":"int32"}},"x-kubernetes-validations":[{"message":"previous is immutable","rule":"(has(self.previous) == has(oldSelf.previous)) && (!has(self.previous) || (self.previous == oldSelf.previous))"},{"message":"phases is immutable","rule":"(has(self.phases) == has(oldSelf.phases)) && (!has(self.phases) || (self.phases == oldSelf.phases))"},{"message":"availabilityProbes is immutable","rule":"(has(self.availabilityProbes) == has(oldSelf.availabilityProbes)) && (!has(self.availabilityProbes) || (self.availabilityProbes == oldSelf.availabilityProbes))"},{"message":"successDelaySeconds is immutable","rule":"(has(self.successDelaySeconds) == has(oldSelf.successDelaySeconds)) && (!has(self.successDelaySeconds) || (self.successDelaySeconds == oldSelf.successDelaySeconds))"},{"message":"revision is immutable","rule":"!has(oldSelf.revision) || (self.revision == oldSelf.revision)"}]},"status":{"description":"ClusterObjectSetStatus defines the observed state of a ClusterObjectSet.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"References all objects controlled by this instance.","type":"array","items":{"description":"ControlledObjectReference an object controlled by this object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}},"remotePhases":{"description":"Remote phases aka ClusterObjectSetPhase objects.","type":"array","items":{"description":"RemotePhaseReference remote phases aka ObjectSetPhase/ClusterObjectSetPhase objects to which a phase is delegated.","type":"object","required":["name","uid"],"properties":{"name":{"type":"string"},"uid":{"description":"UID is a type that holds unique ID values, including UUIDs.  Because we\ndon't ONLY use UUIDs, this is an alias to string.  Being a type captures\nintent and helps make sure that UIDs and names do not get conflated.","type":"string"}}}},"revision":{"description":"Deprecated: use .spec.revision instead","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectSet","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectSetList":{"description":"ClusterObjectSetList is a list of ClusterObjectSet","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterobjectsets. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectSetList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectSetPhase":{"description":"ClusterObjectSetPhase is an internal API, allowing a ClusterObjectSet to delegate a\nsingle phase to another custom controller. ClusterObjectSets will create subordinate\nClusterObjectSetPhases when `.class` is set within the phase specification.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ClusterObjectSetPhaseSpec defines the desired state of a ClusterObjectSetPhase.","type":"object","required":["objects","revision"],"properties":{"availabilityProbes":{"description":"Availability Probes check objects that are part of the package.\nAll probes need to succeed for a package to be considered Available.\nFailing probes will prevent the reconciliation of objects in later phases.","type":"array","items":{"description":"ObjectSetProbe define how ObjectSets check their children for their status.","type":"object","required":["probes","selector"],"properties":{"probes":{"description":"Probe configuration parameters.","type":"array","items":{"description":"Probe defines probe parameters. Only one can be filled.","type":"object","properties":{"cel":{"description":"ProbeCELSpec uses Common Expression Language (CEL) to probe an object.\nCEL rules have to evaluate to a boolean to be valid.\nSee:\nhttps://kubernetes.io/docs/reference/using-api/cel\nhttps://github.com/google/cel-go","type":"object","required":["message","rule"],"properties":{"message":{"description":"Error message to output if rule evaluates to false.","type":"string"},"rule":{"description":"CEL rule to evaluate.","type":"string"}}},"condition":{"description":"ProbeConditionSpec checks whether or not the object reports a condition with given type and status.","type":"object","required":["status","type"],"properties":{"status":{"description":"Condition status to probe for.","type":"string"},"type":{"description":"Condition type to probe for.","type":"string"}}},"fieldsEqual":{"description":"ProbeFieldsEqualSpec compares two fields specified by JSON Paths.","type":"object","required":["fieldA","fieldB"],"properties":{"fieldA":{"description":"First field for comparison.","type":"string"},"fieldB":{"description":"Second field for comparison.","type":"string"}}}}}},"selector":{"description":"Selector specifies which objects this probe should target.","type":"object","required":["kind"],"properties":{"kind":{"description":"Kind and API Group of the object to probe.","type":"object","required":["group","kind"],"properties":{"group":{"description":"Object Group to apply a probe to.","type":"string"},"kind":{"description":"Object Kind to apply a probe to.","type":"string"}}},"selector":{"description":"Further sub-selects objects based on a Label Selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-validations":[{"message":"availabilityProbes is immutable","rule":"self == oldSelf"}]},"objects":{"description":"Objects belonging to this phase.","type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-validations":[{"message":"objects is immutable","rule":"self == oldSelf"}]},"paused":{"description":"Disables reconciliation of the ClusterObjectSet.\nOnly Status updates will still be propagated, but object changes will not be reconciled.","type":"boolean"},"previous":{"description":"Previous revisions of the ClusterObjectSet to adopt objects from.","type":"array","items":{"description":"PreviousRevisionReference references a previous revision of an ObjectSet or ClusterObjectSet.","type":"object","required":["name"],"properties":{"name":{"description":"Name of a previous revision.","type":"string"}}},"x-kubernetes-validations":[{"message":"previous is immutable","rule":"self == oldSelf"}]},"revision":{"description":"Revision of the parent ObjectSet to use during object adoption.","type":"integer","format":"int64","x-kubernetes-validations":[{"message":"revision is immutable","rule":"self == oldSelf"}]}},"x-kubernetes-validations":[{"message":"previous is immutable","rule":"has(self.previous) == has(oldSelf.previous)"},{"message":"availabilityProbes is immutable","rule":"has(self.availabilityProbes) == has(oldSelf.availabilityProbes)"}]},"status":{"description":"ClusterObjectSetPhaseStatus defines the observed state of a ClusterObjectSetPhase.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"References all objects controlled by this instance.","type":"array","items":{"description":"ControlledObjectReference an object controlled by this object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectSetPhase","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectSetPhaseList":{"description":"ClusterObjectSetPhaseList is a list of ClusterObjectSetPhase","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterobjectsetphases. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSetPhase"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectSetPhaseList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectSlice":{"description":"ClusterObjectSlice is referenced by ObjectSets or ObjectDeployments and contain objects to\nlimit the size of ObjectSet and ObjectDeployments when big packages are installed.\nThis is necessary to work around the etcd object size limit of ~1.5MiB and to reduce load on the kube-apiserver.","type":"object","required":["objects"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"objects":{"type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-validations":[{"message":"objects is immutable","rule":"self == oldSelf"}]}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectSlice","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectSliceList":{"description":"ClusterObjectSliceList is a list of ClusterObjectSlice","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterobjectslices. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectSlice"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectSliceList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectTemplate":{"description":"ClusterObjectTemplate contain a go template of a Kubernetes manifest. The manifest is then templated with the\nsources provided in the .Spec.Sources. The sources can come from objects from any namespace or cluster scoped\nobjects.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ObjectTemplateSpec specification.","type":"object","required":["sources","template"],"properties":{"sources":{"description":"Objects in which configuration parameters are fetched","type":"array","items":{"description":"ObjectTemplateSource defines a source for a template.","type":"object","required":["apiVersion","items","kind","name"],"properties":{"apiVersion":{"type":"string"},"items":{"type":"array","items":{"description":"ObjectTemplateSourceItem defines a source item for an object template.","type":"object","required":["destination","key"],"properties":{"destination":{"description":"JSONPath to destination in which to store copy of the source value.","type":"string"},"key":{"description":"JSONPath to value in source object.","type":"string"}}}},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"optional":{"description":"Marks this source as optional.\nThe templated object will still be applied if optional sources are not found.\nIf the source object is created later on, it will be eventually picked up.","type":"boolean"}}}},"template":{"description":"Go template of a Kubernetes manifest","type":"string"}}},"status":{"description":"ObjectTemplateStatus defines the observed state of a ObjectTemplate ie the status of the templated object.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions the templated object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"ControllerOf references the templated object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectTemplate","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterObjectTemplateList":{"description":"ClusterObjectTemplateList is a list of ClusterObjectTemplate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterobjecttemplates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterObjectTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterObjectTemplateList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterPackage":{"description":"ClusterPackage defines a cluster scoped package installation.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PackageSpec specifies a package.","type":"object","required":["image"],"properties":{"component":{"description":"Desired component to deploy from multi-component packages.","type":"string"},"config":{"description":"Package configuration parameters.","x-kubernetes-preserve-unknown-fields":true},"image":{"description":"the image containing the contents of the package\nthis image will be unpacked by the package-loader to render\nthe ObjectDeployment for propagating the installation of the package.","type":"string"},"paused":{"description":"If Paused is true, the package and its children will not be reconciled.","type":"boolean"}}},"status":{"description":"PackageStatus defines the observed state of a Package.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"revision":{"description":"Package revision as reported by the ObjectDeployment.","type":"integer","format":"int64"},"unpackedHash":{"description":"Hash of image + config that was successfully unpacked.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterPackage","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ClusterPackageList":{"description":"ClusterPackageList is a list of ClusterPackage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of clusterpackages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ClusterPackage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ClusterPackageList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.HostedClusterPackage":{"description":"HostedClusterPackage defines package to be rolled out on every HyperShift HostedCluster.\nExperimental: Subject to change.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"HostedClusterPackageSpec is the description of a HostedClusterPackage.","type":"object","required":["strategy","template"],"properties":{"hostedClusterSelector":{"description":"HostedClusterSelector is a label query matching HostedClusters that the Package should be rolled out to.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"partition":{"description":"Partition HostedClusters by label value.\nAll packages in the same partition will have to be upgraded\nbefore progressing to the next partition.","type":"object","required":["labelKey"],"properties":{"labelKey":{"description":"LabelKey defines a labelKey to group objects on.","type":"string","minLength":1},"order":{"description":"Controls how partitions are ordered.\nBy default items will be sorted AlphaNumeric ascending.","type":"object","properties":{"alphanumericAsc":{"description":"HostedClusterPackagePartitionOrderAlphanumericAsc describes the alphanumeric\nascending partition ordering for HostedClusterPackages.","type":"object"},"static":{"description":"Allows to define a static partition order.\nThe special * key matches anything not explicitly part of the list.\nUnknown risk-groups or HostedClusters without label\nwill be put into an implicit \"unknown\" group and\nwill get upgraded LAST.","type":"array","maxItems":20,"items":{"type":"string","maxLength":63},"x-kubernetes-list-type":"set","x-kubernetes-validations":[{"message":"must consist of alphanumeric characters, '-', '_' or '.', and must start and end with an alphanumeric character or '*'","rule":"self.filter(i, i != '*' && !i.matches('^([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]$')).size() == 0"},{"message":"catch all '*' group may only be used once","rule":"self.filter(i, i == '*').size() <= 1"}]}},"x-kubernetes-validations":[{"message":"either .static or .alphanumericAsc must be specified","rule":"self.static.size() > 0 || has(self.alphanumericAsc)"}]}}},"strategy":{"description":"HostedClusterPackageStrategy describes the rollout strategy for a HostedClusterPackage.","type":"object","properties":{"instant":{"description":"Updates all matching Packages instantly.","type":"object"},"rollingUpgrade":{"description":"Performs a rolling upgrade according to maxUnavailable.","type":"object","required":["maxUnavailable"],"properties":{"maxUnavailable":{"description":"MaxUnavailable defines how many Packages may become unavailable during upgrade at the same time.\nCannot be below 1, because we cannot surge to create more instances.","type":"integer","minimum":1}}}}},"template":{"description":"Template describes the Package that should be created when new\nHostedClusters matching the hostedClusterSelector are detected.","type":"object","required":["spec"],"properties":{"metadata":{"description":"Standard object's metadata.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"Specification of the desired behavior of the package.","type":"object","required":["image"],"properties":{"component":{"description":"Desired component to deploy from multi-component packages.","type":"string"},"config":{"description":"Package configuration parameters.","x-kubernetes-preserve-unknown-fields":true},"image":{"description":"the image containing the contents of the package\nthis image will be unpacked by the package-loader to render\nthe ObjectDeployment for propagating the installation of the package.","type":"string"},"paused":{"description":"If Paused is true, the package and its children will not be reconciled.","type":"boolean"}}}}}}},"status":{"description":"HostedClusterPackageStatus describes the status of a HostedClusterPackage.","type":"object","properties":{"availablePackages":{"description":"Total number of available Packages targeted by this HostedClusterPackage.","type":"integer","format":"int32"},"conditions":{"description":"Conditions is a list of status conditions this object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"observedGeneration":{"description":"The generation observed by the HostedClusterPackage controller.","type":"integer","format":"int32"},"partitions":{"description":"Count of packages found by partition.","type":"array","items":{"description":"HostedClusterPackagePartitionStatus describes the status of a partition.","type":"object","required":["name"],"properties":{"availablePackages":{"description":"Total number of available Packages targeted by this HostedClusterPackage.","type":"integer","format":"int32"},"name":{"description":"Name of the partition.","type":"string"},"observedGeneration":{"description":"The generation observed by the HostedClusterPackage controller.","type":"integer","format":"int32"},"progressedPackages":{"description":"Total number of Packages with Progressing=False and Unpacked=True conditions.","type":"integer","format":"int32"},"totalPackages":{"description":"Total number of non-terminated Packages targeted by this HostedClusterPackage.","type":"integer","format":"int32"},"updatedPackages":{"description":"Total number of non-terminated Packages targeted by this HostedClusterPackage that have the desired template spec.","type":"integer","format":"int32"}}}},"processing":{"description":"Processing set of packages during upgrade.","type":"array","items":{"description":"HostedClusterPackageRefStatus holds a reference to upgrades in-flight.","type":"object","required":["name","uid"],"properties":{"name":{"type":"string"},"namespace":{"type":"string"},"uid":{"description":"UID is a type that holds unique ID values, including UUIDs.  Because we\ndon't ONLY use UUIDs, this is an alias to string.  Being a type captures\nintent and helps make sure that UIDs and names do not get conflated.","type":"string"}}}},"progressedPackages":{"description":"Total number of Packages with Progressing=False and Unpacked=True conditions.","type":"integer","format":"int32"},"totalPackages":{"description":"Total number of non-terminated Packages targeted by this HostedClusterPackage.","type":"integer","format":"int32"},"updatedPackages":{"description":"Total number of non-terminated Packages targeted by this HostedClusterPackage that have the desired template spec.","type":"integer","format":"int32"}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"HostedClusterPackage","version":"v1alpha1"}]},"run.package-operator.v1alpha1.HostedClusterPackageList":{"description":"HostedClusterPackageList is a list of HostedClusterPackage","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of hostedclusterpackages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.HostedClusterPackage"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"HostedClusterPackageList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectDeployment":{"description":"ObjectDeployment is the Schema for the ObjectDeployments API","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ObjectDeploymentSpec defines the desired state of an ObjectDeployment.","type":"object","required":["selector","template"],"properties":{"paused":{"description":"If Paused is true, the object and its children will not be reconciled.","type":"boolean"},"revisionHistoryLimit":{"description":"Number of old revisions in the form of archived ObjectSets to keep.","type":"integer","format":"int32"},"selector":{"description":"Selector targets ObjectSets managed by this Deployment.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"},"template":{"description":"Template to create new ObjectSets from.","type":"object","required":["metadata","spec"],"properties":{"metadata":{"description":"Common Object Metadata.","type":"object","properties":{"annotations":{"type":"object","additionalProperties":{"type":"string"}},"finalizers":{"type":"array","items":{"type":"string"}},"labels":{"type":"object","additionalProperties":{"type":"string"}},"name":{"type":"string"},"namespace":{"type":"string"}}},"spec":{"description":"ObjectSet specification.","type":"object","properties":{"availabilityProbes":{"description":"Availability Probes check objects that are part of the package.\nAll probes need to succeed for a package to be considered Available.\nFailing probes will prevent the reconciliation of objects in later phases.","type":"array","items":{"description":"ObjectSetProbe define how ObjectSets check their children for their status.","type":"object","required":["probes","selector"],"properties":{"probes":{"description":"Probe configuration parameters.","type":"array","items":{"description":"Probe defines probe parameters. Only one can be filled.","type":"object","properties":{"cel":{"description":"ProbeCELSpec uses Common Expression Language (CEL) to probe an object.\nCEL rules have to evaluate to a boolean to be valid.\nSee:\nhttps://kubernetes.io/docs/reference/using-api/cel\nhttps://github.com/google/cel-go","type":"object","required":["message","rule"],"properties":{"message":{"description":"Error message to output if rule evaluates to false.","type":"string"},"rule":{"description":"CEL rule to evaluate.","type":"string"}}},"condition":{"description":"ProbeConditionSpec checks whether or not the object reports a condition with given type and status.","type":"object","required":["status","type"],"properties":{"status":{"description":"Condition status to probe for.","type":"string"},"type":{"description":"Condition type to probe for.","type":"string"}}},"fieldsEqual":{"description":"ProbeFieldsEqualSpec compares two fields specified by JSON Paths.","type":"object","required":["fieldA","fieldB"],"properties":{"fieldA":{"description":"First field for comparison.","type":"string"},"fieldB":{"description":"Second field for comparison.","type":"string"}}}}}},"selector":{"description":"Selector specifies which objects this probe should target.","type":"object","required":["kind"],"properties":{"kind":{"description":"Kind and API Group of the object to probe.","type":"object","required":["group","kind"],"properties":{"group":{"description":"Object Group to apply a probe to.","type":"string"},"kind":{"description":"Object Kind to apply a probe to.","type":"string"}}},"selector":{"description":"Further sub-selects objects based on a Label Selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}},"phases":{"description":"Reconcile phase configuration for a ObjectSet.\nPhases will be reconciled in order and the contained objects checked\nagainst given probes before continuing with the next phase.","type":"array","items":{"description":"ObjectSetTemplatePhase configures the reconcile phase of ObjectSets.","type":"object","required":["name"],"properties":{"class":{"description":"If non empty, the ObjectSet controller will delegate phase reconciliation\nto another controller, by creating an ObjectSetPhase object. If set to the\nstring \"default\" the built-in Package Operator ObjectSetPhase controller\nwill reconcile the object in the same way the ObjectSet would. If set to\nany other string, an out-of-tree controller needs to be present to handle\nObjectSetPhase objects.","type":"string"},"name":{"description":"Name of the reconcile phase. Must be unique within a ObjectSet.","type":"string"},"objects":{"description":"Objects belonging to this phase.","type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}}},"slices":{"description":"References to ObjectSlices containing objects for this phase.","type":"array","items":{"type":"string"}}}}},"successDelaySeconds":{"description":"Success Delay Seconds applies a wait period from the time an\nObject Set is available to the time it is marked as successful.\nThis can be used to prevent false reporting of success when\nthe underlying objects may initially satisfy the availability\nprobes, but are ultimately unstable.","type":"integer","format":"int32"}}}}}}},"status":{"description":"ObjectDeploymentStatus defines the observed state of an ObjectDeployment.","type":"object","properties":{"collisionCount":{"description":"Count of hash collisions of the ObjectDeployment.","type":"integer","format":"int32"},"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"ControllerOf references the owned ObjectSet revisions.","type":"array","items":{"description":"ControlledObjectReference an object controlled by this object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}},"revision":{"description":"Deployment revision.","type":"integer","format":"int64"},"templateHash":{"description":"Computed TemplateHash.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectDeployment","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectDeploymentList":{"description":"ObjectDeploymentList is a list of ObjectDeployment","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objectdeployments. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectDeployment"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectDeploymentList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectSet":{"description":"ObjectSet reconciles a collection of objects through ordered phases and aggregates their status.\n\nObjectSets behave similarly to Kubernetes ReplicaSets, by managing a collection of objects and\nbeing itself mostly immutable. This object type is able to suspend/pause reconciliation of\nspecific objects to facilitate the transition between revisions.\n\nArchived ObjectSets may stay on the cluster, to store information about previous revisions.\n\nA Cluster-scoped version of this API is available as ClusterObjectSet.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ObjectSetSpec defines the desired state of a ObjectSet.","type":"object","properties":{"availabilityProbes":{"description":"Availability Probes check objects that are part of the package.\nAll probes need to succeed for a package to be considered Available.\nFailing probes will prevent the reconciliation of objects in later phases.","type":"array","items":{"description":"ObjectSetProbe define how ObjectSets check their children for their status.","type":"object","required":["probes","selector"],"properties":{"probes":{"description":"Probe configuration parameters.","type":"array","items":{"description":"Probe defines probe parameters. Only one can be filled.","type":"object","properties":{"cel":{"description":"ProbeCELSpec uses Common Expression Language (CEL) to probe an object.\nCEL rules have to evaluate to a boolean to be valid.\nSee:\nhttps://kubernetes.io/docs/reference/using-api/cel\nhttps://github.com/google/cel-go","type":"object","required":["message","rule"],"properties":{"message":{"description":"Error message to output if rule evaluates to false.","type":"string"},"rule":{"description":"CEL rule to evaluate.","type":"string"}}},"condition":{"description":"ProbeConditionSpec checks whether or not the object reports a condition with given type and status.","type":"object","required":["status","type"],"properties":{"status":{"description":"Condition status to probe for.","type":"string"},"type":{"description":"Condition type to probe for.","type":"string"}}},"fieldsEqual":{"description":"ProbeFieldsEqualSpec compares two fields specified by JSON Paths.","type":"object","required":["fieldA","fieldB"],"properties":{"fieldA":{"description":"First field for comparison.","type":"string"},"fieldB":{"description":"Second field for comparison.","type":"string"}}}}}},"selector":{"description":"Selector specifies which objects this probe should target.","type":"object","required":["kind"],"properties":{"kind":{"description":"Kind and API Group of the object to probe.","type":"object","required":["group","kind"],"properties":{"group":{"description":"Object Group to apply a probe to.","type":"string"},"kind":{"description":"Object Kind to apply a probe to.","type":"string"}}},"selector":{"description":"Further sub-selects objects based on a Label Selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}}},"lifecycleState":{"description":"Specifies the lifecycle state of the ObjectSet.","type":"string","enum":["Active","Paused","Archived"]},"phases":{"description":"Reconcile phase configuration for a ObjectSet.\nPhases will be reconciled in order and the contained objects checked\nagainst given probes before continuing with the next phase.","type":"array","items":{"description":"ObjectSetTemplatePhase configures the reconcile phase of ObjectSets.","type":"object","required":["name"],"properties":{"class":{"description":"If non empty, the ObjectSet controller will delegate phase reconciliation\nto another controller, by creating an ObjectSetPhase object. If set to the\nstring \"default\" the built-in Package Operator ObjectSetPhase controller\nwill reconcile the object in the same way the ObjectSet would. If set to\nany other string, an out-of-tree controller needs to be present to handle\nObjectSetPhase objects.","type":"string"},"name":{"description":"Name of the reconcile phase. Must be unique within a ObjectSet.","type":"string"},"objects":{"description":"Objects belonging to this phase.","type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}}},"slices":{"description":"References to ObjectSlices containing objects for this phase.","type":"array","items":{"type":"string"}}}}},"previous":{"description":"Previous revisions of the ObjectSet to adopt objects from.","type":"array","items":{"description":"PreviousRevisionReference references a previous revision of an ObjectSet or ClusterObjectSet.","type":"object","required":["name"],"properties":{"name":{"description":"Name of a previous revision.","type":"string"}}}},"revision":{"description":"Computed revision number, monotonically increasing.","type":"integer","format":"int64"},"successDelaySeconds":{"description":"Success Delay Seconds applies a wait period from the time an\nObject Set is available to the time it is marked as successful.\nThis can be used to prevent false reporting of success when\nthe underlying objects may initially satisfy the availability\nprobes, but are ultimately unstable.","type":"integer","format":"int32"}},"x-kubernetes-validations":[{"message":"previous is immutable","rule":"(has(self.previous) == has(oldSelf.previous)) && (!has(self.previous) || (self.previous == oldSelf.previous))"},{"message":"phases is immutable","rule":"(has(self.phases) == has(oldSelf.phases)) && (!has(self.phases) || (self.phases == oldSelf.phases))"},{"message":"availabilityProbes is immutable","rule":"(has(self.availabilityProbes) == has(oldSelf.availabilityProbes)) && (!has(self.availabilityProbes) || (self.availabilityProbes == oldSelf.availabilityProbes))"},{"message":"successDelaySeconds is immutable","rule":"(has(self.successDelaySeconds) == has(oldSelf.successDelaySeconds)) && (!has(self.successDelaySeconds) || (self.successDelaySeconds == oldSelf.successDelaySeconds))"},{"message":"revision is immutable","rule":"!has(oldSelf.revision) || (self.revision == oldSelf.revision)"}]},"status":{"description":"ObjectSetStatus defines the observed state of a ObjectSet.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"References all objects controlled by this instance.","type":"array","items":{"description":"ControlledObjectReference an object controlled by this object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}},"remotePhases":{"description":"Remote phases aka ObjectSetPhase objects.","type":"array","items":{"description":"RemotePhaseReference remote phases aka ObjectSetPhase/ClusterObjectSetPhase objects to which a phase is delegated.","type":"object","required":["name","uid"],"properties":{"name":{"type":"string"},"uid":{"description":"UID is a type that holds unique ID values, including UUIDs.  Because we\ndon't ONLY use UUIDs, this is an alias to string.  Being a type captures\nintent and helps make sure that UIDs and names do not get conflated.","type":"string"}}}},"revision":{"description":"Deprecated: use .spec.revision instead","type":"integer","format":"int64"}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectSet","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectSetList":{"description":"ObjectSetList is a list of ObjectSet","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objectsets. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSet"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectSetList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectSetPhase":{"description":"ObjectSetPhase is an internal API, allowing an ObjectSet to delegate a single phase to another custom controller.\nObjectSets will create subordinate ObjectSetPhases when `.class` within the phase specification is set.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ObjectSetPhaseSpec defines the desired state of a ObjectSetPhase.","type":"object","required":["objects","revision"],"properties":{"availabilityProbes":{"description":"Availability Probes check objects that are part of the package.\nAll probes need to succeed for a package to be considered Available.\nFailing probes will prevent the reconciliation of objects in later phases.","type":"array","items":{"description":"ObjectSetProbe define how ObjectSets check their children for their status.","type":"object","required":["probes","selector"],"properties":{"probes":{"description":"Probe configuration parameters.","type":"array","items":{"description":"Probe defines probe parameters. Only one can be filled.","type":"object","properties":{"cel":{"description":"ProbeCELSpec uses Common Expression Language (CEL) to probe an object.\nCEL rules have to evaluate to a boolean to be valid.\nSee:\nhttps://kubernetes.io/docs/reference/using-api/cel\nhttps://github.com/google/cel-go","type":"object","required":["message","rule"],"properties":{"message":{"description":"Error message to output if rule evaluates to false.","type":"string"},"rule":{"description":"CEL rule to evaluate.","type":"string"}}},"condition":{"description":"ProbeConditionSpec checks whether or not the object reports a condition with given type and status.","type":"object","required":["status","type"],"properties":{"status":{"description":"Condition status to probe for.","type":"string"},"type":{"description":"Condition type to probe for.","type":"string"}}},"fieldsEqual":{"description":"ProbeFieldsEqualSpec compares two fields specified by JSON Paths.","type":"object","required":["fieldA","fieldB"],"properties":{"fieldA":{"description":"First field for comparison.","type":"string"},"fieldB":{"description":"Second field for comparison.","type":"string"}}}}}},"selector":{"description":"Selector specifies which objects this probe should target.","type":"object","required":["kind"],"properties":{"kind":{"description":"Kind and API Group of the object to probe.","type":"object","required":["group","kind"],"properties":{"group":{"description":"Object Group to apply a probe to.","type":"string"},"kind":{"description":"Object Kind to apply a probe to.","type":"string"}}},"selector":{"description":"Further sub-selects objects based on a Label Selector.","type":"object","properties":{"matchExpressions":{"description":"matchExpressions is a list of label selector requirements. The requirements are ANDed.","type":"array","items":{"description":"A label selector requirement is a selector that contains values, a key, and an operator that\nrelates the key and values.","type":"object","required":["key","operator"],"properties":{"key":{"description":"key is the label key that the selector applies to.","type":"string"},"operator":{"description":"operator represents a key's relationship to a set of values.\nValid operators are In, NotIn, Exists and DoesNotExist.","type":"string"},"values":{"description":"values is an array of string values. If the operator is In or NotIn,\nthe values array must be non-empty. If the operator is Exists or DoesNotExist,\nthe values array must be empty. This array is replaced during a strategic\nmerge patch.","type":"array","items":{"type":"string"},"x-kubernetes-list-type":"atomic"}}},"x-kubernetes-list-type":"atomic"},"matchLabels":{"description":"matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels\nmap is equivalent to an element of matchExpressions, whose key field is \"key\", the\noperator is \"In\", and the values array contains only \"value\". The requirements are ANDed.","type":"object","additionalProperties":{"type":"string"}}},"x-kubernetes-map-type":"atomic"}}}}},"x-kubernetes-validations":[{"message":"availabilityProbes is immutable","rule":"self == oldSelf"}]},"objects":{"description":"Objects belonging to this phase.","type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-validations":[{"message":"objects is immutable","rule":"self == oldSelf"}]},"paused":{"description":"Disables reconciliation of the ObjectSet.\nOnly Status updates will still be propagated, but object changes will not be reconciled.","type":"boolean"},"previous":{"description":"Previous revisions of the ObjectSet to adopt objects from.","type":"array","items":{"description":"PreviousRevisionReference references a previous revision of an ObjectSet or ClusterObjectSet.","type":"object","required":["name"],"properties":{"name":{"description":"Name of a previous revision.","type":"string"}}},"x-kubernetes-validations":[{"message":"previous is immutable","rule":"self == oldSelf"}]},"revision":{"description":"Revision of the parent ObjectSet to use during object adoption.","type":"integer","format":"int64","x-kubernetes-validations":[{"message":"revision is immutable","rule":"self == oldSelf"}]}},"x-kubernetes-validations":[{"message":"previous is immutable","rule":"has(self.previous) == has(oldSelf.previous)"},{"message":"availabilityProbes is immutable","rule":"has(self.availabilityProbes) == has(oldSelf.availabilityProbes)"}]},"status":{"description":"ObjectSetPhaseStatus defines the observed state of a ObjectSetPhase.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"References all objects controlled by this instance.","type":"array","items":{"description":"ControlledObjectReference an object controlled by this object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectSetPhase","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectSetPhaseList":{"description":"ObjectSetPhaseList is a list of ObjectSetPhase","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objectsetphases. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSetPhase"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectSetPhaseList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectSlice":{"description":"ObjectSlice is referenced by ObjectSets or ObjectDeployments and contain objects to\nlimit the size of ObjectSets and ObjectDeployments when big packages are installed.\nThis is necessary to work around the etcd object size limit of ~1.5MiB and to reduce load on the kube-apiserver.","type":"object","required":["objects"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"objects":{"type":"array","items":{"description":"ObjectSetObject is an object that is part of the phase of an ObjectSet.","type":"object","required":["object"],"properties":{"collisionProtection":{"description":"Collision protection prevents Package Operator from working on objects already under\nmanagement by a different operator.","type":"string"},"conditionMappings":{"description":"Maps conditions from this object into the Package Operator APIs.","type":"array","items":{"description":"ConditionMapping maps one condition type to another.","type":"object","required":["destinationType","sourceType"],"properties":{"destinationType":{"description":"Destination condition type to report into Package Operator APIs.","type":"string","pattern":"[a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*\\/([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]"},"sourceType":{"description":"Source condition type.","type":"string"}}}},"object":{"x-kubernetes-embedded-resource":true,"x-kubernetes-preserve-unknown-fields":true}}},"x-kubernetes-validations":[{"message":"objects is immutable","rule":"self == oldSelf"}]}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectSlice","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectSliceList":{"description":"ObjectSliceList is a list of ObjectSlice","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objectslices. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectSlice"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectSliceList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectTemplate":{"description":"ObjectTemplate contain a go template of a Kubernetes manifest. This manifest is then templated with the\nsources provided in the .Spec.Sources. The sources can only come from objects within the same namespace\nas the ObjectTemplate.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"ObjectTemplateSpec specification.","type":"object","required":["sources","template"],"properties":{"sources":{"description":"Objects in which configuration parameters are fetched","type":"array","items":{"description":"ObjectTemplateSource defines a source for a template.","type":"object","required":["apiVersion","items","kind","name"],"properties":{"apiVersion":{"type":"string"},"items":{"type":"array","items":{"description":"ObjectTemplateSourceItem defines a source item for an object template.","type":"object","required":["destination","key"],"properties":{"destination":{"description":"JSONPath to destination in which to store copy of the source value.","type":"string"},"key":{"description":"JSONPath to value in source object.","type":"string"}}}},"kind":{"type":"string"},"name":{"type":"string"},"namespace":{"type":"string"},"optional":{"description":"Marks this source as optional.\nThe templated object will still be applied if optional sources are not found.\nIf the source object is created later on, it will be eventually picked up.","type":"boolean"}}}},"template":{"description":"Go template of a Kubernetes manifest","type":"string"}}},"status":{"description":"ObjectTemplateStatus defines the observed state of a ObjectTemplate ie the status of the templated object.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions the templated object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"controllerOf":{"description":"ControllerOf references the templated object.","type":"object","required":["group","kind","name","version"],"properties":{"group":{"description":"Object Group.","type":"string"},"kind":{"description":"Object Kind.","type":"string"},"name":{"description":"Object Name.","type":"string"},"namespace":{"description":"Object Namespace.","type":"string"},"version":{"description":"Object Version.","type":"string"}}}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectTemplate","version":"v1alpha1"}]},"run.package-operator.v1alpha1.ObjectTemplateList":{"description":"ObjectTemplateList is a list of ObjectTemplate","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of objecttemplates. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.ObjectTemplate"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"ObjectTemplateList","version":"v1alpha1"}]},"run.package-operator.v1alpha1.Package":{"description":"Package defines a namespaced package installation.","type":"object","properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta"},"spec":{"description":"PackageSpec specifies a package.","type":"object","required":["image"],"properties":{"component":{"description":"Desired component to deploy from multi-component packages.","type":"string"},"config":{"description":"Package configuration parameters.","x-kubernetes-preserve-unknown-fields":true},"image":{"description":"the image containing the contents of the package\nthis image will be unpacked by the package-loader to render\nthe ObjectDeployment for propagating the installation of the package.","type":"string"},"paused":{"description":"If Paused is true, the package and its children will not be reconciled.","type":"boolean"}}},"status":{"description":"PackageStatus defines the observed state of a Package.","type":"object","properties":{"conditions":{"description":"Conditions is a list of status conditions ths object is in.","type":"array","items":{"description":"Condition contains details for one aspect of the current state of this API Resource.","type":"object","required":["lastTransitionTime","message","reason","status","type"],"properties":{"lastTransitionTime":{"description":"lastTransitionTime is the last time the condition transitioned from one status to another.\nThis should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.","type":"string","format":"date-time"},"message":{"description":"message is a human readable message indicating details about the transition.\nThis may be an empty string.","type":"string","maxLength":32768},"observedGeneration":{"description":"observedGeneration represents the .metadata.generation that the condition was set based upon.\nFor instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date\nwith respect to the current state of the instance.","type":"integer","format":"int64","minimum":0},"reason":{"description":"reason contains a programmatic identifier indicating the reason for the condition's last transition.\nProducers of specific condition types may define expected values and meanings for this field,\nand whether the values are considered a guaranteed API.\nThe value should be a CamelCase string.\nThis field may not be empty.","type":"string","maxLength":1024,"minLength":1,"pattern":"^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$"},"status":{"description":"status of the condition, one of True, False, Unknown.","type":"string","enum":["True","False","Unknown"]},"type":{"description":"type of condition in CamelCase or in foo.example.com/CamelCase.","type":"string","maxLength":316,"pattern":"^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$"}}}},"revision":{"description":"Package revision as reported by the ObjectDeployment.","type":"integer","format":"int64"},"unpackedHash":{"description":"Hash of image + config that was successfully unpacked.","type":"string"}}}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"Package","version":"v1alpha1"}]},"run.package-operator.v1alpha1.PackageList":{"description":"PackageList is a list of Package","type":"object","required":["items"],"properties":{"apiVersion":{"description":"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources","type":"string"},"items":{"description":"List of packages. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md","type":"array","items":{"$ref":"#/definitions/run.package-operator.v1alpha1.Package"}},"kind":{"description":"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","type":"string"},"metadata":{"description":"Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds","$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.ListMeta"}},"x-kubernetes-group-version-kind":[{"group":"package-operator.run","kind":"PackageList","version":"v1alpha1"}]}},"parameters":{"allowWatchBookmarks-HC2hJt-J":{"uniqueItems":true,"type":"boolean","description":"allowWatchBookmarks requests watch events with type \"BOOKMARK\". Servers that do not implement bookmarks may ignore this flag and bookmarks are sent at the server's discretion. Clients should not assume bookmarks are returned at any specific interval, nor may they assume the server will send any BOOKMARK event during a session. If this is not a watch, this field is ignored.","name":"allowWatchBookmarks","in":"query"},"asFile-OcRrrLDo":{"uniqueItems":true,"type":"string","description":"asFile determines if the binary should be created as a file within the source rather than extracted as an archive","name":"asFile","in":"query"},"body-2Y1dVQaQ":{"name":"body","in":"body","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions"}},"body-2Y1dVQaQ_v2":{"name":"body","in":"body","schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.DeleteOptions_v2"}},"body-78PwaGsr":{"name":"body","in":"body","required":true,"schema":{"$ref":"#/definitions/io.k8s.apimachinery.pkg.apis.meta.v1.Patch"}},"command-Py3eQybp":{"uniqueItems":true,"type":"string","description":"Command is the remote command to execute. argv array. Not executed within a shell.","name":"command","in":"query"},"container-1GeXxFDC":{"uniqueItems":true,"type":"string","description":"The container for which to stream logs. Defaults to only container if there is one container in the pod.","name":"container","in":"query"},"container-Rl7l_oz7":{"uniqueItems":true,"type":"string","description":"cointainer for which to stream logs. Defaults to only container if there is one container in the pod.","name":"container","in":"query"},"container-_Q-EJ3nR":{"uniqueItems":true,"type":"string","description":"The container in which to execute the command. Defaults to only container if there is only one container in the pod.","name":"container","in":"query"},"container-i5dOmRiM":{"uniqueItems":true,"type":"string","description":"Container in which to execute the command. Defaults to only container if there is only one container in the pod.","name":"container","in":"query"},"continue-QfD61s0i":{"uniqueItems":true,"type":"string","description":"The continue option should be set when retrieving more results from the server. Since this value is server defined, clients may only use the continue value from a previous query result with identical query parameters (except for the value of continue) and the server may reject a continue value it does not recognize. If the specified continue value is no longer valid whether due to expiration (generally five to fifteen minutes) or a configuration change on the server, the server will respond with a 410 ResourceExpired error together with a continue token. If the client needs a consistent list, it must restart their list without the continue field. Otherwise, the client may send another list request with the token received with the 410 error, the server will respond with a list starting from the next key, but from the latest snapshot, which is inconsistent from the previous list results - objects that are created, modified, or deleted after the first list request will be included in the response, as long as their keys are after the \"next key\".\n\nThis field is not supported when watch is true. Clients may start a watch from the last resourceVersion value returned by the server and not miss any modifications.","name":"continue","in":"query"},"fieldManager-7c6nTn1T":{"uniqueItems":true,"type":"string","description":"fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint. This field is required for apply requests (application/apply-patch) but optional for non-apply patch types (JsonPatch, MergePatch, StrategicMergePatch).","name":"fieldManager","in":"query"},"fieldManager-Qy4HdaTW":{"uniqueItems":true,"type":"string","description":"fieldManager is a name associated with the actor or entity that is making these changes. The value must be less than or 128 characters long, and only contain printable characters, as defined by https://golang.org/pkg/unicode/#IsPrint.","name":"fieldManager","in":"query"},"fieldSelector-xIcQKXFG":{"uniqueItems":true,"type":"string","description":"A selector to restrict the list of returned objects by their fields. Defaults to everything.","name":"fieldSelector","in":"query"},"follow-9OIXh_2R":{"uniqueItems":true,"type":"boolean","description":"Follow the log stream of the pod. Defaults to false.","name":"follow","in":"query"},"follow-ryc9nKX-":{"uniqueItems":true,"type":"boolean","description":"follow if true indicates that the build log should be streamed until the build terminates.","name":"follow","in":"query"},"follow-uBbRJU1P":{"uniqueItems":true,"type":"boolean","description":"Follow if true indicates that the build log should be streamed until the build terminates.","name":"follow","in":"query"},"force-tOGGb0Yi":{"uniqueItems":true,"type":"boolean","description":"Force is going to \"force\" Apply requests. It means user will re-acquire conflicting fields owned by other people. Force flag must be unset for non-apply patch requests.","name":"force","in":"query"},"gracePeriodSeconds--K5HaBOS":{"uniqueItems":true,"type":"integer","description":"The duration in seconds before the object should be deleted. Value must be non-negative integer. The value zero indicates delete immediately. If this value is nil, the default grace period for the specified type will be used. Defaults to a per object value if not specified. zero means delete immediately.","name":"gracePeriodSeconds","in":"query"},"insecureSkipTLSVerifyBackend-gM00jVbe":{"uniqueItems":true,"type":"boolean","description":"insecureSkipTLSVerifyBackend indicates that the apiserver should not confirm the validity of the serving certificate of the backend it is connecting to.  This will make the HTTPS connection between the apiserver and the backend insecure. This means the apiserver cannot verify the log data it is receiving came from the real kubelet.  If the kubelet is configured to verify the apiserver's TLS credentials, it does not mean the connection to the real kubelet is vulnerable to a man in the middle attack (e.g. an attacker could not intercept the actual log data coming from the real kubelet).","name":"insecureSkipTLSVerifyBackend","in":"query"},"labelSelector-5Zw57w4C":{"uniqueItems":true,"type":"string","description":"A selector to restrict the list of returned objects by their labels. Defaults to everything.","name":"labelSelector","in":"query"},"limit-1NfNmdNH":{"uniqueItems":true,"type":"integer","description":"limit is a maximum number of responses to return for a list call. If more items exist, the server will set the `continue` field on the list metadata to a value that can be used with the same initial query to retrieve the next set of results. Setting a limit may return fewer than the requested amount of items (up to zero items) in the event all requested objects are filtered out and clients should only use the presence of the continue field to determine whether more results are available. Servers may choose not to support the limit argument and will return all of the available results. If limit is specified and the continue field is empty, clients may assume that no more results are available. This field is not supported if watch is true.\n\nThe server guarantees that the objects returned when using continue will be identical to issuing a single list call without a limit - that is, no objects created, modified, or deleted after the first request is issued will be included in any subsequent continued requests. This is sometimes referred to as a consistent snapshot, and ensures that a client that is using limit to receive smaller chunks of a very large result can ensure they see all possible objects. If objects are updated during a chunked list the version of the object that was present at the time the first list result was calculated is returned.","name":"limit","in":"query"},"limit-WCjOkj21":{"uniqueItems":true,"type":"integer","name":"limit","in":"query"},"limitBytes-_hnOr0V4":{"uniqueItems":true,"type":"integer","description":"limitBytes, If set, is the number of bytes to read from the server before terminating the log output. This may not display a complete final line of logging, and may return slightly more or slightly less than the specified limit.","name":"limitBytes","in":"query"},"limitBytes-zwd1RXuc":{"uniqueItems":true,"type":"integer","description":"If set, the number of bytes to read from the server before terminating the log output. This may not display a complete final line of logging, and may return slightly more or slightly less than the specified limit.","name":"limitBytes","in":"query"},"namespace-vgWSWtn3":{"uniqueItems":true,"type":"string","description":"object name and auth scope, such as for teams and projects","name":"namespace","in":"path","required":true},"nowait-4e5T_PV3":{"uniqueItems":true,"type":"boolean","description":"noWait if true causes the call to return immediately even if the build is not available yet. Otherwise the server will wait until the build has started.","name":"nowait","in":"query"},"nowait-fRDq2lTB":{"uniqueItems":true,"type":"boolean","description":"NoWait if true causes the call to return immediately even if the deployment is not available yet. Otherwise the server will wait until the deployment has started.","name":"nowait","in":"query"},"offset-wREk4EKc":{"uniqueItems":true,"type":"integer","name":"offset","in":"query"},"orphanDependents-uRB25kX5":{"uniqueItems":true,"type":"boolean","description":"Deprecated: please use the PropagationPolicy, this field will be deprecated in 1.7. Should the dependent objects be orphaned. If true/false, the \"orphan\" finalizer will be added to/removed from the object's finalizers list. Either this field or PropagationPolicy may be set, but not both.","name":"orphanDependents","in":"query"},"path-QCf0eosM":{"uniqueItems":true,"type":"string","description":"Path is the part of URLs that include service endpoints, suffixes, and parameters to use for the current proxy request to service. For example, the whole request URL is http://localhost/api/v1/namespaces/kube-system/services/elasticsearch-logging/_search?q=user:kimchy. Path is _search?q=user:kimchy.","name":"path","in":"query"},"path-oPbzgLUj":{"uniqueItems":true,"type":"string","description":"Path is the URL path to use for the current proxy request to pod.","name":"path","in":"query"},"path-rFDtV0x9":{"uniqueItems":true,"type":"string","description":"Path is the URL path to use for the current proxy request to node.","name":"path","in":"query"},"path-z6Ciiujn":{"uniqueItems":true,"type":"string","description":"path to the resource","name":"path","in":"path","required":true},"ports-91KROJmm":{"uniqueItems":true,"type":"integer","description":"List of ports to forward Required when using WebSockets","name":"ports","in":"query"},"pretty-tJGM1-ng":{"uniqueItems":true,"type":"string","description":"If 'true', then the output is pretty printed. Defaults to 'false' unless the user-agent indicates a browser or command-line HTTP tool (curl and wget).","name":"pretty","in":"query"},"previous-1jxDPu3y":{"uniqueItems":true,"type":"boolean","description":"Return previous terminated container logs. Defaults to false.","name":"previous","in":"query"},"previous-VzhNnb31":{"uniqueItems":true,"type":"boolean","description":"Return previous deployment logs. Defaults to false.","name":"previous","in":"query"},"previous-pXJ3IzH4":{"uniqueItems":true,"type":"boolean","description":"previous returns previous build logs. Defaults to false.","name":"previous","in":"query"},"propagationPolicy-6jk3prlO":{"uniqueItems":true,"type":"string","description":"Whether and how garbage collection will be performed. Either this field or OrphanDependents may be set, but not both. The default policy is decided by the existing finalizer set in the metadata.finalizers and the resource-specific default policy. Acceptable values are: 'Orphan' - orphan the dependents; 'Background' - allow the garbage collector to delete the dependents in the background; 'Foreground' - a cascading policy that deletes all dependents in the foreground.","name":"propagationPolicy","in":"query"},"resourceVersion-5WAnf1kx":{"uniqueItems":true,"type":"string","description":"resourceVersion sets a constraint on what resource versions a request may be served from. See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset","name":"resourceVersion","in":"query"},"resourceVersionMatch-t8XhRHeC":{"uniqueItems":true,"type":"string","description":"resourceVersionMatch determines how resourceVersion is applied to list calls. It is highly recommended that resourceVersionMatch be set for list calls where resourceVersion is set See https://kubernetes.io/docs/reference/using-api/api-concepts/#resource-versions for details.\n\nDefaults to unset","name":"resourceVersionMatch","in":"query"},"revision.authorEmail-AGO6Wd6i":{"uniqueItems":true,"type":"string","description":"revision.authorEmail of the source control user","name":"revision.authorEmail","in":"query"},"revision.authorName-2Gfs6bIw":{"uniqueItems":true,"type":"string","description":"revision.authorName of the source control user","name":"revision.authorName","in":"query"},"revision.commit-fuCVC6aw":{"uniqueItems":true,"type":"string","description":"revision.commit is the value identifying a specific commit","name":"revision.commit","in":"query"},"revision.committerEmail-5mz1H_nc":{"uniqueItems":true,"type":"string","description":"revision.committerEmail of the source control user","name":"revision.committerEmail","in":"query"},"revision.committerName-Pr6tr88U":{"uniqueItems":true,"type":"string","description":"revision.committerName of the source control user","name":"revision.committerName","in":"query"},"revision.message-cz6CLAnc":{"uniqueItems":true,"type":"string","description":"revision.message is the description of a specific commit","name":"revision.message","in":"query"},"sendInitialEvents-rLXlEK_k":{"uniqueItems":true,"type":"boolean","description":"`sendInitialEvents=true` may be set together with `watch=true`. In that case, the watch stream will begin with synthetic events to produce the current state of objects in the collection. Once all such events have been sent, a synthetic \"Bookmark\" event  will be sent. The bookmark will report the ResourceVersion (RV) corresponding to the set of objects, and be marked with `\"k8s.io/initial-events-end\": \"true\"` annotation. Afterwards, the watch stream will proceed as usual, sending watch events corresponding to changes (subsequent to the RV) to objects watched.\n\nWhen `sendInitialEvents` option is set, we require `resourceVersionMatch` option to also be set. The semantic of the watch request is as following: - `resourceVersionMatch` = NotOlderThan\n  is interpreted as \"data at least as new as the provided `resourceVersion`\"\n  and the bookmark event is send when the state is synced\n  to a `resourceVersion` at least as fresh as the one provided by the ListOptions.\n  If `resourceVersion` is unset, this is interpreted as \"consistent read\" and the\n  bookmark event is send when the state is synced at least to the moment\n  when request started being processed.\n- `resourceVersionMatch` set to any other value or unset\n  Invalid error is returned.\n\nDefaults to true if `resourceVersion=\"\"` or `resourceVersion=\"0\"` (for backward compatibility reasons) and to false otherwise.","name":"sendInitialEvents","in":"query"},"sinceSeconds-Sf7lFlCh":{"uniqueItems":true,"type":"integer","description":"sinceSeconds is a relative time in seconds before the current time from which to show logs. If this value precedes the time a pod was started, only logs since the pod start will be returned. If this value is in the future, no logs will be returned. Only one of sinceSeconds or sinceTime may be specified.","name":"sinceSeconds","in":"query"},"sinceSeconds-vE2NLdnP":{"uniqueItems":true,"type":"integer","description":"A relative time in seconds before the current time from which to show logs. If this value precedes the time a pod was started, only logs since the pod start will be returned. If this value is in the future, no logs will be returned. Only one of sinceSeconds or sinceTime may be specified.","name":"sinceSeconds","in":"query"},"stderr-26jJhFUR":{"uniqueItems":true,"type":"boolean","description":"Stderr if true indicates that stderr is to be redirected for the attach call. Defaults to true.","name":"stderr","in":"query"},"stderr-W_1TNlWc":{"uniqueItems":true,"type":"boolean","description":"Redirect the standard error stream of the pod for this call.","name":"stderr","in":"query"},"stdin-PSzNhyUC":{"uniqueItems":true,"type":"boolean","description":"Redirect the standard input stream of the pod for this call. Defaults to false.","name":"stdin","in":"query"},"stdin-sEFnN3IS":{"uniqueItems":true,"type":"boolean","description":"Stdin if true, redirects the standard input stream of the pod for this call. Defaults to false.","name":"stdin","in":"query"},"stdout--EZLRwV1":{"uniqueItems":true,"type":"boolean","description":"Redirect the standard output stream of the pod for this call.","name":"stdout","in":"query"},"stdout-005YMKE6":{"uniqueItems":true,"type":"boolean","description":"Stdout if true indicates that stdout is to be redirected for the attach call. Defaults to true.","name":"stdout","in":"query"},"tailLines-2fRTNzbP":{"uniqueItems":true,"type":"integer","description":"If set, the number of lines from the end of the logs to show. If not specified, logs are shown from the creation of the container or sinceSeconds or sinceTime","name":"tailLines","in":"query"},"tailLines-c-mA2NFh":{"uniqueItems":true,"type":"integer","description":"tailLines, If set, is the number of lines from the end of the logs to show. If not specified, logs are shown from the creation of the container or sinceSeconds or sinceTime","name":"tailLines","in":"query"},"timeoutSeconds-yvYezaOC":{"uniqueItems":true,"type":"integer","description":"Timeout for the list/watch call. This limits the duration of the call, regardless of any activity or inactivity.","name":"timeoutSeconds","in":"query"},"timestamps-c17fW1w_":{"uniqueItems":true,"type":"boolean","description":"If true, add an RFC3339 or RFC3339Nano timestamp at the beginning of every line of log output. Defaults to false.","name":"timestamps","in":"query"},"timestamps-rluwd6z0":{"uniqueItems":true,"type":"boolean","description":"timestamps, If true, add an RFC3339 or RFC3339Nano timestamp at the beginning of every line of log output. Defaults to false.","name":"timestamps","in":"query"},"tty-g7MlET_l":{"uniqueItems":true,"type":"boolean","description":"TTY if true indicates that a tty will be allocated for the attach call. This is passed through the container runtime so the tty is allocated on the worker node by the container runtime. Defaults to false.","name":"tty","in":"query"},"tty-s0flW37O":{"uniqueItems":true,"type":"boolean","description":"TTY if true indicates that a tty will be allocated for the exec call. Defaults to false.","name":"tty","in":"query"},"version-Co11t97x":{"uniqueItems":true,"type":"integer","description":"Version of the deployment for which to view logs.","name":"version","in":"query"},"version-enodSG5q":{"uniqueItems":true,"type":"integer","description":"version of the build for which to view logs.","name":"version","in":"query"},"watch-XNNPZGbK":{"uniqueItems":true,"type":"boolean","description":"Watch for changes to the described resources and return them as a stream of add, update, and remove notifications. Specify resourceVersion.","name":"watch","in":"query"}},"securityDefinitions":{"BearerToken":{"description":"Bearer Token authentication","type":"apiKey","name":"authorization","in":"header"}},"security":[{"BearerToken":[]}]}